Security Directory

F

Flatchr

flatchr.io

0

Flatchr is a French-based software company specializing in recruitment and candidate management solutions. Positioned as a leading ATS (Applicant Tracking System) in France, it offers a comprehensive SaaS platform that enables HR professionals and recruiters to streamline job posting, candidate sourcing, evaluation, and collaboration. The website is professionally designed, content-rich, and targets recruiters seeking efficient hiring tools. Technically, the site leverages HubSpot CMS, modern JavaScript libraries, and integrates marketing and analytics tools such as Google Tag Manager and HubSpot Analytics. Security posture is strong with HTTPS enforced and privacy policies in place, though some security headers could be improved. The WHOIS data is not publicly available, which slightly reduces trust but is mitigated by the professional web presence and compliance with GDPR. Overall, Flatchr demonstrates a mature digital infrastructure and a solid market position in the HR technology sector.

M

Météo-France

meteofrance.pm

0

Météo-France Saint Pierre et Miquelon is the official regional meteorological service providing comprehensive weather forecasts, marine weather information, satellite animations, climate data, and cyclone tracking for the Saint Pierre and Miquelon archipelago. The website is well-branded with consistent government imagery and links to official Météo-France resources, targeting the general public and residents of the region. The business model is that of a government service focused on public information dissemination. Technically, the site is built on Drupal CMS with modern web technologies including Leaflet.js for interactive maps, Google Tag Manager for analytics, and Didomi for consent management. The site is mobile optimized, accessible, and SEO friendly, with moderate performance. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Overall, the website demonstrates a mature digital infrastructure with good privacy compliance and transparent advertising practices. No critical vulnerabilities or suspicious activities were detected. The domain registration is consistent and appropriate for the business, enhancing trustworthiness. Strategic recommendations include publishing explicit security and incident response policies and establishing a vulnerability disclosure program to further strengthen security posture.

M

METEO FRANCE

meteo.pf

0

Météo-France Polynésie Française operates as the official meteorological service for French Polynesia, providing comprehensive weather forecasts, marine data, cyclone tracking, and climate information. The website serves residents and visitors with timely and region-specific meteorological data, positioning itself as a trusted government entity in the region. The business model is focused on public service and information dissemination, supported by the parent organization Météo-France. The site maintains a consistent brand identity and leverages official social media channels for outreach. Technically, the website is built on Drupal 9, utilizing modern web technologies such as Leaflet.js for interactive maps and Google Tag Manager for analytics. It incorporates GDPR-compliant cookie consent mechanisms via Didomi and Privacy Center SDKs, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and moderate performance. From a security perspective, the site enforces HTTPS and employs consent management for privacy compliance. While explicit security headers are not fully visible in the provided data, the overall posture is strong with no evident vulnerabilities or exposed sensitive data. However, the site could improve by publishing explicit security policies and incident response contacts. Overall, the website is a reliable and professional platform with high trustworthiness, suitable for its government service role. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and maintaining vigilance on third-party scripts to sustain security and compliance.

M

Météo-France Martinique

meteofrance.mq

0

Météo-France Martinique is the official regional meteorological service providing comprehensive weather forecasts, marine weather, cyclone alerts, and climate data for Martinique. The website serves the general public and maritime users with up-to-date meteorological information and is part of the larger Météo-France governmental organization. The site uses modern web technologies including Drupal CMS, Leaflet.js for mapping, and integrates consent management tools to comply with privacy regulations. Social media presence is linked to official Météo-France accounts, enhancing trust and outreach. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, explicit privacy policy and terms of service pages are not found, and no direct contact information is provided on the homepage, which slightly reduces privacy compliance and business credibility scores.

M

Météo-France

meteofrance.gf

0

Météo-France Guyane is the official regional weather service for French Guiana, providing comprehensive meteorological forecasts, alerts, and climate information to the general public. The website is part of the broader Météo-France network, reflecting strong government affiliation and trust. The digital infrastructure is built on Drupal CMS with modern web technologies including Leaflet.js for interactive maps and a robust consent management system ensuring GDPR compliance. The site demonstrates good technical maturity with HTTPS, security headers, and performance optimizations. However, explicit contact information and detailed security or privacy policies are not prominently available, which could be improved. Overall, the security posture is strong with no critical vulnerabilities detected, but the absence of a vulnerability disclosure policy and incident response contacts suggests room for enhancement. The website is safe for general audiences and maintains consistent branding aligned with official government standards.

M

Météo-France

meteofrance.gp

0

Météo-France Guadeloupe is the official regional meteorological service providing comprehensive weather, marine, cyclone, and climate information for Guadeloupe, Saint Barthélemy, and Saint Martin. The website serves residents and visitors with forecasts up to 15 days, vigilance alerts, satellite and radar animations, and specialized information such as sargassum beaching forecasts. It operates under the umbrella of the national Météo-France agency, reflecting a government entity with a strong market position in meteorological services for the region. Technically, the site is built on Drupal CMS, leveraging modern JavaScript libraries like Leaflet for interactive maps and integrates third-party services such as Google Tag Manager and Didomi for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security is robust with HTTPS, multiple security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is partially implemented with a clear cookie consent mechanism, but explicit privacy policy and terms of service pages are not directly found in the main HTML content. Contact information is not explicitly provided on the main page, which could impact user trust and compliance transparency. Overall, the website demonstrates a high level of professionalism and trustworthiness consistent with a government service. Recommendations include publishing explicit privacy and terms pages, adding clear contact details including security contacts, and implementing a vulnerability disclosure policy to enhance security posture and compliance.

M

Météo-France

meteofrance.yt

0

Météo-France Mayotte is the official regional meteorological service providing comprehensive weather forecasts, cyclone tracking, marine weather, and climatology information for Mayotte. The website serves residents, visitors, and government agencies with up-to-date meteorological data and alerts. Technically, the site is built on Drupal CMS with modern JavaScript libraries such as Leaflet for mapping and integrates consent management via Didomi, ensuring GDPR compliance in cookie handling. The site is mobile-optimized and accessible, with good SEO practices. Security posture is strong with HTTPS and consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration is consistent with the official nature of the site, and no blocking or WAF challenges were detected.

M

Météo-France

meteofrance.re

0

Météo-France La Réunion is the official regional meteorological service providing comprehensive weather forecasts, climate data, and cyclone monitoring for La Réunion and the Indian Ocean region. The website is well-branded with government insignia and offers a wide range of meteorological services targeting residents and visitors. Technically, the site uses Drupal CMS with modern mapping and analytics technologies, and it is optimized for mobile and accessibility. Security posture is strong with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy and professionally maintained, with good compliance to privacy regulations.

The website drias-climat.fr appears to be a climate-related informational site, likely affiliated with meteorological data services in France, as inferred from its nameservers pointing to meteofrance.fr. The domain is registered since 2011 and is active, indicating a stable presence. However, the accessible content is minimal, primarily a captcha verification page, with no visible privacy, cookie, or terms of service policies. There is no contact information or business details presented on the page. Technically, the site uses JavaScript and base64 encoded images but lacks modern web practices such as HTTPS enforcement and security headers. The overall user experience and content quality are poor, with limited navigation or engagement features.

M

Météo-France

meteofrance.fr

0

Météo-France is the official French national meteorological service providing comprehensive weather forecasting, climate monitoring, vigilance alerts, and meteorological data services. The website serves a broad audience including the general public, government agencies, meteorologists, researchers, and students. It also supports educational activities through the École Nationale de la Météorologie. The site is well-structured with extensive content covering news, missions, organizational information, and career opportunities. Technically, the website is built on Drupal 8 CMS and leverages modern JavaScript frameworks such as Vue.js and Vuex. It integrates Google Tag Manager and AT Internet for analytics and uses a privacy center SDK for GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. From a security perspective, the site enforces HTTPS and employs domain registration protections. While explicit security headers are not visible in the HTML content, the site demonstrates good security hygiene with no exposed sensitive data or vulnerable libraries detected. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR requirements. Overall, the website is trustworthy, professional, and authoritative, reflecting the stature of Météo-France as a government institution. No critical security or content safety issues were found, and the domain registration data aligns well with the organization's identity.

I

Intergovernmental Panel on Climate Change

ipcc.ch

0

The Intergovernmental Panel on Climate Change (IPCC) is a globally recognized United Nations body established in 1988 to provide policymakers with scientific assessments on climate change, its impacts, and mitigation strategies. The organization operates with 195 member countries and produces comprehensive reports that are key inputs for international climate negotiations. The website reflects a mature digital presence with extensive content, including reports, working group information, and activities, targeting policymakers, researchers, and the public interested in climate science. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and various UI libraries. It is well-optimized for mobile and accessibility, though performance is moderate. Security posture is strong with HTTPS enforced and no exposed sensitive data, but could be improved by adding explicit security headers and a cookie consent mechanism to enhance GDPR compliance. Overall, the IPCC website demonstrates high professionalism, trustworthiness, and content quality. However, it lacks explicit contact emails or phone numbers on the homepage and does not display a cookie consent banner, which are areas for improvement. No WAF or blocking mechanisms were detected, allowing full content access for analysis.

I

International Civil Aviation Organization

icao.int

0

The International Civil Aviation Organization (ICAO) operates as a specialized United Nations agency focused on establishing global standards and regulations for civil aviation. The website serves as a comprehensive portal for aviation safety, security, environmental protection, economic development, and capacity building. It targets governments, aviation stakeholders, and the public, providing authoritative information, news, and resources. Technically, the site is built on Microsoft SharePoint, leveraging modern JavaScript libraries and hosted on Microsoft Azure DNS, reflecting a mature and stable digital infrastructure. Security posture is solid with HTTPS enforcement and standard security headers, though improvements such as CSP headers and a vulnerability disclosure page are recommended. Privacy compliance is moderate, with a privacy policy present but lacking explicit cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, with minor areas for enhancement in security and privacy transparency.

1

18 Street Design, LLC

18street.com

0

18 Street Design, LLC is a small, established web design and development company based in Columbia, South Carolina, with over 20 years of experience. The company specializes in custom and WordPress website design, maintenance, and client support services, targeting businesses and organizations primarily in South Carolina. The website presents a professional and consistent brand image with clear contact information and client testimonials, positioning itself as a trusted local service provider. Technically, the website is built on WordPress using the Breakdance plugin/theme, incorporating modern web technologies such as Google Fonts and GSAP for animations. The site is mobile-optimized, SEO-friendly, and performs moderately well. However, there is no detected cookie consent mechanism, and accessibility features are basic. No advertising or tracking scripts are present, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration but lacks security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern, as it prevents verification of domain registration details and slightly reduces trustworthiness. Overall, the website is professional and trustworthy with good technical implementation but could improve privacy compliance and security posture. The missing WHOIS data and lack of cookie consent are notable gaps that should be addressed to enhance credibility and compliance.

N

Northwest Podiatric Laboratory

nwpodiatric.com

0

Northwest Podiatric Laboratory is a specialized healthcare company focused on the design and manufacture of premium custom orthotics. Established since 1964, it holds a strong market position as a leader in orthotic solutions, serving healthcare professionals and patients primarily in the United States. The website reflects a professional and consistent brand image with clear service offerings including custom orthotics, SmartCast® technology, and provider search functionalities. The target audience includes healthcare providers and patients seeking foot pain relief through custom orthotics. Technically, the website is built on WordPress, leveraging modern JavaScript libraries and analytics tools, hosted with Cloudflare for performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and domain registration transparency, but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

A

American Podiatric Medical Association

apma.org

0

The American Podiatric Medical Association (APMA) operates a comprehensive and professionally designed website serving as a central resource for podiatrists, students, residents, young physicians, and patients. The organization, founded in 1912, provides education, advocacy, practice management resources, and membership benefits, positioning itself as a leading professional association in podiatric medicine in the United States. The website content is rich, well-structured, and targets multiple audiences effectively. Technically, the site is built on Mura CMS 7.0 with Bootstrap 3 and uses modern web technologies including jQuery, Font Awesome, Google reCAPTCHA, and Slick Carousel. The site is mobile optimized with good SEO and accessibility basics. Performance is moderate, with room for improvement in accessibility and security headers. Security posture is strong with HTTPS enforced and use of reCAPTCHA on forms, but lacks explicit security headers and a visible cookie consent mechanism. WHOIS data is unavailable due to a malformed response, which limits domain registration trust analysis, but the site’s professionalism and consistency with a legitimate association mitigate concerns. Overall, the site is trustworthy, well-maintained, and serves its professional audience well. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and compliance further.

A

American College of Foot and Ankle Surgeons

acfas.org

0

The American College of Foot and Ankle Surgeons (ACFAS) operates as a professional society dedicated to foot and ankle surgeons, providing education, advocacy, research, and membership services. Established in 1942, it serves a large membership base of over 7,800 professionals, positioning itself as a leading authority in its niche healthcare sector. The website reflects this professional stature with comprehensive resources, educational content, and active social media engagement. Technically, the site is built on the Kentico CMS platform, utilizing modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Swiftype for search functionality. The site is mobile optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response contacts are absent. From a security perspective, the site demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. The WHOIS data is privacy protected, which is typical for professional organizations, and does not raise legitimacy concerns given the website's professional content and branding. Overall, the site is trustworthy, professionally maintained, and serves its target audience effectively. Strategic improvements could focus on enhancing security headers and publishing explicit security policies to further strengthen trust and compliance.

Palmetto Podiatry Associates, LLC is a small healthcare provider specializing in comprehensive foot and ankle care based in Columbia, South Carolina. Established in 1999, the practice offers a range of podiatric services including surgical and non-surgical treatments. The website reflects a professional and consistent brand presence with clear contact information and trust indicators such as certifications and local awards. Technically, the site uses standard web technologies like jQuery and FontAwesome, with good mobile optimization and accessibility features via the UserWay widget. However, the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Security posture is moderate with HTTPS implied but lacking explicit security headers and vulnerability disclosures. Privacy compliance is basic, with a HIPAA policy linked but no cookie consent or detailed privacy policy page. Overall, the site is functional and trustworthy from a business perspective but could improve in security and privacy transparency.

P

Private by Design, LLC

titcheck.org

0

Titcheck.org is a small US-based nonprofit organization focused on educating young adults about breast self-awareness and breast cancer risk reduction. The website promotes the #TitCheck concept, encouraging regular breast checks while getting dressed to empower early detection and advocacy. The site is professionally designed with modern frontend technologies including Bootstrap, jQuery, and animation libraries, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain locking, but lacks DNSSEC and comprehensive security headers. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms. The domain registration is consistent with the nonprofit mission and transparent. Overall, the website serves its educational purpose well but should improve privacy compliance and security disclosures to enhance trust and regulatory adherence.

Young Survival Coalition is a well-established nonprofit organization dedicated to supporting young adults diagnosed with breast cancer. Their website campaign page is professionally designed and hosted on the Classy fundraising platform, integrating modern web technologies such as AngularJS, Stripe for payments, and analytics tools like Google Analytics and New Relic. The site demonstrates a strong digital maturity with good performance and mobile optimization. Security posture is robust with HTTPS enforced and multiple security headers present, although explicit security policy and incident response information are not publicly available. Privacy and cookie policies are comprehensive and GDPR compliant, supporting trust and compliance. Overall, the website reflects a credible and trustworthy nonprofit entity with a clear mission and effective fundraising capabilities.

Y

Young Survival Coalition

ysctourdepink.org

0

Young Survival Coalition (YSC) operates a dedicated wellness summit website targeting young adult breast cancer survivors and their support networks. The organization provides immersive wellness events blending physical, emotional, and social support activities. The website reflects a mature non-profit entity with a clear mission and community focus, supported by a consistent brand presence and multiple sponsorships. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting a medium-sized non-profit with a strong community orientation.

Y

Young Survival Coalition

youngsurvival.org

0

Young Survival Coalition is a well-established nonprofit organization founded in 1999, dedicated to supporting young women aged 40 and under diagnosed with breast cancer. The organization provides comprehensive educational resources, peer support, advocacy, and fundraising initiatives to empower and assist its target audience. The website reflects a strong market position as a trusted leader in this specialized healthcare support sector, with clear branding and consistent messaging tailored to young breast cancer survivors and their support networks. Technically, the website employs a modern CMS (FusionCMS), integrates widely used analytics and tracking tools such as Google Analytics and Facebook Pixel, and is hosted with Cloudflare DNS services, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. However, there is room for improvement in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. The WHOIS data aligns well with the organization's identity, reinforcing legitimacy. No critical vulnerabilities or suspicious activities were detected. The site lacks explicit incident response or security policy disclosures, which could be enhanced to improve transparency and preparedness. Overall, the website is professional, trustworthy, and serves its mission effectively. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent for GDPR compliance, and publishing clear security and incident response policies to further strengthen security posture and user trust.

M

MyBookings.com

mybookings.com

0

MyBookings.com is a well-established Dutch company specializing in integrated hotel marketing services, including branding, advertising, distribution management, integration services, and analytics. With over 18 years of experience and a domain age of more than 22 years, the company holds a strong market position serving hotels aiming to optimize their customer journey and increase direct bookings. The website reflects a professional and consistent brand image targeting hotel management professionals in the hospitality sector. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap and Helix Ultimate, leveraging Google Fonts, Font Awesome, and Google Analytics for enhanced user experience and tracking. Hosting and DNS are managed via Cloudflare, providing reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and implements Google reCAPTCHA for form protection. However, it lacks DNSSEC, Content Security Policy headers, and other security headers like X-Content-Type-Options, which are recommended to enhance security posture. No vulnerability disclosure or incident response policies are publicly available, indicating room for improvement in transparency and security maturity. Overall, the website is trustworthy, professional, and safe for general audiences. It collects user data via contact forms with standard protections but lacks a cookie consent mechanism, which could be improved to enhance privacy compliance. The domain registration data aligns well with the business claims, supporting legitimacy and credibility.

B

Best Western Amsterdam

bestwesternamsterdam.nl

0

Best Western Amsterdam operates a professional hospitality website offering hotel accommodations in Amsterdam with direct booking capabilities. The site targets travelers seeking comfortable rooms and modern facilities with a best price guarantee. The business is positioned as a medium-sized hotel entity within the hospitality sector in the Netherlands. Technically, the website is built on Joomla CMS using the Helix Ultimate framework, incorporating modern libraries such as Bootstrap and jQuery, and is optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies, and no GDPR indicators are present. Overall, the site is trustworthy but could improve transparency and security practices.

E

Eastern Sun Tours and Safaris

easternsuntours-safaris.com

0

Eastern Sun Tours and Safaris is a Tanzania-based tour operator specializing in safari and adventure travel services. Established in 2010, the company offers a range of services including wildlife safaris, Kilimanjaro climbing expeditions, Serengeti tours, and cultural experiences. The website positions the company as a premier operator with expert guides, targeting tourists interested in exploring Tanzania's natural and cultural treasures. Technically, the website is built on WordPress using Elementor, with integrations such as Google Site Kit for SEO and analytics. Hosting is provided by NameCheap, and the site uses HTTPS with a clientTransferProhibited domain status, indicating a stable and secure domain registration. However, DNSSEC is not enabled, and security headers are missing, which are areas for improvement. The security posture is moderate, with no visible vulnerabilities but lacking advanced security configurations. Privacy compliance is weak, as no privacy or cookie policies are found, and no consent mechanisms are implemented. Contact information is not explicitly presented, which may affect user trust and compliance. Overall, the website is professional and content-rich but would benefit from enhanced security and privacy practices to improve trust and compliance.

C

Compass Pools Deutschland GmbH

swimmingpool-kosten.de

0

Compass Pools Deutschland GmbH operates a German-language website offering high-quality ceramic swimming pools with an online configurator and pricing tool. The company targets residential customers in Germany seeking durable and well-insulated pools, leveraging a dealer network for construction services. The website is modestly designed with basic mobile optimization and clear navigation, but lacks advanced technical frameworks or CMS platforms. Security posture is moderate with concerns due to outdated jQuery usage and absence of security headers. Privacy compliance is basic with presence of privacy and cookie policies but no explicit consent mechanism. Overall, the site is functional and trustworthy but would benefit from technical and security improvements.

Deco Sonnenschutz operates the website www.markisen-preise.at, specializing in the retail sale and installation of HELLA brand awnings across Austria. The business targets residential and commercial customers seeking quality sun protection solutions with an emphasis on risk-free online purchasing and professional mounting services. The website presents a professional and consistent brand image with clear navigation and relevant content focused on their product offerings and services. Technically, the website employs legacy JavaScript libraries such as jQuery 1.7.2 and uses common UI plugins like Lightbox and CookieConsent2 for user interaction and compliance. While the site is functional and moderately optimized, it lacks modern security headers and uses outdated libraries that expose it to potential vulnerabilities. Mobile optimization and accessibility are basic but adequate for the target audience. From a security perspective, the site implements GDPR-compliant cookie consent and provides a privacy policy, demonstrating awareness of data protection requirements. However, the absence of security headers, incident response contacts, and the use of outdated JavaScript libraries reduce its security posture. The WHOIS data is unavailable, likely due to privacy protection, which limits trust analysis but does not raise immediate red flags given the site's professional presentation. Overall, the website is a legitimate small retail business platform with moderate technical maturity and security posture. Strategic improvements in updating technology stack, enhancing security headers, and providing more comprehensive contact and compliance information would strengthen trust and reduce risk.

E

Elima Pottery s.r.o.

elimashop.cz

0

Elima Pottery s.r.o. operates www.elimashop.cz, a small family-owned e-commerce business specializing in handcrafted Polish stoneware ceramics from Boleslawiec. The website targets a general audience interested in unique, traditional pottery products, offering multi-language and multi-currency support to serve international customers. The business model focuses on direct online retail of artisanal ceramic products, leveraging its expertise and unique product lineage to differentiate itself in the niche market. Technically, the website is built on the Upgates e-commerce platform, utilizing modern web technologies including JavaScript, Google Fonts, Google Analytics 4, and Facebook Pixel for marketing and analytics. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating awareness of privacy regulations. However, the absence of security headers and explicit privacy and terms of service pages suggests gaps in security best practices and compliance. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Overall, the website presents a professional and trustworthy front for a niche e-commerce business but would benefit from improved security practices, clearer privacy compliance documentation, and verification of domain registration details to enhance credibility and reduce risk.

O

ORIENTAL.cz, s.r.o.

oriental.cz

0

ORIENTAL.cz, s.r.o. operates a specialized e-commerce platform and physical store focused on selling oriental and exotic goods including teas, clothing, accessories, and decorative items. The company targets customers interested in authentic oriental products and tea enthusiasts within the Czech Republic. The website is professionally designed with good navigation, mobile optimization, and clear contact information, supporting a positive user experience and trustworthiness. Technically, the site leverages modern marketing and analytics tools such as Google Analytics 4, Facebook Pixel, and Google Tag Manager, integrated within the Upgates e-commerce platform. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies are not explicitly found. The absence of WHOIS registration data and explicit privacy policy documents slightly reduce transparency and compliance confidence. Overall, the site is functional, secure, and professionally managed but would benefit from enhanced compliance documentation and domain registration transparency.

V

VMXpartners s.r.o.

granulebardog.cz

0

Granulebardog.cz is a Czech e-commerce website operated by VMXpartners s.r.o., specializing in high-quality dog and cat food, treats, and accessories. The company emphasizes product quality, supported by certifications such as IFS Food and GMP, and targets pet owners primarily in the Czech Republic and Slovakia. The website offers a comprehensive product catalog, including special support products for animal shelters, and maintains a professional online presence with mobile app availability and active social media engagement. Technically, the site uses a modern tech stack including Google Analytics 4, Facebook Pixel, and Upgates CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data reduces domain trust but the business information and website content appear legitimate and professional. Overall, the site presents a trustworthy and user-friendly platform for pet product retail.

M

Morellato.cz

morellato.cz

0

Morellato.cz is an official e-commerce retailer specializing in Italian brand jewelry and wristwatches, including Morellato and Trussardi. The website targets customers primarily in the Czech Republic and Slovakia, offering a broad catalog of steel and silver jewelry and watches with a focus on quality and brand authenticity. The platform supports customer accounts, shopping cart functionality, and promotional campaigns, positioning itself as a trusted online retailer in its niche. Technically, the site leverages modern web technologies including Google Analytics 4, Facebook Pixel, and the Upgates e-commerce platform, ensuring a responsive and user-friendly shopping experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and privacy policy documentation is not clearly presented. The absence of WHOIS data limits domain trust assessment, but the professional presentation and official brand affiliation support legitimacy. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and adding vulnerability disclosure information to improve compliance and trust.

G

Geniuso, s. r. o.

geniuso.sk

0

Geniuso, s. r. o. operates an e-commerce platform specializing in interactive talking books and educational accessories for children and teenagers. Their product line includes sound books paired with electronic pens that enhance learning and engagement. The company positions itself as a niche provider in the educational retail sector within Slovakia, emphasizing the importance of paper books in a digital era. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics tools with user consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent, though some security headers could be improved. WHOIS data confirms the legitimacy and consistency of the business identity. Overall, the website presents a trustworthy and user-friendly platform for its target audience.

A

Agro PAJER s.r.o.

aroniazpajera.sk

0

Agro PAJER s.r.o. operates a niche e-commerce business specializing in aronia-based natural products including juices, wines, liqueurs, distillates, chocolates, and gift packages. The company emphasizes traditional, manual harvesting methods in a clean Slovak environment, targeting health-conscious consumers interested in antioxidant-rich superfoods. The website reflects a small but professional operation with a clear local market focus and direct-to-consumer sales via an online shop. Technically, the site leverages modern e-commerce platform Upgates, integrates Google Analytics 4, Facebook Pixel, and employs cookie consent mechanisms, indicating a mature digital marketing approach. Security posture is solid with HTTPS and form validation, though some security headers could be improved. The site includes comprehensive privacy and cookie policies, GDPR compliance, and multiple contact channels, enhancing trust and compliance. The presence of an age verification modal aligns with the sale of alcoholic products, marking the content as adults-only. Overall, the website is well-structured, user-friendly, and trustworthy, with minor areas for security enhancement.

O

Oehling.cz - váš e-shop s fototechnikou

oehling.cz

0

Oehling.cz is an e-commerce platform specializing in the sale of photographic equipment, targeting a general audience primarily in the Czech Republic. The website presents a professional design with good mobile optimization and integrates multiple tracking and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. Despite the lack of visible privacy and terms of service policies, the site demonstrates a mature digital infrastructure typical for retail e-commerce businesses. The absence of WHOIS data is a notable concern, potentially indicating issues with domain registration transparency. Security posture is adequate with HTTPS enforced and consent mechanisms for cookies implemented, but could be improved by adding security headers and publishing clear privacy and contact information.

J

JÁGRTEAM s.r.o.

jagrteam.cz

0

JÁGRTEAM s.r.o. operates as a well-established retailer and exclusive distributor of TRUE HOCKEY products in the Czech Republic, specializing in hockey equipment and accessories. The company targets hockey players, goalkeepers, coaches, referees, and sports enthusiasts, offering both an online e-commerce platform and a physical store. Their market position is strong within the Czech hockey retail sector, supported by a loyalty program and a 30-day return guarantee on skates. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the website is built on the Upgates e-commerce platform, utilizing modern web technologies such as jQuery, Bootstrap, and Google Web Fonts. It features responsive design and basic accessibility features, with moderate performance. Security is enforced through HTTPS and secure form validations, although additional security headers could enhance protection. Privacy compliance is addressed with visible cookie consent and privacy policies, indicating good adherence to GDPR requirements. The security posture is solid with no evident vulnerabilities or exposed sensitive data, but the absence of WHOIS data for the domain raises concerns about domain registration transparency. Despite this, the website content and business information appear legitimate and trustworthy. Overall, the site provides a safe and professional user experience with room for security improvements. Recommendations include implementing advanced security headers, conducting regular security audits of third-party scripts, enhancing accessibility, and verifying domain registration details to improve trustworthiness and compliance.

L

Letiště Praha, a. s.

darkyzletiste.cz

0

The website www.darkyzletiste.cz is an official e-commerce platform operated by Letiště Praha, a. s., offering a curated selection of aviation-themed gifts, souvenirs, and experience vouchers related to Prague Airport. The site targets aviation enthusiasts, travelers, and gift buyers, positioning itself as a niche retail outlet with a strong brand association to the airport. The business model focuses on online retail and voucher sales, leveraging the airport's brand to attract customers. Technically, the website employs a modern technology stack including Upgates e-commerce platform, Bootstrap framework, and integrates Google Analytics 4 and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with asynchronous loading of scripts and fonts. From a security perspective, the site enforces HTTPS with a valid SSL certificate and implements cookie consent mechanisms aligned with GDPR requirements. Forms for login, password change, and forgotten password include client-side validation. However, the site lacks some advanced security headers and does not publicly disclose security policies or incident response procedures, which could be improved. Overall, the website presents a professional and trustworthy front with strong branding and compliance with privacy regulations. The absence of WHOIS data limits transparency and slightly reduces trustworthiness. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen the security posture and user trust.

C

Cottage Labs LLP

cottagelabs.com

0

Cottage Labs LLP is a UK-based technology company specializing in open access infrastructure, data visualisations, data repositories, bespoke software development, and consulting on project and data lifecycles. The company serves academic and research institutions, partnering with prestigious organizations such as CERN, University of Oxford, and Wellcome Trust, positioning itself as a trusted provider in the open data and research infrastructure sector. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the site uses modern frameworks including Bootstrap and FontAwesome, with moderate performance and good mobile optimization. However, there is no evidence of a CMS or advanced analytics tools, indicating a custom or lightweight platform. Security posture is moderate; while HTTPS is presumably enabled (not explicitly confirmed), no security headers or vulnerability disclosures are present, and privacy and cookie policies are missing, which are critical for GDPR compliance. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy compliance measures.

I

Infrastructure Services for Open Access C.I.C.

is4oa.org

0

Infrastructure Services for Open Access C.I.C. (IS4OA) is a small non-profit community interest company based in the United Kingdom, serving as the parent holding company for the Directory of Open Access Journals (DOAJ). The website primarily provides organizational information and transparent financial reporting for DOAJ, targeting the academic and open access publishing community. The business model focuses on supporting open access infrastructure through non-commercial means, positioning IS4OA as a trusted steward in the open access ecosystem. Technically, the website is built on the WordPress platform hosted on WordPress.com, utilizing Jetpack and Gutenberg technologies. It employs HTTPS for secure communication and embeds financial documents as PDFs for transparency. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. However, it lacks advanced security headers and DNSSEC, which could enhance its security posture. From a security perspective, the site benefits from HTTPS and domain registration protections but lacks published privacy, cookie, and security policies. No incident response or vulnerability disclosure information is provided, which are areas for improvement. The absence of privacy and cookie policies also impacts GDPR compliance. Overall, the security posture is adequate but could be strengthened with additional policies and technical controls. The overall risk assessment is low given the non-commercial nature and transparent operations, but strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing vulnerability disclosure and incident response contacts to enhance trust and compliance.

Z

ZAMG Phänologie

phenowatch.at

0

Phenowatch.at is a scientifically oriented citizen science platform affiliated with the Austrian Central Institute for Meteorology and Geodynamics (ZAMG). It focuses on phenology, the study of seasonal plant and animal behavior in relation to climate, providing a rich knowledge base and data collection tools for researchers and nature observers. The platform supports climate research with a historical data archive spanning over 170 years. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries, offering interactive maps and a responsive design. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response contacts are missing. Overall, the site is trustworthy, professional, and well-maintained, serving a niche scientific and educational audience.

W

wettermelden.at

wettermelden.at

0

The website wettermelden.at appears to be an informational platform related to weather reporting, likely affiliated with the Austrian meteorological service (ZAMG), as indicated by the logo and DNS name servers. The site uses modern web technologies such as React and Leaflet.js for interactive map features, but the visible content is minimal and primarily serves as a weather data reporting interface. The technical infrastructure is moderately modern with external dependencies on trusted CDNs and analytics services. Security posture is basic with no evident security headers or privacy policies, and no contact or incident response information is provided. The domain registration is consistent with the website's purpose and location, registered via a known Austrian registrar and using name servers linked to ZAMG. Overall, the site is functional but lacks comprehensive privacy, security, and contact information, which limits trust and compliance levels.

The website www.zamg.ac.at represents the former Zentralanstalt für Meteorologie und Geodynamik (ZAMG), a governmental meteorological and geodynamic authority in Austria. The site itself is a simple placeholder informing visitors that the original ZAMG website has been discontinued and that services have migrated to the successor organization GeoSphere Austria. The content is minimal, with no interactive elements, policies, or contact information provided. The website targets the general public and stakeholders interested in meteorological and geodynamic data and services. The business model is governmental service provision, with a medium-sized organizational footprint typical for national meteorological agencies. Technically, the site is very basic, built with simple HTML and CSS, lacking modern frameworks, CMS, or advanced hosting indicators. There is no evidence of analytics, tracking, or advertising technologies. The site is accessible without WAF or security challenges but lacks security headers and HTTPS status is unknown. Mobile optimization and accessibility are basic, and SEO features are minimal. From a security perspective, the site shows limited maturity. No privacy or cookie policies are present, no incident response or security contact information is provided, and no security best practices such as headers or secure forms are observed. The WHOIS data is unavailable due to NIC.AT restrictions, limiting transparency but not necessarily indicating malicious intent. The domain appears legitimate given its governmental nature and the redirection to a successor official site. Overall, the site scores low to moderate on AI evaluation due to minimal content, lack of security and privacy features, and absence of business contact details. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, publishing security and incident response information, and improving technical and security configurations to enhance trust and compliance.

P

Potravinářský pavilon FAPPZ ČZU

potravinarskypavilon.cz

0

Potravinářský pavilon FAPPZ ČZU is an educational and technological center affiliated with the Czech University of Life Sciences Prague, focusing on food technology education and production. The website presents a comprehensive overview of the center's offerings, including practical training, production of artisanal food products, sensory laboratories, and nutritional counseling. The target audience includes both academic students and the general public interested in food technology. Technically, the website is built on WordPress with Elementor and integrates modern plugins and Google analytics tools, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and no exposed sensitive data, though it lacks explicit security headers and formal privacy and cookie policies, indicating areas for compliance improvement. Overall, the site is professional, trustworthy, and well-aligned with its educational mission.

3

37th International Conference on Alpine Meteorology (ICAM)

icam2025.hr

0

The website for the 37th International Conference on Alpine Meteorology (ICAM) presents a well-structured and content-rich platform for the upcoming scientific conference scheduled in Poreč, Croatia in late 2025. It targets researchers and professionals in mountain meteorology and climate science, offering detailed event information, registration, and abstract submission functionalities via partner platforms. The site demonstrates a moderate level of digital maturity with modern web technologies and responsive design, although it lacks key privacy and security policy disclosures. The security posture is adequate with HTTPS and Cloudflare DNS, but could be improved by adding security headers and incident response information. Overall, the domain registration aligns with the event's geographic focus but shows an unusual future creation date, likely due to event timing. Strategic improvements in privacy compliance and contact transparency would enhance trust and compliance.

The Belgian Science Policy Office (BELSPO) operates as the Federal Public Planning Service Science Policy, providing coordination and support for scientific research and federal scientific institutions in Belgium. The website serves as an official government portal offering multilingual content in Dutch, French, and English, targeting government stakeholders, researchers, and the public interested in science policy. Key services include support for federal museums, participation in European and international scientific organizations, research funding, and management of the Belnet telematics network. Technically, the website uses basic HTML, CSS, and JavaScript without advanced frameworks or CMS detected. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Security headers and SSL configuration details are not visible in the provided data, suggesting room for improvement in security hardening. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy and cookie policies are present, though cookie consent mechanisms are not implemented. WHOIS data is restricted by DNS Belgium policy, which is typical for government domains, and does not raise legitimacy concerns. Overall, the site is trustworthy and professional but could enhance its security posture and privacy compliance. The overall risk is low given the official nature and content safety, but strategic improvements in security headers, HTTPS enforcement, and transparency in incident response would strengthen the security and trust profile.

Accenture is a global professional services company specializing in consulting, technology, and digital transformation services. The website analyzed represents a service page under the Accenture Song brand, showcasing their capabilities to help clients meet evolving customer needs. The site is well-branded, professionally designed, and targets business clients and professionals. The technical infrastructure leverages Adobe Experience Manager CMS and Adobe's marketing and analytics technologies, indicating a mature digital presence. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and visible security policies. Privacy compliance is partially demonstrated through cookie consent but lacks visible privacy and terms of service documentation on this page. Overall, the site is trustworthy and professional, though SEO is limited by noindex directives.

S

Suomen Ympäristökeskus

ostersjon.fi

0

The website itameri.fi is operated by Suomen Ympäristökeskus, a Finnish governmental environmental agency. It serves as an information and data dissemination platform focused on the Baltic Sea, providing environmental monitoring data, water quality information, and marine observations. The site targets researchers, environmental professionals, policymakers, and the general public interested in the Baltic Sea ecosystem. The business model is governmental and informational, with no commercial transactions. The domain has been registered since 2003, consistent with a mature governmental service. Technically, the website uses WordPress CMS with modern JavaScript libraries and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The site is mobile optimized, accessible, and SEO friendly. Hosting appears to be on Finnish academic or research infrastructure, indicated by the nameservers. Performance is moderate with good mobile and accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks DNSSEC and visible security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy and cookie policy in Swedish, aligned with GDPR requirements. No explicit incident response or security policy pages were found. Overall, the website is trustworthy and legitimate, with strong alignment between WHOIS registration data and website content. Recommendations include implementing DNSSEC, adding security headers, and publishing incident response information to enhance security posture and transparency.

V

Vesi.fi, Suomen ympäristökeskus

vesi.fi

0

Vesi.fi is a Finnish government-affiliated website operated by the Finnish Environment Institute (Suomen ympäristökeskus) in cooperation with other governmental bodies such as ELY Centres, the Finnish Meteorological Institute, and the Flood Centre. It serves as a comprehensive source of researched water-related information, targeting both the general public and water sector experts. The site offers real-time water situation data, thematic pages, tools for water quality analysis, and news updates, positioning itself as a leading national water information platform. Technically, the website is built on WordPress CMS and leverages modern web technologies including jQuery, Bootstrap, OpenLayers for mapping, and integrates Power BI for data visualization. It employs cookie consent management via CookieHub and uses Google Analytics for traffic analysis. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration aligns with the organizational claims, enhancing trustworthiness. Overall, Vesi.fi demonstrates a strong security posture, excellent content quality, and high business credibility. Strategic improvements include adding security headers, publishing a security policy, and establishing a vulnerability disclosure process to further enhance trust and compliance.

Ilmatieteen laitos operates the Ilmailusää website, providing comprehensive aviation weather services including radar, satellite data, METAR, and forecasts tailored for aviation professionals and drone operators. The service is positioned as an official Finnish government meteorological offering, targeting aviation stakeholders in Finland and surrounding regions. The website content is rich and relevant, supporting informed flight planning and safety. Technically, the site uses a custom-built platform with legacy JavaScript libraries such as jQuery 1.8.3 and Knockout.js 2.2.0, indicating moderate digital maturity but some technical debt. The hosting and DNS infrastructure align with Finnish government networks, ensuring reliability. Mobile optimization and accessibility are basic but functional. Security posture shows room for improvement: no DNSSEC, no visible security headers, and use of outdated JavaScript libraries with known vulnerabilities. Privacy compliance is minimal, with no visible privacy or cookie policies. Contact information is clearly provided, enhancing business credibility. No WAF or blocking mechanisms interfere with access. Overall, the website is trustworthy and professionally maintained by a government entity but would benefit from modernization of its technical stack, enhanced security controls, and improved privacy compliance to meet contemporary standards.

I

Ilmatieteen laitos

ilmastokatsaus.fi

0

Ilmastokatsaus is an official publication of the Finnish Meteorological Institute, providing authoritative climate and weather information focused on Finland. The website serves a broad audience including researchers, meteorologists, and the general public interested in climate data and analysis. It offers digital magazines, monthly and seasonal climate reviews, and research letters. Technically, the site is built on WordPress with modern plugins and frameworks such as Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response contacts are absent. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is trustworthy and professionally maintained, reflecting its government affiliation.

I

Ilmatieteen laitos

ilmasto-opas.fi

0

Ilmasto-opas.fi is a Finnish government-backed climate information portal managed by Ilmatieteen laitos (Finnish Meteorological Institute). It provides authoritative, comprehensive climate change data, educational resources, and policy tracking tools aimed at the general public, policymakers, and researchers. The website is well-established with a domain age of over 14 years, reflecting its stable presence in the Finnish climate information ecosystem. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, hosted on AWS infrastructure, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response information could be enhanced. Privacy compliance is good with clear privacy and cookie policies, though consent mechanisms could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and alignment with government standards.

I

Ilmatieteen laitos

fmi.fi

0

Ilmatieteen laitos is the Finnish Meteorological Institute, a government agency providing authoritative weather forecasts, warnings, and climate research for Finland. The website serves a broad audience including the general public, researchers, and government entities, offering comprehensive meteorological data and services. The site is well-positioned as the national source for weather and climate information, with a strong focus on public service and scientific research. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is robust, featuring clear cookie consent and privacy policies aligned with GDPR. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.