Security Directory

T

Triflex GmbH & Co. KG

triflex.com

0

Triflex GmbH & Co. KG is a specialized manufacturer and provider of waterproofing and marking solutions primarily targeting construction professionals and infrastructure managers. The company offers durable systems for waterproofing roofs, balconies, and parking decks, as well as road and cycle path markings. Their market position is that of a reputable specialist in their niche, with a medium-sized business footprint in Germany. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the website is built on Drupal 10 and integrates multiple modern analytics and marketing technologies including Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, and Mouseflow. The site is mobile optimized and demonstrates good SEO and accessibility practices. Cookie consent is managed via Cookiebot, ensuring compliance with GDPR and related privacy regulations. From a security perspective, the site enforces HTTPS and uses anti-bot cookies to enhance security. However, explicit security headers like Content-Security-Policy and X-Frame-Options were not clearly identified in the provided data. There is no visible security policy or incident response contact information, which could be improved. The absence of WHOIS data for the domain is a concern, reducing the overall trust score, though the website content and business presence appear legitimate. Overall, the website scores well in content quality, technical implementation, and security posture, but could benefit from improved transparency in domain registration and security policies. Strategic recommendations include publishing a security.txt file, enhancing security headers, and providing clear contact information for security incidents.

Z

Zambelli Holding GmbH

zambelli.com

0

Zambelli Holding GmbH is a medium-sized manufacturing company based in Germany specializing in metal system solutions across multiple sectors including roof drainage, building envelopes, shelving systems, caravaning, heating technology, and industrial metalworking. The company maintains a professional and well-structured website that targets business customers and industry professionals, showcasing its diverse product and service offerings. The website demonstrates consistent branding and good content quality, supporting the company's established market position. Technically, the website is built on modern web standards with responsive design, leveraging technologies such as HTML5, CSS3, JavaScript, and Adobe Typekit fonts. The CMS identified is Contao, which supports structured content management. Performance and mobile optimization are good, though accessibility features could be enhanced. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the site uses HTTPS with a good SSL configuration and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected, and there is no visible cookie consent mechanism, which could impact GDPR compliance. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trustworthiness, though the website content and business information appear legitimate. Overall, the website presents a professional and trustworthy digital presence for Zambelli Holding GmbH, with recommendations to improve privacy compliance and security headers to enhance user trust and regulatory adherence.

J

Jakub Kokeš CZ, s.r.o.

kotevnitechnika.cz

0

Jakub Kokeš CZ, s.r.o. operates a specialized e-commerce and informational website focused on providing high-quality anchoring technology and fastening materials primarily for construction professionals such as roofing specialists and craftsmen in the Czech Republic and Slovakia. The company offers a broad product range including screws, dowels, anchors, rivets, and accessories, complemented by expert consulting and free services like delivery and pull tests. The website demonstrates a consistent brand presence with multiple physical branch locations, enhancing customer trust and accessibility. From a technical perspective, the website employs modern web technologies including JavaScript, Google Tag Manager, and analytics tools, with a responsive design optimized for mobile devices. SEO and navigation are well implemented, although some accessibility features could be improved. The site uses HTTPS with strong SSL configuration, but lacks some recommended security headers, which could be enhanced to improve security posture. Security-wise, the site shows good privacy compliance with a clear cookie consent mechanism and GDPR-aligned privacy policy. However, it lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms, which are important for mature security governance. No critical vulnerabilities or exposed sensitive data were detected, but improvements in security headers and transparency are advised. Overall, the website is professional, trustworthy, and well-suited for its target audience. The absence of WHOIS data due to privacy protection is noted but does not detract significantly from legitimacy given the comprehensive contact information and business details. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding vulnerability disclosure information to strengthen trust and compliance.

F

Formula 1®

formula1.com

0

Formula 1's official website serves as the primary digital platform for global fans and stakeholders of the Formula 1 racing series. It offers comprehensive content including news, race schedules, results, driver and team profiles, video highlights, and ticketing services. The site also supports subscription-based streaming via F1 TV, enhancing fan engagement with live and on-demand content. The platform is well-positioned as the authoritative source for Formula 1 information and entertainment, leveraging strong branding and partnerships with official entities such as the FIA. Technically, the website employs a modern technology stack including React with Next.js for server-side rendering, Brightcove for video delivery, and Cloudinary for media management. It integrates various analytics and monitoring tools such as Google Analytics and New Relic, and implements a consent management platform to comply with privacy regulations. The site is optimized for performance, mobile responsiveness, and accessibility, providing a seamless user experience across devices. From a security perspective, the website enforces HTTPS, utilizes robust security headers, and manages user consent effectively. However, there is no publicly available security policy or incident response contact information, and no vulnerability disclosure program is evident. The WHOIS data for the domain is unavailable, likely due to privacy or registry restrictions, but the website's official nature and consistent branding mitigate concerns about legitimacy. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for a major international sports brand. Strategic recommendations include publishing explicit security policies, establishing a vulnerability disclosure channel, and enhancing transparency around incident response to further strengthen trust and security posture.

D

Družstvo CBA CZ

bimkarta.cz

0

BIM Karta is a Czech Republic based retail loyalty program operated by Družstvo CBA CZ, offering customers benefits such as discounts, vouchers, and product catalogs. The website serves as a customer portal for registration, account management, and accessing promotional materials. Technically, the site is built on WordPress using the GeneratePress theme and integrates common plugins like Yoast SEO and Google reCAPTCHA for security and SEO optimization. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though security headers could be improved. Privacy compliance is addressed with visible privacy and cookie policies and a consent banner. Overall, the site is legitimate, professional, and trustworthy with consistent WHOIS data and no blocking mechanisms detected.

N

NORMA Sàrl

norma.fr

0

NORMA Sàrl operates as a discount food retailer primarily serving the French market with additional presence in Germany, Austria, and the Czech Republic. The website offers consumers access to discount offers, interactive catalogues, and store locators, targeting general consumers interested in affordable groceries and regional or organic products. The business model focuses on discount retail with a medium-sized footprint of 71 stores in the Grand-Est region of France. Technically, the website employs modern JavaScript libraries such as jQuery and Bootstrap, uses Matomo for privacy-conscious analytics, and is hosted behind Akamai CDN services, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are not evident in the HTML content. The absence of WHOIS data is a concern but does not detract significantly from the site's legitimacy given the professional presentation and consistent branding. Overall, the site is well-structured, mobile-optimized, and compliant with GDPR cookie consent requirements.

B

Bohušovická mlékárna, a.s.

skyrcz.cz

0

Bohušovická mlékárna, a.s. is a Czech dairy manufacturer specializing in the production of Skyr, a traditional Icelandic dairy product. The company is a market leader in the Czech Republic for Skyr products, offering a variety of flavors and promoting healthy living through high-protein, low-fat dairy options. Their website is professionally designed, mobile-optimized, and rich in content including product details, recipes, and retail partner information. Technically, the site uses modern web technologies such as Google Analytics, Google Tag Manager, Microsoft Clarity, and Google reCAPTCHA to enhance user experience and security. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Security posture is good with HTTPS and CAPTCHA protection on forms, though security headers could be improved. Overall, the website is trustworthy, professional, and compliant with relevant privacy regulations.

I

IFLR1000

iflr1000.com

0

IFLR1000 is a well-established publishing entity specializing in financial and corporate law firm rankings, serving legal professionals and corporate clients globally. The website provides annual rankings and editorial content, positioning itself as a market leader in its niche. The technical infrastructure leverages modern web technologies including jQuery, Bootstrap, and integrates multiple analytics and advertising platforms such as Google Analytics, Microsoft Clarity, and Adition, hosted on Azure DNS infrastructure. The site demonstrates good digital maturity with responsive design and comprehensive cookie consent mechanisms ensuring GDPR compliance. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it lacks explicit published security policies and incident response contacts. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and enhancing security headers to further strengthen trust and compliance.

svt Products BV operates a specialized web platform and Android app called the Logboek manager, designed to facilitate fire protection project management including recordings, inventories, work preparations, and logbook compilation for clients and regulatory bodies. The company targets professionals and organizations involved in fire safety compliance in the Netherlands, positioning itself as a niche provider with a focused service offering. The website is built on a legacy ASP.NET WebForms platform with Telerik UI components, indicating a stable but somewhat dated technical infrastructure. The presence of DNSSEC and an active domain registered since 2015 supports the legitimacy and operational maturity of the business. However, the website lacks modern privacy and cookie policies, and security headers are absent, which are areas for improvement.

S

STOTEN.CZ

stoten.cz

0

STOTEN.CZ operates as a specialized retail e-commerce platform focused on table tennis equipment and apparel, targeting enthusiasts primarily in the Czech Republic. The website offers a broad catalog of products including paddles, rubbers, balls, clothing, and accessories, supported by a physical store and a table tennis academy. The business model centers on niche retail with additional services such as sponsorship and event organization, positioning itself as a trusted provider within its market segment. Technically, the website is built on the Shoptet e-commerce platform, utilizing legacy jQuery libraries alongside modern tracking tools like Google Analytics 4 and Facebook Pixel. The site is served over HTTPS with a good SSL configuration and includes cookie consent mechanisms, indicating a moderate level of digital maturity. Mobile optimization and SEO practices are adequate, though some accessibility features could be enhanced. From a security perspective, the site employs CSRF tokens on forms and uses HTTPS, but the presence of an outdated jQuery version introduces potential vulnerabilities. Security headers are not explicitly detected, suggesting room for improvement in hardening the site against common web attacks. Privacy compliance is basic, with cookie consent present but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website presents a moderate risk profile with no signs of blocking or WAF interference. The lack of public WHOIS data reduces transparency but is typical for small retail businesses. Strategic recommendations include updating JavaScript libraries, implementing comprehensive security headers, and publishing clear privacy and security policies to enhance trust and compliance.

Svatba.cz s.r.o. operates a leading Czech online wedding planning platform offering a professional wedding planner with budgeting tools, a comprehensive supplier catalog, wedding websites, inspiration, blog, and forum. Established in 1997, it serves engaged couples and wedding suppliers primarily in the Czech Republic, positioning itself as a mature and trusted market leader in the hospitality sector. The website employs modern web technologies including React and Next.js, hosted on DigitalOcean, and integrates multiple analytics tools such as Microsoft Clarity, Google Tag Manager, and Plausible Analytics. The site is well-optimized for mobile and SEO, providing an excellent user experience with clear navigation and professional design. Security posture is strong with HTTPS and best practices observed, though explicit security headers and a cookie consent mechanism are recommended. Privacy and terms of service pages are present and GDPR compliant, but direct contact information and security incident response details are not prominently displayed. Overall, the platform demonstrates a high level of digital maturity and business credibility with moderate room for improvement in privacy compliance and security transparency.

W

WOODEN TECH s.r.o.

wooden.land

0

Wooden land is a Czech-based e-commerce business specializing in handcrafted wooden watches, accessories, and furniture. The company emphasizes Czech production, artisanal craftsmanship, and offers custom design options for its products. The website targets consumers looking for unique, personalized wooden goods, primarily within the Czech Republic and potentially broader European markets. The business operates a direct-to-consumer retail model with a focus on quality and originality. Technically, the website is built on the PrestaShop platform, utilizing modern web technologies such as Bootstrap, jQuery UI, and FontAwesome. It integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, Hotjar, Heap Analytics, and Pinterest Tag, indicating a mature digital marketing approach. The site is mobile optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers in the HTML source and does not provide visible incident response or security policy information. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is limited due to privacy protection and unsupported TLD WHOIS, but the domain appears legitimate with an active expiry date. Overall, Wooden land presents a trustworthy and professional online presence with good privacy compliance and marketing sophistication. Strategic improvements in security headers and incident response transparency could further enhance its security posture and trustworthiness.

Agentura Alie s.r.o. is a Czech-based professional translation and accounting agency offering a broad range of language services including translations, proofreading, localization, DTP, copywriting, interpreting, and accounting. With over 15 years of market presence and a team of more than 200 translators and native speakers, the company positions itself as a reliable provider of high-quality language and accounting services primarily targeting businesses and individuals in need of such services. The website is well-structured, multilingual, and provides clear contact information and client testimonials, supporting its market credibility. Technically, the website employs modern web technologies such as jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA v3 to enhance user experience, analytics, and security. The site is mobile optimized and performs moderately well, though some improvements in accessibility and security headers could be made. The use of HTTPS and reCAPTCHA indicates a good baseline security posture. From a security perspective, the site lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance and enhanced security. The WHOIS data is privacy protected or unavailable, which is common for small businesses but limits domain age verification and registrant transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy compliance and security headers would enhance its security posture and user trust.

Y

YMY CL s.r.o.

ymy.cz

0

YMY CL s.r.o. is a Czech-based company specializing in interior design services including office and residential interiors, 3D visualizations, and complete realization and furnishing. Established in 1994 and operating as a limited liability company since 2010, it serves clients primarily in Prague, Liberec, Česká Lípa, and Northern Bohemia. The company positions itself as a professional and comprehensive service provider in the interior design sector with a focus on customer needs and quality execution. Technically, the website employs modern web technologies such as jQuery, Foundation CSS, and analytics tools like Google Analytics and Piwik, indicating a moderate level of digital maturity. However, the absence of WHOIS data and privacy/cookie policies reveals gaps in transparency and compliance. Security posture is moderate with HTTPS usage but lacks security headers and formal incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced compliance and security measures.

F

FARMA HOLANY s.r.o.

apartmanyholany.cz

0

Apartmány Holany is a small hospitality business offering family apartments for rent near Česká Lípa, Czech Republic. The website provides detailed accommodation information, contact details, and local tourist tips, positioning itself as a local lodging provider near Milčanský pond. The business is operated by FARMA HOLANY s.r.o., a registered Czech company. The website is professionally designed with responsive features and uses modern web technologies including Google Analytics and reCAPTCHA for security and tracking. However, the absence of WHOIS data limits domain trust assessment. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks explicit security headers and incident response information. Privacy compliance is supported by a cookie consent banner and privacy policy in Czech language. Overall, the site is safe, family-friendly, and functional, but could improve transparency and security practices.

R

RAPAX spol. s r.o.

rapax.eu

0

RAPAX spol. s r.o. is a Czech accounting firm providing comprehensive economic services including accounting management, payroll, tax advisory, audit, and outsourcing. The company targets both corporate and individual clients, emphasizing client interests and professional service quality. The website reflects a well-established local business with a clear service portfolio and contact channels. Technically, the site uses older JavaScript libraries and font replacement technologies, indicating some modernization opportunities. Security posture is moderate with cookie consent implemented but lacking visible security headers and published security policies. Overall, the website is professional and trustworthy but would benefit from technical and compliance improvements.

R

Restaurace Arbes - Formanka

restauracearbes.cz

0

The website restauracearbes.cz presents a local hospitality business focused on renting restaurant space in Česká Lípa, Czech Republic. It offers detailed information about the property, including size, facilities, and contact phone numbers. The site also promotes an associated Indian restaurant. Technically, the website uses modern frontend technologies such as Bootstrap 5, jQuery, and slick carousel, providing a responsive and visually appealing user experience. However, it lacks advanced SEO and accessibility features and does not include privacy or cookie policies. Security posture is weak due to missing HTTPS verification and absence of security headers or policies. The WHOIS data is unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the site is functional and informative but requires improvements in security, compliance, and trust signals.

A

Ace IT s.r.o.

aceit.cz

0

Ace IT s.r.o. is a Czech-based technology company specializing in the creation of custom web projects, including websites, e-shops, and online applications, with a strong focus on quality and client-centric services since 2008. The company positions itself as a boutique agency delivering tailored solutions with an emphasis on performance and user experience. Their service portfolio includes web development, online marketing, hosting, and IT outsourcing, targeting businesses seeking professional digital presence and marketing support. Technically, the website demonstrates a mature digital infrastructure using modern frameworks such as Nette and Node.js, along with front-end technologies like Bootstrap and Google Fonts. The site is well-optimized for performance and mobile responsiveness, employs HTTPS with strong SSL configuration, and integrates advanced cookie consent management and CAPTCHA for form security, reflecting a good level of digital maturity. From a security perspective, the site enforces HTTPS, uses Cloudflare Turnstile CAPTCHA to mitigate spam, and provides a detailed cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS transparency and lack of explicit security policies or incident response contacts represent areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy digital front with solid privacy compliance and security practices. The main risk lies in the missing WHOIS data, which slightly impacts domain trustworthiness. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility features to further strengthen the security posture and compliance.

D

Diamond Experts

rezani-vrtani.cz

0

Diamond Experts is a specialized service provider in the Czech Republic focusing on core drilling and concrete cutting services. With over 25 years of experience, the company serves both businesses and households primarily in Prague and the surrounding regions. Their offerings include a wide range of concrete-related services such as wall saw cutting, joint cutting, chemical anchoring, and structural reinforcement. The website reflects a mature business with clear contact information, certifications, and customer testimonials that enhance trust and credibility. Technically, the site employs modern JavaScript libraries and Google services for analytics and advertising, with a cookie consent mechanism that aligns with GDPR requirements. Security measures include the use of hCaptcha for bot protection, but there is room for improvement in security headers and incident response transparency. Overall, the website is professional, well-structured, and trustworthy, supporting the company's market position as a local expert in construction services.

The website at inmdock.com is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any meaningful content. The domain is newly registered in June 2024 with Tucows Domains Inc. as the registrar and uses SiteGround nameservers for hosting. There is no visible business information, contact details, or policy documents on the site, which severely limits the ability to assess the company's operations or market position. The technical infrastructure appears minimal with no advanced technologies or CMS detected, and no analytics or tracking scripts are present. Security posture is weak with no DNSSEC enabled and no security headers observed. Overall, the site is in an early or restricted state, providing no substantive content or trust signals.

U

UAB "Interneto vizija"

expertmedia.lt

0

Expertmedia.lt is a Lithuanian-based integrated marketing and advertising agency offering a wide range of digital marketing services including social media marketing, SEO, Google Ads, Facebook and TikTok advertising, content creation, and website development. The company positions itself as a full-service marketing department rental for businesses, emphasizing strategic partnership and measurable results. The website is professionally designed, multilingual (Lithuanian and English), and showcases certifications from major platforms such as Meta, TikTok, Google, and Omnisend, reinforcing its credibility in the digital marketing space. Technically, the site is built on WordPress with modern plugins and tracking tools like Google Tag Manager and Klaro for cookie consent, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced, though security headers are not explicitly detected. Privacy compliance is addressed with a privacy policy and cookie consent mechanism, but no explicit terms of service or incident response policies are found. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site reflects a trustworthy, professional marketing agency with a strong local presence and comprehensive service offerings.

U

Umbraco Community Mastodon

umbracocommunity.social

0

The Umbraco Community Mastodon website is a niche social networking platform dedicated to the Umbraco CMS community, leveraging the Mastodon open-source federated social network software. It serves a small but active user base focused on community engagement and content sharing related to Umbraco CMS. The platform is community-driven and does not appear to be commercial in nature. Technically, the site uses modern web technologies including React, ES modules, WebSockets, and supports progressive web app features. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and cookie consent mechanisms. Privacy compliance is basic with a privacy policy present but no cookie or terms of service pages. No contact emails or phone numbers are publicly listed, which is common for community-run platforms. Overall, the domain appears legitimate despite limited WHOIS data due to privacy protection and TLD limitations. The site is safe for general audiences and free from adult or explicit content.

S

Sleak

sleak.chat

0

Sleak is a Dutch technology company specializing in AI chatbot solutions designed to enhance customer service and lead generation for customer-centric businesses. Positioned as a market leader in the Netherlands, Sleak offers a SaaS platform that includes AI agent builders, live chat inboxes, and integration services with CRM and ticketing systems. The website reflects a professional and consistent brand image, targeting Dutch businesses seeking advanced AI-driven customer interaction tools. Technically, the site is built on Webflow CMS and incorporates modern analytics and marketing technologies such as Google Analytics, Hotjar, Facebook Pixel, and TikTok Pixel, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of public WHOIS data suggests privacy protection, which is justified for this business type. Overall, the site is trustworthy, well-designed, and compliant with privacy regulations.

N

NPO

npoplayer.nl

0

NPO.nl is the official public broadcasting portal of the Netherlands, operated by the NPO organization. It aggregates programs, documentaries, podcasts, and articles from various Dutch public broadcasters, serving as a centralized media platform for Dutch audiences. The website is well-established, with a domain age dating back to 1998, reflecting its long-standing presence in the Dutch media landscape. The portal targets a broad audience interested in public media content and offers a comprehensive range of services including streaming and content aggregation from multiple broadcasters. Technically, the website employs modern web technologies such as JavaScript, CSS, SVG, and lazy loading for images to optimize performance and user experience. It uses a custom content management framework (CCM) and integrates third-party scripts for cookies and advertising opt-out. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. Security-wise, the site enforces HTTPS with DNSSEC enabled, uses crossorigin anonymous scripts, and avoids exposing sensitive data, indicating a strong security posture. However, the site lacks explicit privacy and cookie policies in the provided HTML content, and no visible consent mechanism for cookies was detected. Contact information such as emails or phone numbers is not explicitly present in the analyzed content, which may impact user trust and compliance. There is also no visible security policy or incident response contact information. Overall, the site is professional, trustworthy, and secure but could improve transparency and compliance by publishing clear privacy, cookie, and security policies. The overall risk assessment is low, with recommendations focusing on enhancing privacy compliance, publishing security and incident response policies, and implementing explicit cookie consent mechanisms to align with GDPR and best practices.

S

SalesFeed Nederland B.V.

salesfeed.com

0

SalesFeed Nederland B.V. is a Dutch technology company specializing in B2B lead generation, marketing automation, and account based marketing software. The company offers a SaaS platform focused on business recognition, real-time website personalization, and CRM enrichment to help businesses optimize sales and marketing efforts. The website is professionally designed, targeting Dutch B2B companies, and demonstrates a mature digital presence with integrations of modern marketing and analytics tools. Security posture is good with HTTPS and cookie consent mechanisms in place, though some security headers and explicit policies are missing. WHOIS data is unavailable, which slightly reduces trust but the overall business credibility remains high based on website content and branding.

G

GIH Bundesverband

gih.de

0

GIH Bundesverband is the largest German association representing energy consultants, focusing on political advocacy, professional training, networking, funding support, and professional representation. The website is built on WordPress with standard SEO optimizations and a professional design targeted at energy professionals in Germany. The technical infrastructure is moderate with hosting provided by Alfahosting. Security posture is weak due to lack of visible security headers, privacy policies, and incident response information. No blocking or WAF mechanisms were detected, allowing full content access. Overall, the site is functional and professional but lacks critical compliance and security documentation.

The website https://dach-checker.de/login serves as a login portal for CREATON GmbH's visualization service. It targets business users or clients who require access to specialized visualization tools or services. The site is branded consistently with CREATON GmbH and provides a basic but functional interface for user authentication. However, the site lacks comprehensive business information, privacy policies, and contact details, which limits transparency and user trust. Technically, the site uses standard HTML5, CSS, and JavaScript with a CSRF token implemented in the login form, indicating some security awareness. The absence of security headers and explicit HTTPS confirmation in the HTML content suggests room for improvement in security posture. The site does not employ external analytics, advertising, or tracking technologies, which reduces privacy concerns but also limits marketing insights. From a security perspective, the site is accessible without WAF or blocking mechanisms, but it lacks visible security best practices such as HTTP security headers and privacy compliance indicators. The WHOIS data is minimal but does not raise immediate red flags. Overall, the site scores moderately on content quality, technical implementation, and security posture but scores low on privacy compliance and business credibility due to missing policies and contact information. Strategic recommendations include implementing and publishing privacy and cookie policies, enhancing security headers and HTTPS enforcement, providing clear contact and business information, and adding vulnerability disclosure and incident response details to improve trust and compliance.

S

swissporTON

creaton.sk

0

swissporTON is a European roofing brand specializing in ceramic and concrete roof tiles, combining Swiss quality and design with durable materials. The company targets roofing professionals, architects, distributors, and end customers seeking innovative roofing solutions. The website demonstrates a mature digital presence with modern technologies such as Google Tag Manager, Facebook Pixel, and Cookie Script for marketing and compliance. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not published. Overall, the site is professional, well-branded, and trustworthy, supporting swissporTON's market position as a quality roofing materials provider.

S

swissporTON

creaton.cz

0

swissporTON is a European roofing brand specializing in ceramic and cement roof tiles, combining Swiss quality and design. The website presents a professional and modern digital presence with detailed product offerings, targeting roofing professionals, distributors, architects, and end customers. The technical infrastructure includes modern JavaScript libraries, Google Tag Manager, Facebook Pixel, and a cookie consent mechanism, indicating a mature digital marketing and analytics setup. Security posture is generally good with HTTPS enabled and no obvious vulnerabilities, though security headers and incident response information are lacking. The absence of WHOIS data reduces transparency and trust slightly but does not detract significantly from the professional appearance and content quality. Overall, the website is well-structured, user-friendly, and trustworthy for its business domain.

S

swissporTON

creaton.ua

0

swissporTON is a roofing materials manufacturer and distributor focused on high-quality ceramic and cement roof tiles, membranes, and roofing accessories. The company targets roofing professionals, distributors, architects, and end customers primarily in Ukraine and Europe. The website is professionally designed, content-rich, and well-structured, providing detailed product information and resources for professionals. Technically, the site uses modern web technologies including Google Tag Manager and Swiper.js, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS usage but lacks explicit security headers and published security policies. WHOIS data is unavailable, reducing transparency and trustworthiness from a domain registration perspective. Overall, the site is safe, professional, and trustworthy but would benefit from improved privacy compliance and security disclosures.

S

swissporTON

creaton.pl

0

swissporTON is a reputable manufacturer and distributor of roofing materials, specializing in ceramic and cement roof tiles, roofing accessories, and integrated photovoltaic systems. The company targets professional builders, distributors, architects, and individual investors primarily in Poland and Europe. The website reflects a mature digital presence with comprehensive product information, professional design, and clear navigation. Technically, the site uses modern web technologies and integrates popular analytics and marketing tools while maintaining good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable publicly, consistent with .pl domain privacy norms, and does not raise legitimacy concerns. Overall, swissporTON presents a trustworthy and professional business with a solid online presence.

C

CREATON South-East Europe Kft.

creaton.hr

0

CREATON South-East Europe Kft. is a medium-sized manufacturing company specializing in clay roof tiles and roofing accessories, serving primarily the South-East European market. The company offers a broad product range, technical consulting, and downloadable resources, targeting private investors, contractors, architects, and agricultural users. The website is professionally designed, multilingual, and provides clear navigation and relevant content. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, hosted by Neosoft in Hungary, and integrates modern technologies such as Google Maps API and Facebook Pixel for marketing and analytics. Security posture is solid with HTTPS enforced and nonce usage in scripts, though some security headers are missing and no explicit incident response or vulnerability disclosure information is provided. Privacy and cookie policies are present and GDPR compliant. Overall, the website reflects a trustworthy and established business with good digital maturity.

C

CREATON South-East Europe Kft.

creaton.si

0

CREATON South-East Europe Kft. is a well-established manufacturer specializing in ceramic roof tiles with over 130 years of industry experience. As part of the French TERREAL group, it holds a strong market position in the manufacturing sector, offering a wide range of roofing products and technical support services. The website targets a broad audience including investors, architects, contractors, and agricultural users, providing comprehensive product information and reference projects. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, integrating modern technologies such as Google Maps API and Facebook Pixel for marketing and analytics. The website demonstrates good mobile optimization, SEO practices, and a consistent branding approach. Security-wise, the site enforces HTTPS and uses nonce attributes for scripts, but lacks explicit security headers and published incident response policies. Privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. Overall, the website is professional, trustworthy, and aligns well with the business's legitimacy and market presence.

C

CREATON South-East Europe Kft.

creaton.ro

0

CREATON Romania operates as a key supplier of roofing solutions, specializing in ceramic and concrete roof tiles with a broad product range and professional consulting services. The company positions itself as a leading European brand with over two centuries of brand heritage, targeting builders, architects, roof installers, and agricultural users. The website is well-structured, professionally designed, and offers multi-language support, reflecting a mature digital presence. Technically, the site is built on the Neos CMS platform using PHP and JavaScript, with integration of Google Maps API for location services. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and explicit cookie consent mechanisms. WHOIS data is privacy protected under ROTLD, which is typical for Romanian domains, and does not detract from the business legitimacy given the professional site content and contact information. Overall, the site demonstrates a strong business credibility and a secure, compliant digital footprint.

C

CREATON South-East Europe Kft.

creaton.hu

0

CREATON South-East Europe Kft. is a medium-sized manufacturing company based in Hungary specializing in ceramic roofing materials and related accessories. The company targets builders, roofers, architects, and agricultural users, offering a broad product range and technical support services. The website reflects a well-established regional presence with multilingual support and a clear focus on product quality and customer service. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with modern web technologies and good mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR, providing clear contact information and social media engagement.

C

CREATON Benelux nv

creatondak.nl

0

CREATON Benelux nv operates as a specialized manufacturer and distributor of high-quality clay and concrete roof tiles along with system accessories, targeting private individuals, building owners, and professional stakeholders such as roofers, architects, and project developers. The company maintains a strong market position in the Benelux region with a professional and content-rich website that supports multiple languages and regional partner sites. The website infrastructure is built on the Neos CMS platform using the Flow PHP framework, incorporating modern technologies such as Google Tag Manager and Cookiebot for analytics and consent management. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website demonstrates good technical maturity, privacy compliance, and business credibility, supporting a trustworthy online presence for the company.

C

CREATON Benelux nv

creaton.be

0

CREATON Benelux nv is a specialized manufacturer and distributor of high-quality clay and concrete roof tiles along with roofing system accessories. The company targets both private individuals and professional roofing partners, positioning itself as an expert in pitched-roof solutions within Belgium and internationally through multiple localized websites. The website is professionally designed using the Neos CMS platform, featuring multi-language support and clear navigation tailored to different user groups such as homeowners and professionals. The business model focuses on manufacturing and supplying roofing materials with additional professional services and tools.

C

CREATON

creaton.it

0

CREATON is a well-established manufacturer and supplier specializing in roofing products, including clay tiles and roofing accessories, targeting both professional and consumer markets primarily in Italy and other European countries. The website reflects a mature digital presence with multi-language support and a professional design consistent with its industry. The technical infrastructure leverages modern frameworks such as Neos CMS and Flow PHP, integrating third-party services like Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, though there is room for improvement in implementing additional security headers. Overall, the website demonstrates good compliance with GDPR and privacy standards, with transparent business information and a trustworthy online presence.

C

CREATON

creaton.ch

0

CREATON is a well-established manufacturer and supplier specializing in roofing products, including high-quality clay roof tiles and economical concrete roof stones, complemented by extensive original and system accessories. The company targets both B2B and B2C customers in the construction and renovation sectors, maintaining a strong market presence in Switzerland and Europe. Their website reflects a professional and consistent brand image, offering multilingual support and comprehensive product information. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, integrating modern tools such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The website demonstrates good mobile optimization and SEO practices, ensuring a positive user experience.

C

CREATON

creaton.com

0

CREATON is a specialized manufacturer and distributor of high-quality pitched roof tiles, including clay and concrete options, along with system accessories. The company targets roofing professionals, architects, residential construction companies, dealers, and end customers interested in pitched roofs. Their market position is that of an established expert with a broad product range and professional services. The website is built on the Neos CMS platform using the Flow PHP framework, incorporating modern technologies such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though security headers and explicit privacy policies are missing. WHOIS data is unavailable, which slightly reduces domain trust but the professional website and active cookie compliance indicate legitimate business operations. Overall, the website scores well in content quality, technical implementation, security, privacy compliance, and business credibility.

A

Applepie

applepie.nl

0

Applepie is a well-established full-service digital agency based in the Netherlands, specializing in branding, digital marketing, campaign content, and web development services primarily for small and medium-sized enterprises (SMEs). The company positions itself as a growth partner with over 20 years of experience and a strong client portfolio exceeding 200 organizations. Their service offerings are comprehensive, covering branding and positioning, digital marketing and data analytics, campaign and content creation, and web development technologies. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, Bing Ads, LinkedIn Insight Tag, and Leadinfo for analytics and marketing purposes. The site is built on a proprietary CMS (ApplepieCMS) and demonstrates good mobile optimization and SEO practices. Performance is moderate, with asynchronous loading of scripts to enhance speed. However, explicit security headers are not visibly implemented, though HTTPS is enforced, indicating a good SSL configuration. From a security standpoint, the website follows best practices such as HTTPS enforcement and cookie consent mechanisms compliant with GDPR. Certifications like Google Partner and Meta Certified, along with industry awards, enhance trustworthiness. However, the absence of a published security policy, incident response contacts, or a vulnerability disclosure mechanism suggests room for improvement in security transparency and readiness. Overall, Applepie presents a low-risk profile with a strong business credibility and digital maturity. Strategic recommendations include implementing explicit security headers, publishing a security policy and incident response information, and adding a security.txt file to facilitate vulnerability reporting. These steps would further strengthen their security posture and compliance stance.

F

fireTMS.com Sp. z o.o.

firetms.com

0

fireTMS.com Sp. z o.o. operates a mature and well-established transport management system platform targeting carriers and forwarders globally, with a strong presence in Poland and Europe. The company offers a comprehensive SaaS solution integrating transport planning, order management, invoicing, GPS tracking, and mobile applications, supported by a freight exchange service (fireXgo). The business is part of the Eurowag Group, enhancing its market credibility and reach. Technically, the website is built on modern frameworks like Next.js and React, optimized for performance and mobile responsiveness, and integrates multiple marketing and analytics tools. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the website and business demonstrate high professionalism, trustworthiness, and compliance with GDPR, making fireTMS a credible and competitive player in the transport software industry.

W

W.A.G. payment solutions, a.s.

cvs-mobile.com

0

W.A.G. payment solutions, a.s., operating under the Eurowag brand, is a leading European provider of integrated mobility and payment solutions focused on the transportation sector. The company offers a comprehensive suite of services including fleet management telematics, fuel cards, toll payment solutions, tax refund services, and eMobility options. Their recent integration of CVS Mobile enhances their fleet management capabilities with advanced real-time tracking and route planning, positioning them strongly in the European transport market. The website reflects a mature digital presence with multi-language support and country-specific offerings, targeting fleet operators and logistics managers across Europe. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Tag Manager for analytics and tracking, and intl-tel-input for phone input handling. The site is well-optimized for mobile devices, accessible, and fast-loading, demonstrating a high level of digital maturity. The presence of comprehensive legal, privacy, and cookie policies indicates a strong commitment to compliance and user privacy. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, though explicit security headers are not detected in the provided data. No vulnerabilities or exposed sensitive data were found in the content. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation, regulatory disclosures, and trust signals support a strong security posture. Overall, the website presents a low-risk profile with robust business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing an incident response page, and adding a vulnerability disclosure policy to further strengthen security transparency and resilience.

W

W.A.G. payment solutions, a.s.

gbox.pl

0

W.A.G. payment solutions, a.s. operates as a leading European provider of integrated mobility and payment solutions, primarily serving the transportation and fleet management sectors. Their website promotes the GBox telematics platform, offering real-time vehicle tracking, driver monitoring, and data analytics to optimize fleet operations and reduce costs. The company targets transport companies, fleet managers, and logistics operators with a comprehensive suite of telematics and payment services, supported by multiple digital portals and mobile applications. Technically, the website is built on the Webflow CMS platform, leveraging modern JavaScript libraries such as jQuery and intl-tel-input, and integrates Google Tag Manager and LiveChat for analytics and customer support. The site is well-optimized for mobile devices, accessibility, and SEO, with a fast loading performance and structured navigation. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting good compliance with GDPR requirements. From a security perspective, the site enforces HTTPS, uses CAPTCHA on forms, and avoids exposing sensitive data. However, explicit security headers like CSP and HSTS are not detected, and no public vulnerability disclosure or incident response contacts are provided. The WHOIS data is unavailable publicly, which slightly reduces transparency but is common for corporate domains. Overall, the security posture is solid but could be enhanced with additional headers and disclosure practices. The overall risk assessment indicates a trustworthy and professional online presence with moderate to high credibility. Strategic recommendations include improving security header implementation, publishing a security.txt file, and enhancing incident response transparency to further strengthen trust and compliance.

W

W.A.G. payment solutions, a.s.

ocrk.pl

0

W.A.G. payment solutions, a.s. operates a professional website focused on providing integrated mobility and payment solutions for the European transport sector. The site highlights expert services in driver work time management, compliance, and financial settlements, targeting transport companies and fleet managers. The company positions itself as a leading provider with a broad portfolio including fuel cards, toll services, telematics, and financial services. The website is well-structured, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site leverages modern web technologies including Webflow CMS, JavaScript libraries like jQuery and intl-tel-input, and integrates Google Tag Manager and LiveChat for analytics and customer support. The site is mobile-optimized and accessible, with cookie consent mechanisms and GDPR-compliant privacy policies. Security measures include HTTPS and CAPTCHA on forms, though explicit security headers and incident response information are not evident. The security posture is solid but could be improved by adding security headers and publishing vulnerability disclosure information. The absence of WHOIS data reduces trust slightly but the professional presentation and consistent business information mitigate concerns. Overall, the site demonstrates a strong business and technical foundation with room for enhanced security transparency. Strategic recommendations include implementing security headers, publishing a security.txt file, providing incident response contacts, and improving WHOIS transparency to enhance trust and compliance.

W

W.A.G. payment solutions, a.s.

webeye.eu

0

W.A.G. payment solutions, a.s., operating under the brand Eurowag, is a leading provider of integrated mobility and payment solutions tailored for the European transportation sector. The company offers a comprehensive suite of services including fleet management, toll payment solutions, fuel cards, tax refunds, and financial services, targeting commercial fleet operators and logistics companies. Their market position is strong, supported by a large-scale operation and a broad geographic presence across multiple European countries. Technically, the website is built on modern web technologies including Webflow CMS, jQuery, and Google Tag Manager, hosted on a performant CDN infrastructure. The site is well-optimized for mobile devices, accessibility, and SEO, reflecting a mature digital presence. The integration of multiple login portals and partner platforms indicates a complex and well-managed technical ecosystem. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, demonstrating compliance with privacy regulations such as GDPR. However, explicit security headers are not visibly configured, and there is no public incident response or vulnerability disclosure policy, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front for a large enterprise in the transportation and payment services industry. The lack of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and formalizing vulnerability disclosure policies to strengthen trust and compliance.

C

Cloudflare, Inc

wonderchat.io

0

Wonderchat.io is a technology startup focused on providing no-code AI chatbot solutions for websites, leveraging ChatGPT-based automation to enhance customer support and sales analytics. The company targets businesses seeking to automate up to 70% of support queries with custom AI agents, positioning itself as an emerging player in the AI SaaS market. The website is built using modern frameworks like Framer and is hosted via Cloudflare, indicating a contemporary technical infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protections in place, but lacks advanced DNS security features such as DNSSEC and does not publish security or privacy policies. The site integrates multiple analytics and marketing tools, reflecting a data-driven approach to user engagement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact and security information.

V

Van der Horst aannemers

vanderhorstaannemers.nl

0

Van der Horst aannemers is a medium-sized Dutch construction company specializing in complex building projects with a strong focus on budget management, planning, logistics, and fire safety. The company maintains a significant portfolio of residential and commercial properties and has a solid regional market presence. Their website reflects a professional and consistent brand image, targeting construction clients and municipalities. Technically, the website employs modern analytics and marketing tools, including Google Analytics, Facebook Pixel, and Hotjar, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. No critical vulnerabilities or blocking mechanisms were detected, and WHOIS data supports the legitimacy of the domain and business. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

C

Cornelissen aannemingsbedrijf

cornelissenbouw.nl

0

Cornelissen aannemingsbedrijf is a Dutch construction contracting company specializing in managing both large and small building projects with an emphasis on craftsmanship and customer involvement. The company targets individuals and businesses in the Netherlands seeking reliable construction services. The website is built on WordPress, utilizing Yoast SEO for search engine optimization and Google Analytics for visitor tracking. The technical infrastructure is modern but lacks some advanced security headers and privacy compliance features. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to align with best practices and regulatory requirements.