Security Directory

S

SAP Concur

concur.de

0

SAP Concur is a leading enterprise software provider specializing in cloud-based travel and expense management solutions. The website www.concur.de serves the German market with localized content and comprehensive product offerings including expense reporting, travel booking, and budget management. The company is positioned as a market leader with a strong brand presence and a broad partner network. Technically, the site is built on Drupal CMS, uses modern JavaScript frameworks, and integrates advanced monitoring tools like New Relic and TrustArc for consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and vulnerability disclosure policies are not publicly evident. Overall, the site demonstrates high professionalism, excellent content quality, and compliance with GDPR regulations, supporting SAP Concur's reputation as a trusted enterprise solution provider.

S

SAP Concur

concur.fr

0

SAP Concur is a leading enterprise software provider specializing in business travel and expense management solutions. The website offers comprehensive information about their products, including expense management, travel management, and budget control, targeting businesses and professionals. The site is well-branded, consistent with SAP's corporate identity, and provides localized content for multiple regions. The technical infrastructure leverages modern web technologies, including Drupal CMS, JavaScript frameworks, and advanced monitoring tools like New Relic and TrustArc for privacy compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although additional security headers could enhance protection. The absence of WHOIS data suggests privacy protection, which is justified for this enterprise-level business. Overall, the website demonstrates a mature digital presence with good user experience and compliance adherence.

C

Concur Holdings (Netherlands) B.V.

concur.ae

0

Concur Holdings (Netherlands) B.V., a subsidiary of SAP, operates a comprehensive website offering enterprise-grade travel, expense, and invoice management software solutions. The company is positioned as a market leader in business travel and expense management, targeting businesses globally with a strong presence in multiple regions and languages. Their digital infrastructure is built on Drupal CMS with modern JavaScript frameworks and includes advanced monitoring tools like New Relic and TrustArc for privacy compliance. The website demonstrates excellent content quality, professional design, and clear navigation, supporting a seamless user experience across devices. Security posture is strong with HTTPS enforcement and monitoring, though additional security headers and a public security policy could enhance trust further. Privacy compliance is robust, featuring GDPR-aligned cookie consent mechanisms and comprehensive privacy policies. Overall, the website reflects a mature, enterprise-level digital presence with high business credibility and trustworthiness.

C

Concur Holdings (Netherlands) B.V.

concur.co.za

0

SAP Concur South Africa operates as a regional branch of Concur Holdings (Netherlands) B.V., a subsidiary of SAP, providing enterprise-grade travel, expense, and invoice management software solutions. The website presents a comprehensive portfolio of products and services tailored for business customers, emphasizing automation, control, and integration. The brand is well-established globally with localized content and multiple language support, targeting corporate finance, travel managers, and enterprises seeking streamlined expense processes. Technically, the website is built on Drupal CMS with modern web technologies including HTML5, CSS3, and JavaScript. It integrates advanced monitoring and analytics tools such as New Relic and TrustArc for performance and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure suitable for enterprise needs. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and uses monitoring scripts to detect issues. No critical vulnerabilities or exposed sensitive data were found. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and compliance. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. The lack of WHOIS data is consistent with privacy protection practices common among large enterprises. The site is suitable for its target audience and supports SAP Concur's market position as a leading provider in travel and expense management software.

S

SAP Concur Peru

concur.pe

0

SAP Concur Peru operates as a localized branch of the global SAP Concur brand, providing software solutions for business travel, expense, and invoice management. The website presents a professional and comprehensive portfolio of services tailored to the Latin American market, particularly Peru. It targets finance professionals and businesses seeking to automate and control travel and expense processes. The site is well-branded, consistent with SAP Concur's global identity, and offers rich multimedia content including demos and case studies. Technically, the website is built on Drupal CMS with modern JavaScript and monitoring tools such as New Relic and TrustArc for cookie consent. It is mobile-optimized, fast-loading, and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and monitoring in place, though some security headers could be improved. Privacy compliance is evident with clear privacy and cookie policies and GDPR consent mechanisms. The main security concern is the lack of publicly available WHOIS registration data, which reduces transparency and trust from a domain registration perspective. No explicit security policy or incident response information is published, which could be improved to enhance trust and compliance. Overall, the site is low risk, professional, and trustworthy, but could benefit from enhanced security disclosures and domain registration transparency.

S

SAP Concur

concur.cl

0

SAP Concur Chile operates as a regional branch of the global SAP Concur brand, providing software solutions for business travel, expense, and invoice management. The website presents a professional, well-structured platform targeting businesses and finance professionals in Chile and Latin America. It offers a comprehensive suite of services including Concur Expense, Travel, fraud detection, and budget management, positioning itself as a leader in the business travel and expense management market. The site is well-branded, consistent with SAP Concur's global identity, and includes rich multimedia content and demos to engage users. Technically, the website is built on Drupal CMS and leverages modern JavaScript libraries and monitoring tools such as New Relic and TrustArc for consent management. The site is mobile-optimized with good performance and SEO practices. Security is robust with HTTPS enforced and basic security headers present, although there is room for improvement by adding advanced headers and publishing explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms aligned with GDPR. The security posture is solid, with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data limits domain registration trust verification. Despite this, the strong brand presence and professional site design support the legitimacy of the domain. Overall, the site demonstrates a mature digital presence with good security and privacy practices suitable for an enterprise-level SaaS provider.

S

SAP Concur

concur.co

0

SAP Concur Colombia offers comprehensive software solutions for business travel, expense, and invoice management, helping companies automate and control financial processes efficiently. The website is professionally designed, localized for the Colombian market, and integrates with the global SAP Concur ecosystem. It targets finance professionals and businesses seeking streamlined expense management. Technically, the site uses Drupal CMS, modern JavaScript, and includes performance and monitoring tools like New Relic and TrustArc for privacy compliance. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers and public security policies could be improved. WHOIS data is privacy protected but consistent with a legitimate enterprise domain. Overall, the site reflects a mature, trustworthy digital presence aligned with SAP's brand standards.

S

SAP Concur

concur.com.br

0

SAP Concur Brasil provides comprehensive corporate travel and expense management solutions, helping businesses automate and control financial processes. As a subsidiary of SAP, it holds a strong market position with a broad portfolio including Concur Expense, Travel, and Analytics. The website reflects a mature digital presence with professional design, clear navigation, and rich multimedia content tailored to corporate clients in Brazil. The technical infrastructure leverages Drupal CMS, Akamai CDN, and New Relic monitoring, ensuring performance and reliability. Security posture is solid with HTTPS, cookie consent via TrustArc, and monitoring, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high business credibility and compliance with privacy regulations.

C

Concur Technologies, Inc.

concur.com.mx

0

SAP Concur Mexico, operated by Concur Technologies, Inc., is a leading enterprise provider of travel, expense, and invoice management solutions. The website offers comprehensive information about their products and services tailored for the Mexican market, emphasizing automation and efficiency in corporate expense management. The site is well-branded, professionally designed, and integrates multimedia content to engage business users. Technically, the site employs modern JavaScript frameworks, New Relic monitoring, and TrustArc for GDPR-compliant cookie consent, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and monitoring tools, though additional security headers and explicit security policies could enhance trust. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the domain registration aligns with the business identity, supporting legitimacy and trustworthiness.

S

SAP Concur

concur.ca

0

SAP Concur Canada operates a professional and comprehensive website focused on travel, expense, and invoice management software solutions. As a subsidiary of SAP, it holds a strong market position in the enterprise software sector, providing a broad suite of products tailored for business spend management. The website demonstrates a mature digital presence with rich multimedia content, clear navigation, and extensive product information targeting Canadian businesses. The technical infrastructure leverages Drupal CMS, modern JavaScript libraries, and performance monitoring tools such as New Relic and Akamai mPulse, indicating a robust and scalable platform. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security headers and public security policies could be improved. Overall, the site reflects a trustworthy and enterprise-grade digital asset aligned with SAP's global brand standards.

Q

QuickpageX

quickpagex.ch

0

QuickpageX is a Swiss-based service providing flexible website solutions tailored primarily for institutional clients such as church communities and aid organizations. The company emphasizes ease of use by allowing clients to focus on content creation while managing technical aspects including domain registration and email accounts. Their market position is niche, focusing on privacy-conscious institutions with a subscription-based business model that includes a free trial period and annual fees. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating privacy-friendly tools like Matomo analytics and OpenStreetMap instead of Google services. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and no exposed sensitive data, though it lacks some advanced security headers and a published security policy. Privacy compliance is strong with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

R

Relimedia

relimedia.ch

0

Relimedia is a Swiss-based ecumenical media center specializing in providing physical, audiovisual, and print media focused on church, religions, ethics, and life education. The organization operates a media lending, sales, and digital download/streaming service primarily targeting religious and educational institutions. The website demonstrates a solid technical infrastructure built on WordPress with modern plugins and SEO optimizations, offering a good user experience with mobile responsiveness and accessibility. Security posture is adequate with HTTPS and anti-spam measures, though lacking explicit cookie consent and security policies. Overall, the domain registration and business information are consistent and trustworthy, supporting a positive legitimacy assessment.

K

Katholisches Medienzentrum

blogs-kath.ch

0

Blogs kath.ch is a Swiss Catholic church blog platform operated by the Katholisches Medienzentrum, providing current and relevant content for the Catholic community in Switzerland. The site serves as a niche media platform offering blog hosting, news, job listings, and advertising space related to Catholic church activities. Technically, the website is built on WordPress 6.7.1 with modern frameworks like Bootstrap and uses analytics tools such as Matomo and Mouseflow, indicating a moderate level of digital maturity. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, the site enforces HTTPS and avoids exposing sensitive data but lacks security headers and a formal vulnerability disclosure mechanism. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche but could improve security and privacy practices.

CATT is a small Swiss media organization focused on delivering Catholic news, multimedia content, and event information primarily to the Italian-speaking community. The website is professionally designed, well-structured, and provides a rich set of content including news articles, videos, podcasts, and event listings. It maintains a consistent brand presence and integrates social media channels effectively. Technically, the site uses modern frontend technologies such as Alpine.js and Laravel backend with Statamic CMS, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is partial with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and serves its niche audience well.

C

cath.ch

cath.ch

0

cath.ch is a well-established Swiss Catholic news portal serving the French-speaking Catholic community with news, commentary, multimedia, and community services. The site is professionally designed and offers a broad range of content including news from Switzerland, Vatican, and international Catholic affairs. It operates on a WordPress CMS with a modern tech stack including Bootstrap and various analytics and marketing tools. The website demonstrates a good level of digital maturity with mobile optimization and clear navigation. Security posture is adequate with HTTPS and some security best practices, though improvements are recommended such as implementing a Content-Security-Policy and publishing incident response contacts. Privacy compliance is basic, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and credible, with clear contact information and social media presence.

P

Privacy service provided by Withheld for Privacy ehf

indiewebcamp.com

0

IndieWeb.org is a community-driven platform promoting a people-focused alternative to the corporate web by encouraging individuals to own their domain and content. The site serves as a hub for resources, events, and collaborative projects supporting independent web presence. Technically, the site is built on MediaWiki, hosted on Linode, and uses modern web technologies with good performance and mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and safe for general audiences, reflecting a mature community project with a long domain history and consistent branding.

O

OWASP Foundation

owasp.org

0

The OWASP Foundation is a well-established nonprofit organization dedicated to improving software security globally through open source projects, community education, and standards development. The website reflects a mature digital presence with a comprehensive portfolio of flagship projects, global chapters, and events that engage a broad audience of security professionals and developers. Technically, the site employs modern JavaScript libraries, is hosted on Cloudflare for performance and security, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though DNSSEC is not enabled and additional headers could enhance security further. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by long domain age, corporate supporters, and transparent governance. Overall, the site is professional, trustworthy, and serves as a key resource in the cybersecurity community.

P

ProcessWire

processwire.com

0

ProcessWire is an established open source CMS and framework founded in 2007, targeting web developers and businesses seeking a flexible, scalable content management solution. The website showcases a mature community, extensive documentation, and a strong developer focus with a powerful API. Technically, the site is hosted on AWS, uses modern web technologies including PHP and Uikit, and integrates Google Analytics for user insights. The site is well-optimized for performance and mobile devices, with a professional design and clear navigation. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements such as DNSSEC and security headers could enhance it further. Privacy compliance is partial, with a basic privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy, professional, and well-positioned in its niche.

K

Known, Inc.

withknown.com

0

Known, Inc. operates with a focus on providing an open source social publishing platform that enables individuals and groups to collaboratively publish blog posts, photos, and media on their own sites with syndication to social networks. The company targets users interested in decentralized and multi-author blogging solutions, leveraging the Indieweb movement. The website positions Known as a niche player in the social publishing technology sector with a small but consistent presence since 2014. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Fonts, and Google Analytics, hosted on AWS infrastructure. The site is mobile responsive and well-structured, though some accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and important security headers such as Content-Security-Policy. No explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Tracking via Google Analytics is active without visible user consent. Overall, the website is professional and trustworthy with moderate security posture and privacy compliance. Strategic improvements in security headers, DNSSEC, and privacy consent would enhance trust and compliance.

T

Tantek Çelik

tantek.com

0

Tantek.com is the personal website and professional blog of Tantek Çelik, a prominent figure in web standards, IndieWeb, and Mozilla. The site serves as a platform for sharing insights on web technologies, cybersecurity, and community events, targeting web professionals and enthusiasts. The website is well-maintained, with a clean, responsive design and rich content that reflects Tantek's expertise and ongoing contributions to the web community. Technically, the site uses modern web standards including HTML5, CSS3, and microformats, and is hosted with Cloudflare DNS services, ensuring good performance and availability. Security posture is solid with HTTPS and domain protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is lacking due to absence of privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, the site is trustworthy, professional, and safe for general audiences, with strong business credibility tied to Tantek's recognized industry roles.

pin13.net is a personal and technical utility website primarily focused on providing developer tools such as a Microformats parser, character counter, JSON prettifier, Instagram caption formatter, and number base converter. The site is closely associated with Aaron Parecki, a known figure in the IndieWeb and OAuth communities, as evidenced by multiple links to his personal projects and related technical standards. The website targets developers and technical users interested in microformats and web standards. The business model is personal and utility-focused without commercial complexity, relying on affiliate links such as Amazon referrals. Technically, the site uses a simple stack with HTML, CSS, JavaScript, and jQuery 1.3.2, hosted on Linode servers. While functional, the technology is somewhat outdated, particularly the jQuery version, which may expose the site to security vulnerabilities. The site lacks modern security headers and DNSSEC, and there is no visible privacy or cookie policy, which limits compliance with privacy regulations. Google Analytics is used for tracking, and an Amazon affiliate program is integrated. From a security perspective, the site is accessible without WAF or blocking mechanisms, but it lacks advanced security features such as CSP, HSTS, and CSRF protections. The absence of DNSSEC and use of an outdated JavaScript library are notable weaknesses. No sensitive data exposure or critical vulnerabilities were detected, but improvements are recommended to enhance security posture and privacy compliance. Overall, pin13.net is a small, niche technical site with moderate trustworthiness and basic security. Strategic improvements in security practices, privacy policies, and technology modernization would enhance its reliability and compliance.

A

Aaron Parecki

aaronparecki.com

0

Aaron Parecki's website serves as a comprehensive professional portfolio highlighting his leadership in identity standards, OAuth, and OpenID communities. The site targets developers and security professionals interested in identity protocols and related technologies. It features extensive content including articles, presentations, and personal projects, establishing a strong market position as a thought leader in technology standards. The business model is primarily personal branding and consulting with a focus on education and community engagement. Technically, the website is well-constructed using modern web technologies such as Semantic UI, jQuery, and JSON-LD structured data. It is hosted on Linode, ensuring reliable performance and fast loading times. The site is mobile-optimized and accessible, with good SEO practices and minimal user tracking, leveraging privacy-respecting analytics. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks DNSSEC and explicit security headers. There is no published security policy or incident response contact, and privacy and cookie policies are absent, which may impact compliance with regulations like GDPR. No vulnerabilities or suspicious patterns were detected, and the WHOIS data aligns well with the website's claims, indicating legitimacy. Overall, the website demonstrates high professionalism and trustworthiness with excellent content quality and technical implementation. Strategic improvements include adding privacy and cookie policies, enabling DNSSEC, publishing security policies, and implementing security headers to enhance compliance and security posture.

M

Microformats : Meaningful HTML

microformats.io

0

Microformats.io is an open community-driven project focused on providing simple, semantic HTML standards to enhance web content meaning and interoperability. The website serves primarily as an educational and resource hub for developers interested in microformats, offering specifications, parser libraries, and community support. The project is positioned as a niche but important contributor to web standards and semantic web technologies. Technically, the website is built with modern HTML5 and Bootstrap CSS, hosted on Linode infrastructure. It demonstrates good mobile optimization and clear navigation, though some accessibility features could be improved. The site lacks advanced security headers and DNSSEC, representing areas for technical enhancement. No CMS or complex backend technologies are detected. From a security perspective, the site uses HTTPS (implied by domain and standard practice), but no explicit security headers or policies are present. The WHOIS data shows privacy protection, which is reasonable for this type of open project. No vulnerabilities or exposed sensitive data were found. However, the absence of privacy and cookie policies indicates compliance gaps, especially regarding GDPR. Overall, the website is trustworthy and professional for its purpose but would benefit from improved security practices and privacy compliance documentation. The risk level is low given the non-commercial, informational nature of the site, but strategic improvements are recommended to enhance trust and security posture.

B

Barnaby Walters

waterpigs.co.uk

0

The website waterpigs.co.uk is a personal blog and portfolio site for Barnaby Walters, focusing on his interests in musical instrument building, music performance, programming, electronics, wildlife, and IndieWeb technologies. The site serves a niche audience interested in these topics and provides detailed notes, articles, and technical insights. The business model is personal content sharing without commercial sales or services. Technically, the site uses a modern but simple tech stack including HTML5, CSS, JavaScript, Leaflet.js, and RequireJS, hosted by Hostinger in Lithuania. The site is built on the Taproot framework and follows IndieWeb standards, indicating a mature digital presence. Security posture is moderate with HTTPS implied but lacking explicit security headers and published policies. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is provided via email and social media links, enhancing credibility. Overall, the site is trustworthy and professionally maintained but could improve in privacy and security transparency.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) indicating that the requested website content is not accessible or blocked. There is no actual website content, business information, or metadata available for analysis. The page is a technical offline or error page embedded within the browser, not a public-facing website. Consequently, no privacy, cookie, or terms of service policies are present, and no contact or security information is available. The technical infrastructure is limited to Chromium internal scripts and canvas-based game code for the offline dinosaur game. Security posture is minimal due to the nature of the page, and no external links or business credibility indicators exist. Overall, this is a non-functional placeholder page with no business or compliance relevance.

H

HomoDigital

homodigital.pl

0

HomoDigital is a Polish technology-focused media outlet established in 2020, delivering news, analysis, and educational content on artificial intelligence, cybersecurity, e-commerce, and the IT labor market. The site targets Polish-speaking technology enthusiasts and professionals, positioning itself as a niche blog with a consistent brand and active social media presence. Technically, the website is built on WordPress, leveraging modern web technologies including Google Analytics, Google Tag Manager, reCAPTCHA, and OneSignal for push notifications. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced and anti-bot measures in place, but could be enhanced by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and safe for general audiences.

D

dailyweb

dailyweb.pl

0

Dailyweb.pl is a well-established Polish technology and entertainment news portal founded in 2014. It provides daily content focused on technology, mobile devices, entertainment, and related topics, targeting technology enthusiasts and general internet users interested in tech news and reviews. The website operates on WordPress CMS with performance optimizations such as WP Rocket and lazy loading of scripts, ensuring good user experience and mobile optimization. The business model primarily revolves around content publishing supported by advertising networks like Google Adsense and Advanced Ads. The site maintains a consistent brand presence with active social media channels and structured data for SEO enhancement. Technically, the site leverages modern web technologies including jQuery, WP Rocket, and integrates analytics services such as Plausible, Gemius, and Request Metrics. Hosting is provided by OVH SAS, a reputable provider, with the domain registered since 2014, indicating a stable and legitimate online presence. Performance is rated as fast with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS and uses some security best practices but lacks DNSSEC and some recommended security headers like X-Frame-Options and Referrer-Policy. There is no visible incident response or vulnerability disclosure information, and no cookie consent mechanism is implemented, which could be improved for GDPR compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, Dailyweb.pl presents a trustworthy and professional online presence with good content quality and technical implementation. Strategic recommendations include enhancing security headers, enabling DNSSEC, and implementing a cookie consent mechanism to improve privacy compliance and security posture.

W

Web Design Company & Digital Marketing Agency, Bali

celax.de

0

Indonesia Digital Marketing & BiruDaun Web Studio is a small, established digital marketing and web design agency based in Bali, Indonesia, with over 25 years of experience. They specialize in ecommerce sales, performance marketing, SEO, web design, and analytics, targeting businesses seeking to improve their online presence and direct sales. The website is professionally designed using WordPress with Elementor and Astra theme, featuring good mobile optimization and SEO practices. Security posture is solid with HTTPS and privacy-focused analytics (Matomo), but lacks formal privacy and cookie policies, and no visible security or incident response policies. WHOIS data for the domain is missing, which raises some concerns about domain registration legitimacy. Overall, the site is trustworthy and professional but would benefit from improved compliance documentation and security headers.

K

KAFKA TRANSPORT a.s.

kafkatransport.cz

0

KAFKA TRANSPORT a.s. is a Czech transportation company with over three decades of experience, providing a broad range of logistics and transport services including international and domestic freight, parcel delivery, storage, vehicle repair, washing, and rental services. The company targets businesses and individuals requiring reliable transport solutions and maintains an active presence on social media platforms to engage with its audience. The website is professionally designed, mobile-optimized, and includes essential business information and GDPR-compliant privacy and cookie policies. Technically, the website leverages modern web technologies such as Google Analytics, Bootstrap, FontAwesome, and Google Fonts, and is built on the Pagebuilder CMS platform. It employs HTTPS for secure communication and includes a cookie consent mechanism, reflecting a moderate level of digital maturity. However, some security best practices like explicit security headers are missing, and no incident response or security policy information is publicly available. From a security perspective, the site shows good baseline protections but lacks advanced security disclosures and headers. The absence of WHOIS data for the domain is a notable concern, as it limits the ability to verify domain legitimacy and registration details. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, the site presents a moderate security posture with room for improvement in transparency and technical security hardening. The overall risk assessment is moderate; the business appears legitimate and professional, but the missing WHOIS data and lack of explicit security policies reduce trust. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving domain registration transparency to strengthen trust and compliance.

M

Media One s.r.o.

mediaone.cz

0

Media One s.r.o. is a Czech media agency specializing in producing television shows, advertising formats, and event organization, with a strong focus on the Czech TV market. The company collaborates with major broadcasters such as TV Prima, Česká televize, and Canal+ Sport, offering clients integrated media campaigns and branded content solutions. Their website showcases a professional portfolio of current and past projects, client logos, and a detailed team section, reflecting a mature business presence established since 2011. Technically, the website employs modern frontend technologies including jQuery, Bootstrap, Owl Carousel, and Flickity, ensuring a responsive and interactive user experience. While the site is well-structured and mobile-optimized, some security best practices such as implementing security headers and privacy policies are missing. The contact form collects user data via POST but lacks visible anti-CSRF protections. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR requirements. No incident response or security policy information is published, which could be improved to enhance trust. The domain registration data aligns well with the business claims, showing a consistent and legitimate presence in the Czech media sector. Overall, Media One presents a credible and professional media agency with solid business credibility and a good technical foundation. Addressing privacy compliance and enhancing security headers would improve their security posture and regulatory adherence.

D

Daibau International d.o.o.

daibau.cz

0

Daibau.cz is a Czech Republic-based online platform specializing in connecting customers with verified construction and renovation service providers. The platform offers a comprehensive directory of service providers, project inquiry submission, price estimation tools, and customer reviews, positioning itself as the largest service platform in its market. The website demonstrates a good level of digital maturity, employing modern web technologies such as jQuery, lazy loading, Google Tag Manager, and Facebook Pixel for analytics and marketing. It also implements a robust cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforcement and CSRF protection, though some HTTP security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the professional presentation and extensive content suggest a legitimate business. Overall, the site provides a user-friendly experience with good mobile optimization and clear navigation.

C

Calta Elektro

caltaelektro.cz

0

Calta Elektro is a well-established Czech retailer specializing in premium electrical appliances from brands such as Miele, Jura, Liebherr, and Bora. Founded in 1990, the company operates physical stores and showrooms in Milevsko and Písek, alongside an e-commerce platform. Their business model focuses on retail sales supported by kitchen studio and lighting services, targeting consumers seeking high-quality branded products. The website reflects a professional and consistent brand image with clear navigation and relevant content for their audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Google reCAPTCHA v3, hosted likely by REG-ZONER. The site is mobile-optimized and uses secure HTTPS connections. However, some security best practices such as security headers and published privacy/cookie policies are missing, indicating room for improvement in compliance and security posture. From a security perspective, the site shows good practices like HTTPS and CAPTCHA usage but lacks explicit security headers and incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain WHOIS data is consistent with the business claims, showing a long-standing domain registration that supports legitimacy. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulations.

UNIKO Písek, s.r.o. is a Czech construction company specializing in general contracting for industrial, engineering, agricultural, civil, and residential buildings. Founded in 1992, it operates with a small team of 25 employees and holds ISO 9001 certification, indicating a commitment to quality management. The company presents a professional website with detailed project references and clear contact information, targeting clients in the Czech Republic's construction sector. Technically, the website is built on WordPress 6.7.2 using the dt-presscore theme and includes modern technologies such as jQuery and Google reCAPTCHA v3 for bot protection. The site is moderately performant, mobile-optimized, and has basic SEO and accessibility features. Hosting and domain registration are consistent with the company's location and history. From a security perspective, the site enforces HTTPS and uses reCAPTCHA but lacks important HTTP security headers and does not publish a security policy or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which is a notable GDPR compliance gap. Overall, the website is professional and trustworthy but would benefit from enhanced security practices and privacy compliance measures to improve its risk posture and user trust.

Firma Trkovský s.r.o. is a Czech Republic-based small manufacturing company specializing in the production and supply of equipment for bakeries and the food industry, as well as metal fabrication services including piping, flanges, and sheet metal processing. Founded in 1990, the company has a long-standing presence in its sector and targets bakery businesses and related industries. The website serves as a professional digital presence showcasing their services and contact information. Technically, the website is built on WordPress using common plugins such as Contact Form 7, Slider Revolution, and Visual Composer. The hosting is likely provided by WEDOS, consistent with the domain registrar and nameservers. The site is moderately optimized for mobile and performance, with a good design and clear navigation, though some technical debt is evident due to outdated WordPress core and plugins. From a security perspective, the site uses HTTPS but lacks explicit security headers and does not display privacy or cookie policies, indicating compliance gaps with GDPR and other data protection regulations. No incident response or vulnerability disclosure information is present. Contact forms are implemented but without visible advanced security measures. Overall, the security posture is moderate but could be improved significantly. The overall risk assessment suggests the website is legitimate and professional but requires enhancements in privacy compliance, security best practices, and technical updates to reduce potential vulnerabilities and improve trustworthiness. Strategic recommendations include updating software, implementing security headers, adding privacy and cookie policies, and establishing incident response contacts.

O

ON BOARD

on-board.cz

0

ON BOARD is a Czech Republic based small business founded in 2019 that specializes in helping companies present their services, products, and themselves more attractively, clearly, and profitably. Their key offerings include visual work, web development, marketing 360, sales strategies, organizational efficiency, LinkedIn consulting, and ESG services. The website is built on WordPress using the Astra theme and integrates modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The technical infrastructure is solid with HTTPS enforced and Cloudflare DNS, though some security headers could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks explicit privacy policy and terms of service pages. Overall, the website is professional and trustworthy with moderate security posture and good business credibility.

M

MyCoiner s.r.o.

mycoiner.cz

0

MyCoiner s.r.o. operates a modern Czech cryptocurrency exchange and wallet platform offering crypto-to-crypto and crypto-to-FIAT transactions with transparent fees and user-friendly services. The company targets Czech crypto users and investors, positioning itself as a trustworthy and secure local exchange. The website is well-designed, mobile-optimized, and uses modern JavaScript frameworks and analytics tools to deliver a good user experience. Security is emphasized with 2FA, SMS confirmation, and AI-based fraud prevention, although some security best practices like explicit security headers and incident response policies are missing. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the platform demonstrates a solid technical and business foundation with room for improvement in privacy compliance and security transparency.

T

TOMEGAS s.r.o.

tomegas.cz

0

TOMEGAS s.r.o. is a Czech company specializing in the supply of liquefied gases, ecological heating solutions, and propane-butane gas bottles, serving both businesses and households. The company positions itself as a traditional and established player in the Czech energy market with over 25 years of history. Their key services include turnkey solutions for propane gas tanks, ecological heating installations, and a network of LPG autogas stations. The website reflects a mature digital presence with comprehensive content, certifications, and multiple contact channels. Technically, the site is built on WordPress with common industry-standard plugins and tracking tools, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks some advanced security headers and published incident response policies. Privacy compliance is strong with GDPR-aligned cookie consent mechanisms. The absence of WHOIS data is a notable gap, reducing domain registration trustworthiness, but the overall business credibility remains high based on website content and certifications.

Z

ZVVZ GROUP, a.s.

zvvz.cz

0

ZVVZ GROUP, a.s. is a leading Czech industrial company specializing in the development, manufacturing, delivery, installation, and servicing of equipment primarily for environmental protection, including flue gas cleaning, filtration, ventilation, nuclear energy, HVAC, and pneumatic transport. The company has a long history dating back to 1948 and operates a group of subsidiaries and partner companies, positioning itself as a major player in the energy and manufacturing sectors. The website reflects a professional B2B business model targeting industrial clients and investors. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Google Tag Manager, and Facebook Pixel, and is built on the VOX.AREA CMS platform. It is mobile optimized with good SEO and accessibility basics, though some improvements in accessibility and security headers could be made. The site uses HTTPS with a strong SSL configuration and implements cookie consent mechanisms, demonstrating compliance with GDPR and related privacy regulations. From a security perspective, the site shows good practices including HTTPS enforcement, privacy policies, and ISO 27001 certification. However, the absence of explicit security headers and public vulnerability disclosure policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data reduces transparency and trust slightly but does not negate the legitimacy indicated by the website content and business presence. Overall, the website is professional, secure, and compliant with privacy standards, serving its industrial audience effectively. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure and incident response contacts, and improving accessibility features to further strengthen the security posture and user trust.

U

Unfold Event 2026

unfold-event.ch

0

The website unfold-event.ch serves as the official landing page for the Unfold event series, focusing on the upcoming 2026 edition. It provides information about past events, expresses gratitude to attendees, and encourages visitors to subscribe for updates. The site targets event attendees and interested parties primarily in Switzerland. The business model revolves around event organization and promotion with a small-scale, niche market presence. Technically, the website is built using the Astro framework (version 4.5.10) with custom JavaScript for interactive elements like countdown timers and form validation. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. No major CMS or hosting details are evident from the content. From a security perspective, the site uses HTTPS but lacks visible security headers such as Content-Security-Policy or HSTS. There is no cookie consent mechanism or comprehensive privacy policy hosted on the site itself, though a privacy policy link to an external provider is present. No incident response or vulnerability disclosure information is available, indicating a basic security posture suitable for a small event site but with room for improvement. Overall, the website is professional and trustworthy for its purpose but would benefit from enhanced security practices, privacy compliance improvements, and richer business information to increase credibility and user trust.

C

Cleverclip GmbH

cleverclipstudios.com

0

Cleverclip GmbH is a leading Swiss agency specializing in the creation of explainer videos that simplify complex topics through engaging animations and storytelling. Positioned as the largest explainer video agency in Switzerland, Cleverclip serves a diverse clientele including startups, established companies, and educational institutions. Their business model revolves around producing high-quality 2D, 3D, whiteboard, and other video formats tailored to client needs, supported by a strong brand presence and numerous client testimonials. Technically, the website leverages modern frameworks such as Astro, integrates advanced video streaming via Mux Player, and employs Google Tag Manager alongside cookie consent mechanisms to ensure compliance and analytics capabilities. The site is well-optimized for SEO, mobile-friendly, and demonstrates excellent content quality and user experience.

C

Comvation AG

comvation.com

0

Comvation AG is a Swiss digital and web agency based in Bern and Thun, specializing in custom web applications, websites, online shops, SEO, interfaces, and consulting services. The company targets businesses and organizations seeking tailored digital solutions, positioning itself as a regional leader with a strong client portfolio including Swisscom, PostFinance, and Bern Airport. The website demonstrates excellent content quality, professional design, and consistent branding, supported by client testimonials and a comprehensive cookie consent mechanism. Technically, the site uses modern frameworks such as Astro, integrates Google Tag Manager and MailChimp, and is optimized for mobile and performance. Security posture is good with HTTPS and cookie consent but lacks explicit security headers and published security policies. WHOIS data is unavailable, which impacts domain legitimacy verification. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

T

Tasty Group AG

tasty-group.ch

0

Tasty Group AG is a Swiss syndicate of digital agencies specializing in digital design, video production, web development, and online marketing. The company consolidates multiple Swiss agencies under its umbrella, positioning itself as an established player in the Swiss digital services market. The website presents a professional image with clear branding and links to its subsidiary agencies, targeting businesses seeking comprehensive digital agency services in Switzerland. Technically, the website is built with standard HTML5, CSS3, and JavaScript, without reliance on advanced frameworks or CMS platforms. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation. However, there is no evidence of advanced analytics, marketing tools, or tracking technologies, indicating a minimal data collection approach. From a security perspective, the site lacks published privacy and cookie policies, security headers, and incident response information, which are critical for compliance and trust. SSL status is unknown from the provided data, and no vulnerability disclosures or security.txt files are present. These gaps suggest room for improvement in security posture and regulatory compliance. Overall, the website is safe and professional but would benefit from enhanced privacy compliance, security best practices, and transparency measures to strengthen trust and reduce risk.

O

Optio CZ s.r.o.

optiocz.com

0

Optio CZ s.r.o. is a professional DTP and media production studio based in the Czech Republic, offering a broad range of services including graphic design, digital publishing, photography, video production, and book production. The company targets businesses and clients requiring high-quality media and design solutions, boasting a portfolio with hundreds of satisfied clients and a long operational history. The website reflects a medium-sized enterprise with consistent branding and good content quality. Technically, the site is built on the Portfoliobox CMS platform, uses modern web technologies, and is hosted on AWS Cloudfront CDN, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and privacy compliance documentation. The absence of WHOIS data for the domain is a concern, suggesting either a very recent registration or privacy protection, which slightly reduces trust. Contact information is clearly presented with company domain emails and phone numbers, supporting business credibility. Overall, the website is professional and safe for general audiences but would benefit from enhanced security and privacy compliance measures.

W

Wellit s.r.o.

wellit.sk

0

Wellit s.r.o. is a Slovakian technology company specializing in web development, e-commerce solutions, custom web applications, cloud repositories, and hosting services. Established in 2010 and operating under the Wellit brand since 2012, the company targets businesses seeking modern, user-friendly digital solutions. Their market position is that of a small but established technology service provider emphasizing innovation and partnerships. Technically, the website is built on WordPress 4.7.29 using Cherry Framework and Bootstrap, incorporating common JavaScript libraries like jQuery and FlexSlider. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No hosting provider details were identified from the content. From a security perspective, the site uses HTTPS but lacks important security headers and a cookie consent mechanism, which impacts GDPR compliance. The WordPress version is outdated, posing potential security risks. No explicit security policies or incident response contacts are published, limiting transparency. No vulnerabilities or exposed sensitive data were detected in the visible content. Overall, the website is professional and business-focused with good content quality and navigation. However, improvements in privacy compliance, security best practices, and technical modernization are recommended to enhance trust and reduce risk.

B

Büro Milk

buromilk.com

0

Büro Milk is a small creative collective founded in 2024, specializing in partnering with business leaders and social change-makers to popularize impactful initiatives. The company operates primarily out of Slovakia with additional presence in Copenhagen, Prague, and Vienna, positioning itself as a niche player in the creative consulting and communication space. The website reflects a professional and consistent brand image, targeting change-makers and institutions seeking creative partnership services. Technically, the site is built on the Readymag platform, leveraging custom fonts and modern tracking tools such as Google Analytics and TikTok Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though improvements are recommended in DNS security and HTTP security headers. Privacy compliance is basic, with terms and conditions linked externally but lacking an onsite cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with transparent domain registration consistent with the business founding date.

A

adfocus GmbH

getback.app

0

Getback, operated by adfocus GmbH, is a Swiss-based technology company specializing in conversion optimization and web-push notification solutions tailored for e-commerce businesses. Their platform leverages onsite behavioral analytics to increase conversion rates through targeted campaigns, lead generation, upselling, and gamification. The company serves a range of clients including prominent retail brands, positioning itself as a trusted partner in performance marketing. Technically, the website is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for tracking. The site is well-structured, mobile-optimized, and provides multilingual support. Security-wise, HTTPS is enforced and forms include anti-spam measures, but the absence of explicit security headers and cookie consent mechanisms indicates room for improvement. Overall, the website reflects a professional and credible business with a solid digital presence.

C

ConnectAd Realtime Inc

connectadrealtime.com

0

ConnectAd Realtime Inc operates a supply-side platform (SSP) focused on empowering digital publishers and advertisers with advanced optimization, global demand access, and sustainability initiatives. The company is positioned as a technology-driven SSP with a strong emphasis on transparency, brand safety, and environmental responsibility. Their website reflects a professional and consistent brand image, targeting publishers, advertisers, and environmentally conscious businesses. The domain age and registrant information align well with the company's business claims, indicating legitimacy and maturity in the market. Technically, the website is built on WordPress using WPBakery Page Builder, leveraging modern web technologies such as Google reCAPTCHA v3 and Usercentrics for consent management. Hosting and DNS services are provided by Cloudflare, ensuring reliable performance and security. The site demonstrates good mobile optimization and basic accessibility features, with room for improvement in security headers and explicit security policies. From a security perspective, the website enforces HTTPS and uses bot protection and consent management tools. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is transparent and consistent, with no suspicious patterns detected. Overall, the security posture is solid but could be enhanced by implementing additional security headers and publishing formal security documentation. The website content is safe for general audiences, with no adult or questionable content detected. Contact information is primarily via web forms, with a verified company email for demo bookings. No phone numbers or physical addresses are explicitly provided. The site integrates external partners for careers and support but does not expose affiliate or ad network details publicly. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure program to enhance trust and compliance. These steps will strengthen the security posture and business credibility, supporting ConnectAd's growth and market position.

S

Stored Value Solutions

storedvalue.com

0

Stored Value Solutions (SVS) is a leading provider of gift card and stored value services, supporting over 1.3 billion gift card transactions annually. The company primarily serves retail and restaurant sectors, offering a comprehensive suite of solutions including gift card programs, mobile wallet integration, fraud mitigation, and B2B incentive solutions. SVS positions itself as a world leader in this niche, backed by a professional and well-structured website that targets business clients and partners globally. The parent company is Fleetcor, indicating a strong corporate backing. Technically, the website is built on Webflow and leverages modern web technologies such as Google Tag Manager, Weglot for multilingual support, and Swiper.js for interactive elements. The site is well-optimized for mobile devices, has good SEO practices, and includes a robust cookie consent mechanism compliant with GDPR. Analytics and advertising tools are used responsibly with clear consent mechanisms. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to mitigate spam. However, no explicit security headers were detected, and there is no public incident response or vulnerability disclosure information. The absence of WHOIS data for the domain is a notable concern, as it is inconsistent with the active and professional nature of the website. This gap reduces the overall trust score and suggests a need for further verification of domain registration details. Overall, SVS demonstrates a mature digital presence with strong business credibility and technical implementation. The main risk lies in the lack of transparent domain registration data and some missing security best practices. Strategic recommendations include enhancing security headers, publishing incident response policies, and clarifying domain registration to improve trustworthiness.

H

Heeet

heeet.io

0

Heeet is a specialized marketing intelligence SaaS company focused on providing B2B marketers and sales teams with comprehensive revenue attribution solutions integrated tightly with Salesforce. Their platform enables multi-touch tracking, SEO ROI measurement, paid ads synchronization, and content marketing impact analysis, positioning them as a key player in marketing attribution software. The website demonstrates a mature digital presence with professional design, clear navigation, and strong branding consistency supported by client testimonials and case studies. Technically, the site leverages modern web technologies including Webflow CMS, Google Analytics 4, and CDN hosting to ensure fast performance and mobile optimization. Security posture is solid with HTTPS enforced and privacy-first tracking approaches, though improvements are recommended in security headers and cookie consent mechanisms. WHOIS data is privacy protected, common for SaaS startups, and does not detract significantly from legitimacy given the strong business signals on the site. Overall, the site reflects a credible, professional business with a focus on data-driven marketing intelligence.