Security Directory

I

IWA

iwa-let.org

0

The IWA-LET website represents the International Water Association's Leading Edge Conference on Water and Wastewater Technologies, a well-established international event focused on advancing water management through science and innovation. The site targets professionals, researchers, and stakeholders in the water sector, providing detailed information about conference programs, sponsors, organizing committees, and partner organizations. The business model centers on event organization and knowledge dissemination within the water industry, supported by reputable sponsors and partners. Technically, the website is built on WordPress with modern plugins and tools, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is partial, with a privacy policy linked on the parent IWA domain but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its organizational identity.

S

Sleede SASU

sleede.com

0

Sleede SASU is a French digital agency specializing in web and mobile design and development, leveraging technologies such as React, React Native, Ruby on Rails, and Node JS. The company targets startups, large enterprises, and internal projects, emphasizing agile and lean methodologies. Their website showcases a professional portfolio with client testimonials, indicating a strong market position within the French technology services sector. The business model focuses on delivering tailored digital products with a passion for quality and innovation. Technically, the website employs modern JavaScript libraries and frameworks, including Tiny Slider for UI components, and integrates HubSpot tools for marketing and analytics. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital infrastructure. However, no CMS or hosting provider details are explicitly identified. From a security perspective, the site uses HTTPS and implements a cookie consent banner compliant with GDPR. Nonetheless, no HTTP security headers were detected, and there is no visible security policy or incident response contact information. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and registration transparency. Despite this, the website content and business information appear credible and professional. Overall, the website scores well on content quality and technical implementation but has room for improvement in security posture and domain registration transparency. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

G

GIP Maximilien

maximilien.fr

0

GIP Maximilien operates as a regional government-associated platform focused on digital public procurement and administrative services in the Île-de-France region. The website offers a suite of innovative and secure services tailored for public buyers and enterprises, emphasizing responsible purchasing and digital transformation. The platform is well-positioned as a key regional player facilitating public procurement processes with interoperability and change management support. Technically, the website employs modern web technologies including Alpine.js and tarteaucitron.io for cookie management, hosted by OVH with HTTPS enforced. The site demonstrates good mobile optimization and accessibility, though some security headers could be improved. Security posture is solid with no evident vulnerabilities or exposed sensitive data, and privacy compliance is supported by a clear cookie consent mechanism and a privacy policy page. However, explicit security policies and incident response contacts are not published, representing an area for enhancement. Overall, the website is professional, trustworthy, and aligned with its public service mission.

Clustaar is a French technology company founded in 2017, offering API services as indicated by the minimal website content on clustaar.io. The domain serves primarily as a redirect or placeholder, directing visitors to the main company website at clustaar.com. The company appears to be small-sized and focused on providing technology solutions, likely targeting developers and businesses requiring API integrations. The domain registration details are consistent with the company's identity, enhancing legitimacy. From a technical perspective, the website is minimalistic with no detected CMS, frameworks, or advanced technologies. Hosting is inferred to be on Amazon AWS based on DNS nameservers. The site lacks SEO optimization, accessibility features, and mobile optimization cannot be determined from the limited content. No analytics or tracking scripts were found, indicating minimal data collection. Security posture is weak due to absence of DNSSEC, security headers, privacy policies, and incident response information. The domain uses HTTPS (implied by modern standards though not explicitly stated), but no advanced security best practices are observed. No forms or data collection mechanisms reduce attack surface but also limit user engagement and trust. Overall, the website is low in content quality and security maturity, with a legitimacy score of 85 based on WHOIS consistency. Strategic improvements in content, security policies, and technical implementation are recommended to enhance trust and compliance.

Helpnet.cz is a Czech non-profit informational portal dedicated to persons with specific needs, including disabilities and seniors. The website provides news, grant information, event calendars, and media monitoring related to social services and disability support. It is operated by CZI, s.r.o., a Czech company, and targets a specialized audience within the Czech Republic. The site uses Drupal 7 CMS and integrates common web technologies such as jQuery and Google Analytics. The design and content quality are good, with clear navigation and mobile optimization. However, the absence of privacy and cookie policies and the lack of WHOIS data reduce transparency and privacy compliance. Security posture is generally good with HTTPS and CAPTCHA protections, but security headers are missing. Overall, the website is trustworthy and professional but could improve in privacy compliance and security best practices.

K

Kury spol. s.r.o.

kury.cz

0

Kury spol. s.r.o. is a small Czech manufacturing company specializing in the development and production of mechanical wheelchairs and related accessories for physically disabled individuals. Established in 2002, the company has a long-standing presence in the Czech market, offering a range of products including mechanical and electric wheelchairs, specialized seating systems, and accessories. The website reflects a niche business model focused on manufacturing and direct sales, with additional services such as rentals and dealer sections. The target audience includes users, partners, and dealers within the Czech Republic and potentially neighboring regions. Technically, the website is built with basic HTML, CSS, and JavaScript without modern frameworks or CMS detected. The site lacks advanced SEO, mobile optimization, and accessibility features, indicating room for digital maturity improvement. Security posture is weak due to the apparent absence of HTTPS enforcement and security headers, and no privacy or cookie policies are present, which raises compliance concerns. The site does not expose sensitive data and uses minimal tracking, but the lack of contact information and incident response details limits trust. Overall, the website is functional but basic, with moderate trustworthiness supported by a long domain age and consistent WHOIS data. Strategic improvements in security, privacy compliance, and technical modernization are recommended.

H

HURT s.r.o.

rucniovladani.cz

0

HURT s.r.o. is a Czech Republic-based company specializing in vehicle modifications for disabled individuals, offering a range of products including hand controls, vehicle entry aids, wheelchair loading solutions, and electric wheelchair drives. The company has a strong market presence with approximately 29 years of experience and partnerships with notable automotive and mobility organizations. Their website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to their target audience of disabled drivers and vehicle users. Technically, the site employs modern web technologies such as Google Tag Manager and AJAX for enhanced user experience, though it lacks some advanced security headers and comprehensive privacy policies. Security posture is moderate with HTTPS enforced and privacy-conscious tracking settings, but the absence of a detailed Content-Security-Policy and vulnerability disclosure mechanisms indicates room for improvement. The missing WHOIS data for the domain is a significant concern for trust and legitimacy, warranting further verification. Overall, the website is functional and trustworthy from a business perspective but requires enhancements in privacy compliance and security transparency.

U

UniCredit Leasing

unicreditleasing.cz

0

UniCredit Leasing is a financial services company operating in the Czech Republic, specializing in vehicle and equipment financing through leasing and loans. The website presents a professional image with clear branding consistent with the UniCredit Group, offering services such as operativní leasing, finanční leasing, and insurance brokerage. The target audience includes both individual and corporate clients seeking financing solutions. Technically, the website uses modern JavaScript libraries including jQuery, Modernizr, and Google reCAPTCHA, and implements GDPR-compliant cookie consent via Cookiebot. However, the absence of WHOIS data and registrant information reduces trustworthiness from a domain registration perspective. Security posture is generally good with HTTPS and reCAPTCHA, but lacks explicit security headers and published security policies. Contact information and privacy policy pages are not found in the provided content, which are areas for improvement.

N

Nadační fond Kateřiny Klasnové a Jaroslava Petrouše

klapeto.eu

0

Nadační fond KlaPeto is a Czech non-profit foundation dedicated to providing financial support to severely disabled children up to 18 years old. Founded in 2011 by Kateřina Klasnová and Jaroslav Petrouš, the foundation has raised over 15 million CZK and helped hundreds of children. The website serves as an information and fundraising platform, featuring detailed project descriptions, news updates, and donation options including an e-shop. The foundation emphasizes transparency and direct aid, ensuring all funds go to the intended beneficiaries without administrative overhead. The site is well-structured, professionally designed, and optimized for search engines with comprehensive privacy and cookie policies compliant with GDPR.

O

Opel

opel.cz

0

The website www.opel.cz serves as the official Czech Republic portal for Opel, a well-known automotive brand under the Stellantis group. It provides comprehensive information about Opel's passenger and commercial vehicles, including models like Insignia, Astra, and Corsa. The site offers tools such as vehicle configurators, test drive bookings, and service appointment scheduling, targeting Czech consumers interested in purchasing or servicing Opel vehicles. The website is professionally designed, mobile-optimized, and uses modern web technologies including Adobe Experience Manager and advanced analytics platforms.

5

5 senses for kids Foundation

5senses4kids.org

0

5 senses for kids Foundation is a small non-profit organization dedicated to supporting educational, cultural, social, and scientific actions aimed at the harmonious development of children through multisensoriality. The foundation provides educational resources, supports scientific research, and engages parents and researchers with relevant content and activities. The website is professionally designed, bilingual (French and English), and features partnerships with recognized scientific and cultural organizations, enhancing its credibility and trustworthiness. Technically, the website is built on WordPress with Bootstrap 4 and jQuery, leveraging modern libraries such as Swiper.js and Tippy.js for UI components. It uses Google Analytics and Google Tag Manager for analytics and tracking, and employs Google reCAPTCHA v3 for form security. Hosting is provided by o2switch, a reputable French hosting provider. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. From a security perspective, the site uses HTTPS with a good SSL configuration and has domain transfer protections enabled. However, DNSSEC is not enabled, and some recommended security headers are missing. There is no visible security policy or incident response contact information, and no cookie consent mechanism is implemented, which could be a compliance gap under GDPR. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic recommendations include enabling DNSSEC, adding security headers, implementing a cookie consent banner, and publishing a security.txt file to improve security posture and compliance.

D

DELONG INSTRUMENTS a.s.

delong.cz

0

Delong Instruments a.s. is a Czech-based company specializing in the design and manufacture of compact transmission electron microscopes (TEMs), targeting laboratories and scientific research institutions. Their product portfolio includes small, affordable, and customizable TEMs, Schottky electron guns (DIGUN), and custom electron optic solutions. The company positions itself as a niche leader in compact TEM technology, emphasizing ease of installation and high imaging contrast. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the site is built on Webflow with integration of Google Analytics and Tag Manager, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security policies and headers. WHOIS data is unavailable, limiting domain trust assessment, but the overall business credibility is high based on website content and contact details.

R

Renishaw plc

renishaw.net

0

Renishaw plc is a globally recognized engineering and scientific technology company specializing in precision measurement, motion control, healthcare technologies, spectroscopy, and additive manufacturing. Their product portfolio includes advanced metrology probes, encoders, Raman spectroscopy systems, dental scanners, and neurosurgical robots, serving diverse industries such as manufacturing, healthcare, and scientific research. The company maintains a strong market position with a comprehensive digital presence and global offices in 36 countries. Technically, the website is built on a proprietary CMS platform (Renishaw IDT's Snowball) and utilizes modern JavaScript libraries, Google Tag Manager for analytics, and OneTrust for privacy and cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are missing which could be improved. From a security perspective, the site enforces HTTPS and integrates a robust cookie consent mechanism, reflecting good privacy compliance including GDPR adherence. However, explicit incident response contacts and vulnerability disclosure policies are not evident, representing an area for enhancement. The absence of WHOIS data is noted but likely due to privacy protection or registry policies, not detracting significantly from the site's legitimacy. Overall, Renishaw's website reflects a mature, professional digital asset with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining vigilance on third-party scripts to sustain security posture.

M

Magyar Víz- és Szennyvíztechnikai Szövetség

maszesz.hu

0

Magyar Víz- és Szennyvíztechnikai Szövetség (MASZESZ) is a Hungarian professional association dedicated to water and wastewater technology. The organization provides a platform for companies, educational institutions, municipalities, and authorities to collaborate, share knowledge, and participate in sector-specific events. The website serves as a hub for news, events, membership information, and a webshop, positioning MASZESZ as an active and engaged sector leader in Hungary. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and tools such as Smart Slider 3 and MailerLite for marketing and user engagement. The site is mobile-optimized and SEO-friendly, with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Tosoh Bioscience operates as a specialized division of Tosoh Corporation, focusing on scientific and clinical diagnostic products. Their website presents a professional and consistent corporate image, targeting laboratories and healthcare professionals with a broad portfolio of over 500 specialty products in separations, purification, and clinical diagnostics. The site is built on ASP.NET WebForms technology, hosted with Cloudflare DNS services, and incorporates legacy JavaScript libraries alongside modern analytics tools such as Google Analytics and Google Tag Manager. While the website is accessible and well-structured, it lacks some modern security enhancements such as DNSSEC and updated JavaScript libraries, which could pose risks. Privacy and cookie policies are present with a consent mechanism, but explicit security policies and incident response contacts are absent, indicating room for improvement in compliance and transparency.

R

RedShift BioAnalytics, Inc.

redshiftbio.com

0

RedShift BioAnalytics, Inc. is a specialized technology company focused on providing advanced analytical instrumentation for protein and biomolecule analysis, primarily serving the biopharmaceutical industry. Their innovative solutions, including Microfluidic Modulation Spectroscopy (MMS) and the HaLCon platform, enable rapid, precise structural insights critical for drug discovery, development, and manufacturing. Positioned as an innovative and trusted provider, RedShiftBio targets biopharma companies and life science researchers with a medium-sized business footprint based in the United States. The company's digital infrastructure is built on a modern Webflow CMS platform, leveraging a suite of contemporary web technologies such as Google Tag Manager, Pardot marketing automation, and Cloudflare Turnstile captcha for security. The website demonstrates excellent performance, mobile optimization, and accessibility, reflecting a mature digital presence. Integration of multiple analytics and marketing tools indicates a moderate level of user tracking aligned with business growth objectives. From a security perspective, the website enforces HTTPS, employs bot protection mechanisms, and secures user input forms with captchas. However, it lacks explicit published security policies, incident response procedures, and vulnerability disclosure information, which are recommended to enhance trust and compliance. The absence of WHOIS registration data raises concerns about domain legitimacy, although the professional website content and business information mitigate some risk. Overall, RedShiftBio presents a professional and trustworthy online presence with strong technical implementation and business credibility. Strategic improvements in transparency around security policies and domain registration verification would further strengthen their security posture and stakeholder confidence.

A

Applied Photophysics Ltd

photophysics.com

0

Applied Photophysics Ltd is a well-established company specializing in biophysical characterization of biomolecules, with a focus on Circular Dichroism and Stopped-Flow Spectrometry. The company serves a global scientific and biopharmaceutical research audience, offering advanced instrumentation and support services. Recently acquired by Nicoya, it maintains a strong market position with over 50 years of expertise. The website reflects a professional and comprehensive digital presence with clear business information and trust signals such as certifications and warranties. Technically, the site uses modern JavaScript libraries, analytics tools, and cookie consent mechanisms, hosted likely via 123-Reg with domain security measures in place. Security posture is strong with HTTPS and domain locks, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations.

HORIBA is a globally recognized enterprise specializing in the manufacture and supply of precision instruments and systems across multiple sectors including automotive, environmental monitoring, medical diagnostics, semiconductor, and scientific research. The company maintains a strong market position with a comprehensive portfolio of products and services tailored to industrial and scientific clients worldwide. The website reflects a mature digital presence with professional design, clear navigation, and detailed business information, supporting its enterprise stature. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as Bootstrap and Font Awesome for responsive and accessible design. The site demonstrates good performance and SEO practices, with mobile optimization and structured metadata enhancing user experience and search visibility. Security measures are robust, featuring HTTPS enforcement and multiple security headers, though explicit security policies and incident response details are not publicly disclosed. From a security perspective, the site shows a solid posture with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. However, the absence of a vulnerability disclosure program or security.txt file suggests room for improvement in transparency and proactive security communication. Overall, HORIBA's website presents a trustworthy and professional digital front consistent with its business reputation. The lack of WHOIS data limits domain registration trust verification, but the site’s quality and business indicators support legitimacy. Strategic recommendations include enhancing security transparency, improving accessibility features, and establishing formal vulnerability disclosure channels to further strengthen trust and compliance.

R

RSI Testsysteme GmbH & Co. KG

rsi-testsysteme.de

0

RSI Testsysteme GmbH & Co. KG is a specialized German manufacturer focused on corrosion testing systems and durability test equipment. Their product portfolio includes salt spray cabinets, condensation devices, climate change test chambers, and walk-in test rooms, serving industries such as automotive, electromobility, agriculture, offshore, sanitary, wind energy, and solar technology. The company positions itself as a niche provider with strong technical expertise and longstanding industry experience. The website is professionally designed using WordPress with modern plugins and SEO tools, providing clear navigation and multilingual support (German and English). Privacy and cookie policies are implemented with GDPR compliance, and contact information is prominently displayed. The technical infrastructure is moderate in performance with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though security headers and explicit security policies are absent. No vulnerabilities or suspicious content were detected. Overall, the website reflects a credible small manufacturing business with a good digital presence and compliance maturity.

C

CTS GmbH

cts-umweltsimulation.de

0

CTS GmbH is a medium-sized German manufacturing company specializing in environmental simulation devices that simulate various environmental conditions such as temperature, humidity, and pressure. The company also offers calibration services for these devices, including those from other manufacturers. Positioned as a leading expert in their niche, CTS targets industrial clients requiring high-quality testing and simulation equipment. Their website reflects a professional and consistent brand image with clear product and service information. Technically, the website is built on Joomla CMS with Bootstrap and Splide.js for UI components. It is mobile-optimized and uses HTTPS with a valid SSL configuration. However, some security best practices such as security headers and cookie consent mechanisms are missing. No analytics or tracking scripts were detected, indicating a privacy-conscious approach but also a lack of advanced marketing tools. From a security perspective, the site has a solid foundation with HTTPS and CSRF tokens but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is minimal but consistent with the hosting and author information on the site, supporting legitimacy. Overall, the site is safe, professional, and trustworthy but could improve privacy compliance and security posture. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure program to enhance trust and security culture.

H

Hitachi High-Tech Corporation

hitachi-hightech.com

0

Hitachi High-Tech Corporation operates a global multilingual website serving as a portal for its diverse technology and industrial product offerings. The company is positioned as a major player in scientific instruments, industrial machinery, information systems, electronic components, and materials sectors. The website reflects a professional corporate presence with consistent branding and regional language support, targeting global B2B customers and partners. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Microsoft Clarity, and Adobe DTM for analytics and marketing, hosted likely on Akamai infrastructure. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published privacy or security policies. WHOIS data is unavailable, which raises some concerns about domain registration transparency, though the website content and branding strongly indicate legitimacy. Overall, the site scores well on business credibility and technical implementation but should improve privacy compliance and security best practices.

K

Karel Tropp

kareltropp.cz

0

Karel Tropp is a freelance web developer specializing in WordPress and the Yii2 framework, offering custom themes, plugins, large-scale web applications, and web graphic design services. The website presents a professional portfolio with client logos and clear service descriptions, targeting businesses and individuals seeking web development solutions. The domain is registered since 2015, consistent with the business maturity and location in the Czech Republic. Technically, the site runs on WordPress 6.4.1, hosted on DigitalOcean, and employs modern tools such as Google Tag Manager and reCAPTCHA v3 for security and analytics. The cookie consent mechanism is implemented, supporting GDPR compliance to some extent. Security posture is good with HTTPS and reCAPTCHA, but lacks explicit security headers and documented policies. Overall, the site is well-structured, mobile-optimized, and SEO-friendly, though it lacks direct contact emails or phone numbers, relying solely on a contact form.

The website at digitalstock.com/lander is a minimal content placeholder or parking page with no substantive business information, contact details, or policies. The domain is registered since 2012 with Gabia, Inc. registrar and is currently active with no privacy protection. The site uses basic JavaScript and CSS assets hosted on wsimg.com and includes Google Adsense advertising scripts. There is no evidence of a content management system or advanced frameworks. The lack of privacy, cookie, and terms of service policies indicates low compliance with data protection regulations. No forms or user input fields are present, reducing attack surface but also limiting user engagement. Security posture is minimal with no security headers detected and DNSSEC not enabled. Overall, the site appears to be a parked domain or placeholder rather than an active business website.

K

Das Wissensportal für die Wasserwirtschaft | knowH2O

knowh2o.de

0

The website knowh2o.de serves as a specialized knowledge portal dedicated to water management and the water industry, primarily targeting professionals and stakeholders within the German energy and water sectors. It provides educational content and resources to support water management practices. The site is built on a WordPress platform utilizing popular plugins such as Yoast SEO and Elementor, indicating a moderate level of digital maturity and a focus on content presentation and SEO. However, the technical infrastructure shows room for improvement in security and privacy compliance, with no visible privacy or cookie policies and a lack of security headers. The absence of contact information and incident response details limits transparency and trustworthiness. Overall, the website is functional and professionally designed but would benefit from enhanced security measures and compliance documentation to improve its risk posture and user trust.

Gesellschaft zur Förderung der Abwassertechnik e.V. (GFA) operates a professional German-language website providing specialized news, journals, and services focused on water, wastewater, and environmental technology sectors. The site targets professionals and stakeholders in these industries, offering news updates, quality mark testing services, newsletters, and advertising opportunities. The business model centers on information dissemination and industry service provision, positioning GFA as a niche media and service provider within the German water technology market. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern frontend technologies such as Tiny Slider and jQuery. The site demonstrates good mobile optimization, accessibility, and SEO practices, supported by structured data markup. Performance is moderate, with a well-structured navigation and professional design. From a security perspective, the site enforces HTTPS and implements cookie consent with Matomo analytics disabled by default, reflecting good privacy compliance. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are published. Security headers are not explicitly detected, suggesting room for improvement in hardening the site against common web threats. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. The domain registration appears consistent with the business focus, and no blocking or WAF challenges were detected, allowing full content accessibility. Strategic recommendations include publishing security and incident response policies, enhancing security headers, and adding vulnerability disclosure information to strengthen the security posture and trustworthiness further.

The Deutsche Vereinigung für Wasserwirtschaft, Abwasser und Abfall e. V. (DWA) operates as a professional association in Germany specializing in water management, wastewater, and waste. The organization provides a comprehensive suite of services including memberships, access to technical standards, e-learning platforms, certifications, publications, and event management. Their market position is strong within the German environmental and water sectors, serving professionals and organizations with authoritative resources and training. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery and tiny-slider. The hosting is managed via vistec.net, with a moderate performance profile and good mobile optimization. The site employs HTTPS with secure session management and a cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site demonstrates good practices including HTTPS enforcement, CSRF protection, and privacy-conscious analytics via Matomo. However, explicit security policies and incident response information are not present, representing an area for improvement. The cookie consent and privacy policies are comprehensive and GDPR compliant, supporting strong privacy compliance. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. The risk profile is low, with no detected vulnerabilities or suspicious activity. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility features to further strengthen the security posture and user experience.

D

Deutsche Vereinigung für Wasserwirtschaft, Abwasser und Abfall e.V. (DWA)

dwa-digital.de

0

The Deutsche Vereinigung für Wasserwirtschaft, Abwasser und Abfall e.V. (DWA) operates the website dwa-digital.de as a platform dedicated to the digital transformation of the water management sector in Germany and Europe. The organization is a leading non-profit association with approximately 14,000 members from diverse sectors including municipalities, academia, industry, and government. The website offers expert knowledge, educational programs such as the Digitale Akademie, and events like the Digitaler Dienstag to foster digital innovation and skills development in water and wastewater management. Technically, the website is built using RapidWeaver with Foundation framework and various stacks plugins, leveraging Matomo for analytics and CookieHub for consent management. The site is well-structured, mobile-optimized, and employs HTTPS with a good security posture. Privacy compliance is strong with clear cookie consent and a comprehensive privacy policy. However, formal security policies and incident response contacts are not publicly disclosed. Security-wise, the site shows good practices including encrypted connections and no visible vulnerabilities or exposed sensitive data. The use of privacy-respecting analytics and cookie management tools further supports compliance. No WAF or blocking mechanisms interfere with content access, ensuring full transparency and accessibility. Overall, the website represents a credible, professional, and trustworthy digital presence for the DWA, effectively supporting its mission to lead digital transformation in water management. Strategic improvements could include publishing explicit security policies and vulnerability disclosure information to enhance trust and preparedness.

KZEI is the Department of Sanitary and Environmental Engineering at the Slovak University of Technology in Bratislava, Faculty of Civil Engineering. The department provides academic education, research projects, and certification services related to water supply and sewage systems. It targets students, researchers, and professionals in the environmental engineering sector. The website reflects a small academic entity with consistent branding and professional content. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and Elementor. It uses HTTPS with Google reCAPTCHA for form security and Jetpack for analytics. The site is moderately performant and mobile-optimized, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses reCAPTCHA but lacks security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but should improve privacy compliance and security headers to enhance its security posture and regulatory adherence.

A

Asociácia vodárenských spoločností

avssr.sk

0

Asociácia vodárenských spoločností (AVS) is a Slovak association representing business entities active in water management services. Founded in 2004, it serves as a collaborative platform for water supply companies, providing industry representation, legislative cooperation, and event organization. The website is professionally designed, primarily in Slovak with an English language option, and targets industry professionals and stakeholders in Slovakia's water sector. The business model focuses on association services rather than direct commercial offerings, positioning AVS as a key industry body in the Slovak energy/water sector. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, Ultimate Member, and Slider Revolution. It employs modern web technologies including jQuery and Google Fonts, with a responsive design optimized for mobile devices. Performance is moderate with good SEO and basic accessibility features. The site uses HTTPS with DNSSEC enabled, indicating a secure hosting environment. Cookie consent mechanisms are implemented to comply with GDPR. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and DNSSEC, but lacks explicit security headers and published security policies or incident response plans. No vulnerabilities or suspicious elements were detected in the content or scripts. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age matching the business history. Overall, AVS's website is a trustworthy, professional platform serving its niche audience effectively. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility to further strengthen compliance and user trust.

The website voda2020.cz is a minimal placeholder page indicating the domain is registered through Gransy, a domain registrar and DNS service provider. The site offers basic information about reseller opportunities, Anycast DNS protection, and white label registrar platforms. The content is limited and primarily promotional for Gransy services, with no direct business contact or policy information provided. Technically, the site uses basic HTML and CSS with Google Fonts, hosted likely by Gransy. There is no evidence of advanced CMS or analytics tools. Security posture is minimal with no visible security headers or policies, and the domain WHOIS data shows an anomalous future creation date, suggesting a data error but no direct threat. Overall, the site is safe but lacks comprehensive business and security information, limiting trust and compliance assurances.

A

Art Carbon

art-carbon.cz

0

Art Carbon is a Czech company specializing in innovative water filtration and purification technologies based on carbon nanotubes. Their unique technology targets various water types including industrial wastewater, pool water recycling, and potable water treatment. Supported by government grants and recognized in startup competitions, Art Carbon positions itself as a technology innovator in the water treatment sector. The website reflects a professional digital presence built on WordPress with Elementor, featuring clear navigation and comprehensive business information. Security posture is adequate with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, which are recommended for enhanced compliance and protection. The absence of WHOIS data limits domain trust analysis, but the visible business credentials and partnerships support legitimacy. Strategic recommendations include improving privacy compliance, adding security headers, and publishing a formal security policy to strengthen trust and security culture.

P

Počítáme s vodou

pocitamesvodou.cz

0

Počítáme s vodou is an environmental project focused on educating government representatives, public administration, and citizens about sustainable and nature-based rainwater management practices in the Czech Republic. The website serves as an information hub offering publications, case studies, event archives, and a database of practical examples related to decentralized rainwater utilization and management. The project positions itself as a trusted resource in the environmental and governmental sector with a clear focus on sustainability and water conservation. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Maps API, and SEO plugins. It uses HTTPS and integrates social media channels for outreach. The site is moderately optimized for performance and mobile devices, with good SEO practices and structured data for enhanced search visibility. From a security perspective, the site enforces HTTPS but lacks several important security headers such as Content-Security-Policy and HSTS, which could improve its security posture. No signs of WAF or blocking mechanisms were detected, and no sensitive data exposure was found. However, the absence of privacy and cookie policies indicates compliance gaps, especially regarding GDPR. Overall, the site is a credible and professionally maintained resource with strong content quality and user experience. The main risk lies in the missing WHOIS data, which reduces domain trustworthiness, and the lack of explicit privacy compliance documentation. Strategic improvements in security headers and privacy transparency are recommended to enhance trust and compliance.

Q

QCM s.r.o.

2theta.cz

0

The website www.2theta.cz represents a specialized Czech company, QCM s.r.o., focused on the sale and servicing of laboratory analyzers and instruments primarily for clinical biochemistry and analytical chemistry. The company also organizes professional seminars, courses, and conferences in related scientific fields. The site content is professionally presented, targeting laboratories, research institutions, and industry professionals. The business model is B2B with a niche market position in laboratory instrumentation and educational services. Technically, the website uses a CMS called Marwel and includes older JavaScript libraries such as Prototype.js and Scriptaculous, alongside Google Analytics and Google Tag Manager for user tracking. The site is moderately optimized for performance and mobile use, with basic accessibility features. No advanced frameworks or modern platforms are detected. The website is accessible without any WAF or security challenge. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating gaps in privacy compliance and security best practices. No WHOIS data is available, which limits domain trust verification and raises concerns about registration transparency. No contact emails or phone numbers are explicitly provided, which may affect user trust and business credibility. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information to strengthen trust and security posture.

S

SHIMADZU CORPORATION

shimadzu.com

0

Shimadzu Corporation is a long-established enterprise specializing in analytical and measuring instruments, medical systems, and industrial equipment. The company has a strong global presence and a history dating back to 1875, positioning itself as a leader in technology and healthcare sectors. The website reflects a mature digital presence with comprehensive business information, investor relations, and sustainability initiatives. Technically, the site is built on Drupal CMS with modern JavaScript libraries and includes multilingual support and cookie consent mechanisms, indicating a good level of digital maturity. Security posture is solid with HTTPS and privacy compliance, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain is a notable anomaly but does not detract from the professional presentation and trustworthiness of the site. Overall, the site is well-designed, content-rich, and suitable for its target audience of researchers, medical professionals, and industrial clients.

LabRulez, operated by Schizofreny s.r.o., is a specialized online platform dedicated to the analytical chemistry community, primarily serving the Czech Republic. The website aggregates scientific news, educational webinars, a comprehensive document library, and a marketplace for analytical instruments. It targets professionals and companies in the analytical chemistry sector, offering a centralized hub for knowledge sharing and commerce. The platform also plans future expansions including a virtual academy and an e-shop, indicating growth ambitions. Technically, the site is built using modern web technologies such as Gatsby and React, hosted behind Cloudflare for performance and security. The website demonstrates good design quality, mobile optimization, and SEO practices, contributing to a positive user experience. Security posture is strong with HTTPS enforced and standard security headers present, although explicit security policies and incident response information are absent. Privacy compliance is partial, with a basic terms of service PDF available but lacking a dedicated privacy or cookie policy page and consent mechanism. Overall, LabRulez presents a credible and professional digital presence with room for improvement in privacy and security transparency.

LabRulez is a specialized online platform dedicated to the analytical chemistry community, offering a comprehensive range of services including news updates, webinars, event listings, a document library, product catalogs, and a marketplace for used laboratory equipment. The platform targets analytical chemists, laboratory professionals, and companies, providing a centralized resource to facilitate knowledge sharing and commercial activities. The company behind the platform is Schizofreny s.r.o., established in 2018, operating primarily in the Czech Republic. Technically, the website is built using modern web technologies such as React and Gatsby, hosted behind Cloudflare for performance and security. The site demonstrates good design quality, mobile optimization, and SEO practices, although accessibility features could be improved. Security posture is strong with HTTPS enforced and security headers present, but the absence of DNSSEC and explicit privacy and cookie policies indicates room for compliance enhancement. Overall, the platform is trustworthy and professionally managed, with active social media engagement and a clear business focus.

I

International Water Association

waterdevelopmentcongress.org

0

The International Water Association operates the Water and Development Congress & Exhibition website, promoting a major global event focused on water, sanitation, and innovation scheduled for December 2025 in Bangkok. The organization is well-established with a domain registered since 2017 and a consistent brand presence. The website serves as an information and registration portal, targeting water sector professionals and stakeholders worldwide, with a particular focus on Asia. Technically, the site is built on WordPress using popular plugins for SEO and page building, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its business purpose effectively.

I

International Water Association

worldwatercongress.org

0

The International Water Association operates the IWA World Water Congress & Exhibition, a leading biennial global event for water sector professionals. The website serves as the official platform for the 2026 Congress in Glasgow, providing comprehensive information about the event, its programme, and related activities. The site targets a professional audience including utility leaders, researchers, government officials, and allied sectors. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled, though improvements are recommended in security headers and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission and market position.

I

IWA Publishing

iwapublishing.com

0

IWA Publishing is a well-established international publisher specializing in water, wastewater, and environmental research. Founded in 1999, it operates a portfolio of 19 peer-reviewed journals and a range of books, serving a global audience of researchers and professionals in the water sector. The company offers open access publishing with Article Processing Charges and provides editorial and subscription services. The website reflects a strong market position with professional branding and comprehensive content tailored to its target audience. Technically, the website is built on the Silverchair platform, utilizing modern web technologies including jQuery, Google Tag Manager, Google Analytics, Stripe for payments, and MathJax for mathematical content rendering. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Hosting and DNS are managed through reputable providers, though DNSSEC is not enabled. From a security perspective, the site uses HTTPS with good SSL configuration and employs cookie consent mechanisms compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and advanced security headers. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business profile, indicating high legitimacy and trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements could include enabling DNSSEC, publishing security policies, and enhancing security headers to further strengthen the security posture.

The Source Magazine is a professional online publication affiliated with the International Water Association, targeting water professionals globally. It provides practical intelligence through news, features, opinion pieces, and event coverage focused on water and related environmental sectors. The website demonstrates a mature digital presence with a modern WordPress-based infrastructure, leveraging popular plugins for SEO, page building, advertising, and newsletter management. Social media integration and structured data enhance its reach and discoverability. Security posture is solid with HTTPS and domain transfer protections, though improvements such as DNSSEC and formal security policies are recommended. Privacy compliance is partial, with cookie consent implemented but no explicit privacy or terms policies found in the analyzed content. Overall, the site is credible, professionally maintained, and serves a niche industry audience effectively.

I

International Water Association (IWA)

iwaconnectplus.org

0

The International Water Association (IWA) operates a global community portal aimed at water professionals worldwide. The platform facilitates networking, knowledge sharing, and community engagement, positioning itself as a key player in the water management sector. The website promotes membership benefits and hosts information about significant industry events, reflecting an active and professional organization. Technically, the site is built with modern frameworks such as Angular and integrates various analytics and user experience tools like Hotjar and Google Analytics. The presence of HTTPS and Google site verification indicates a baseline of security, though the absence of explicit security headers and privacy policies suggests room for improvement. The WHOIS data is incomplete, which slightly impacts trustworthiness, but the professional content and active communication channels support the site's legitimacy. Overall, the site demonstrates a solid digital presence with moderate technical maturity and a good security posture, though enhanced privacy compliance and security practices are recommended.

T

TAPI

tapi.com

0

TAPI operates a professionally designed corporate website hosted on WordPress, optimized with modern plugins such as WP Rocket and Yoast SEO. The domain is well-established since 2000, indicating a mature online presence. The technical infrastructure includes Cloudflare DNS and HTTPS with strong SSL configuration, ensuring secure communications. The website employs standard analytics and marketing tools including Google Tag Manager and OneTrust for cookie consent, reflecting a moderate level of digital maturity. However, the absence of visible privacy policies, terms of service, and contact information limits transparency and user trust. Security posture is generally good with HTTPS and domain protection flags, but could be improved by enabling DNSSEC and publishing security policies. Overall, the website is safe, professional, and suitable for a general audience, but lacks some compliance and contact details that would enhance credibility and user confidence.

P

PIXMAN s.r.o.

ms-museum.org

0

The Czech Museum of Mass Spectrometry is a small, non-profit educational institution focused on the history and technology of mass spectrometry. The website provides detailed information about exhibits, educational quizzes, and virtual tours aimed at scientists, students, and enthusiasts. The museum is affiliated with reputable scientific partners, enhancing its credibility. Technically, the website uses a traditional tech stack including jQuery, Bootstrap, and Google Analytics, but some libraries are outdated, which may pose security risks. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security posture is moderate; while HTTPS is implied and cookie consent is implemented, the absence of security headers and use of outdated libraries are concerns. WHOIS data is unavailable, likely due to privacy protection, but the website content and partner affiliations support legitimacy. Overall, the site is safe, trustworthy, and serves its educational purpose effectively.

F

Flagpedia.net

flagpedia.net

0

Flagpedia.net is a niche informational website dedicated to providing comprehensive data about flags of countries, international organizations, and U.S. states. Established in 2008, it offers educational content including quizzes and downloadable flag resources, targeting a general audience interested in geography and vexillology. The website maintains a consistent brand presence and active social media engagement, supporting its position as a trusted reference in its domain. Technically, the site employs a straightforward tech stack with HTML5, CSS3, and JavaScript, hosted via WEDOS Internet and utilizing Cloudflare DNS services. The site is moderately performant with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and structured data. However, no major CMS or frameworks are detected, indicating a custom or lightweight implementation. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is basic, with privacy and cookie policies present but no explicit consent mechanisms or GDPR compliance indicators. Contact information is limited to a contact form, with no direct emails or phone numbers published. Overall, Flagpedia.net presents a low-risk profile with a solid business credibility score and good content quality. Strategic improvements in security headers, DNSSEC, and privacy compliance would further strengthen its posture and trustworthiness.

P

Pro-idea s.r.o.

pro-idea.cz

0

Proidea.digital is a Czech Republic based digital agency operating since 2007, specializing in web development, online marketing, production, and design services for ambitious projects. The company targets businesses seeking to grow their digital presence with a professional and experienced partner. The website reflects a well-structured and professionally designed digital presence, supporting multiple languages and showcasing client references and testimonials. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper.js, and Masonry.js, with a custom Bootstrap CSS framework, indicating a moderate level of digital maturity. However, some SEO and accessibility features could be improved. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and policies. The absence of privacy and cookie policies and incomplete WHOIS data reduce compliance and trust scores. Overall, the site is safe, professional, and business-focused but would benefit from enhanced security and privacy transparency.

European Film Promotion (EFP) is a well-established organization founded in 2001 that promotes European films and talent internationally. The website serves as a platform to showcase European cinema excellence and diversity, targeting film industry professionals and enthusiasts worldwide. It offers various programs, film sales support, and networking opportunities, positioning itself as a key player in the European film promotion sector. The site is professionally designed with consistent branding and clear navigation, supporting its mission effectively. Technically, the website uses a modern tech stack including jQuery, Bootstrap, Slick Carousel, and Typekit fonts, with a newsletter subscription powered by Brevo (Sendinblue). Hosting is provided by Cronon GmbH, a reputable registrar. The site is mobile-optimized and performs moderately well, though accessibility and SEO could be improved. Security measures such as cookie consent are implemented, but advanced security headers and DNSSEC are missing. From a security perspective, the site shows a moderate security posture with no critical vulnerabilities detected in the provided data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Privacy compliance is supported by a clear privacy policy and cookie consent mechanism, indicating GDPR awareness. Overall, the website is trustworthy, professional, and serves its business purpose well. Strategic improvements in security headers, accessibility, and explicit policy disclosures would enhance its security posture and compliance standing.

S

Symetro s.r.o.

symetro.cz

0

Symetro s.r.o. is a small Czech architectural and engineering project office founded in 2018, specializing in building design, engineering activities, grant management, and consulting. The company is led by Ing. Ivan Záruba, a certified engineer with extensive experience in construction and project management. The website presents a professional portfolio of projects and clearly communicates contact information, targeting clients in the Czech Republic seeking specialized construction project services. Technically, the website uses modern CSS frameworks and Google Fonts, with Google Analytics and Tag Manager integrated for user tracking. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. No CMS or hosting provider details are evident. The website does not implement privacy or cookie policies despite tracking usage, indicating a gap in GDPR compliance. From a security perspective, the site uses HTTPS (implied by external script URLs), but no security headers are detected, and no incident response or vulnerability disclosure information is published. No forms collect sensitive data, reducing immediate risk, but the absence of privacy and cookie policies and security headers lowers the security posture score. Overall, the website is professional and trustworthy for its business domain but requires improvements in privacy compliance and security best practices to enhance user trust and regulatory adherence.

K

KnownHost

knownhost.com

0

KnownHost is a well-established managed web hosting provider operating since 2006, offering a wide range of hosting services including shared, WordPress, VPS, and dedicated hosting. The company targets businesses, developers, agencies, and resellers, emphasizing reliability, performance, and customer support. Their market position is strong with over 1 million domains hosted and a 99.99% uptime guarantee. Technically, the website uses modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be explicitly implemented. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for performance and user experience. However, the absence of WHOIS data limits domain registration verification, which slightly impacts trust analysis.

H

Hutschn Bräu

hutschn-braeu.at

0

Hutschn Bräu is a small hospitality business operating a brewery and beer garden located in Vienna's Böhmischen Prater. The website reflects a local-focused business offering self-brewed beers, freshly cooked meals, and sweets, with an active community engagement through events and a newsletter. The business model combines on-site hospitality with an online shop, targeting local visitors and beer enthusiasts. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern plugins and a responsive design. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is addressed with a GDPR privacy policy and cookie consent mechanism. Overall, the site is professional and trustworthy, with good content quality and user experience.