Security Directory

S

SONNENTOR

sonnentor.com

0

SONNENTOR is an established Austrian company specializing in organic teas and spices, operating since 1988. The company positions itself as a pioneer in organic and sustainable products, serving customers through both physical retail stores in Austria, Germany, and the Czech Republic, as well as an online shop. The website reflects a mature e-commerce platform with a focus on organic product offerings and sustainability. Technically, the website employs modern frameworks such as Bootstrap and integrates compliance and security tools like Usercentrics CMP and Google reCAPTCHA, indicating a commitment to user privacy and bot protection. Security posture is generally good with HTTPS enabled and some security best practices observed, though additional security headers could enhance protection. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be further investigated. Overall, the website is professional, trustworthy, and compliant with GDPR, but domain registration inconsistencies slightly reduce trust.

K

KamatGroup Handelsgesellschaft mbH

cafe-pampojila.de

0

Cafe de Pampojilá, operated by KamatGroup Handelsgesellschaft mbH, is a small German-based business specializing in premium Guatemalan highland coffee. The company emphasizes sustainable farming practices, social responsibility, and quality coffee production, supported by certifications such as Rainforest Alliance. The website presents a professional image with clear business and contact information, targeting coffee retailers and specialty buyers. Technically, the site uses a modern but straightforward stack including Bootstrap 4, jQuery, and third-party services like Cookiebot and Smartlook for consent management and analytics. Security posture is adequate with HTTPS and cookie consent but lacks visible advanced security headers or explicit security policies. Overall, the site is compliant with GDPR, offers a comprehensive cookie consent mechanism, and provides a user-friendly experience with good mobile optimization.

L

Loewe

loewe.com

0

Loewe is a globally recognized luxury fashion brand specializing in designer bags, clothing, and accessories for both women and men. The website serves as a comprehensive e-commerce platform showcasing the latest collections with rich multimedia content and a strong brand presence. The company targets fashion-conscious consumers seeking high-end products. Technically, the website is built on modern frameworks such as React and leverages advanced marketing and analytics tools like Dynamic Yield and Dynatrace, hosted likely on Akamai infrastructure, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and likely security headers in place, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. The absence of WHOIS data is noted but does not detract significantly from the site's legitimacy given the professional presentation and brand recognition. Overall, Loewe's website reflects a mature digital presence suitable for a luxury retail business.

S

Sotheby's

sothebysdiamonds.com

0

Sotheby's is a globally recognized auction house specializing in luxury goods including fine art and diamond jewelry. The website section analyzed focuses on diamond jewelry sales, targeting affluent buyers and collectors. The company operates a sophisticated online platform leveraging modern web technologies such as React, Next.js, and Auth0 for authentication, supported by analytics and consent management tools like Segment and OneTrust. The site demonstrates strong digital maturity with excellent design, mobile optimization, and SEO practices. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although public incident response information is lacking. WHOIS data is unavailable, likely due to privacy protection, but the brand's reputation and trust signals mitigate concerns. Overall, the site is professional, secure, and compliant with privacy regulations, serving a high-end retail market effectively.

M

METRO AG

metro-potentials.com

0

METRO Potentials is a corporate graduate management trainee programme operated by METRO AG, a large German retail company. The programme targets young professionals seeking international exposure and career development within retail management. The website is professionally designed, mobile-optimized, and provides comprehensive information about the programme, benefits, and application process. Technically, the site uses modern frameworks including Sitecore CMS, Google Analytics, and Siteimprove for analytics and performance monitoring. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security policies and incident response contacts. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and well-maintained but could improve transparency and security disclosures.

M

METRO AG

miag.com

0

MIAG operates as a specialized service provider within the METRO AG group, focusing on comprehensive invoicing, payment guarantee, early payment, and resolution services for METRO's suppliers. The website presents a professional and well-structured digital presence, leveraging modern web technologies such as Sitecore CMS, Google Analytics, and Siteimprove for analytics and performance monitoring. The site is well-optimized for SEO, accessibility, and mobile responsiveness, providing a seamless user experience for its B2B audience. Security practices include HTTPS enforcement and cookie consent mechanisms, although explicit security headers are not detected in the provided data. The absence of WHOIS registration data for the domain www.miag.com is a notable anomaly that reduces domain trustworthiness, despite the strong branding and content alignment with METRO AG. Overall, the website demonstrates a mature digital infrastructure and a strong business credibility within the retail and finance sectors.

M

METRO SOURCING International Limited

metro-sourcing.hk

0

METRO SOURCING International Limited is a Hong Kong headquartered wholly owned subsidiary of METRO AG, specializing in global sourcing and supply chain solutions for METRO's wholesale divisions and third-party customers. Established in 1976, it operates a broad supplier network across multiple countries, providing a wide range of products including non-food, near food, and fresh/frozen food categories. The company positions itself as a strategic buying organization within the retail sector, leveraging its international procurement expertise to serve a diverse customer base. Technically, the website is built on a modern stack including Bootstrap and Sitecore CMS, with integrated analytics tools such as Google Analytics and Siteimprove. The site demonstrates good mobile optimization, SEO practices, and a professional design consistent with corporate branding. Cookie consent mechanisms are implemented with detailed categories, reflecting compliance with GDPR and privacy best practices. From a security perspective, the site enforces HTTPS with excellent SSL configuration and employs standard security practices such as request verification tokens and cookie consent. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or suspicious content were detected. Overall, the website reflects a mature digital presence with strong business credibility and compliance adherence. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and security culture.

M

METRO AG

mpulse.de

0

MPULSE is the official online magazine of METRO AG, providing rich content focused on wholesale, gastronomy, and independent entrepreneurs. The website serves as a content marketing platform to engage METRO's target audience with industry insights, customer stories, and trends. The site is well-branded, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, it leverages modern web technologies including Bootstrap, Google Tag Manager, and Akamai CDN for performance and scalability. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the domain registration and website content are consistent and trustworthy, supporting METRO AG's brand integrity.

B

B.E.S. - Petrovice, s.r.o.

bes-petrovice.cz

0

B.E.S. - Petrovice, s.r.o. is a Czech family-owned business specializing in the manufacture and sale of high-quality home textiles, including bedding, towels, mattresses, and related products. With over 30 years of experience, the company serves both retail customers and professional clients such as hotels and other accommodation providers across the Czech Republic and Europe. The website is built on the Shoptet e-commerce platform and integrates multiple modern technologies and marketing tools, reflecting a mature digital presence. Security posture is solid with HTTPS and CSRF protections, though additional security headers could enhance protection. Privacy compliance is well addressed with clear cookie consent and a privacy policy aligned with GDPR requirements. The absence of WHOIS data limits domain trust verification, but the website content and business information indicate a legitimate and professional operation.

K

Kores

kores.at

0

Kores is a medium-sized retail company specializing in stationery and creative products, targeting general consumers and businesses primarily in Austria with an international presence. The website showcases a broad product range including glues, coloring, erasers, and office accessories, supported by a professional and consistent brand presentation. Technically, the site is built on WordPress with modern front-end technologies such as Swiper.js and Web Components, offering good mobile optimization and user experience. Security posture is moderate with HTTPS enforced but lacking explicit security headers and policies. The absence of WHOIS data and registrant information raises some concerns about domain legitimacy, although the website content and branding appear trustworthy. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

K

Kores

kores.de

0

Kores is a medium-sized retail company specializing in stationery and creative products, targeting German-speaking customers and international markets. The website presents a professional and well-structured platform showcasing a broad product range including glues, coloring materials, erasers, and office accessories. The technical infrastructure is based on WordPress with modern frontend technologies, providing good mobile optimization and user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and external links suggest a legitimate business presence. Security posture is moderate with no detected security headers or privacy policies, indicating room for improvement in compliance and protection. Overall, the website is functional and trustworthy but requires enhancements in security and privacy transparency.

K

Kores

kores-europe.cz

0

Kores is a company specializing in stationery and creative products, targeting a broad audience including preschoolers, students, and office users. The website presents a professional and well-structured digital presence using WordPress CMS and modern frontend technologies. However, the absence of WHOIS data for the domain www.kores.com raises concerns about domain registration legitimacy or privacy protection. The website lacks explicit privacy, cookie, and terms of service policies, which impacts compliance and trust. Security posture is moderate with HTTPS usage but missing security headers and vulnerability disclosures. Overall, the site is safe and suitable for general audiences but would benefit from enhanced transparency and security practices.

K

Kores

kores.co.za

0

Kores is a medium-sized retail business specializing in stationery and office supplies, offering a broad product range including glues, colouring, erasers, correction products, and office accessories. The company targets general consumers, educational institutions, offices, and hobbyists, with an international presence evidenced by multiple regional store links. The website is built on WordPress and uses modern frontend technologies such as Modernizr and Swiper.js, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data reduces domain trustworthiness, though the website content and external links suggest a legitimate business. Privacy policies, cookie consent mechanisms, and contact information are missing, indicating areas for compliance improvement.

S

Eshop se šperky z polodrahokamů a minerálů | Šperkyakameny.cz

sperkyakameny.cz

0

The website sperkyakameny.cz operates as an e-commerce platform specializing in the sale of jewelry made from semi-precious stones, minerals, and pearls. It targets consumers interested in unique and quality jewelry pieces, offering a wide range of products categorized by stone types and jewelry styles. The site is well-structured and provides comprehensive product information, care instructions, and customer support channels, positioning itself as a niche retailer in the Czech market. Technically, the website utilizes a proprietary e-commerce platform (eshop-rychle.cz) and integrates modern analytics and marketing tools such as Google Tag Manager, Matomo, and Sklik retargeting. The site is served over HTTPS, ensuring encrypted communications, and is optimized for mobile devices with good navigation clarity. However, it lacks some security best practices such as security headers and a visible cookie consent mechanism. From a security perspective, the site demonstrates a moderate posture with HTTPS enabled and consent settings restricting analytics and ad storage by default. The absence of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Privacy policies and terms of service are present and appear comprehensive, supporting GDPR compliance. Overall, the website presents a professional and trustworthy front for its business, but the lack of domain registration data and some missing security headers suggest areas for improvement. Strategic recommendations include enhancing security headers, implementing a cookie consent banner, and verifying domain registration details to bolster trust and compliance.

F

Flipp Corp

flipp.com

0

Flipp Corp operates a well-established digital platform focused on helping consumers save money by aggregating weekly flyers, coupons, and deals from over 2,000 retail stores. The company offers a comprehensive shopping list feature and a mobile app to enhance user convenience and savings on groceries, electronics, and other retail products. Flipp holds a strong market position in North America as a leading flyer and coupon aggregator with a large retail partner network. Technically, the website leverages modern web technologies including React and Next.js, hosted likely on AWS infrastructure, with integrations for Google Tag Manager, Criteo advertising, and CookieYes for cookie consent management. The site is well-optimized for mobile devices, offers good accessibility, and maintains solid SEO practices. Performance is fast and user experience is smooth. From a security perspective, the site enforces HTTPS and uses nonce attributes for scripts, indicating attention to security best practices. However, it lacks DNSSEC and explicit security headers, and does not publish a security.txt or detailed security policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, Flipp presents a low-risk profile with a mature digital presence, good business credibility, and solid technical and privacy practices. Strategic improvements could focus on enhancing security headers, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen trust and security posture.

K

KAMAT Handelsgesellschaft mbH

kamat-group.de

0

KAMAT Handelsgesellschaft mbH operates as a specialized provider of coffee and ice cream solutions in Germany, offering a broad portfolio of products including coffee machines, vending machines, and ice cream concepts. The company targets B2B customers such as cafes, catering businesses, and retail outlets, providing comprehensive services including consulting, training, and technical support. Their market position is that of a medium-sized, regionally established player with multiple showrooms and a strong service orientation. Technically, the website employs modern web technologies such as Bootstrap and jQuery, with responsive design and moderate performance. Security measures include HTTPS, captcha-protected forms, and GDPR-compliant privacy policies, though some improvements in security headers and incident response transparency are recommended. Overall, the website reflects a professional and trustworthy business with good digital maturity and compliance posture.

K

KAMAT Handelsgesellschaft mbH

gel-matic.com

0

KAMAT Handelsgesellschaft mbH is a German-based company specializing in coffee and ice cream business solutions, offering a range of products including soft ice and frozen yogurt machines, toppings, and accessories, complemented by comprehensive services such as planning, training, and technical support. The company targets businesses and entrepreneurs in the hospitality and retail sectors, positioning itself as a reliable B2B supplier with multiple specialized concepts. Technically, the website employs a modern tech stack including Bootstrap and jQuery, with good mobile optimization and user experience. Security measures include HTTPS, captchas on forms, and GDPR-compliant privacy policies, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with moderate tracking via Google Analytics and advertising through Google AdWords. The domain appears legitimate with no signs of suspicious activity.

K

Kores

kores.com

0

Kores is a company specializing in stationery and creative products, offering a broad product range including glues, colouring, erasers, measuring tools, and office accessories. The website presents a professional and well-structured digital presence with multiple country-specific sites and online shopping options through Amazon and dedicated stores. The technical infrastructure is based on WordPress CMS with modern frontend technologies such as Swiper.js and custom web components, providing a good user experience and mobile optimization. However, the security posture is moderate due to the absence of visible security headers and lack of detailed SSL configuration information. Privacy compliance is weak, with no explicit privacy or cookie policies detected. The WHOIS data for the domain www.kores.com is unavailable, which raises concerns about domain registration transparency and trustworthiness. Overall, the website is functional and professional but would benefit from enhanced security and privacy measures.

Pekárna Klas s.r.o. is a small regional bakery business based in Jaroměřice nad Rokytnou, Czech Republic, specializing in a wide range of bakery and confectionery products including traditional recipes and regional specialties. The company has been operating since 2013 and holds regional product certifications that enhance its local market credibility. The website serves as an informational and promotional platform showcasing products and company news, targeting local customers and bakery enthusiasts. Technically, the website uses a custom CMS likely based on the Nette PHP framework, with older JavaScript libraries such as jQuery 1.8.3 and plugins for UI effects. Google Analytics and Tag Manager are used for visitor tracking. However, the site lacks HTTPS, exposing visitors to security risks, and displays PHP error notices indicating poor error handling. Privacy compliance is minimal with no privacy or terms of service pages, though a cookie consent banner is present. Overall, the site is functional but requires significant improvements in security, privacy, and technical modernization to meet current standards.

Česká pošta, s.p. operates the official e-commerce platform postshop.cz, offering postal supplies such as envelopes, cardboard boxes, postal vouchers, and data security products including chip cards and readers. The website targets both general consumers and businesses within the Czech Republic, positioning itself as a trusted retail channel for postal and related products. The business is well-established with a domain age dating back to 2001, reflecting a mature market presence. Technically, the website is built on ASP.NET Web Forms with a frontend leveraging jQuery and various slider plugins. Hosting and domain registration are managed by Active24, a known provider. The site performs moderately well with basic mobile optimization and SEO practices. Google Tag Manager is used for analytics, indicating some level of digital maturity. From a security perspective, the site uses HTTPS but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. There is no cookie consent mechanism, which is a compliance gap under GDPR. No direct contact emails or phone numbers are present on the main page, limiting immediate user support access. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional and trustworthy with good content quality and business credibility. However, improvements in privacy compliance and security best practices are recommended to enhance user trust and regulatory adherence.

JUKO Petfood operates an e-commerce platform specializing in pet food and supplies primarily targeting pet owners in the Czech Republic. The website offers a broad range of products for dogs, cats, rodents, birds, and other animals, with a clear B2C and B2B business model supported by a dedicated wholesale portal. The site is built on the nopCommerce platform and integrates several modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity, indicating a moderate level of digital maturity. The website is mobile optimized and provides a good user experience with clear navigation and structured product categories. However, the absence of WHOIS data and lack of visible privacy and cookie policies present compliance and trust challenges. Security posture is moderate with HTTPS enabled but missing security headers and no explicit incident response or vulnerability disclosure information. Overall, the site appears legitimate and professionally managed but would benefit from enhanced transparency and security best practices.

A

Albatros Media a.s.

computerpress.cz

0

Albatros Media a.s. is a well-established Czech publishing company with a strong online presence through its website albatrosmedia.cz. The site prominently features the Computer Press brand, specializing in computer literature and related genres, targeting a broad audience including IT professionals and children. The company operates a large e-commerce platform offering thousands of titles and maintains a consistent brand image with multiple subsidiaries and partner brands. Technically, the website uses modern JavaScript frameworks such as React and integrates various marketing and tracking tools with GDPR-compliant consent mechanisms. Security posture is good with HTTPS enforced and secure form handling, though some security headers could be improved. The absence of WHOIS data limits domain registration trust analysis but the overall business credibility is high based on content and trust signals. The website is safe for general audiences with no adult content detected.

V

Vinařství V & M Zborovský, v.o.s.

zborovsky.cz

0

Vinařství V & M Zborovský, v.o.s. is a small Czech winery established in 2001, specializing in quality wine production and sales through both physical vinotéka and an e-commerce platform. The company emphasizes traditional and modern winemaking techniques with a focus on terroir and sustainability. Their market position is strengthened by multiple awards and a loyal regional customer base. Technically, the website uses a custom CMS with common JavaScript libraries and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and includes essential compliance features like cookie consent and age verification for alcohol sales. Security posture is adequate with HTTPS enforced but lacks advanced security headers and incident response disclosures. WHOIS data is missing, which slightly reduces trust but the website content and contact information appear legitimate and professional. Overall, the site is well-structured for its business purpose but could improve security and transparency aspects.

A

ASN Hakr Brno

hakrbrno.cz

0

ASN Hakr Brno is a Czech Republic-based company specializing in automotive accessories such as roof racks, roof boxes, bike and ski carriers. The company operates both online and through physical stores located in Brno, Ostrava, and Prague, positioning itself as a regional leader in this niche retail market. Their business model combines e-commerce with direct retail sales, supported by extended warranties and installation services, enhancing customer trust and satisfaction. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to automotive consumers and businesses. Technically, the website employs the MooTools JavaScript framework alongside modern tracking tools like Google Tag Manager and Seznam tracking scripts. While the site is mobile-optimized and SEO-friendly, it uses somewhat dated JavaScript libraries, which may pose future maintenance challenges. The site implements HTTPS and a comprehensive cookie consent mechanism, demonstrating good privacy compliance. However, the absence of explicit security headers and missing WHOIS domain registration data slightly detract from the overall technical maturity. From a security perspective, the website shows a solid posture with HTTPS enforcement, secure forms, and no visible vulnerabilities or exposed sensitive data. The cookie consent mechanism aligns with GDPR requirements, and certifications such as ISO and DEKRA bolster trust. Nonetheless, the lack of a published security policy or incident response contact channels indicates room for improvement in transparency and preparedness. The missing WHOIS data is a concern for domain legitimacy verification, though the website's content and contact information support its authenticity. Overall, ASN Hakr Brno presents a trustworthy and professional online presence with good business credibility and security practices. Strategic enhancements in security headers, domain transparency, and incident response documentation would further strengthen their digital maturity and customer confidence.

B

BIKA

bika.cz

0

BIKA is a Czech-based wholesale distributor specializing in office supplies, cleaning products, and refreshments, targeting primarily business customers within the Czech Republic. The company positions itself as a reliable supplier with a focus on B2B sales and delivery under substitute fulfillment regimes. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site leverages modern frontend technologies such as React and Ant Design, ensuring a responsive and user-friendly experience. The presence of privacy and cookie policies indicates attention to regulatory compliance, particularly GDPR. Security-wise, the site enforces HTTPS and includes essential security headers, though it lacks a dedicated security policy or vulnerability disclosure page. The absence of WHOIS data due to privacy protection slightly impacts trust but does not overshadow the overall legitimacy suggested by the website content and structure. Strategic recommendations include enhancing transparency around security policies and incident response, improving accessibility features, and maintaining vigilance on third-party scripts to mitigate vulnerabilities.

C

Chytremobilnitelefony.cz

chytremobilnitelefony.cz

0

Chytremobilnitelefony.cz is a small local retail business based in Hustopeče u Brna, Czech Republic, specializing in the sale of smart mobile phones. The website is built on the Wix platform and primarily targets Czech consumers interested in purchasing mobile phones. The business appears to operate as a straightforward retail outlet without extensive online services or e-commerce features. Technically, the website uses Wix's Thunderbolt framework and standard JavaScript polyfills, with moderate performance and good mobile optimization. However, SEO is limited due to the 'noindex' directive, and accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks important security headers and privacy compliance mechanisms such as cookie consent or privacy policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and structure suggest a legitimate small business. Overall, the site is functional but would benefit from enhanced security, privacy, and SEO improvements.

I

iDeal

ideal.lv

0

iDeal is a retail business specializing in Apple products and services, targeting consumers in Latvia. The website is built on the Magento e-commerce platform and integrates multiple third-party services for analytics, marketing, and customer support. The site demonstrates a good level of digital maturity with modern technologies and a comprehensive cookie consent mechanism via Cookiebot. Security posture is solid with HTTPS enforced and bot protection via reCAPTCHA, though some security headers are missing. Privacy compliance is partially met with cookie consent but lacks an explicit privacy policy page. Overall, the site is professional, trustworthy, and safe for general audiences.

F

Freudenberg Home and Cleaning Solutions

freudenberg-homeandcleaningsolutions.com

0

Freudenberg Home and Cleaning Solutions is a well-established international company specializing in innovative cleaning products and systems for both consumers and professional markets. With a history dating back to 1948 and a strong presence in 35 countries, the company operates under the Freudenberg Group umbrella and maintains a portfolio of nine brands. Their business model focuses on manufacturing and distributing sustainable, high-performance cleaning solutions, supported by extensive consumer research and innovation. Technically, the website is built on a modern stack including Pimcore CMS, Bootstrap framework, and uses Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. However, some security headers are missing, and no explicit incident response or vulnerability disclosure information is provided. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but improvements can be made by adding security headers and publishing security policies. The WHOIS data is missing or unavailable, which slightly reduces trust from a domain registration perspective, though the website content and branding strongly indicate legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its business and customer needs effectively.

N

National Retail Federation

nrf.com

0

The National Retail Federation (NRF) is the world’s largest retail trade association, providing advocacy, research, events, and membership services to the retail industry. The organization holds a strong market position with a well-established brand and a comprehensive digital presence. Their website reflects a professional and modern infrastructure, leveraging Next.js and Storyblok CMS, with excellent mobile optimization and user experience. Security posture is solid with HTTPS enforcement and domain transfer protection, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms in place. Overall, NRF demonstrates a mature digital presence aligned with its business objectives and industry leadership.

V

Vileda

vileda.sk

0

Vileda.sk is the official Slovak e-commerce website for Vileda, a leading brand in household cleaning products. Operated under Freudenberg Home and Cleaning Solutions s.r.o., the site offers a wide range of cleaning supplies including mops, cloths, and laundry care products. The platform targets Slovak consumers seeking quality and innovative household cleaning solutions, positioning itself as a trusted retail brand with a comprehensive product catalog and customer support via online forms. Technically, the website is built on SAP Hybris commerce platform, leveraging modern JavaScript libraries such as jQuery and Slick Carousel for UI components. It integrates Google Tag Manager, Microsoft Clarity, and Usercentrics CMP for analytics and privacy compliance. The site is mobile-optimized with good SEO and accessibility basics, ensuring a smooth user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. It employs a consent management platform to comply with GDPR cookie regulations. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, Vileda.sk demonstrates a mature digital presence with strong business credibility and privacy compliance. The site is safe for general audiences, free from adult or questionable content. Strategic recommendations include enhancing accessibility, publishing security policies, and establishing a vulnerability disclosure program to further strengthen trust and security posture.

V

Vileda

vileda.cz

0

Vileda.cz is the official Czech e-commerce website for the Vileda brand, a leading provider of household cleaning products. The site offers a wide range of cleaning tools and accessories, targeting Czech households seeking quality and innovative cleaning solutions. The business is positioned as a trusted retail brand under the parent company Freudenberg Home and Cleaning Solutions s.r.o., with a professional online presence and active social media engagement. Technically, the website is built on a modern e-commerce platform (SAP Hybris Commerce) and employs a robust tech stack including jQuery, Google Tag Manager, Usercentrics for consent management, and Microsoft Clarity for analytics. The site is mobile-optimized and incorporates performance monitoring tools, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses a consent management platform to comply with GDPR. While explicit security headers are not fully visible in the HTML, no critical vulnerabilities or exposed sensitive data were detected. The absence of public WHOIS data suggests privacy protection, which is justified for a commercial brand site. Overall, the security posture is solid but could be enhanced by adding explicit security headers and publishing incident response policies. The overall risk assessment is low, with the site demonstrating good content quality, technical implementation, privacy compliance, and business credibility. Strategic recommendations include enhancing security headers, improving accessibility features, and making security policies more transparent to further strengthen trust and compliance.

W

Whiskas Pet Food

whiskas.cz

0

Whiskas.cz is the Czech localized website for Whiskas, a well-known pet food brand owned by Mars, Incorporated. The site offers detailed information about cat food products tailored for different cat ages and types, along with care tips for cat owners. The website targets Czech-speaking cat owners and positions itself as an expert resource in cat nutrition and care. Technically, the site is built on Drupal 10, employs modern marketing and tracking technologies such as Google Tag Manager and Facebook Pixel, and implements a cookie consent mechanism compliant with GDPR requirements. Security posture is strong with HTTPS and security headers in place, but the absence of explicit privacy policy and terms of service pages is a compliance gap. The WHOIS data for the domain is unavailable, which slightly reduces transparency and trustworthiness, though the brand presence and content quality support legitimacy. Overall, the site is professional, user-friendly, and well-optimized for SEO and accessibility, but could improve privacy disclosures and contact transparency.

The website www.pizzahut.com is currently inaccessible due to a Web Application Firewall (WAF) or security mechanism blocking access, as indicated by the 'Access Denied' message and reference to Akamai's edgesuite.net error URL. This prevents retrieval of any meaningful website content, metadata, or business contact information. The WHOIS query for the domain returned no match, indicating either a registry issue or privacy protection, which limits the ability to verify domain registration details and legitimacy. Pizza Hut is a globally recognized brand in the retail and hospitality sector specializing in pizza delivery and dine-in services, but this analysis cannot confirm current website technical or security posture due to access restrictions. The lack of accessible content and security headers suggests a low security maturity visible externally. Overall, the site is safe in terms of content but lacks publicly accessible compliance and security information.

The website www.kfc.com is currently inaccessible due to an access denied error page served by a security mechanism, likely a Web Application Firewall (WAF) or similar protective service. This prevents any direct analysis of the website's content, metadata, or technical infrastructure. The WHOIS lookup for the domain also failed to return any registrar or registrant information, indicating either privacy protection or registry restrictions. Given the global brand recognition of KFC, the domain is almost certainly legitimate, but the lack of publicly available WHOIS data limits verification. Without access to the website content, no assessment of privacy policies, security posture, or business information can be performed. The presence of an error page referencing edgesuite.net suggests use of Akamai's edge security services.

C

CCA Global Partners

ccaglobalpartners.com

0

CCA Global Partners is a cooperative organization dedicated to empowering independent, family-owned businesses primarily in the retail and home improvement sectors. Their business model focuses on providing scale, resources, and innovation to help these businesses compete effectively against large corporate entities. The website presents a professional and comprehensive overview of their brands, services, and mission, targeting entrepreneurs and family business owners. Technically, the site is built on WordPress with modern plugins and technologies, offering good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. The absence of WHOIS data is a notable concern for domain transparency but does not detract significantly from the overall trustworthiness given the professional content and branding.

T

TIENDA DE ORIENTACIÓN

tiendadeorientacion.com

0

Tienda de Orientación is a specialized e-commerce retailer focused on providing sports equipment for orienteering and outdoor navigation activities. The website offers a wide range of products including compasses, maps, clothing, and accessories tailored for enthusiasts and practitioners of orienteering. The business targets a niche market within Spain and operates primarily through its online platform. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and SEO best practices. It features a responsive design and integrates Google Analytics and reCAPTCHA for analytics and security. Security posture is generally good with HTTPS enforced and some security best practices observed, though there is room for improvement in implementing security headers and formal privacy policies. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues, which impacts trustworthiness. Overall, the site is professional and functional but would benefit from enhanced compliance and security transparency.

Ulta Beauty operates a leading retail and e-commerce platform specializing in beauty products including makeup, skincare, fragrance, and hair care. The website reflects a mature digital presence with a strong brand identity, comprehensive product offerings, and customer engagement through loyalty programs and social media. Technically, the site leverages modern JavaScript frameworks, advanced monitoring tools, and CDN services to ensure fast, reliable, and accessible user experiences across devices. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although a dedicated security policy and incident response information are absent. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site represents a high-quality, trustworthy online retail platform with minor gaps in transparency around security policies and WHOIS data.

V

Victoria's Secret

victoriassecret.com

0

Victoria's Secret is a globally recognized retailer specializing in lingerie, swimwear, beauty products, and apparel targeted primarily at women. The website serves as a comprehensive e-commerce platform offering a wide range of products with a strong brand presence and international reach. The company operates under the parent company L Brands, Inc., positioning itself as a leader in the retail and fashion industry. The site is professionally designed with excellent content quality and user experience, catering to a mature audience interested in fashion and beauty products. Technically, the website leverages modern web technologies including React, Adobe Target, Salesforce, and integrates payment solutions like Klarna and Apple Pay. The platform is optimized for performance and mobile responsiveness, ensuring a seamless shopping experience across devices. The use of advanced analytics and marketing tools indicates a mature digital infrastructure supporting business growth and customer engagement. From a security perspective, the site enforces HTTPS with strong security headers and secure form implementations, including OTP login mechanisms. However, explicit security policies and incident response information are not publicly available, and no vulnerability disclosure program is evident. The WHOIS data is unavailable, which limits domain registration trust analysis, but the brand's reputation and website quality mitigate concerns. Overall, the security posture is strong but could benefit from enhanced transparency and formalized security disclosures. The overall risk assessment is low given the brand's stature and website professionalism. Strategic recommendations include publishing detailed security and incident response policies, establishing a vulnerability disclosure program, and enhancing data protection officer visibility to strengthen trust and compliance. Continuous monitoring of third-party scripts and privacy compliance will further improve the security and privacy posture.

J

JYSK

jysk.fi

0

JYSK is a well-established retail company specializing in furniture and home goods, operating primarily in Finland with a strong online and physical store presence. The website is professionally designed using Drupal 10, integrating advanced marketing and analytics tools such as Google Tag Manager, Dynamic Yield, and Salesforce Live Agent chat. The technical infrastructure leverages Akamai CDN for performance and reliability. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms implemented, although there is room for improvement in publishing explicit security policies and incident response information. Overall, the domain registration and WHOIS data confirm the legitimacy and long-standing presence of the business. The website is fully accessible without any WAF or blocking mechanisms detected.

N

Notino, s.r.o.

notino.lt

0

Notino, s.r.o. operates a professional e-commerce platform specializing in perfumes, cosmetics, and beauty products targeted at Lithuanian consumers. The website demonstrates a strong market position as a large regional retailer with a comprehensive product offering, weekly promotions, and customer support. The business model is focused on online retail with a clear emphasis on customer experience and brand consistency. Technically, the site leverages modern web technologies including React, Google Analytics, and New Relic for performance monitoring, indicating a mature digital infrastructure. The site is mobile optimized and accessible, with good SEO practices in place. Security posture is solid with HTTPS enforced and security headers implied, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with detailed cookie consent mechanisms and a comprehensive privacy policy. Overall, the website is trustworthy and professionally managed, though WHOIS data is unavailable, limiting domain registration verification.

N

Notino, s.r.o.

notino.ua

0

Notino, s.r.o. operates a large-scale e-commerce platform specializing in perfumes and cosmetics, targeting primarily the Ukrainian market. The website offers a broad assortment of beauty products with fast delivery and additional services such as a mobile app and sample boxes. The company holds a strong market position as a leading online beauty retailer in Ukraine with consistent branding and professional content. Technically, the site leverages modern React frameworks, integrates advanced analytics and monitoring tools like Google Analytics, New Relic, and Bloomreach, and maintains good performance and mobile optimization. Security posture is solid with HTTPS enforcement, security headers, and monitoring, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with clear cookie consent and GDPR-aligned policies. Overall, the website is trustworthy, professionally maintained, and business credible.

N

Notino, s.r.o.

notino.si

0

Notino.si is a well-established e-commerce retailer specializing in perfumes and cosmetics, serving the Slovenian market with a broad selection of products and weekly promotions. The company operates under Notino, s.r.o., founded in 2016, and maintains a strong brand presence with consistent branding and customer trust signals such as clear contact information and social media engagement. Technically, the website leverages modern frameworks like React and integrates advanced analytics and marketing tools including Google Analytics, Exponea, and AppsFlyer, supported by Cloudflare for DNS and CDN services, ensuring good performance and security. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though the site lacks a dedicated security policy or incident response page. Overall, the site is professional, secure, and compliant with GDPR, making it a trustworthy platform for consumers.

N

Notino, s.r.o.

notino.ch

0

Notino, s.r.o. operates a large-scale e-commerce platform specializing in perfumes and cosmetics targeted at the Swiss market. The website offers a broad range of beauty products, including fragrances, make-up, hair care, and skin care, positioning itself as a key player in the Swiss online retail beauty sector. The business model focuses on direct online sales with customer-centric services such as a 90-day return policy and accessible customer support. The company maintains a consistent brand presence and leverages social media channels for engagement.

N

Notino, s.r.o.

notino.ro

0

Notino, s.r.o. operates a professional e-commerce platform focused on perfumes and cosmetics in Romania, serving a broad consumer base interested in beauty products. The website demonstrates a strong market presence with a wide range of products, multiple brand partnerships, and physical store locations. The business model centers on online retail with integrated delivery and customer support services. Technically, the site leverages modern web technologies including React, Google Tag Manager, and advanced analytics platforms such as New Relic and Exponea, indicating a mature digital infrastructure. Security posture is robust with HTTPS enforcement, security event monitoring, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Overall, the site presents a trustworthy and professional online retail experience.

N

Notino, s.r.o.

notino.at

0

Notino, s.r.o. operates a prominent e-commerce platform specializing in perfumes and cosmetics targeted primarily at the Austrian market. The website offers a broad product range, competitive pricing, and convenient services such as pick-up points in Vienna and fast delivery within three business days. The company maintains a strong market position as a leading online perfumery in Austria, supported by a professional and user-friendly website design. Technically, the website leverages modern web technologies including React 18 and React Router, integrated with advanced analytics and marketing tools such as Google Analytics, New Relic, Bloomreach, and Usercentrics for consent management. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, ensuring a high-quality user experience across devices. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers like Content Security Policy and X-Frame-Options. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with active consent mechanisms. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Recommendations include publishing detailed security policies, adding vulnerability disclosure mechanisms, and continuous monitoring of third-party scripts to maintain security posture.

N

Notino, s.r.o.

notino.nl

0

Notino, s.r.o. operates a large and professional e-commerce platform focused on perfumes and cosmetics, targeting consumers primarily in the Netherlands. The website offers a broad assortment of beauty products with weekly special offers, fast delivery, and additional services such as virtual try-on and a mobile application. The company maintains a strong market position in the European beauty retail sector with a well-established brand and consistent digital presence. Technically, the website leverages modern web technologies including React and React Router, supported by robust analytics and monitoring tools such as Google Tag Manager, New Relic, and Bloomreach Exponea. The platform is optimized for performance, mobile responsiveness, and accessibility, ensuring a good user experience. Security best practices are observed with HTTPS enforcement, security event monitoring, and cookie consent management via Usercentrics. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies and active consent mechanisms. Contact information is clearly provided, enhancing business credibility and user trust. Overall, the website presents a low-risk profile with strong business credibility, good technical implementation, and adherence to privacy and security standards. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to further enhance transparency and trust.

N

Notino, s.r.o.

notino.hu

0

Notino, s.r.o. operates a large, professional e-commerce platform focused on perfumes, cosmetics, and baby-mother products primarily serving the Hungarian market. The website demonstrates a mature digital infrastructure using modern technologies such as React, Google Tag Manager, and New Relic for monitoring. The business is well-established since 2004 with consistent WHOIS data supporting legitimacy. Security posture is strong with HTTPS enforced and security monitoring in place, though explicit security policies and incident response contacts are not publicly disclosed. Privacy and cookie policies are present with consent mechanisms, indicating GDPR compliance. Overall, the site is trustworthy and professionally maintained, serving a broad consumer base in the retail beauty sector.

N

Notino, s.r.o.

notino.gr

0

Notino.gr is a professional e-commerce website specializing in the retail of perfumes, cosmetics, and personal care products targeted primarily at Greek consumers. The site is part of the Notino group, a large European retailer with a strong market presence. The website employs modern web technologies including React and integrates multiple analytics and marketing tools such as Google Analytics, New Relic, Bloomreach Exponea, and AppsFlyer. The site demonstrates good design quality, mobile optimization, and accessibility features, providing a positive user experience. However, explicit privacy and cookie policies are not found in the provided content, which is a compliance gap. Contact information is limited to a phone number, with no email or physical address visible. Security posture is strong with HTTPS and monitoring tools, but could be improved with additional security headers and published security policies.

N

Notino, s.r.o.

notino.fr

0

Notino.fr is a large European e-commerce retailer specializing in perfumes, cosmetics, and beauty products. The website offers a wide range of products with fast delivery and virtual try-on features, targeting consumers in France. The company presents itself professionally with consistent branding and comprehensive privacy and cookie policies. Technically, the site uses modern frameworks such as React and integrates multiple analytics and marketing tools, ensuring good performance and SEO optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly available. WHOIS data is not accessible, likely due to privacy protection, which is common for commercial sites. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

N

Notino, s.r.o.

notino.es

0

Notino, s.r.o. operates a large-scale e-commerce platform specializing in perfumes, cosmetics, and beauty products primarily targeting the Spanish market. The website offers a broad product range with weekly promotions, fast delivery, and additional services such as gift wrapping and a mobile application. The company positions itself as a leading beauty retailer in Europe with a strong online presence and customer engagement through social media and customer service channels. Technically, the website employs a modern React-based frontend with robust analytics and marketing integrations including Google Analytics, New Relic, Bloomreach Exponea, and AppsFlyer. The site demonstrates good performance, mobile optimization, and accessibility features, ensuring a positive user experience. Privacy compliance is well addressed with explicit cookie consent mechanisms and comprehensive privacy policies. From a security perspective, the site enforces HTTPS, employs security monitoring tools, and has implemented content security policies. However, explicit security policies and incident response information are not publicly available, and no vulnerability disclosure program is evident. The WHOIS data is unavailable due to query restrictions, but the website's professionalism and trust signals indicate legitimacy. Overall, Notino.es presents a mature, secure, and privacy-conscious e-commerce platform with strong business credibility. Strategic improvements could focus on enhancing transparency around security policies and incident response to further build user trust.