Other security reports

N

Nejlepší online casino v Česku

zahulimeuvidime.cz

55

The website zahulimeuvidime.cz operates as an online casino affiliate and review platform targeting Czech-speaking adult users interested in online gambling. It provides detailed reviews, bonus offers, and educational content about new Czech online casinos for the year 2025. The site positions itself as a trusted source for casino information with a focus on licensed Czech operators and responsible gambling. Technically, the site is built on WordPress with a modern tech stack including jQuery and various UI libraries, hosted behind Cloudflare DNS with HTTPS enabled. The design is professional and mobile-optimized, offering a good user experience with clear navigation and relevant content. Security posture is moderate; HTTPS is enforced but lacks visible security headers and explicit security policies. Privacy compliance is limited, with a privacy policy present but no cookie consent mechanism or GDPR indicators. WHOIS data shows inconsistencies, notably a domain creation date in the future relative to content dates, which raises legitimacy concerns. No direct contact information or incident response channels are provided. Overall, the site is functional and content-rich but would benefit from improved transparency, security hardening, and privacy compliance to enhance trustworthiness.

N

Nejlepší online kasina v Česku

usedmikrasek.cz

53

The website usedmikrasek.cz is a newly established Czech online platform focused on providing information and reviews about online casino bonuses without deposit, targeting adult gamblers in the Czech Republic. It operates primarily as an affiliate and informational site, offering detailed content on casino bonuses, free spins, and related gambling promotions. The site uses WordPress CMS with common plugins and is hosted behind Cloudflare DNS, ensuring basic security and performance. Structured data is implemented to enhance SEO and content discoverability. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. The site does not expose sensitive data or show signs of malicious activity. Overall, the platform is professionally designed with good content quality and moderate trustworthiness, suitable for its niche audience.

N

Nové české online casino

rcguru.cz

53

The website rcguru.cz operates as a Czech language online casino review and bonus information platform targeting players interested in Czech online casinos. It provides detailed reviews of top 10 casinos, payment methods, bonus explanations, and user testimonials. The business model appears to be affiliate or informational, focusing on guiding users to various casino platforms. Technically, the site uses standard web technologies with Cloudflare DNS, structured data for SEO, and a responsive design optimized for mobile. Security posture is moderate with no detected WAF or blocking, but lacks explicit security headers and incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. WHOIS data shows inconsistencies, notably a domain creation date in the future relative to content publication, which raises legitimacy concerns. Overall, the site is functional and professional but would benefit from enhanced security and compliance transparency.

U

Unique Research GmbH

unique-research.at

59

Unique Research GmbH is a Vienna-based market and opinion research company specializing in market intelligence services. The company offers data-driven insights and analysis to support business decision-making, targeting organizations seeking validated market data in Austria. The website is professionally designed using the Wix platform, featuring structured data for local business and website schema, but lacks comprehensive privacy and cookie policies. Technically, the site uses modern JavaScript polyfills and Wix's Thunderbolt framework, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but could be improved by adding security headers and formal incident response information. Overall, the site is trustworthy and credible but would benefit from enhanced privacy compliance and security best practices.

H

Hill & Knowlton

hkstrategies.com

79

Hill & Knowlton is a well-established global communications and public relations agency with a domain registered since 1995, indicating a long-standing presence in the industry. The website serves primarily business and corporate clients, offering services in public relations, communications consulting, and strategic communications. The site uses modern web technologies including Nuxt.js and Cloudflare DNS, with accessibility features implemented via a third-party accessibility app. However, the website content is basic with minimal metadata and lacks explicit privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS enabled and domain transfer protections in place, but DNSSEC is not enabled and security headers are not evident in the provided data. Overall, the website is professional but could improve in privacy compliance and transparency.

The website netpuppgo.com currently presents an empty HTML page with no visible content, metadata, or interactive elements. The domain is registered since 2020 with a reputable registrar and uses Cloudflare nameservers, indicating some level of infrastructure setup. However, the lack of any website content or policies suggests the site is either under construction or abandoned. The technical infrastructure is minimal with no CMS or frameworks detected, and no security headers or privacy compliance measures are in place. The security posture is basic due to HTTPS availability but lacks advanced protections such as DNSSEC or security headers. Overall, the site poses low risk but also low trust and credibility due to absence of content and transparency.

The domain amatic-uz.com is registered with REG.RU LLC since April 2022 and is currently active but the website content is inaccessible, returning a 404 Not Found error page. There is no visible metadata, structured data, or business information available on the site. The lack of content and absence of privacy, cookie, or contact policies indicate the website is either under development or abandoned. Technically, the site is served by nginx 1.24.0 but lacks security headers and HTTPS information, limiting its security posture. Overall, the site presents a low trust profile with minimal digital maturity and no visible compliance or security measures.

V

Vavada com

euroutconference.org

52

The website rencontresmusicalesirlandaisestocane.com is an online casino promotional platform primarily targeting Russian-speaking users. It offers information about bonuses, promo codes, free spins, and various casino games including slots, live games, tables, and tournaments. The site also promotes sports betting bonuses and maintains an active presence on social media platforms such as Telegram, Instagram, VK, and YouTube. The business model revolves around online gambling with incentives to attract and retain players. The domain WHOIS data shows a suspicious future creation date, which raises concerns about the legitimacy or accuracy of the registration information. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery, with Cloudflare DNS services. The site is mobile-optimized and has good SEO practices but lacks explicit privacy, cookie, and terms of service policies. Security posture is moderate with HTTPS enabled but missing important security headers and DNSSEC.

M

Главная - Mehanoid.pro

mehanoid.pro

43

The website mehanoid.pro appears to be a small business or project established in 2018, hosted on Beget and built on WordPress with Materialize CSS framework. The site content is accessible and primarily in Russian, but lacks critical compliance documents such as privacy policy, cookie policy, and terms of service. There is no visible contact information or incident response details, which limits user trust and compliance with regulations like GDPR. Technically, the site uses modern front-end frameworks but lacks security headers and advanced security configurations. The domain registration is consistent and legitimate with no privacy protection, indicating transparency in ownership. Overall, the website shows basic digital maturity but requires significant improvements in privacy, security, and business credibility to enhance trust and compliance.

The domain traf-link.com is newly registered as of July 4, 2024, and currently serves only a standard 404 Not Found error page with no accessible website content. There is no metadata, structured data, or business information available to analyze. The domain is registered through REG.RU LLC with no privacy protection. The lack of content and absence of any contact or policy pages indicate the website is either under development or inactive. Technically, the site runs on nginx 1.24.0 but lacks HTTPS and security headers, which are critical for secure operations. No scripts, analytics, or advertising technologies are detected, reflecting minimal digital maturity. Security posture is weak due to missing policies and protections. Overall, the site presents a high risk for trust and credibility due to its inaccessibility and lack of information.

The analyzed website appears to be inaccessible or blocked, as the content is a Chrome internal error page (chrome-error://chromewebdata/). The domain name and page title suggest adult content, but no actual business or content data is available. The technical infrastructure is limited to Chromium offline error page scripts, with no external links, metadata, or business information. Security posture is weak due to lack of HTTPS and security headers. Privacy and compliance policies are absent. Overall, the site lacks professionalism and trust indicators, and the content is not accessible for meaningful analysis.

The website xenony.in is currently a parked domain page with no active business content or services offered. It primarily serves as a placeholder indicating the domain may be for sale, with advertising scripts and links to domain resale services. The technical infrastructure relies on basic HTML, CSS, and JavaScript with third-party advertising and tracking integrations, hosted via Amazon Cloudfront CDN. There is no evidence of a content management system or advanced frameworks. Security posture is weak, lacking HTTPS enforcement and security headers, and no privacy or cookie consent mechanisms are implemented. Business credibility is low due to absence of contact information, company details, or trust signals. Overall, the site is minimal and not professionally maintained, serving only as a domain parking page.

D

DER PUNKT GmbH

richmedia-plus.de

42

DER PUNKT GmbH is a well-established advertising and design agency based in Karlsruhe, Germany, founded in 1999. The company offers a broad range of services including marketing, corporate design, web design, print media, database solutions, presentations, video production, and mobile app development. With a medium-sized team of approximately 26 employees, DER PUNKT serves both medium-sized businesses and large corporations, positioning itself as a leading agency in the Southwest German market. Their client portfolio includes major brands such as Adidas, BASF, Lufthansa, and Mercedes-Benz, underscoring their strong market presence and credibility. Technically, the website is built on modern web standards using HTML5, CSS3, JavaScript, and jQuery, with TYPO3 as the CMS platform. The site integrates Google Analytics and Google Tag Manager for analytics and tracking, and employs Klaro for cookie consent management, demonstrating a mature digital infrastructure. The site is mobile-optimized and features good SEO and accessibility practices, although accessibility could be further enhanced. From a security perspective, the website uses HTTPS with a strong SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, there is no publicly available formal security policy or incident response information, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found in the content. The WHOIS data aligns well with the business claims, showing consistent domain registration since 1999, reinforcing the legitimacy of the entity. Overall, DER PUNKT GmbH presents a professional, trustworthy, and compliant online presence with strong business credibility and a solid technical foundation. Strategic improvements could include publishing formal security policies, adding vulnerability disclosure mechanisms, and enhancing accessibility and security headers to further strengthen their security posture and compliance.

K

KOIMO.COM

koimo.com

53

KOIMO.COM is a minimalistic business inquiry landing page with a focus on collecting contact information via a web form. The site lacks detailed business information, privacy policies, or terms of service, which limits transparency and trust. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, Font Awesome, and Google reCAPTCHA to provide a responsive and secure user experience. However, the absence of WHOIS registration data raises concerns about the legitimacy and ownership of the domain. Security posture is moderate due to HTTPS usage and CAPTCHA protection but lacks important security headers and policies. Overall, the site is functional but lacks comprehensive compliance and trust indicators.

The website edge.com currently serves as a parked domain page indicating the domain may be for sale. There is no active business content or services offered on the site. The domain is a premium, long-registered domain owned by Network Solutions, LLC, a reputable registrar. The site infrastructure relies on basic HTML and JavaScript with multiple third-party advertising and tracking scripts, including Google Adsense and AdsDeli. The site lacks privacy and cookie policies despite extensive tracking, and no contact or business information is provided. Security posture is minimal with no DNSSEC or security headers enabled, and the SSL configuration is basic. Overall, the site is accessible without WAF or blocking but provides limited value beyond domain parking and advertising.

Peter & Paul is a specialized brand agency focused on delivering creative, strategic, and visually compelling brand solutions. With over 20 years of experience, they provide services including brand strategy, design, language, identity, digital branding, motion, and art direction. Their website showcases a portfolio of projects emphasizing their expertise in brand development and campaign execution. Technically, the website is built on modern frameworks such as Nuxt.js and Tailwind CSS, ensuring good mobile optimization and user experience. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The WHOIS data for the domain queried is unavailable due to domain naming rules, indicating the domain queried is likely a subdomain rather than a registered domain, which slightly reduces trust from a domain registration perspective. Overall, the website is professional and content-rich but would benefit from enhanced security and compliance features.

T

TM — TsevdosMcNeil – Brand Consultancy

tm-studio.co.uk

41

TM — TsevdosMcNeil is a small UK-based brand consultancy established in 2015, specializing in brand strategy, identity, and multi-channel implementation including websites, print, and environmental branding. The company targets innovative and creative businesses seeking to develop and enhance their brand presence. Their market position is that of a niche, creative consultancy with a professional and visually appealing online portfolio showcasing multiple projects. Technically, the website uses modern frontend technologies such as Alpine.js and Vimeo video embeds, managed likely via the Statamic CMS. Google Tag Manager is used for analytics and tracking, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data; however, the absence of explicit security headers and privacy/cookie policies represents compliance and security gaps. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

G

Galliford Try

gallifordtry.co.uk

71

Galliford Try is a leading UK construction group focused on improving the built environment and delivering lasting change. The website reflects a professional corporate presence with clear branding and a focus on construction services. The technical infrastructure includes modern tracking and consent management tools such as Google Tag Manager and CookieYes, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS usage implied, but lacks visible security headers and explicit privacy policies, which are areas for improvement. Overall, the website is functional and trustworthy but would benefit from enhanced transparency and security practices.

The website digitalconstructionweek.com is currently inaccessible beyond a Cloudflare security verification page that employs Google reCAPTCHA v3 to prevent automated access. This indicates a protective security posture against bots but also limits content visibility and analysis. The domain is registered with a reputable registrar and has a long registration period, supporting its legitimacy as an established event or business site. However, no business or contact information, privacy policies, or terms of service are visible in the provided HTML content, limiting the ability to assess compliance and business credibility. Technically, the site uses modern frontend technologies such as Bootstrap and Google reCAPTCHA, but lacks visible SEO, accessibility, or security headers in the accessible content.

T

Tenis Club Bajda Kroměříž

tcbajda.cz

36

Tenis Club Bajda Kroměříž is a local voluntary tennis club based in the Czech Republic, offering tennis facilities, training, and event organization primarily for local tennis enthusiasts. The website serves as an informational and reservation platform for members and visitors, highlighting club news, events, and membership details. The club appears to have a stable local presence with approximately 240 members and a physical location in the city center of Kroměříž. Technically, the website is built on an older WordPress version with legacy plugins and libraries, which introduces security risks and indicates a need for modernization. The site uses HTTPS and includes Google Analytics for visitor tracking but lacks modern security headers and privacy compliance features such as cookie consent and privacy policies. Security posture is moderate but could be significantly improved by updating software and implementing best practices. The absence of WHOIS data limits domain trust analysis, but the website content and social media presence support legitimacy. Overall, the site is functional but requires technical and compliance upgrades to enhance security and user trust.

M

MULTI-S, s.r.o.

multi-s.cz

51

MULTI-S, s.r.o. is a Czech company operating since 2003, providing a broad range of services including security, cleaning, towing, and advertising wraps. The company targets local businesses and individuals requiring these services and maintains a stable workforce of approximately 30 employees. The website reflects a small-sized service provider with a focus on professional service delivery and local partnerships. Technically, the website is built on WordPress with common plugins and scripts, offering moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and privacy compliance documentation. The absence of WHOIS data limits domain trust verification, though the website content and business information appear legitimate and consistent with the company's claims.

P

Peter Rigo Photography

rigopeter.sk

53

Peter Rigo Photography is a professional wedding photography business based in Slovakia, offering specialized services including wedding day photography, portraits on different days, and photo editing. The website presents a well-structured and visually appealing portfolio targeting couples seeking high-quality wedding photography. Technically, the site is built on WordPress with Elementor and several plugins, leveraging modern web technologies and third-party marketing and analytics tools. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks some important security headers and uses an outdated jQuery version, which could pose risks. Privacy compliance is limited due to the absence of a privacy policy and terms of service pages. Overall, the website is professional and trustworthy, but could improve in security and compliance aspects.

The website ventic.cz currently serves a security verification page that employs Google reCAPTCHA v3 to protect against automated bots. This indicates a protective security posture but also blocks access to the actual website content, limiting the ability to analyze business details or user-facing information. The domain is registered in 2021 with a Czech registrar and uses Czech name servers, consistent with the domain's country code. The technical infrastructure includes modern frontend frameworks like Bootstrap and Google reCAPTCHA, but lacks visible security headers or privacy policies on the landing page. Overall, the site appears to be in an early or protected stage with minimal public content available. The security posture shows strengths in bot mitigation but lacks transparency in privacy and contact information, which impacts trust and compliance assessments.

The analyzed content corresponds to an internal Chrome browser error page (chrome-error://chromewebdata/) that displays when a webpage cannot be loaded. The page includes embedded scripts and styles for the Chrome Dinosaur offline game. There is no public website content, business information, or user-facing services. The page is not intended as a commercial or informational website but serves as an offline error display within the Chrome browser environment. Consequently, no privacy, cookie, or terms of service policies are present, and no contact or security policies are available. The technical infrastructure is limited to client-side JavaScript and HTML5 Canvas for the game, with no server-side components or hosting details. Security posture is minimal due to the nature of the page, and no external links or analytics are detected.

P

Pivovar Zubr

zubr.cz

52

Pivovar Zubr is an established Czech brewery with a strong online presence showcasing its beer products, brewery history, and news updates. The website is built using modern web technologies such as Vue.js and Nuxt.js, providing a responsive and visually appealing user experience. The business model focuses on beer production, direct sales through an e-shop, and brewery tours, targeting beer enthusiasts and local consumers. The domain age and WHOIS data support the legitimacy and longstanding nature of the business. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible privacy policies, terms of service, and security headers, which are areas for improvement. Tracking technologies like Google Analytics and Facebook Pixel are used, indicating moderate user tracking. Overall, the website is professional and trustworthy but could enhance privacy compliance and security posture.

I

Imperial Tobacco Austria Marketing Service GmbH

imperial-tobacco.at

54

Imperial Brands Austria operates as a subsidiary of Imperial Brands plc, the fourth largest tobacco company globally. The website serves as a corporate portal providing information about the company's products, corporate responsibility initiatives, career opportunities, and contact details. The target audience includes mature consumers and potential employees in Austria. The business model centers on tobacco product marketing and corporate engagement within the Austrian market. Technically, the website is built on Joomla! CMS with modern frontend technologies including Bootstrap 5, Swiper.js for interactive elements, and Awesomplete for search autocomplete. The site is hosted likely by ITronic Webhosting and uses Matomo for analytics, indicating a preference for privacy-conscious tracking. The site is mobile optimized and accessible with good SEO practices. From a security perspective, the site enforces HTTPS and uses CSRF tokens, but lacks explicit security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; a comprehensive privacy policy is present, but no cookie consent mechanism was found. Incident response and security policies are not published. Overall, the website is professional and trustworthy with a strong business credibility score. Recommendations include implementing cookie consent, adding security headers, and publishing security and incident response policies to enhance compliance and security posture.

N

Nejlepší online casino v Česku

zus-upujcovny.cz

53

The website zahulimeuvidime.cz operates as a Czech-language online casino informational and affiliate platform, providing detailed reviews, bonus offers, and guides related to new Czech online casinos in 2025. It targets adult Czech players interested in gambling, offering a curated selection of casino brands and payment methods. The business model focuses on affiliate marketing and content provision within the gambling sector. Technically, the site is built on WordPress, leveraging modern JavaScript libraries such as jQuery, Swiper, and Tippy.js, and is hosted behind Cloudflare, ensuring reasonable performance and mobile optimization. Security posture is moderate with HTTPS enforced, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. WHOIS data raises concerns due to a future domain creation date, which impacts trustworthiness. Overall, the site is functional and content-rich but would benefit from enhanced transparency and security practices.

A

Aviator ойыны ⭐ Ойнауды қалай бастау керек - йын ақша табу

aviator-stavki.com

51

The website aviator-stavki.com is a small-scale affiliate and informational platform focused on the Aviator online gambling game. It provides gameplay descriptions, strategies, and multiple affiliate links to external gambling sites offering bonuses and real money play. The site targets Russian and Kazakh speaking adult gamblers interested in online casino games. Technically, it is built on WordPress with jQuery and integrates third-party iframe content from SlotsLaunch. The domain is very new, registered in December 2023, consistent with the site's recent launch. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers. Privacy and compliance documentation such as privacy policy, cookie policy, and terms of service are absent, which is a compliance gap. No contact or incident response information is provided, limiting trust and transparency. Overall, the site is functional but basic in content quality and security maturity.

V

Venson LTD

mostbetcasino-cz.com

51

Mostbet Casino CZ is a regional affiliate website promoting the international Mostbet gambling platform, which operates under a Curaçao license since 2009. The site offers detailed information about casino games, bonuses, and registration instructions targeting Czech-speaking users. Technically, the site is built on WordPress with standard SEO plugins and uses Cloudflare DNS. Security posture is moderate with HTTPS enabled but lacks advanced DNS security and published security policies. No privacy or cookie policies were found, indicating compliance gaps. The domain is newly registered in 2023, consistent with an affiliate marketing strategy rather than the main corporate site. Overall, the site provides good content quality and user experience but requires improvements in privacy compliance and security transparency.

The website shark.services is currently inaccessible, returning a 403 Forbidden error page that blocks any content access. Due to this, no business information, contact details, or policies are available for review. The domain is registered with Gransy, s.r.o., a Czech registrar, and the domain age is consistent with a business founded in 2020. Hosting is provided by cesky-hosting.cz. The lack of accessible content severely limits the ability to assess the company's market position, services, or technical maturity. Security posture is minimal with no security headers or DNSSEC enabled, and privacy compliance is absent due to missing policies. Overall, the site appears to be either under maintenance, restricted, or improperly configured for public access.

Springdesign.cz is a Czech graphic design and marketing service provider operating since 1999 under the parent company Ascensus s.r.o. The company offers original graphic design, web design, corporate identity, outsourcing, and marketing psychology services targeting local businesses. The website presents a professional team and partner affiliations but lacks modern digital maturity features such as privacy policies, secure HTTPS, and mobile optimization. Technically, the site uses basic HTML, CSS, and an outdated Google Analytics script loaded insecurely over HTTP, which poses security risks. No contact forms or direct contact information are provided on the site, limiting user engagement and compliance with data protection regulations. Security posture is weak due to missing HTTPS and security headers, and privacy compliance is poor with no cookie or privacy policies. Overall, the site is functional but requires significant improvements in security, privacy, and technical modernization to meet current standards.

G

G6

firmyg6.cz

44

Firmy G6 is a Czech Republic-based online business directory established in 2011, focusing on companies that prioritize reputation over short-term profit. The platform categorizes suppliers and professionals across diverse sectors, providing a searchable catalog for businesses and consumers seeking trusted service providers. The website employs modern web technologies including Ruby on Rails, Google Analytics, and responsive design elements, delivering a good user experience with clear navigation and relevant content. However, it lacks published privacy and cookie policies, which impacts its compliance posture. Security measures such as CSRF tokens are present, but security headers and incident response information are missing, indicating room for improvement in security maturity. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

The website atomic.com is currently inaccessible due to a PerimeterX Web Application Firewall (WAF) security challenge page that denies access to the actual content. This prevents any direct analysis of the business offerings, contact information, or detailed technical infrastructure. The domain itself is well-established, having been registered since 1994, and is managed by a reputable registrar with multiple domain status protections in place. However, DNSSEC is not enabled, which is a minor security gap. The visible page is minimal and only serves as a bot mitigation mechanism, indicating a strong security posture in terms of access control but limiting transparency. Due to the blocking, no privacy, cookie, or terms of service policies are detectable, nor are any contact details or business descriptions. The site does not expose any sensitive data or vulnerabilities on the accessible page, but the lack of accessible content results in a low overall AI score and limited insights.

Okresní fotbalový svaz Uherské Hradiště is a regional football association serving the Uherské Hradiště district in the Czech Republic. The organization focuses on managing local football competitions, youth training programs, and official communications for clubs and stakeholders within the region. The website serves as an information hub for news, official announcements, and contact details relevant to the football community. The business operates as a non-profit sports association with a clear local focus and a small organizational size. Technically, the website is built on WordPress 5.9.10, utilizing common plugins such as Yoast SEO for search engine optimization and TablePress for tabular data. The site uses jQuery and FontAwesome for UI elements and includes a Google Analytics plugin (MonsterInsights) which is currently not configured. The site is mobile-optimized with good navigation and basic accessibility features. Performance is moderate, with room for improvement in technical SEO and accessibility. From a security perspective, the site enforces HTTPS but lacks important security headers such as Content-Security-Policy and X-Frame-Options. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. No incident response or security policy information is provided. The Google Analytics plugin is installed but not configured, which may affect data collection and privacy compliance. Overall, the security posture is moderate but could be enhanced by implementing recommended headers and policies. The overall risk assessment is low to moderate given the nature of the organization and the website's content. Strategic recommendations include adding privacy and cookie policies, configuring analytics properly, implementing security headers, and maintaining regular updates. These steps will improve compliance, security, and user trust while supporting the organization's mission effectively.

The website www.webkrom.cz is currently under reconstruction, providing minimal content with a clear notice and basic contact information including a phone number and email address. The site uses WordPress CMS with WooCommerce and Elementor plugins, indicating an e-commerce or business intent, but no active business content or services are currently presented. The technical infrastructure is modern with HTTPS enabled and integration of Google AdSense and tracking tools, but lacks advanced security headers and privacy policies. The absence of WHOIS data raises concerns about domain registration legitimacy and trustworthiness. Overall, the site is in an early or transitional phase with limited business presence and low content maturity.

E

eztraty.cz - národní databáze nálezů a Vrátilky

eztraty.cz

56

The website eztraty.cz operates as a national lost and found database service in the Czech Republic, offering users the ability to search for lost items and register found items. It also provides a service called Vrátilka to help users protect their belongings. The platform targets the general public as well as businesses and municipalities, positioning itself as a key national resource for lost and found management. The site includes social media integration and corporate access portals, indicating a structured approach to service delivery. Technically, the site leverages Google Fonts, Google Maps API, and Google Adsense for fonts, mapping, and advertising respectively, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and cookie consent mechanisms, but lacks advanced security headers and explicit privacy or security policies. WHOIS data is unavailable, which limits domain trust assessment and reduces overall business credibility. The site is accessible without WAF or blocking mechanisms, and content is safe for general audiences.

D/DOCK operates Furnify, a specialized sustainable interior design initiative focused on circular economy principles, founded in 2011. The website presents a professional and consistent brand image with clear messaging about sustainability and circular design. Technically, the site is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data is a minor concern but does not detract significantly from overall trust given the professional presentation and active social media presence. Privacy compliance is well addressed with GDPR-aligned policies and consent management.

P

Perkins&Will

perkinswill.com

64

Perkins&Will is a globally recognized architecture and design firm specializing in architecture, interior design, planning, and landscape design for a diverse range of sectors including universities, healthcare, business, cultural institutions, and sports facilities. The company operates at an enterprise scale with multiple studios worldwide, reflecting a strong market position and a commitment to design excellence. Their website is professionally designed, mobile-optimized, and rich in relevant content, showcasing their projects and insights effectively. Technically, the website is built on WordPress with modern technologies such as jQuery, Google Analytics, Google reCAPTCHA v3, and performance optimizations via WP Rocket. The site demonstrates good SEO and accessibility practices, with fast loading times and structured data enhancing search visibility. However, some security headers are missing, and there is no visible cookie consent mechanism, which could be improved for better privacy compliance. From a security perspective, the site uses HTTPS with a valid SSL configuration and employs reCAPTCHA to protect forms. The domain registration is consistent and long-standing, supporting the legitimacy of the business. No critical vulnerabilities or exposed sensitive data were detected. Nonetheless, the absence of explicit security policies and incident response information suggests room for improvement in transparency and preparedness. Overall, Perkins&Will's digital presence reflects a mature and professional organization with strong business credibility and technical implementation. Strategic enhancements in privacy compliance and security transparency would further strengthen their security posture and user trust.

E

EEDN | Building Project Management Consultants

eedn.co.uk

58

The website www.eedn.co.uk appears to be a basic Wix-hosted site with minimal content and limited business information. The WHOIS lookup for the domain failed with an error indicating the domain name is invalid under Nominet UK rules, suggesting the domain may not be properly registered or is misconfigured. The site includes standard Wix scripts and Google Analytics for tracking but lacks critical privacy, cookie, and terms of service policies. There is no contact information or security policy visible, which limits trust and compliance. Technically, the site uses Wix's platform and polyfills for compatibility but does not demonstrate advanced security configurations or performance optimizations. Overall, the site has a low trustworthiness score due to the domain registration issues and lack of business and security information.

The website www.mybox.pro currently serves only as a redirect to https://www.mybox.eco/, providing no direct content or business information. The lack of accessible content and absence of metadata, contact details, or security policies indicates a very low digital maturity level. The WHOIS data is malformed and does not provide any registrar or registrant information, which further diminishes trust and transparency. Technically, the site lacks HTTPS enforcement and security headers, exposing it to potential security risks. Overall, the site presents a minimal security posture with no visible vulnerabilities but also no protective measures. The risk assessment is high due to the lack of transparency and security best practices. Strategic recommendations include implementing HTTPS, publishing clear privacy and cookie policies, adding business contact information, and improving website content and technical SEO to enhance trust and compliance.

Z

Zámečnictví Ptáčník

klice-km.cz

52

Zámečnictví Ptáčník is a small, established locksmith and key manufacturing business based in the Czech Republic, founded in 2003. The company offers a range of services including key production, emergency opening of homes, cars, and safes, as well as installation and repair of locking systems. Their market position is that of a trusted regional service provider with certifications from recognized industry groups and partnerships with major lock manufacturers. Technically, the website is built on WordPress with Elementor and Yoast SEO, showing moderate digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements are needed in security headers and privacy compliance. Overall, the website is professional and trustworthy, but lacks explicit privacy and cookie policies, which are important for GDPR compliance.

The website of Okresní fotbalový svaz Kroměříž serves as the official online presence for the district football association in Kroměříž, Czech Republic. It provides organizational information, contact details, and resources for local football clubs, referees, and youth programs. The site is positioned as a local sports governing body with a focus on football activities and community engagement. Technically, the site is built on the Webnode platform, leveraging Cloudfront CDN for hosting and delivery, and uses modern web technologies such as JavaScript and CSS. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, but lacks advanced security headers and a privacy policy page, which are areas for improvement. The WHOIS data is not publicly available, indicating privacy protection, which is common for small organizations. Overall, the site is legitimate and functional but could enhance its compliance and security posture.

K

Keramo D – Dohorák — Měníme vaše sny v realitu

keramod.cz

56

Keramo D – Dohorák is a Czech Republic based company specializing in construction services with a focus on quality and client satisfaction. The website presents a professional image with clear messaging about their long-standing tradition since 2007. The company targets general audiences seeking comprehensive building services. Technically, the website is built on the Framer platform and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile optimized and has good SEO practices, but lacks advanced accessibility features and security headers. Security posture is weak due to missing security headers and lack of visible compliance documentation. No WHOIS data is available, which reduces transparency and trust. Overall, the website is functional and professional but requires improvements in privacy compliance, security, and contact transparency.

E

EMi s.r.o.

emilighting.cz

52

EMi s.r.o., operating under the brand EMI Lighting, is a Czech company specializing in the design and supply of lighting and lighting control systems for various sectors including offices, retail, manufacturing halls, sports facilities, schools, and streets. Founded in 1993 and based in Brno, the company emphasizes technologically advanced lighting solutions tailored to customer needs, focusing on economic, ecological, technological, and design aspects. The website reflects a professional and consistent brand image with clear business offerings and project references. Technically, the website is built on simploCMS and incorporates modern web technologies such as Google Analytics, Google Tag Manager, and Typekit fonts. It is served over HTTPS with good mobile optimization and moderate performance. However, the site lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. From a security perspective, the site demonstrates a solid baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a concern, reducing trust in domain legitimacy. No WAF or blocking mechanisms are detected, and the site is fully accessible. Contact information is clearly provided, but incident response and vulnerability disclosure information are missing. Overall, the website is professional and trustworthy in content and presentation but would benefit from enhanced privacy compliance, security headers, and domain registration transparency to improve its security posture and trustworthiness.

A

ALLPUTZ-MAJCEN GmbH

allputz-majcen.at

61

ALLPUTZ-MAJCEN GmbH is a specialized construction service provider focusing on interior and exterior plastering, drywall construction, and thermal insulation primarily serving the Austrian regions of Steiermark, Burgenland, and southern Niederösterreich. With over 30 years of experience and professional association membership, the company positions itself as a trusted regional expert offering quality workmanship and competitive pricing. The website reflects a professional digital presence with clear service descriptions, contact information, and partner affiliations. Technically, the website is built on a modern CMS platform (Mono by Herold.at) and employs common web technologies such as jQuery and Google Tag Manager. It incorporates a comprehensive cookie consent mechanism aligned with GDPR requirements, demonstrating a mature approach to privacy compliance. Performance and mobile optimization are adequate, though some security headers could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data limits full domain trust assessment. The website lacks explicit security policies or incident response information, which could be enhanced to improve transparency and readiness. Overall, the website and business present a low-risk profile with good compliance and professionalism. Strategic improvements in security headers, incident response disclosure, and WHOIS transparency would further strengthen trust and security posture.

K

Kantors Creative Club

kantors.cz

45

Kantors Creative Club is a Czech-based creative agency specializing in graphic corporate identity, photography, packaging design, and production services with over 25 years of experience. The website presents a professional portfolio showcasing various projects for notable clients, emphasizing quality and customer service. The business targets organizations seeking creative branding solutions and maintains a consistent brand image across its digital presence. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript libraries such as Video.js and FancyApps UI, and integrates Google Tag Manager for analytics. Hosting is provided by WEDOS, a Czech hosting provider, with domain registration dating back to 2002, supporting the company's long-standing market presence. Security posture is moderate; HTTPS is used, but no explicit security headers or policies are visible, and privacy compliance is lacking due to absence of privacy and cookie policies. No contact information or forms are present on the main page, limiting direct communication channels. Overall, the website is well-designed and functional but could improve in privacy compliance and security transparency.

D

Design dílna

designdilna.cz

50

Design dílna is a small creative studio based in Brno, Czech Republic, specializing in branding, graphic design, and web development services. The company targets small and medium-sized businesses, marketing agencies, and development studios, offering comprehensive digital craftsmanship to polish brands and build functional web presentations. The website is professionally designed using WordPress and Elementor, featuring a clear portfolio and client testimonials that reinforce its market position. Technically, the site employs modern web technologies including Google Fonts, Font Awesome, Bootstrap, and Google reCAPTCHA for form security. The presence of Google Tag Manager and Analytics indicates a mature approach to digital marketing and user tracking. Security posture is good with HTTPS enforced and reCAPTCHA integration, though additional security headers could enhance protection. Privacy compliance is addressed with GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS registration data reduces domain trustworthiness, suggesting a need for verification. Overall, the site presents a professional and trustworthy front for a creative services business.

The website www.syryzmoravy.cz is currently inaccessible, returning a 503 Service Temporarily Unavailable error page indicating server downtime or capacity issues. Due to the lack of accessible content, no business description, contact information, or security policies can be analyzed. The WHOIS query returned no registration data, which raises concerns about the domain's registration status or privacy protection. The absence of metadata, scripts, or external links further limits the ability to assess the website's technical infrastructure or digital maturity. Security posture cannot be evaluated due to missing data and site unavailability. Overall, the site presents a high risk due to lack of availability and transparency, and no trust or compliance indicators are present.

S

SK Hanácká Slavia Kroměříž, z. s.

hanackaslavia.cz

42

SK Hanácká Slavia Kroměříž is a Czech football club providing comprehensive information about its teams, matches, news, and partners. The website serves local football fans and community members with up-to-date content on club activities and events. The club competes in the Chance Národní Liga and maintains a professional online presence with clear branding and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap 5 and jQuery, hosted likely via WEDOS, a Czech hosting provider. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and basic security headers, but lacks advanced security policies and explicit privacy or terms of service documents. Cookie consent is implemented, indicating some GDPR awareness. Overall, the website is legitimate, trustworthy, and serves its intended audience effectively.

M

MANAGERPORT®

managerport.com

64

MANAGERPORT® is a niche community platform dedicated to professional management growth, enabling users to share management wisdom through lessons, links, and questions. The platform targets management professionals seeking peer knowledge exchange and community engagement. The website is well-structured with clear navigation and user interaction features such as posting, commenting, and expert highlights. Technically, the site employs modern web technologies including HTTPS, CSRF protection, and Google Analytics for tracking, hosted on a reputable provider with consistent domain registration data. Security posture is adequate with room for improvement in DNSSEC and security headers. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site presents a trustworthy and professional environment for its target audience.