Security Directory

B

BIO COMPANY SE

biocompany.de

0

BIO COMPANY SE operates as a regional organic supermarket chain primarily serving Berlin, Brandenburg, and Sachsen since 1999. The company focuses on providing high-quality, sustainable, and regional organic food products, supported by a strong online presence including an e-commerce shop, newsletter, and customer loyalty programs. Their market position is that of a trusted regional leader in organic retail with a medium-sized business footprint. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Swiper.js, alongside specialized services like Matomo for analytics, Brevo for newsletters, and Uberall for store location mapping. The site is hosted on rzone.de infrastructure and uses a MODX CMS platform. Performance and mobile optimization are good, with a comprehensive cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and manages cookie consent effectively. However, it lacks publicly available formal security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, indicating legitimacy and trustworthiness. Overall, BIO COMPANY SE's website is professional, secure, and compliant with privacy regulations, supporting its business credibility and customer trust. Strategic improvements could focus on publishing formal security policies and enhancing security headers to further strengthen the security posture.

Alnatura is a retail company operating under the Migros Group in Switzerland, likely specializing in organic or natural products. The website is currently inaccessible, displaying a temporary service unavailable message in multiple languages, indicating a downtime or maintenance state. The site links to other Migros Group companies, showing integration within a larger retail ecosystem. The technical infrastructure and digital maturity cannot be fully assessed due to the lack of accessible content. Security posture evaluation is limited; no security policies, headers, or incident response information are present in the accessible content. Overall, the site shows low content and technical quality at this time, with no privacy or cookie compliance information visible.

D

Denns BioMärkte

denns-biomarkt.de

0

Denns BioMärkte operates as a large-scale organic retail chain in Germany, offering a comprehensive range of organic products including food, fresh produce, bakery items, ecological drugstore goods, and natural cosmetics. The company is part of the BioMarkt Verbund, a recognized network of organic markets, and emphasizes certified organic products from reputable associations such as Bioland, Biokreis, Naturland, and Demeter. The website reflects a professional retail business model targeting general consumers interested in organic and ecological products. Technically, the website is built using modern frameworks like React and Gatsby, hosted on Microsoft Azure DNS infrastructure, and incorporates essential marketing and tracking tools such as Google Tag Manager and Facebook Pixel. The site includes a cookie consent mechanism via Cookiebot, indicating compliance efforts with GDPR regulations. Security-wise, while HTTPS is implied and cookie consent is implemented, the site lacks visible advanced security headers and formal security policies or incident response contacts. No blocking or WAF challenges were detected, allowing full content access. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, with room for improvement in security policies and transparency.

M

Manor AG

manor.ch

0

Manor AG operates a leading retail and e-commerce platform in Switzerland, offering a broad assortment of products including fashion, beauty, household goods, multimedia, and more. The website manor.ch serves as a comprehensive online shop complemented by physical stores, loyalty programs, and customer services such as store locators and wishlists. The company has a strong market position as a well-established Swiss department store chain founded in 1902. Technically, the website leverages modern web technologies including React and Next.js frameworks, integrated with marketing and personalization tools like Dynamic Yield and Google Tag Manager. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Privacy compliance is robust with clear cookie consent mechanisms and comprehensive privacy policies. From a security perspective, the site enforces HTTPS with strong SSL configurations and implements standard security headers. However, explicit security policies and incident response contacts are not publicly detailed, which could be improved. No vulnerabilities or suspicious activities were detected in the analysis. Overall, manor.ch presents a professional, trustworthy, and secure online presence aligned with its business stature. Strategic improvements in transparency around security policies and incident response would further enhance trust and compliance.

A

ALDI SUISSE

aldi-suisse.ch

0

ALDI SUISSE is a well-established retail supermarket chain operating in Switzerland since 2005, owned by ALDI SÜD GmbH & Co. The company operates over 220 physical stores and offers an online shopping platform, targeting general consumers seeking quality products at competitive prices. The website reflects a mature digital presence with comprehensive content, multi-language support, and a strong focus on sustainability and customer engagement. Technically, the site is built on Adobe Experience Manager, leveraging Adobe Launch for tag management and real user monitoring, ensuring a modern and scalable infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR considerations are evident. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

C

Coop Pronto AG

coop-pronto.ch

0

Coop Pronto AG operates a large network of over 300 convenience retail shops with or without fuel stations across Switzerland. The company focuses on providing quick and fresh products from early morning to late night, targeting general consumers seeking convenience and fuel services. The website reflects a mature digital presence with good content quality, clear navigation, and consistent branding aligned with the Coop group. Technically, the site uses modern JavaScript frameworks, Google Tag Manager, Facebook Pixel, and other marketing tools, indicating a well-integrated marketing and analytics infrastructure. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie banners and privacy policies, although formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and safe for general audiences.

N

nuun - webs & apps GmbH

nuun.ch

0

nuun - webs & apps GmbH is a Swiss-based digital agency specializing in custom web design, app development, and online shops, primarily serving clients in the Thurgau region, specifically Weinfelden. The company positions itself as a local expert offering tailored digital solutions including corporate branding and web hosting. The website content is professionally presented in German, targeting small and medium-sized businesses seeking bespoke digital services. The agency maintains an active presence on social media platforms such as Facebook, Instagram, and LinkedIn, and offers newsletter subscriptions to engage its audience. Technically, the website is built on the Contao Open Source CMS and leverages modern web technologies including jQuery and Slick Carousel for interactive content. It integrates Google Tag Manager and Matomo for analytics, indicating a moderate level of digital maturity and user tracking. The site is mobile-optimized with good SEO practices, although accessibility features could be enhanced. Performance is moderate, with no critical technical debt observed. From a security perspective, the website enforces HTTPS and includes several important security headers such as Content-Security-Policy and Strict-Transport-Security. Forms are protected with CSRF tokens, and no exposed sensitive data or vulnerable libraries were detected. However, the absence of a cookie consent mechanism and explicit security or incident response policies represents areas for improvement. Privacy compliance is generally good, with a clear privacy policy in place and GDPR compliance indicators, but cookie consent and terms of service pages are missing. Overall, nuun.ch presents a trustworthy and professional digital presence with a solid security posture and business credibility. Strategic recommendations include implementing a cookie consent banner, publishing terms of service and security policies, and enhancing accessibility. These steps will improve compliance, user trust, and security culture, supporting the agency's growth and reputation in the competitive Swiss digital market.

G

GroPulse

gropulse.com

0

GroPulse is a specialized provider of Shopify apps and custom themes aimed at simplifying and enhancing eCommerce success for Shopify store owners. The company emphasizes intuitive solutions and tailored services to streamline operations and support business growth. The website positions GroPulse as an experienced player with over 7 years in Shopify development, supported by strong customer reviews and a clear focus on Shopify platform integration. Technically, the website is built on WordPress using modern Gutenberg blocks and premium plugins, hosted with Cloudflare as registrar and DNS provider. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices including structured data and meta tags. Marketing and tracking are implemented primarily via Facebook Pixel. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. There is no visible privacy policy, cookie consent mechanism, or incident response information, indicating gaps in compliance and security transparency. No critical vulnerabilities or malicious content were detected. Overall, GroPulse presents a credible and professional eCommerce technology business with room for improvement in privacy compliance and security best practices to enhance trust and regulatory adherence.

M

maerz architekten ag

maerz.ag

0

maerz architekten ag is a Swiss architecture firm specializing in architecture, development, spatial planning, and project realization. Operating as a subsidiary of RaumUnion AG, the company serves clients primarily within Switzerland, offering professional architectural services with a focus on quality and regional projects. The website presents a professional portfolio and clear contact information, reinforcing its market presence. Technically, the website is built on WordPress with modern technologies such as Alpine.js and jQuery, optimized for performance and mobile responsiveness. Hosting is provided by Hostpoint AG, inferred from DNS records. Google Analytics is integrated via Google Tag Manager, enabling moderate user tracking. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating potential compliance gaps with GDPR requirements. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security measures to strengthen its posture and user trust.

R

raumwerk ag

raumwerkag.ch

0

raumwerk ag is a Swiss-based company specializing in comprehensive and reliable construction processes, including project development, building permit procedures, realization phases, and project handover. As a total contractor and part of the RaumUnion AG group, raumwerk ag emphasizes responsible specialists, customer security, transparency, and quality execution. The company targets clients seeking trustworthy construction project management and related services in the real estate sector. The website reflects a professional and consistent brand image with clear contact information and a focus on service offerings. Technically, the website is built on WordPress with modern JavaScript libraries such as Alpine.js and jQuery. It uses WP Rocket for performance optimization and loads resources efficiently. The site is mobile-optimized and provides a good user experience with clear navigation. However, it lacks advanced SEO and accessibility features and does not implement security headers, which could be improved. From a security perspective, the site uses HTTPS with excellent SSL configuration, but no security headers were detected. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. No analytics or tracking scripts were found, indicating minimal user tracking. The WHOIS data is consistent with the business claims, showing legitimacy and domain age appropriate for the company's stated history. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security best practices, and transparency regarding data protection and incident response to improve its security posture and regulatory adherence.

B

baumanager ag

baumanager.ag

0

baumanager ag is a Swiss-based architectural and construction project management company, operating as a small but specialized service provider. The company emphasizes holistic and innovative architectural solutions, coordinating project quality, costs, and timelines effectively. As a subsidiary of RaumUnion AG, it benefits from a reputable parent company association. The website is professionally designed using WordPress with modern frontend technologies, providing a good user experience and clear business information. However, it lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and vulnerability disclosure mechanisms. Overall, the website is trustworthy and serves its target audience well, but compliance and security enhancements are recommended.

P

PCI Proxy

docvault.app

0

DocVault, operated by PCI Proxy, offers a specialized PCI compliant document vault solution enabling businesses to securely collect and validate sensitive customer documents without direct handling. Positioned as a niche leader, the company targets businesses requiring stringent PCI compliance in document processing. The website reflects a professional and consistent brand image with clear messaging and a focus on security and compliance. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and Cookiebot for consent management, hosted on Webflow's platform with good performance and mobile optimization. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through a comprehensive privacy policy and cookie consent mechanism. However, the site lacks explicit terms of service and detailed security or incident response policies, which could enhance trust and compliance. Overall, the site demonstrates a mature digital presence suitable for its business model and audience.

W

Worldpay

globalpaymentsreport.com

0

Worldpay is a leading global payment processor providing comprehensive payment solutions for businesses of all sizes, including online, in-store, omnichannel, and embedded payments. The company targets merchants, software platforms, and enterprises, positioning itself as a market leader with a broad portfolio of services including payouts, fraud protection, and payment optimization. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on Akamai infrastructure, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, domain registration locks, and a vulnerability disclosure page, though explicit security policies and DPO contacts are not publicly detailed. Privacy and cookie policies are comprehensive and GDPR compliant, supported by consent management tools. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

VITON s.r.o. is a Czech manufacturer specializing in industrial coatings and surface treatment products for metals, wood, concrete, and other materials. The company holds ISO 9001 certification and has a market presence of over 20 years, targeting industrial and construction sectors. Their product portfolio includes epoxyester paints, fire-retardant coatings, and protective lacquers, supported by a proprietary toning system vitocolormix®. The website reflects a professional business with clear contact information and product details, although some business history details like founding year are not explicitly stated. Technically, the website employs legacy JavaScript libraries such as jQuery 1.11.3 and jQuery UI, alongside modern tracking tools like Google Analytics and Facebook Pixel. The site is mobile-optimized with good navigation and SEO practices but lacks advanced accessibility features. Security practices include HTTPS usage and client-side form validation, but the absence of security headers and outdated libraries present potential risks. Security posture is moderate; no critical vulnerabilities are evident from the content, but the lack of privacy and cookie policies, combined with missing WHOIS registration data, reduces overall trust. Advertising and tracking scripts are present without explicit consent mechanisms, indicating privacy compliance gaps. The domain WHOIS data is unavailable, which raises concerns about domain legitimacy and registration status. Overall, the website is functional and business-focused but would benefit from improved security practices, updated technical stack, and enhanced privacy compliance to strengthen trust and regulatory adherence.

M

MONTO, s.r.o.

monto.cz

0

MONTO, s.r.o. is a Czech company with an online presence via www.monto.cz. The website is primarily in Czech and appears to target local customers or business partners. The company is described as a successful purely Czech entity, but detailed business descriptions and services are not explicitly provided in the accessible content. Technically, the website is built on WordPress using the Divi theme and employs lazy loading scripts for performance optimization. However, the technical implementation is basic with moderate performance and limited mobile optimization. Security posture is weak due to lack of HTTPS verification in the provided data, absence of security headers, and no visible advanced security practices. Privacy compliance is minimal with no visible privacy or cookie policies, and no GDPR compliance indicators. Business credibility is moderate but hampered by missing contact information and lack of registrant transparency. Overall, the website is accessible and safe but requires improvements in security, privacy, and business transparency to enhance trust and compliance.

B

BALTRO GROUP, a.s.

baltro.cz

0

BALTRO GROUP, a.s. is a Czech Republic-based medium-sized manufacturing company specializing in surface treatments, robotics automation, and mechanical parts production. Established in 2011, the company serves industrial clients with tailored solutions including fluoroplastic coatings, robotized workstations, and machining services. The website reflects a professional and consistent brand image, highlighting key partnerships and certifications such as ISO 9001. Technically, the site is built on WordPress with modern plugins for SEO and GDPR compliance, hosted by WEDOS. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the company presents a trustworthy and credible digital presence aligned with its business operations.

Č

České houby a.s.

ceskehouby.cz

0

České houby a.s. operates a Czech-language website focused on the sale and promotion of Czech mushrooms and related products. The site includes an eShop, recipe content, and company information targeting consumers interested in culinary uses of mushrooms. The company appears to be a small retail business established in 2001, with a consistent domain registration history and a clear physical presence in the Czech Republic. Technically, the website is built on WordPress using the Divi theme and Slider Revolution plugin, hosted likely by WEDOS, and employs HTTPS with a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and some best practices, but lacks explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is basic, with no clear privacy policy or terms of service pages found. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

Jihočeský vědeckotechnický park, a.s. is a regional innovation hub based in the South Bohemia region of the Czech Republic, providing space and support for startups and technology companies. The company offers rental of equipped laboratories, offices, meeting rooms, and technical services such as 3D printing and consulting. It also runs acceleration programs and supports commercialization of research outputs. The website reflects a medium-sized organization with strong regional government backing and a focus on fostering innovation and technology development. Technically, the website employs modern web technologies including Bootstrap, Owl Carousel, and integrates analytics and tracking tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized, accessible, and SEO-friendly, with a CMS platform likely based on Nickysys. Performance is moderate with good user experience and clear navigation. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy and cookie management. The absence of WHOIS data limits domain trust assessment, but the website's content and affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy digital presence for a technology park supporting innovation in the Czech Republic. Strategic improvements could include publishing security policies, incident response information, and enhancing security headers to strengthen the security posture further.

MGM spol. s r.o. is a well-established Czech manufacturer specializing in thermal cutting machines and welding aggregates, with a strong presence across Eastern and Central Europe. The company offers proprietary CNC control systems and a range of products including plasma and autogenous cutting machines. Their website reflects a mature business with detailed product showcases, video demonstrations, and comprehensive contact information. Technically, the site uses a modern front-end stack including Bootstrap and jQuery, though some libraries are outdated. Security posture is moderate with cookie consent implemented but lacking explicit privacy policies and security headers. WHOIS data is unavailable due to EURid privacy restrictions, which is typical for .eu domains, but the business legitimacy is supported by consistent contact and company information. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

A

AUDIT ADVICE s.r.o.

auditadvice.cz

0

AUDIT ADVICE s.r.o. is a Czech Republic based small-sized company specializing in accounting, payroll, tax advisory, and document archiving services. With over 15 years of experience, it serves firms, entrepreneurs, and various associations primarily in the Tábor region. The company offers comprehensive outsourcing solutions and emphasizes professionalism and trust in its service delivery. The website reflects a professional and consistent brand image with clear service descriptions and client-oriented content. Technically, the site uses modern frameworks like Bootstrap and integrates popular analytics and marketing tools such as Google Analytics and Facebook Pixel. While the site is mobile-optimized and well-structured, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security-wise, HTTPS is implied, but security headers and incident response information are absent, suggesting room for improvement. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and professional overall.

P

Portfolio restaurant

portfolio-restaurant.cz

0

Portfolio restaurant is a small hospitality business based in Prague, Czech Republic, offering dining services with an emphasis on wine and online ordering capabilities. The website is professionally designed with good content quality and clear navigation, targeting a mature audience interested in restaurant dining and wine purchases. The business leverages social media platforms such as Facebook and Instagram to engage customers and maintain a trustworthy online presence. Technically, the website uses standard web technologies like JavaScript, CSS, and HTML5, with moderate performance and good mobile optimization. However, no CMS or hosting provider details are evident from the content provided. Security posture is basic with HTTPS enabled but lacks important security headers, which could be improved to enhance protection. Privacy and cookie policies are present and GDPR compliant, reflecting awareness of data protection regulations. The absence of WHOIS data is a notable concern, reducing domain trustworthiness and suggesting further verification is needed. Overall, the website is functional and professional but could benefit from enhanced security measures and clearer business contact information.

L

LEBEDA Tools s.r.o.

ronda.cz

0

LEBEDA Tools s.r.o. is a well-established Czech retail company specializing in garden, workshop, and pet supplies with over 30 years of experience. The company operates both a physical store and an e-commerce platform, offering a wide range of products including garden machinery, tools, and accessories from reputable brands. Their services include expert installation, authorized repairs, and customer training, positioning them as a reliable partner in their market segment. Technically, the website is built on the JZShop.cz platform, utilizing standard web technologies and integrating social media and marketing tools such as Facebook SDK and pixel tracking. The site is accessible, mobile-optimized, and includes GDPR-compliant privacy and cookie policies. Security posture is adequate with HTTPS enforced, though improvements in security headers and explicit incident response policies are recommended. Overall, the website presents a professional and trustworthy digital presence aligned with its business goals.

K

Kulturistika.com

kulturistika.com

0

Kulturistika.com operates as a Czech-based fitness e-commerce platform combined with a magazine offering content on bodybuilding, fitness, strength sports, crossfit, and healthy lifestyle. The site targets fitness enthusiasts and athletes primarily in the Czech and Slovak regions, providing a broad range of sports nutrition products, clothing, equipment, and informative articles. The business model integrates online retail with content publishing to engage and convert its audience. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Google reCAPTCHA Enterprise, Facebook SDK, and OneSignal for push notifications. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be improved. Performance is moderate, with multiple external scripts for analytics and advertising. From a security perspective, the site uses HTTPS and implements bot protection on login forms. However, no explicit security headers were detected, and there is no published privacy policy or terms of service in the provided content. The WHOIS data is missing, which raises concerns about domain registration legitimacy. Cookie consent is implemented with advanced user controls, indicating some GDPR compliance awareness. Overall, the website presents a professional and functional platform with moderate security and privacy posture. The lack of WHOIS transparency and absence of privacy policy are notable gaps. Strategic improvements in security headers, privacy documentation, and domain registration verification are recommended to enhance trust and compliance.

M

Milagro

milagro.cz

0

Milagro is an authorized e-commerce retailer specializing in Pandora jewelry, offering a wide range of products such as rings, earrings, necklaces, and bracelets. The website targets consumers primarily in the Czech Republic, providing services including product personalization and free shipping for orders above a certain threshold. The platform demonstrates a consistent brand identity and positions itself as a trusted authorized reseller within the retail jewelry market. Technically, the website is built using modern web technologies including Next.js and React, ensuring a responsive and user-friendly experience across devices. The site employs HTTPS with strong security headers, indicating a good security posture. However, the absence of WHOIS data and lack of visible cookie consent mechanisms suggest areas for improvement in domain transparency and privacy compliance. From a security perspective, the site follows best practices with HTTPS enforcement and security headers, but could enhance user trust by adding explicit privacy and cookie policies and implementing a security.txt file for vulnerability disclosures. Overall, the site is professional and secure, but the missing WHOIS information and privacy compliance gaps slightly reduce its trustworthiness. Strategic recommendations include improving GDPR compliance with visible cookie consent, enhancing domain transparency, and establishing a formal vulnerability disclosure process to strengthen security culture and user trust.

M

M6

6play.fr

0

M6 is a major French media company offering a broad range of entertainment content including TV shows, series, reality shows, cinema, and podcasts through its streaming platform M6+. The website serves as a digital hub for accessing replay and streaming content, targeting a general audience interested in French media entertainment. The platform is supported by official mobile applications for Android and iOS, enhancing accessibility and user engagement. Technically, the site leverages modern web technologies such as React and integrates advanced analytics and performance monitoring tools like New Relic and Google Tag Manager, indicating a mature digital infrastructure. Security measures include HTTPS enforcement, Content Security Policy, and cookie consent mechanisms, reflecting a strong security posture. However, no explicit security policy or incident response information is publicly available. The WHOIS data is not disclosed, likely due to privacy protection, which is common for media companies. Overall, the site demonstrates high professionalism, good privacy compliance, and a trustworthy presence in the French media market.

A

Asociace výrobců kabelů a vodičů České republiky a Slovenské republiky

vyrobcikabelu.cz

0

The website represents the official association of cable and wire manufacturers in the Czech Republic and Slovakia, serving as a central information hub for industry members and customers. It provides updates on metal prices, quality standards, and industry news, positioning itself as a trusted regional industry association. The site is professionally designed with consistent branding and clear navigation, targeting both professional and lay audiences interested in cable manufacturing and related sectors. Technically, the site is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Google Tag Manager. It employs multilingual support and cookie consent mechanisms, indicating a moderate level of digital maturity. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and consent management but lacks some security headers and explicit policies. Security-wise, the site shows good practices in data protection and user consent but lacks visible incident response or vulnerability disclosure information. The absence of WHOIS data is a concern for domain transparency, though the site content and partner affiliations support legitimacy. Overall, the risk is moderate with recommendations to enhance security headers, privacy policies, and domain registration transparency. Strategically, the association should focus on improving compliance documentation and security posture to strengthen trust and regulatory adherence, while continuing to provide valuable industry content and maintain strong partner relationships.

E

EGE Power System, s.r.o.

egepowersystem.cz

0

EGE Power System, s.r.o. is a Czech-based company specializing in sustainable energy solutions including solar carports, heat pumps, photovoltaics, and industrial lighting. Founded in 2023, the company targets businesses and individuals seeking tailored turnkey energy systems. Their market position is that of a niche regional provider emphasizing customized and sustainable energy solutions. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on their core services. Technically, the website employs modern web technologies such as Google Fonts, jQuery, and Slick Carousel, hosted by Webglobe. It uses Google Analytics with privacy-conscious default settings denying ad and analytics storage until consent is given. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. No CMS other than Pagebuilder is detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR. However, no explicit security headers or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. The WHOIS data is consistent with the business information, supporting legitimacy. Overall, the security posture is good but could be enhanced with additional headers and published policies. The overall risk assessment is low with no critical issues detected. Strategic recommendations include implementing security headers, publishing a security policy and incident response contacts, and auditing third-party scripts regularly to maintain security and compliance. The website is trustworthy, professional, and compliant with privacy regulations, making it suitable for its target audience.

C

Celax & Partners

celax.asia

0

Celax & Partners is a small technology outsourcing company specializing in web design, e-commerce, app development, and digital marketing services primarily targeting German-speaking clients. The company emphasizes cost-effective outsourcing solutions with in-house teams based in Bali, Indonesia, and has over 25 years of experience. Their market position is that of an established provider offering comprehensive digital services including SEO, booking systems, and loyalty programs. Technically, the website is built on a modern WordPress stack using Elementor and Astra theme, with privacy-conscious analytics via Matomo. The site is well-structured, mobile-optimized, and provides clear contact channels including phone and WhatsApp. Security posture is good with HTTPS and no exposed sensitive data, though security headers and formal policies are lacking. Overall, the website is professional and trustworthy with room for improvement in privacy compliance and security best practices.

C

Closte

closte.com

0

Closte is a specialized WordPress cloud hosting provider leveraging Google Cloud Platform and Litespeed Enterprise technologies. Founded in 2015, it offers a pay-as-you-go pricing model designed for developers and businesses requiring scalable, high-performance WordPress hosting. The website presents a professional and consistent brand image with clear messaging focused on technical excellence and cost efficiency. The technical infrastructure is modern, utilizing WordPress CMS, Google Cloud hosting, and advanced caching technologies. Security posture is strong with HTTPS enforced and use of reCAPTCHA, though some security headers and explicit policies are missing. Privacy compliance is partial, lacking a cookie consent mechanism. Overall, Closte demonstrates a mature and credible business with a solid technical foundation and good market positioning in the WordPress hosting niche.

G

Gastronovi GmbH & Co. KG

gastronovi.com

0

Gastronovi GmbH & Co. KG operates a professional and comprehensive cloud-based software platform tailored for the gastronomy industry, offering modules for point of sale, inventory management, marketing, guest services, and payment processing. The company targets gastronomy businesses seeking digital transformation and operational efficiency. The website is well-designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages TYPO3 CMS, Bootstrap, and modern JavaScript libraries, with integration of third-party services such as Google Tag Manager and Calendly. Security posture is good with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved. WHOIS data is unavailable, which is unusual but the website's professionalism and trust signals mitigate concerns. Overall, the site demonstrates a strong business and technical foundation with minor areas for security enhancement.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) that serves as an offline error page with embedded JavaScript for the Chrome dinosaur game. There is no actual website content, business information, or external links present. The page is not a public-facing website but a browser-generated error page. The technical infrastructure is limited to Chromium internal scripts and canvas-based game rendering. Security posture is minimal due to the nature of the page, with no HTTPS or security headers applicable. Privacy and compliance policies are absent as this is not a commercial or informational website. Overall, this content does not represent a business or service and thus cannot be evaluated for typical website security, compliance, or business credibility metrics.

The website alcmosnov.cz serves as the official information portal for the Armádní logistické centrum Mošnov, a government project in the Czech Republic focused on establishing a military logistics center near the Leoš Janáček Airport Ostrava. The site provides project updates, news, and contact information primarily targeting local communities, government stakeholders, and interested public. The domain is newly registered in 2023, consistent with the project's timeline, and hosted by Webglobe, a reputable provider. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with integration of Google Tag Manager and a cookie consent mechanism supporting multiple languages. The site is mobile optimized and offers good navigation and content relevance. However, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. From a security perspective, the site uses HTTPS and enforces cookie consent with opt-in for analytics, but does not publish security policies or incident response contacts. No critical vulnerabilities or WAF blocking were detected. The analytics usage is minimal and privacy compliance is basic but could be improved with formal policies. Overall, alcmosnov.cz is a credible government project site with good content and technical implementation but would benefit from enhanced privacy, security, and compliance documentation to strengthen trust and regulatory adherence.

M

Moravskoslezské Investice a Development, a.s.

poho2030.cz

0

POHO2030.cz is the official website for a regional transformational program focused on revitalizing the Pohornická landscape in the Karviná region of the Czech Republic. Coordinated by Moravskoslezské Investice a Development, a.s. (MSID), the program addresses the socio-economic transition following the closure of coal mines. The website provides detailed information about projects, events, and partners involved in this regional development initiative. The target audience includes local residents, investors, government entities, and cultural organizations. Technically, the site is built on WordPress with modern front-end libraries such as Swiper.js and Lottie animations, ensuring a visually engaging and mobile-optimized experience. However, it lacks visible privacy and cookie policies, which impacts compliance scores. Security posture is good with HTTPS enforced, but security headers are not evident. No forms or data collection mechanisms are present on the homepage, reducing immediate privacy risks. Overall, the site is professional, trustworthy, and serves as an effective communication platform for the regional development program.

ORSIP 2.0 is a regional government geoportal operated by the Wojewódzki Ośrodek Dokumentacji Geodezyjnej i Kartograficznej in Katowice, Poland. It provides comprehensive spatial data services, including interactive map applications, open data access, and web map services for the Silesian Voivodeship. The platform targets public administration, local governments, researchers, and citizens interested in regional spatial information. The website is well-structured, professionally designed, and offers extensive content relevant to its audience. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Tag Manager, with a focus on accessibility and mobile optimization. The hosting and domain registration are stable and consistent with the official nature of the service. Security measures include HTTPS enforcement, DNSSEC, cookie consent mechanisms, and CAPTCHA on contact forms, reflecting a good security posture. While no explicit security policy or incident response contacts are published, the overall security and privacy compliance are strong, with GDPR-aligned cookie and privacy policies. The WHOIS data confirms legitimacy and long-term operation, supporting trustworthiness. No vulnerabilities or suspicious content were detected, and the site is safe for general audiences. Overall, ORSIP 2.0 represents a mature, reliable government geoportal with solid technical and security foundations, serving an important role in regional spatial data dissemination and public service.

T

Tritia

egtctritia.eu

0

EGTC TRITIA is a government/non-profit organization focused on cross-border regional cooperation among Poland, Slovakia, and the Czech Republic. Founded in 2013, it supports projects related to social services, education for children with disabilities, demographic challenges, and regional development. The website reflects a professional and consistent brand presence with clear contact information and multilingual support. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and user experience enhancements. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and well-positioned to serve its target audience of regional authorities and social institutions.

A

AutoMapa Sp. z o.o.

targeo.pl

0

AutoMapa Sp. z o.o. operates the Targeo website, a comprehensive mapping and routing platform focused on Poland. The service offers detailed maps with over 8 million addresses, precise route planning, and real-time traffic congestion monitoring branded as Korkometr™. The platform targets both general users and businesses requiring location intelligence and delivery optimization solutions. The website integrates with AutoMapa's broader ecosystem, providing business services such as geocoding, territory planning, and proof of delivery. Technically, the site employs modern analytics tools including Google Analytics, Microsoft Clarity, and Piwik, alongside a robust cookie consent mechanism via CookieScript, ensuring GDPR compliance. Advertising is managed through reputable networks like Google Adsense and OpenX, with transparent disclosures. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and compliance indicate legitimacy.

Szukacz.pl is an archival website commemorating a Polish language search engine that operated from 2001 to 2011. The site is maintained by 24 Godziny Sp. z o.o. and provides historical information without active search functionality. The technical infrastructure is minimal, relying on basic HTML, CSS, and Google Analytics for visitor tracking. No modern CMS or frameworks are detected. Security posture is weak with no DNSSEC, no security headers, and no explicit HTTPS enforcement visible, although Google Analytics scripts load over HTTPS. Privacy and cookie policies are absent, indicating poor compliance with modern data protection standards. Contact information is limited to a single email address. Overall, the site serves as a static memorial with limited business activity or user interaction.

B

Bitly, Inc.

her.is

0

Bitly, Inc. is a well-established technology company founded in 2003, specializing in branded link management and URL shortening services. The company serves businesses and marketers globally, offering a suite of products including URL shorteners, branded links, QR codes, and analytics to enhance digital marketing efforts. Bitly holds a strong market position as a trusted platform used by major brands worldwide. The website demonstrates a mature technical infrastructure leveraging WordPress CMS, Amazon AWS hosting, and modern analytics tools such as Snowplow and Google Tag Manager. It is optimized for performance, mobile responsiveness, and accessibility. Security posture is robust with HTTPS enforcement, domain locking, and comprehensive privacy and cookie policies with consent mechanisms. However, enabling DNSSEC and publishing a security.txt file could further enhance security transparency. Overall, Bitly's digital presence reflects professionalism, trustworthiness, and compliance with privacy regulations, supporting its credibility in the technology sector.

S

Śląskie dla rodziny |

slaskiedlarodziny.pl

0

The website 'Śląskie dla rodziny' appears to be a regional or community-oriented site focused on family-related content in the Silesian region of Poland. The domain has been registered since 2014 and is hosted by Digital Media Technology Sp. z o.o., indicating a stable and legitimate presence. The site uses WordPress with the Divi theme, a common CMS and theme combination for small to medium websites. However, the site lacks critical compliance elements such as privacy and cookie policies, which are essential for GDPR compliance in the EU. Technically, the site uses standard web technologies including JavaScript and jQuery, and loads fonts from Google Fonts. The security posture is basic with HTTPS enabled but no advanced security headers or DNSSEC. There is minimal tracking via an external script from zenbox.pl. Overall, the site is accessible and safe for general audiences but requires improvements in privacy compliance and security best practices.

Invest in Silesia is the official regional government platform dedicated to promoting investment opportunities and economic development in the Silesia region of Poland. The website serves as a comprehensive resource for investors, businesses, and entrepreneurs seeking information on regional economy, investment offers, business support institutions, and export facilitation. It is managed by the Urząd Marszałkowski Województwa Śląskiego (Marshal's Office of the Silesian Voivodeship), reflecting a strong governmental backing and regional development focus. Technically, the website employs a modern and well-structured technology stack including Bootstrap, jQuery, and various JavaScript libraries for UI components, data visualization, and calendar functionalities. The site is mobile-optimized, accessible, and uses HTTPS with DNSSEC enabled, indicating a secure and trustworthy infrastructure. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. From a security perspective, the site benefits from HTTPS and DNSSEC, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. Privacy compliance is well addressed with clear cookie consent mechanisms and a privacy policy aligned with GDPR requirements. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for regional investment promotion. Strategic recommendations include enhancing security posture by adding security headers, publishing a formal security policy, and providing incident response contact information to further strengthen trust and compliance.

F

Festiwal Górnej Odry – 27-29 czerwca 2025

festiwalgornejodry.pl

0

Festiwal Górnej Odry is a regional cultural festival in Poland scheduled for June 27-29, 2025. The website serves as the main digital platform for event information, news, partner announcements, and program details. It enjoys official patronage from the Ministry of Sport and Tourism and partnerships with notable organizations such as GAZ SYSTEM S.A. The target audience includes local communities and cultural event attendees. Technically, the site is built on WordPress with Elementor and uses modern plugins and tracking tools. Security posture is adequate with HTTPS and cookie consent but lacks some advanced security headers and formal privacy documentation. The domain registration is consistent and legitimate, supporting the festival's recent establishment. Overall, the website is professional, trustworthy, and well-positioned for its purpose, though improvements in privacy compliance and security hardening are recommended.

S

SilesiaKultura.pl

silesiakultura.pl

0

SilesiaKultura.pl is a Polish cultural media website established in 2002, focusing on a wide range of cultural topics including film, music, visual arts, theater, literature, folklore, and more. It serves a niche audience interested in regional and national cultural events and news. The website is built on WordPress and leverages popular plugins such as Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity. Google Analytics is integrated for visitor tracking, but privacy and cookie policies are not explicitly presented, which is a compliance gap. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and DNSSEC is not enabled. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

The domain www.mkapps.com is currently inaccessible, serving a CloudFront 502 error indicating that the origin domain name could not be resolved. This suggests a configuration error or that the domain is not actively hosted. The WHOIS query returned no registration data, implying the domain may be unregistered or expired. Due to the lack of accessible website content, no business information, metadata, or contact details are available for analysis. The technical infrastructure appears to rely on Amazon CloudFront as a CDN, but the origin server is unreachable, resulting in a complete service outage. From a security perspective, the absence of HTTPS and security headers, combined with the domain's unregistered status, presents critical risks and a lack of trustworthiness. No privacy, cookie, or terms of service policies are published, and no contact or incident response information is available. The website does not expose any content, so no vulnerabilities or tracking technologies could be assessed. Overall, the security posture is poor due to unavailability and lack of standard protections. Given the domain's current state, the overall risk is high. The domain is not trustworthy or credible, and the lack of registration data raises legitimacy concerns. Strategic recommendations include resolving DNS and hosting configuration issues, registering the domain properly, implementing HTTPS and security headers, and publishing compliance and contact information to establish trust and meet regulatory requirements.

M

Mary Kay

marykayintouch.de

0

Mary Kay InTouch Germany is a regional portal for Mary Kay consultants and customers, providing access to product ordering, promotions, and support. The site is built on Salesforce Experience Cloud, leveraging Salesforce Lightning Web Components and integrates multiple payment and analytics services such as Stripe, PayPal, Adyen, and Google Analytics. The technical infrastructure is modern and hosted on AWS, ensuring reliable performance and scalability. Security measures include HTTPS, a strict Content-Security-Policy, and cookie consent mechanisms, although explicit privacy and terms of service pages were not found in the provided content. The site is mobile optimized and presents a professional, branded experience consistent with Mary Kay's global presence.

The website marykaypromotion.de is a small German-language blog focused on philosophy topics. It is built on WordPress and hosted on German nameservers provided by netclusive.de. The site contains minimal content, primarily a single blog post and a contact button without a linked form or email address. There are no privacy, cookie, or terms of service policies present, and no explicit business or company information is provided. Technically, the site uses standard WordPress technologies and modern web fonts, with basic mobile optimization and accessibility features. Security posture is weak due to the absence of security headers, incident response contacts, and published security policies. No analytics or advertising tools are detected, indicating minimal user tracking. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for a general audience.

M

Mary Kay

marykay.de

0

Mary Kay Germany operates a comprehensive e-commerce platform focused on beauty and skincare products, leveraging Salesforce Commerce Cloud technology. The website is well-integrated with multiple payment providers and marketing tools, targeting German-speaking consumers. The technical infrastructure is modern, with good performance and mobile optimization. Security posture is strong with HTTPS, CSP, and secure cookie usage, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. Overall, the website presents a professional and trustworthy digital presence consistent with Mary Kay's global brand.

S

SurveyMonkey

getfeedback.com

0

GetFeedback is a customer experience platform operated by SurveyMonkey, a global leader in online surveys and forms. The platform offers tools to collect, analyze, and act on customer feedback across multiple channels, including email, SMS, websites, and mobile apps. It integrates with Salesforce and provides real-time alerts and analytics to help businesses improve customer satisfaction and loyalty. The website is professionally designed, mobile-optimized, and provides comprehensive privacy and cookie policies, reflecting a mature digital presence. The technical infrastructure includes modern analytics and consent management tools, ensuring compliance with privacy regulations. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit incident response contacts and vulnerability disclosures are not evident. Overall, the site demonstrates high legitimacy and trustworthiness, aligned with its parent company SurveyMonkey's reputation.

A

Apty

apty.io

0

Apty is an AI-powered digital adoption platform focused on accelerating business processes by reducing onboarding time, minimizing errors, and maximizing ROI. The company targets enterprise clients seeking to enhance digital adoption through advanced AI capabilities. The website is built on WordPress with modern plugins and technologies, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protections, but lacks published security policies and vulnerability disclosures. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site presents a professional and trustworthy business presence with room for improvement in privacy and security transparency.

I

Infodrog - Schweizerische Koordinations- und Fachstelle Sucht

suchtindex.ch

0

Infodrog is a Swiss non-profit organization serving as the national coordination and specialist office for addiction. The website provides comprehensive resources including a directory of addiction help facilities, information on addiction types and policies, publications, and links to online counseling. It targets individuals seeking addiction support and professionals in the addiction field, positioning itself as an authoritative source within Switzerland. Technically, the site is built on the Contao CMS platform, uses Matomo analytics configured for privacy, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and privacy-conscious analytics, though it lacks explicit security headers and a formal security policy. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements in security transparency and cookie consent mechanisms are recommended.