Security Directory

I

ITS - SPORT & FUN GesmbH

kinder-club.info

0

Pinguin BOBO's KINDER-CLUB® is a specialized ski school service targeting children aged 3 to 13 in German-speaking countries, primarily Austria, Germany, and Switzerland. The company, ITS - SPORT & FUN GesmbH, offers pedagogically designed ski lessons with a mascot-driven brand to engage children and families. The website reflects a medium-sized educational service provider with a strong regional presence and a focus on family-friendly ski holiday experiences. Technically, the website is built on TYPO3 CMS with modern web technologies including jQuery and Google reCAPTCHA, and it incorporates a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and consistent business information support legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

F

Fähndrich Sport AG

faehndrich-sport.ch

0

Fähndrich Sport AG is a well-established small retail business specializing in Nordic skiing, biking, and outdoor sports equipment and training services in the Engadin region of Switzerland. Founded in 1988 as a family business, it has evolved into a recognized regional specialist with a strong local reputation. The company offers a range of services including equipment sales, rentals, group and private courses, and training planning, targeting sports enthusiasts and tourists in the area. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized, well-structured, and includes SEO best practices. Privacy compliance is robust with a clear cookie consent mechanism and GDPR-aligned privacy policy. From a security perspective, the site uses HTTPS with good SSL configuration and employs cookie consent with IP anonymization for analytics. While some advanced security headers could be added, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website presents a professional, trustworthy, and secure digital presence that supports the company's business goals and customer engagement effectively.

F

Fischis Skischule Flachau

fischis-skischule.at

0

Fischis Skischule Flachau is a small, family-oriented ski school based in Flachau, Austria, offering professional ski and snowboard courses for children and adults. The business emphasizes personal attention with qualified, state-certified instructors and provides additional services such as ski equipment rental and all-inclusive packages. The website is well-structured, multilingual, and supports online booking with multiple payment options, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS with modern web technologies and includes privacy-conscious analytics implementations. Security posture is solid with HTTPS and anonymized tracking, though some advanced security headers are missing. The absence of WHOIS data limits domain registration transparency but does not detract significantly from the overall trustworthiness given the professional presentation and clear contact information. Privacy and cookie policies are comprehensive and GDPR compliant, with an opt-in consent mechanism. Social media presence on Facebook and YouTube supports marketing efforts and customer engagement.

The website at xc-academy.com is currently non-operational, serving a 404 error page indicating no site configuration found. The domain is registered since 2008 through Ascio Technologies, Inc. Danmark, a registrar service provider, but no active business or content is present on the site. The detected CMS is TYPO3, as indicated by the error page branding. There are no privacy, cookie, or terms of service policies, nor any contact or security information available. The lack of content and security measures results in a very low trust and credibility score.

C

Cool School

coolschool.ch

0

Cool School is a well-established Swiss ski school based in Lötschental, specializing in ski and snowboard instruction for children and adults. With over five decades of experience, the school offers group courses, private lessons, and equipment rental services, emphasizing a friendly and professional learning environment. The website reflects a strong local presence with partnerships and a focus on the Lötschental region's winter sports opportunities. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes a cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS and no visible vulnerabilities, though security policy documentation is absent. Overall, the site is professional, trustworthy, and well-suited for its target audience.

B

Bikeschule Klosters

bikeschuleklosters.ch

0

Bikeschule Klosters is a well-established mountain bike school located in Klosters/Davos, Switzerland, with a history dating back to 1931. The company offers a broad range of bike courses, camps, workshops, and private guiding services tailored for children, youth, and adults. Their business model focuses on experiential outdoor education and recreation, supported by an online booking platform. The website reflects a professional and consistent brand image with clear contact information and partner affiliations, positioning them as a trusted local service provider in the biking community. Technically, the website is built on TYPO3 CMS, utilizing modern web technologies such as jQuery, Owl Carousel, and Google Tag Manager for analytics. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with compressed assets and responsive design elements enhancing user experience. From a security perspective, the site enforces HTTPS with IP anonymization for analytics and a comprehensive cookie consent mechanism. However, it lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a small business. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. The domain registration data aligns well with the business claims, reinforcing legitimacy. Strategic improvements could focus on enhancing security headers, publishing security policies, and expanding incident response transparency to further strengthen trust and compliance.

B

Bikeschule Disentis Sedrun

bikedisentis-sedrun.ch

0

Bikeschule Disentis Sedrun is a small, regionally focused bike school and guiding service based in Switzerland. The company offers bike courses primarily for children during school holidays and additional guiding and technical courses for adults. The website is built on TYPO3 CMS and incorporates modern web technologies including Google reCAPTCHA and cookie consent management, reflecting a moderate level of digital maturity. The site is well-structured with clear navigation and contact information, supporting a positive user experience. Security measures include HTTPS enforcement and cookie consent, though some security headers are missing. Overall, the security posture is adequate but could be improved with additional headers and explicit security policies. The website is free from adult or explicit content and targets a general audience interested in biking activities in the Disentis-Sedrun region.

A

Arosa Bikeschool

arosa-bikeschool.ch

0

Arosa Bikeschool is a specialized local service provider offering bike lessons and guided bike experiences for children and adults in the Arosa mountain region of Switzerland. The business emphasizes family-friendly services including group and private lessons, camps, workshops, and children's animation. Their market position is that of a trusted local bike school with a family destination certification, supported by clear contact channels and online booking capabilities. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and reCAPTCHA for analytics and security. The site is mobile-optimized and provides a good user experience with clear navigation and content relevance. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks some advanced security headers such as CSP and HSTS. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. WHOIS data aligns well with the business claims, showing transparency and legitimacy. Overall, the website is professional, trustworthy, and suitable for its target audience.

A

Angerer Alpin- + Skischule

ski-alpinschule.at

0

Angerer Alpin- + Skischule is a small alpine sports school based in Dorfgastein, Austria, offering year-round ski, snowboard, and alpine courses for children and adults. The business maintains a professional online presence with a TYPO3 CMS-powered website featuring multilingual support and an integrated online booking system. The company holds certifications and partnerships that enhance its market credibility. Technically, the website uses modern web technologies and provides a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements could be made by adding security headers and explicit security policies. Overall, the website is trustworthy, compliant with GDPR, and well-positioned in its regional hospitality sector.

A

ALPEN SPORTS GMBH

alpen-sports.at

0

Alpen Sports GmbH operates a specialized ski school and sports service business located in Neukirchen am Großvenediger, Austria. The company offers ski courses for children and adults, snowboard lessons, private instruction, ski equipment rental, and a sports shop. Positioned as a local leader in winter sports education and equipment rental, Alpen Sports targets ski vacationers and families seeking professional ski training and equipment services. The website supports online booking of ski packages, enhancing customer convenience and business reach. Technically, the website is built on TYPO3 CMS with modern frontend technologies including jQuery and Bootstrap components. It integrates Google Analytics with IP anonymization and employs a cookie consent mechanism compliant with GDPR. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. External integrations include social media feeds and partner links, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with a strong SSL configuration and enforces cookie consent. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces domain trust slightly but does not detract from the professional presentation and contact transparency. Overall, Alpen Sports presents a trustworthy and professionally managed online presence suitable for its hospitality sector niche. Strategic improvements in security headers and incident response transparency would further enhance its security posture and customer trust.

A

Adrenalina Dolomites

adrenalina-dolomites.com

0

Adrenalina Dolomites is a small hospitality business specializing in outdoor adventure activities such as hiking, biking, and skiing in the Dolomites region, specifically Ortisei in Val Gardena. The website presents a professional and consistent brand image with a focus on seasonal outdoor experiences. The technical infrastructure is based on TYPO3 CMS, leveraging modern JavaScript libraries and Google Tag Manager for analytics, with a cookie consent mechanism that respects user privacy preferences. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enforced but lacks visible security headers and published security policies. Contact information and business registration details are not readily available, which may impact user trust and compliance. Overall, the website is functional and well-designed but would benefit from enhanced transparency and security practices.

W

Waldhart Software

skischool.shop

0

Waldhart Software operates a specialized online platform providing e-commerce and booking solutions tailored for ski schools and snow sports schools primarily in Alpine regions. The website serves as a reference showcase for nearly 300 live client online shops, demonstrating a strong market presence in the niche retail sector for winter sports education and services. The business model focuses on B2B SaaS offerings, enabling ski schools to manage online bookings and sales effectively. Technically, the website employs modern JavaScript frameworks, likely Vue.js with the Quasar UI framework, and integrates Google Maps APIs for location services. Hosting is managed via profiwebspace.at, with domain registration through InterNetX GmbH in Austria. The site is served over HTTPS, ensuring encrypted communications, but lacks DNSSEC and security headers, which are recommended for enhanced security. Security posture is moderate; while HTTPS and domain transfer protections are in place, the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security best practices. No forms or contact details were found in the analyzed content, limiting direct user engagement and incident response capabilities. Overall, the website is professional and well-structured, targeting ski schools and related businesses with a clear value proposition. However, to strengthen trust and compliance, the addition of privacy and cookie policies, security headers, and clear contact information is advised.

Y

YouTube / Google

brandhunters.cz

0

This website is a consent management interface for YouTube, a service owned by Google LLC. It is designed to handle user consent for cookies and data processing, particularly targeting users in Germany as indicated by the 'gl=DE' parameter. The page is part of the broader YouTube and Google ecosystem, reflecting a mature and enterprise-level digital infrastructure. The business model revolves around advertising and content delivery, with user data consent as a critical compliance component. Technically, the site employs modern JavaScript frameworks and Google-hosted services, ensuring fast performance and good mobile optimization. Security is robust, with HTTPS enforced and multiple security headers present, reflecting Google's high standards. However, explicit privacy and cookie policy links are not present on this specific page, likely centralized on main domains. Overall, the site is trustworthy, secure, and professionally maintained, with no indications of adult or unsafe content.

D

Deutscher Wetterdienst

dwd-shop.de

0

The Deutscher Wetterdienst WetterShop website serves as the official e-commerce platform for the German federal weather service, offering specialized weather forecasts, climate data, and related publications primarily targeting professionals in agriculture, aviation, and other sectors requiring precise meteorological information. The site is well-branded with government insignia and provides a clear, professional user experience in German with an English language option. The business model focuses on selling weather and climate-related products and services, positioning the organization as a trusted authority in meteorological data within Germany. Technically, the website is built on the Magento e-commerce platform, utilizing JavaScript libraries such as jQuery and Prototype.js. The site demonstrates good mobile optimization, accessibility features, and SEO practices, although performance is moderate. Security is enforced through HTTPS and secure cookie settings, but the absence of security headers and a cookie consent mechanism indicates room for improvement in compliance and hardening. From a security perspective, the site shows a solid baseline with no visible vulnerabilities or exposed sensitive data. However, the lack of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests limited transparency in security governance. The WHOIS data aligns well with the official government entity, confirming domain legitimacy and consistency with the website content. Overall, the website is trustworthy, professionally maintained, and suitable for its target audience. Strategic recommendations include implementing cookie consent to meet EU regulations, adding security headers to enhance protection, and publishing security and incident response policies to improve transparency and user trust.

S

Study in Prague Consortium

studyinprague.cz

0

Study in Prague is an educational information portal dedicated to providing comprehensive resources for international students interested in studying in Prague, Czech Republic. The website aggregates detailed information about Prague's universities, study programmes, admission requirements, visa processes, scholarships, and student life. It serves as a centralized platform supported by the Study in Prague Consortium and partners such as the Prague city government and tourism organizations. The target audience is international students seeking higher education opportunities in Prague. The business model focuses on information dissemination and promotion of Prague as a study destination.

The domain cine.cz is registered since 2015 with a recognized registrar, indicating a legitimate registration. However, the website content is completely inaccessible, displaying only a minimal message 'Missing index page or access denied!'. This suggests the site is either inactive, misconfigured, or access is restricted. No metadata, scripts, forms, or contact information are present, limiting any meaningful analysis of business operations or services. The lack of HTTPS information and security headers further indicates poor security posture. Overall, the site does not provide any user-facing content or compliance documentation, resulting in a very low trust and credibility score.

F

Flatchr

flatchr.io

0

Flatchr is a French-based software company specializing in recruitment and candidate management solutions. Positioned as a leading ATS (Applicant Tracking System) in France, it offers a comprehensive SaaS platform that enables HR professionals and recruiters to streamline job posting, candidate sourcing, evaluation, and collaboration. The website is professionally designed, content-rich, and targets recruiters seeking efficient hiring tools. Technically, the site leverages HubSpot CMS, modern JavaScript libraries, and integrates marketing and analytics tools such as Google Tag Manager and HubSpot Analytics. Security posture is strong with HTTPS enforced and privacy policies in place, though some security headers could be improved. The WHOIS data is not publicly available, which slightly reduces trust but is mitigated by the professional web presence and compliance with GDPR. Overall, Flatchr demonstrates a mature digital infrastructure and a solid market position in the HR technology sector.

M

Météo-France

meteofrance.pm

0

Météo-France Saint Pierre et Miquelon is the official regional meteorological service providing comprehensive weather forecasts, marine weather information, satellite animations, climate data, and cyclone tracking for the Saint Pierre and Miquelon archipelago. The website is well-branded with consistent government imagery and links to official Météo-France resources, targeting the general public and residents of the region. The business model is that of a government service focused on public information dissemination. Technically, the site is built on Drupal CMS with modern web technologies including Leaflet.js for interactive maps, Google Tag Manager for analytics, and Didomi for consent management. The site is mobile optimized, accessible, and SEO friendly, with moderate performance. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Overall, the website demonstrates a mature digital infrastructure with good privacy compliance and transparent advertising practices. No critical vulnerabilities or suspicious activities were detected. The domain registration is consistent and appropriate for the business, enhancing trustworthiness. Strategic recommendations include publishing explicit security and incident response policies and establishing a vulnerability disclosure program to further strengthen security posture.

M

METEO FRANCE

meteo.pf

0

Météo-France Polynésie Française operates as the official meteorological service for French Polynesia, providing comprehensive weather forecasts, marine data, cyclone tracking, and climate information. The website serves residents and visitors with timely and region-specific meteorological data, positioning itself as a trusted government entity in the region. The business model is focused on public service and information dissemination, supported by the parent organization Météo-France. The site maintains a consistent brand identity and leverages official social media channels for outreach. Technically, the website is built on Drupal 9, utilizing modern web technologies such as Leaflet.js for interactive maps and Google Tag Manager for analytics. It incorporates GDPR-compliant cookie consent mechanisms via Didomi and Privacy Center SDKs, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and moderate performance. From a security perspective, the site enforces HTTPS and employs consent management for privacy compliance. While explicit security headers are not fully visible in the provided data, the overall posture is strong with no evident vulnerabilities or exposed sensitive data. However, the site could improve by publishing explicit security policies and incident response contacts. Overall, the website is a reliable and professional platform with high trustworthiness, suitable for its government service role. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and maintaining vigilance on third-party scripts to sustain security and compliance.

M

Météo-France Martinique

meteofrance.mq

0

Météo-France Martinique is the official regional meteorological service providing comprehensive weather forecasts, marine weather, cyclone alerts, and climate data for Martinique. The website serves the general public and maritime users with up-to-date meteorological information and is part of the larger Météo-France governmental organization. The site uses modern web technologies including Drupal CMS, Leaflet.js for mapping, and integrates consent management tools to comply with privacy regulations. Social media presence is linked to official Météo-France accounts, enhancing trust and outreach. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, explicit privacy policy and terms of service pages are not found, and no direct contact information is provided on the homepage, which slightly reduces privacy compliance and business credibility scores.

M

Météo-France

meteofrance.gf

0

Météo-France Guyane is the official regional weather service for French Guiana, providing comprehensive meteorological forecasts, alerts, and climate information to the general public. The website is part of the broader Météo-France network, reflecting strong government affiliation and trust. The digital infrastructure is built on Drupal CMS with modern web technologies including Leaflet.js for interactive maps and a robust consent management system ensuring GDPR compliance. The site demonstrates good technical maturity with HTTPS, security headers, and performance optimizations. However, explicit contact information and detailed security or privacy policies are not prominently available, which could be improved. Overall, the security posture is strong with no critical vulnerabilities detected, but the absence of a vulnerability disclosure policy and incident response contacts suggests room for enhancement. The website is safe for general audiences and maintains consistent branding aligned with official government standards.

M

Météo-France

meteofrance.gp

0

Météo-France Guadeloupe is the official regional meteorological service providing comprehensive weather, marine, cyclone, and climate information for Guadeloupe, Saint Barthélemy, and Saint Martin. The website serves residents and visitors with forecasts up to 15 days, vigilance alerts, satellite and radar animations, and specialized information such as sargassum beaching forecasts. It operates under the umbrella of the national Météo-France agency, reflecting a government entity with a strong market position in meteorological services for the region. Technically, the site is built on Drupal CMS, leveraging modern JavaScript libraries like Leaflet for interactive maps and integrates third-party services such as Google Tag Manager and Didomi for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security is robust with HTTPS, multiple security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is partially implemented with a clear cookie consent mechanism, but explicit privacy policy and terms of service pages are not directly found in the main HTML content. Contact information is not explicitly provided on the main page, which could impact user trust and compliance transparency. Overall, the website demonstrates a high level of professionalism and trustworthiness consistent with a government service. Recommendations include publishing explicit privacy and terms pages, adding clear contact details including security contacts, and implementing a vulnerability disclosure policy to enhance security posture and compliance.

M

Météo-France

meteofrance.yt

0

Météo-France Mayotte is the official regional meteorological service providing comprehensive weather forecasts, cyclone tracking, marine weather, and climatology information for Mayotte. The website serves residents, visitors, and government agencies with up-to-date meteorological data and alerts. Technically, the site is built on Drupal CMS with modern JavaScript libraries such as Leaflet for mapping and integrates consent management via Didomi, ensuring GDPR compliance in cookie handling. The site is mobile-optimized and accessible, with good SEO practices. Security posture is strong with HTTPS and consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, the domain registration is consistent with the official nature of the site, and no blocking or WAF challenges were detected.

M

Météo-France

meteofrance.re

0

Météo-France La Réunion is the official regional meteorological service providing comprehensive weather forecasts, climate data, and cyclone monitoring for La Réunion and the Indian Ocean region. The website is well-branded with government insignia and offers a wide range of meteorological services targeting residents and visitors. Technically, the site uses Drupal CMS with modern mapping and analytics technologies, and it is optimized for mobile and accessibility. Security posture is strong with HTTPS and consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy and professionally maintained, with good compliance to privacy regulations.

The website drias-climat.fr appears to be a climate-related informational site, likely affiliated with meteorological data services in France, as inferred from its nameservers pointing to meteofrance.fr. The domain is registered since 2011 and is active, indicating a stable presence. However, the accessible content is minimal, primarily a captcha verification page, with no visible privacy, cookie, or terms of service policies. There is no contact information or business details presented on the page. Technically, the site uses JavaScript and base64 encoded images but lacks modern web practices such as HTTPS enforcement and security headers. The overall user experience and content quality are poor, with limited navigation or engagement features.

M

Météo-France

meteofrance.fr

0

Météo-France is the official French national meteorological service providing comprehensive weather forecasting, climate monitoring, vigilance alerts, and meteorological data services. The website serves a broad audience including the general public, government agencies, meteorologists, researchers, and students. It also supports educational activities through the École Nationale de la Météorologie. The site is well-structured with extensive content covering news, missions, organizational information, and career opportunities. Technically, the website is built on Drupal 8 CMS and leverages modern JavaScript frameworks such as Vue.js and Vuex. It integrates Google Tag Manager and AT Internet for analytics and uses a privacy center SDK for GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. From a security perspective, the site enforces HTTPS and employs domain registration protections. While explicit security headers are not visible in the HTML content, the site demonstrates good security hygiene with no exposed sensitive data or vulnerable libraries detected. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR requirements. Overall, the website is trustworthy, professional, and authoritative, reflecting the stature of Météo-France as a government institution. No critical security or content safety issues were found, and the domain registration data aligns well with the organization's identity.

I

Intergovernmental Panel on Climate Change

ipcc.ch

0

The Intergovernmental Panel on Climate Change (IPCC) is a globally recognized United Nations body established in 1988 to provide policymakers with scientific assessments on climate change, its impacts, and mitigation strategies. The organization operates with 195 member countries and produces comprehensive reports that are key inputs for international climate negotiations. The website reflects a mature digital presence with extensive content, including reports, working group information, and activities, targeting policymakers, researchers, and the public interested in climate science. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and various UI libraries. It is well-optimized for mobile and accessibility, though performance is moderate. Security posture is strong with HTTPS enforced and no exposed sensitive data, but could be improved by adding explicit security headers and a cookie consent mechanism to enhance GDPR compliance. Overall, the IPCC website demonstrates high professionalism, trustworthiness, and content quality. However, it lacks explicit contact emails or phone numbers on the homepage and does not display a cookie consent banner, which are areas for improvement. No WAF or blocking mechanisms were detected, allowing full content access for analysis.

I

International Civil Aviation Organization

icao.int

0

The International Civil Aviation Organization (ICAO) operates as a specialized United Nations agency focused on establishing global standards and regulations for civil aviation. The website serves as a comprehensive portal for aviation safety, security, environmental protection, economic development, and capacity building. It targets governments, aviation stakeholders, and the public, providing authoritative information, news, and resources. Technically, the site is built on Microsoft SharePoint, leveraging modern JavaScript libraries and hosted on Microsoft Azure DNS, reflecting a mature and stable digital infrastructure. Security posture is solid with HTTPS enforcement and standard security headers, though improvements such as CSP headers and a vulnerability disclosure page are recommended. Privacy compliance is moderate, with a privacy policy present but lacking explicit cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, with minor areas for enhancement in security and privacy transparency.

1

18 Street Design, LLC

18street.com

0

18 Street Design, LLC is a small, established web design and development company based in Columbia, South Carolina, with over 20 years of experience. The company specializes in custom and WordPress website design, maintenance, and client support services, targeting businesses and organizations primarily in South Carolina. The website presents a professional and consistent brand image with clear contact information and client testimonials, positioning itself as a trusted local service provider. Technically, the website is built on WordPress using the Breakdance plugin/theme, incorporating modern web technologies such as Google Fonts and GSAP for animations. The site is mobile-optimized, SEO-friendly, and performs moderately well. However, there is no detected cookie consent mechanism, and accessibility features are basic. No advertising or tracking scripts are present, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration but lacks security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern, as it prevents verification of domain registration details and slightly reduces trustworthiness. Overall, the website is professional and trustworthy with good technical implementation but could improve privacy compliance and security posture. The missing WHOIS data and lack of cookie consent are notable gaps that should be addressed to enhance credibility and compliance.

N

Northwest Podiatric Laboratory

nwpodiatric.com

0

Northwest Podiatric Laboratory is a specialized healthcare company focused on the design and manufacture of premium custom orthotics. Established since 1964, it holds a strong market position as a leader in orthotic solutions, serving healthcare professionals and patients primarily in the United States. The website reflects a professional and consistent brand image with clear service offerings including custom orthotics, SmartCast® technology, and provider search functionalities. The target audience includes healthcare providers and patients seeking foot pain relief through custom orthotics. Technically, the website is built on WordPress, leveraging modern JavaScript libraries and analytics tools, hosted with Cloudflare for performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and domain registration transparency, but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

A

American Podiatric Medical Association

apma.org

0

The American Podiatric Medical Association (APMA) operates a comprehensive and professionally designed website serving as a central resource for podiatrists, students, residents, young physicians, and patients. The organization, founded in 1912, provides education, advocacy, practice management resources, and membership benefits, positioning itself as a leading professional association in podiatric medicine in the United States. The website content is rich, well-structured, and targets multiple audiences effectively. Technically, the site is built on Mura CMS 7.0 with Bootstrap 3 and uses modern web technologies including jQuery, Font Awesome, Google reCAPTCHA, and Slick Carousel. The site is mobile optimized with good SEO and accessibility basics. Performance is moderate, with room for improvement in accessibility and security headers. Security posture is strong with HTTPS enforced and use of reCAPTCHA on forms, but lacks explicit security headers and a visible cookie consent mechanism. WHOIS data is unavailable due to a malformed response, which limits domain registration trust analysis, but the site’s professionalism and consistency with a legitimate association mitigate concerns. Overall, the site is trustworthy, well-maintained, and serves its professional audience well. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and compliance further.

A

American College of Foot and Ankle Surgeons

acfas.org

0

The American College of Foot and Ankle Surgeons (ACFAS) operates as a professional society dedicated to foot and ankle surgeons, providing education, advocacy, research, and membership services. Established in 1942, it serves a large membership base of over 7,800 professionals, positioning itself as a leading authority in its niche healthcare sector. The website reflects this professional stature with comprehensive resources, educational content, and active social media engagement. Technically, the site is built on the Kentico CMS platform, utilizing modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Swiftype for search functionality. The site is mobile optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response contacts are absent. From a security perspective, the site demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. The WHOIS data is privacy protected, which is typical for professional organizations, and does not raise legitimacy concerns given the website's professional content and branding. Overall, the site is trustworthy, professionally maintained, and serves its target audience effectively. Strategic improvements could focus on enhancing security headers and publishing explicit security policies to further strengthen trust and compliance.

Palmetto Podiatry Associates, LLC is a small healthcare provider specializing in comprehensive foot and ankle care based in Columbia, South Carolina. Established in 1999, the practice offers a range of podiatric services including surgical and non-surgical treatments. The website reflects a professional and consistent brand presence with clear contact information and trust indicators such as certifications and local awards. Technically, the site uses standard web technologies like jQuery and FontAwesome, with good mobile optimization and accessibility features via the UserWay widget. However, the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Security posture is moderate with HTTPS implied but lacking explicit security headers and vulnerability disclosures. Privacy compliance is basic, with a HIPAA policy linked but no cookie consent or detailed privacy policy page. Overall, the site is functional and trustworthy from a business perspective but could improve in security and privacy transparency.

P

Private by Design, LLC

titcheck.org

0

Titcheck.org is a small US-based nonprofit organization focused on educating young adults about breast self-awareness and breast cancer risk reduction. The website promotes the #TitCheck concept, encouraging regular breast checks while getting dressed to empower early detection and advocacy. The site is professionally designed with modern frontend technologies including Bootstrap, jQuery, and animation libraries, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain locking, but lacks DNSSEC and comprehensive security headers. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms. The domain registration is consistent with the nonprofit mission and transparent. Overall, the website serves its educational purpose well but should improve privacy compliance and security disclosures to enhance trust and regulatory adherence.

Young Survival Coalition is a well-established nonprofit organization dedicated to supporting young adults diagnosed with breast cancer. Their website campaign page is professionally designed and hosted on the Classy fundraising platform, integrating modern web technologies such as AngularJS, Stripe for payments, and analytics tools like Google Analytics and New Relic. The site demonstrates a strong digital maturity with good performance and mobile optimization. Security posture is robust with HTTPS enforced and multiple security headers present, although explicit security policy and incident response information are not publicly available. Privacy and cookie policies are comprehensive and GDPR compliant, supporting trust and compliance. Overall, the website reflects a credible and trustworthy nonprofit entity with a clear mission and effective fundraising capabilities.

Y

Young Survival Coalition

ysctourdepink.org

0

Young Survival Coalition (YSC) operates a dedicated wellness summit website targeting young adult breast cancer survivors and their support networks. The organization provides immersive wellness events blending physical, emotional, and social support activities. The website reflects a mature non-profit entity with a clear mission and community focus, supported by a consistent brand presence and multiple sponsorships. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting a medium-sized non-profit with a strong community orientation.

Y

Young Survival Coalition

youngsurvival.org

0

Young Survival Coalition is a well-established nonprofit organization founded in 1999, dedicated to supporting young women aged 40 and under diagnosed with breast cancer. The organization provides comprehensive educational resources, peer support, advocacy, and fundraising initiatives to empower and assist its target audience. The website reflects a strong market position as a trusted leader in this specialized healthcare support sector, with clear branding and consistent messaging tailored to young breast cancer survivors and their support networks. Technically, the website employs a modern CMS (FusionCMS), integrates widely used analytics and tracking tools such as Google Analytics and Facebook Pixel, and is hosted with Cloudflare DNS services, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. However, there is room for improvement in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. The WHOIS data aligns well with the organization's identity, reinforcing legitimacy. No critical vulnerabilities or suspicious activities were detected. The site lacks explicit incident response or security policy disclosures, which could be enhanced to improve transparency and preparedness. Overall, the website is professional, trustworthy, and serves its mission effectively. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent for GDPR compliance, and publishing clear security and incident response policies to further strengthen security posture and user trust.

M

MyBookings.com

mybookings.com

0

MyBookings.com is a well-established Dutch company specializing in integrated hotel marketing services, including branding, advertising, distribution management, integration services, and analytics. With over 18 years of experience and a domain age of more than 22 years, the company holds a strong market position serving hotels aiming to optimize their customer journey and increase direct bookings. The website reflects a professional and consistent brand image targeting hotel management professionals in the hospitality sector. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap and Helix Ultimate, leveraging Google Fonts, Font Awesome, and Google Analytics for enhanced user experience and tracking. Hosting and DNS are managed via Cloudflare, providing reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and implements Google reCAPTCHA for form protection. However, it lacks DNSSEC, Content Security Policy headers, and other security headers like X-Content-Type-Options, which are recommended to enhance security posture. No vulnerability disclosure or incident response policies are publicly available, indicating room for improvement in transparency and security maturity. Overall, the website is trustworthy, professional, and safe for general audiences. It collects user data via contact forms with standard protections but lacks a cookie consent mechanism, which could be improved to enhance privacy compliance. The domain registration data aligns well with the business claims, supporting legitimacy and credibility.

B

Best Western Amsterdam

bestwesternamsterdam.nl

0

Best Western Amsterdam operates a professional hospitality website offering hotel accommodations in Amsterdam with direct booking capabilities. The site targets travelers seeking comfortable rooms and modern facilities with a best price guarantee. The business is positioned as a medium-sized hotel entity within the hospitality sector in the Netherlands. Technically, the website is built on Joomla CMS using the Helix Ultimate framework, incorporating modern libraries such as Bootstrap and jQuery, and is optimized for mobile devices with moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies, and no GDPR indicators are present. Overall, the site is trustworthy but could improve transparency and security practices.

E

Eastern Sun Tours and Safaris

easternsuntours-safaris.com

0

Eastern Sun Tours and Safaris is a Tanzania-based tour operator specializing in safari and adventure travel services. Established in 2010, the company offers a range of services including wildlife safaris, Kilimanjaro climbing expeditions, Serengeti tours, and cultural experiences. The website positions the company as a premier operator with expert guides, targeting tourists interested in exploring Tanzania's natural and cultural treasures. Technically, the website is built on WordPress using Elementor, with integrations such as Google Site Kit for SEO and analytics. Hosting is provided by NameCheap, and the site uses HTTPS with a clientTransferProhibited domain status, indicating a stable and secure domain registration. However, DNSSEC is not enabled, and security headers are missing, which are areas for improvement. The security posture is moderate, with no visible vulnerabilities but lacking advanced security configurations. Privacy compliance is weak, as no privacy or cookie policies are found, and no consent mechanisms are implemented. Contact information is not explicitly presented, which may affect user trust and compliance. Overall, the website is professional and content-rich but would benefit from enhanced security and privacy practices to improve trust and compliance.

C

Compass Pools Deutschland GmbH

swimmingpool-kosten.de

0

Compass Pools Deutschland GmbH operates a German-language website offering high-quality ceramic swimming pools with an online configurator and pricing tool. The company targets residential customers in Germany seeking durable and well-insulated pools, leveraging a dealer network for construction services. The website is modestly designed with basic mobile optimization and clear navigation, but lacks advanced technical frameworks or CMS platforms. Security posture is moderate with concerns due to outdated jQuery usage and absence of security headers. Privacy compliance is basic with presence of privacy and cookie policies but no explicit consent mechanism. Overall, the site is functional and trustworthy but would benefit from technical and security improvements.

Deco Sonnenschutz operates the website www.markisen-preise.at, specializing in the retail sale and installation of HELLA brand awnings across Austria. The business targets residential and commercial customers seeking quality sun protection solutions with an emphasis on risk-free online purchasing and professional mounting services. The website presents a professional and consistent brand image with clear navigation and relevant content focused on their product offerings and services. Technically, the website employs legacy JavaScript libraries such as jQuery 1.7.2 and uses common UI plugins like Lightbox and CookieConsent2 for user interaction and compliance. While the site is functional and moderately optimized, it lacks modern security headers and uses outdated libraries that expose it to potential vulnerabilities. Mobile optimization and accessibility are basic but adequate for the target audience. From a security perspective, the site implements GDPR-compliant cookie consent and provides a privacy policy, demonstrating awareness of data protection requirements. However, the absence of security headers, incident response contacts, and the use of outdated JavaScript libraries reduce its security posture. The WHOIS data is unavailable, likely due to privacy protection, which limits trust analysis but does not raise immediate red flags given the site's professional presentation. Overall, the website is a legitimate small retail business platform with moderate technical maturity and security posture. Strategic improvements in updating technology stack, enhancing security headers, and providing more comprehensive contact and compliance information would strengthen trust and reduce risk.

E

Elima Pottery s.r.o.

elimashop.cz

0

Elima Pottery s.r.o. operates www.elimashop.cz, a small family-owned e-commerce business specializing in handcrafted Polish stoneware ceramics from Boleslawiec. The website targets a general audience interested in unique, traditional pottery products, offering multi-language and multi-currency support to serve international customers. The business model focuses on direct online retail of artisanal ceramic products, leveraging its expertise and unique product lineage to differentiate itself in the niche market. Technically, the website is built on the Upgates e-commerce platform, utilizing modern web technologies including JavaScript, Google Fonts, Google Analytics 4, and Facebook Pixel for marketing and analytics. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating awareness of privacy regulations. However, the absence of security headers and explicit privacy and terms of service pages suggests gaps in security best practices and compliance. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Overall, the website presents a professional and trustworthy front for a niche e-commerce business but would benefit from improved security practices, clearer privacy compliance documentation, and verification of domain registration details to enhance credibility and reduce risk.

O

ORIENTAL.cz, s.r.o.

oriental.cz

0

ORIENTAL.cz, s.r.o. operates a specialized e-commerce platform and physical store focused on selling oriental and exotic goods including teas, clothing, accessories, and decorative items. The company targets customers interested in authentic oriental products and tea enthusiasts within the Czech Republic. The website is professionally designed with good navigation, mobile optimization, and clear contact information, supporting a positive user experience and trustworthiness. Technically, the site leverages modern marketing and analytics tools such as Google Analytics 4, Facebook Pixel, and Google Tag Manager, integrated within the Upgates e-commerce platform. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies are not explicitly found. The absence of WHOIS registration data and explicit privacy policy documents slightly reduce transparency and compliance confidence. Overall, the site is functional, secure, and professionally managed but would benefit from enhanced compliance documentation and domain registration transparency.

V

VMXpartners s.r.o.

granulebardog.cz

0

Granulebardog.cz is a Czech e-commerce website operated by VMXpartners s.r.o., specializing in high-quality dog and cat food, treats, and accessories. The company emphasizes product quality, supported by certifications such as IFS Food and GMP, and targets pet owners primarily in the Czech Republic and Slovakia. The website offers a comprehensive product catalog, including special support products for animal shelters, and maintains a professional online presence with mobile app availability and active social media engagement. Technically, the site uses a modern tech stack including Google Analytics 4, Facebook Pixel, and Upgates CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data reduces domain trust but the business information and website content appear legitimate and professional. Overall, the site presents a trustworthy and user-friendly platform for pet product retail.

M

Morellato.cz

morellato.cz

0

Morellato.cz is an official e-commerce retailer specializing in Italian brand jewelry and wristwatches, including Morellato and Trussardi. The website targets customers primarily in the Czech Republic and Slovakia, offering a broad catalog of steel and silver jewelry and watches with a focus on quality and brand authenticity. The platform supports customer accounts, shopping cart functionality, and promotional campaigns, positioning itself as a trusted online retailer in its niche. Technically, the site leverages modern web technologies including Google Analytics 4, Facebook Pixel, and the Upgates e-commerce platform, ensuring a responsive and user-friendly shopping experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and privacy policy documentation is not clearly presented. The absence of WHOIS data limits domain trust assessment, but the professional presentation and official brand affiliation support legitimacy. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, and adding vulnerability disclosure information to improve compliance and trust.

G

Geniuso, s. r. o.

geniuso.sk

0

Geniuso, s. r. o. operates an e-commerce platform specializing in interactive talking books and educational accessories for children and teenagers. Their product line includes sound books paired with electronic pens that enhance learning and engagement. The company positions itself as a niche provider in the educational retail sector within Slovakia, emphasizing the importance of paper books in a digital era. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics tools with user consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent, though some security headers could be improved. WHOIS data confirms the legitimacy and consistency of the business identity. Overall, the website presents a trustworthy and user-friendly platform for its target audience.

A

Agro PAJER s.r.o.

aroniazpajera.sk

0

Agro PAJER s.r.o. operates a niche e-commerce business specializing in aronia-based natural products including juices, wines, liqueurs, distillates, chocolates, and gift packages. The company emphasizes traditional, manual harvesting methods in a clean Slovak environment, targeting health-conscious consumers interested in antioxidant-rich superfoods. The website reflects a small but professional operation with a clear local market focus and direct-to-consumer sales via an online shop. Technically, the site leverages modern e-commerce platform Upgates, integrates Google Analytics 4, Facebook Pixel, and employs cookie consent mechanisms, indicating a mature digital marketing approach. Security posture is solid with HTTPS and form validation, though some security headers could be improved. The site includes comprehensive privacy and cookie policies, GDPR compliance, and multiple contact channels, enhancing trust and compliance. The presence of an age verification modal aligns with the sale of alcoholic products, marking the content as adults-only. Overall, the website is well-structured, user-friendly, and trustworthy, with minor areas for security enhancement.

O

Oehling.cz - váš e-shop s fototechnikou

oehling.cz

0

Oehling.cz is an e-commerce platform specializing in the sale of photographic equipment, targeting a general audience primarily in the Czech Republic. The website presents a professional design with good mobile optimization and integrates multiple tracking and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. Despite the lack of visible privacy and terms of service policies, the site demonstrates a mature digital infrastructure typical for retail e-commerce businesses. The absence of WHOIS data is a notable concern, potentially indicating issues with domain registration transparency. Security posture is adequate with HTTPS enforced and consent mechanisms for cookies implemented, but could be improved by adding security headers and publishing clear privacy and contact information.

J

JÁGRTEAM s.r.o.

jagrteam.cz

0

JÁGRTEAM s.r.o. operates as a well-established retailer and exclusive distributor of TRUE HOCKEY products in the Czech Republic, specializing in hockey equipment and accessories. The company targets hockey players, goalkeepers, coaches, referees, and sports enthusiasts, offering both an online e-commerce platform and a physical store. Their market position is strong within the Czech hockey retail sector, supported by a loyalty program and a 30-day return guarantee on skates. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the website is built on the Upgates e-commerce platform, utilizing modern web technologies such as jQuery, Bootstrap, and Google Web Fonts. It features responsive design and basic accessibility features, with moderate performance. Security is enforced through HTTPS and secure form validations, although additional security headers could enhance protection. Privacy compliance is addressed with visible cookie consent and privacy policies, indicating good adherence to GDPR requirements. The security posture is solid with no evident vulnerabilities or exposed sensitive data, but the absence of WHOIS data for the domain raises concerns about domain registration transparency. Despite this, the website content and business information appear legitimate and trustworthy. Overall, the site provides a safe and professional user experience with room for security improvements. Recommendations include implementing advanced security headers, conducting regular security audits of third-party scripts, enhancing accessibility, and verifying domain registration details to improve trustworthiness and compliance.