Retail security reports

R

Rehasport

rehasport.cz

0

Rehasport.cz is a Czech Republic-based e-commerce platform specializing in rehabilitation and sports medicine products. The website offers a wide range of products from well-known brands such as Thera-Band, Mueller Sports Medicine, and Temtex, targeting both consumers and professionals in the healthcare and fitness sectors. The platform supports over 10,000 pickup locations, indicating a strong market presence and distribution network. Technically, the website is built on the Shoptet e-commerce platform, utilizing common web technologies including jQuery, Google Analytics, and Facebook SDK for marketing and analytics purposes. The site is mobile-optimized with good navigation and content quality, providing a professional user experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security policy and incident response contact information, which could be improved. WHOIS data is not publicly available, likely due to privacy protection, which slightly impacts trust but is common for e-commerce businesses. Overall, the website is legitimate, professional, and secure with room for enhanced transparency and security documentation.

B

BOSPF

laboutiqueofficiellepompiers.fr

0

The website 'BOSPF' operates as an e-commerce retail platform specializing in firefighter-related apparel, equipment, collectibles, and accessories. It targets both individual customers and professional firefighters, positioning itself within a niche market in France. The business has been established since 2013, with a consistent domain registration and a clear focus on its target audience. The site offers a variety of product categories including clothing, equipment, and gift cards, supporting a specialized retail business model. Technically, the website is built on the PrestaShop CMS platform, utilizing common web technologies such as jQuery, Font Awesome, and Google Fonts. Hosting is provided by OVH, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The presence of cookie consent mechanisms indicates awareness of privacy regulations, although no explicit privacy policy or terms of service were detected in the provided content. From a security perspective, the site enforces HTTPS with a valid SSL certificate, but lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were found, but improvements in security headers and form protections are advised. The absence of analytics and advertising scripts suggests minimal user tracking, aligning with basic privacy compliance. Overall, the website presents a professional and trustworthy retail presence with room for enhancement in privacy documentation and security hardening. The domain registration data supports the legitimacy of the business, and the content is safe for general audiences without any adult or questionable material.

B

Blažek

blazek.sk

0

Blažek is a well-established Czech and Slovak menswear brand specializing in formal and casual men's clothing and accessories. The company operates a professional e-commerce platform complemented by physical stores and bespoke tailoring services. Their market position is strong within the regional retail sector, targeting fashion-conscious men seeking quality apparel and accessories. The website reflects a mature digital presence with modern technologies such as Google Analytics, Facebook Pixel, and various UI libraries enhancing user experience and marketing capabilities. Security posture is solid with HTTPS enforced and secure login forms, though some security headers and explicit incident response policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences.

F

Festina

festina.cz

0

Festina.cz is the official Czech Republic distributor and retailer of Festina brand watches, offering a wide range of products including men's, women's, and children's watches, as well as smartwatches and chronographs. The website presents a professional and consistent brand image with detailed product collections and authorized dealer information. Technically, the site is built on a commercial CMS (Incomedia WebSite X5 Pro) with modern JavaScript libraries, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and no visible vulnerabilities, but lacks advanced security headers and explicit privacy and cookie policies, which are compliance gaps. Overall, the site is safe, trustworthy, and suitable for general audiences, but could improve privacy compliance and contact transparency.

M

McDonald's Česká republika

mcdonalds.cz

0

McDonald's Česká republika operates a comprehensive and professionally designed website serving as the official portal for the brand in the Czech Republic. The site offers detailed information about their menu, promotions, McCafé products, Happy Meal offerings, and delivery services. It targets a broad general audience including families and fast food consumers, positioning itself as a leading quick service restaurant in the region. The business model focuses on retail food services supported by digital engagement through a mobile app and online coupons. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, and Cloudflare Insights for performance and analytics. The site is well optimized for mobile devices, features fast loading times, and includes accessibility considerations. The presence of a cookie consent mechanism and privacy policy indicates a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS and uses secure forms with CSRF tokens. While explicit security headers are not fully confirmed in the HTML, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data is attributed to privacy protection policies common in the region and does not detract from the site's legitimacy. Overall, the website presents a low-risk profile with strong business credibility, good technical implementation, and solid privacy compliance. Strategic recommendations include publishing explicit security policies and vulnerability disclosure information to further enhance trust and transparency.

F

Floorbee - Floorbee - Popular floorball equipment

floorbee.com

0

Floorbee is an e-commerce retailer specializing in floorball equipment, offering a range of products including sticks, goalie gear, blades, balls, bags, goals, jerseys, field equipment, and accessories. The website targets floorball players and enthusiasts, positioning itself as a niche market player with a focus on quality and design. The site supports multiple languages, enhancing accessibility for a broader audience. Technically, the website employs Google Tag Manager and Google Analytics for tracking and uses Google Fonts for typography. The design is professional with good navigation and mobile optimization, though accessibility features are basic. Security posture is moderate but lacks visible security headers and privacy policies, which are critical for compliance and trust. The absence of WHOIS data raises concerns about domain legitimacy, although the website content and social media presence appear legitimate. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

S

SABE, spol. s r.o.

sabe.cz

0

SABE, spol. s r.o. is a well-established Czech company specializing in the manufacture and sale of sports trophies, medals, plaques, and other awards, alongside office supplies and printing services. With a history dating back to 1990 and six physical stores across major Czech cities, the company holds a solid regional market position. Their website reflects a professional retail and manufacturing business model targeting general consumers and organizations requiring trophies and office products. Technically, the website employs modern web standards with responsive design and integrates Google Analytics for visitor insights. The presence of a cookie consent mechanism and a comprehensive privacy policy indicates good GDPR compliance. Security-wise, the site enforces HTTPS but lacks advanced security headers and formal incident response disclosures, suggesting room for improvement. Overall, the website is trustworthy, content-rich, and professionally maintained, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to strengthen the security posture and trust further.

N

NECY s.r.o.

eflorbal.cz

0

eFlorbal.cz is a specialized Czech e-commerce retailer focused on floorball equipment, operating since 2003 under the company NECY s.r.o. The website offers a wide range of products including floorball sticks, blades, goalkeeper equipment, bags, balls, and accessories from well-known brands. The company emphasizes product testing and customer education through its own floorball court and blog content. Technically, the site uses modern web technologies including jQuery, Google Fonts, and integrates multiple analytics and advertising tools such as Microsoft Clarity, Bing Ads, Google Tag Manager, and Facebook Pixel. Security posture is solid with HTTPS and secure forms, though it lacks some advanced security headers and formal incident response disclosures. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS data reduces domain trustworthiness, though the website content and business information appear professional and credible. Overall, the site presents a trustworthy and user-friendly shopping experience for floorball enthusiasts.

S

SPORTISIMO s. r. o.

sportisimopro.cz

0

Sportisimopro.cz is a Czech-based e-commerce platform specializing in sports equipment and apparel, catering primarily to sports teams and enthusiasts. The website offers a broad range of products including team kits, football gear, and custom printing services, positioning itself as a key player in the regional sports retail market. The company behind the site is SPORTISIMO s. r. o., a medium-sized retail entity with a consistent and professional online presence. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and a GDPR-compliant consent management system (Didomi). The site is responsive and optimized for mobile devices, with good SEO and accessibility basics. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and includes standard security headers, though it could enhance its security posture by adding Content-Security-Policy headers and conducting regular audits of third-party scripts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is well addressed with clear privacy and cookie policies and an active consent mechanism. Overall, the website presents a low-risk profile with strong business credibility and compliance. The lack of public WHOIS data suggests privacy protection, which is common and justified for commercial retail sites. Strategic recommendations include enhancing security headers, improving accessibility, and maintaining vigilance on third-party scripts to sustain a secure and trustworthy online presence.

M

Mammut ANZ

mammut1862.com.au

0

Mammut ANZ operates a professional e-commerce website focused on retailing Mammut outdoor equipment and apparel in Australia and New Zealand. The site leverages Shopify as its platform, integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. The business targets outdoor enthusiasts with a comprehensive product catalog including avalanche safety gear, climbing equipment, and hiking apparel. The website demonstrates good branding consistency and content quality, with a clear focus on customer engagement through warranty forms and social media links. Technically, the site is well-structured, mobile-optimized, and uses modern web technologies, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and CAPTCHA protection on forms, but explicit security headers and policies are not fully implemented. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, the site is trustworthy and professionally maintained, suitable for its retail purpose.

G

Gabia C&S

mammut.kr

0

The website mammut.kr serves as the official online store for the Mammut brand in Korea, a premium Swiss outdoor apparel and equipment company with a long heritage of 160 years. The site targets outdoor enthusiasts and climbers, offering a range of products including climbing gear, apparel, and accessories. The business operates primarily as an e-commerce retailer leveraging the Cafe24 platform, a popular Korean e-commerce solution. The domain is well-established, registered since 2009, and the WHOIS data aligns with the business's Korean presence and branding. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, Facebook Pixel, and Vimeo for video content. It is hosted on Cafe24 infrastructure and uses HTTPS with good security headers, although DNSSEC is not implemented. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, explicit privacy, cookie, and security policies are not prominently found, which is a compliance gap. From a security perspective, the site enforces HTTPS and has domain transfer protections. No WAF or blocking mechanisms were detected, and no vulnerabilities or exposed sensitive data were found in the analysis. The site uses tracking and marketing tools moderately, with standard analytics and retargeting pixels. Overall, the security posture is solid but could be improved by adding DNSSEC and publishing clear security and privacy policies. The overall risk assessment is low, with the site appearing legitimate, professionally managed, and secure for users. Strategic recommendations include enhancing privacy compliance, implementing DNSSEC, and publishing incident response and security policies to further build trust and meet regulatory requirements.

M

Mammut

mammut.tw

0

Mammut Taiwan operates an official brand website offering a comprehensive range of outdoor apparel, footwear, bags, and climbing equipment. The site targets outdoor enthusiasts and mountain sports lovers in Taiwan, providing product information, multimedia content, and links to official e-commerce platforms. The brand leverages its Swiss heritage and global reputation to position itself as a premium outdoor retailer in the local market. Technically, the website uses established JavaScript libraries and Google tracking tools, indicating moderate digital maturity and integration with marketing analytics. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the site is professional, trustworthy, and well-branded, though improvements in privacy and security transparency are recommended.

N

NORQAIN

norqain.com

0

NORQAIN is an independent Swiss watch brand established in 2018, specializing in luxury Swiss made watches and related merchandise. The company operates a professional e-commerce platform powered by Shopify, targeting watch enthusiasts and outdoor explorers. The website demonstrates a high level of digital maturity with modern technologies, responsive design, and comprehensive marketing and analytics integrations. Security posture is strong with HTTPS, clientTransferProhibited domain status, and form protection via hCaptcha, although DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy. Overall, the website is trustworthy, professional, and well-positioned in its niche market.

Dětská hřiště is a Czech-based e-commerce retailer specializing in children's playground equipment, including complete playgrounds, modules, and accessories. The website targets parents and municipalities looking for quality, safe, and entertaining playground solutions. The business appears established with over 15 years of experience and a solid customer base. Technically, the site is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook SDK. The site is mobile-optimized with good navigation and content quality. Security posture is adequate with HTTPS enabled and secure login forms, though some improvements like adding security headers and updating libraries are recommended. Privacy and cookie policies are present and GDPR compliant. The absence of WHOIS data limits domain trust assessment, but the website content and business presence suggest legitimacy.

H

High performance parts

highperformanceparts.cz

0

Highperformanceparts.cz is a Czech Republic-based e-commerce business specializing in automotive performance parts, tuning, and racing accessories. It positions itself as the largest performance shop in the Czech Republic, offering a wide range of specialized products and acting as an exclusive importer and distributor for many renowned brands. The website targets automotive enthusiasts and tuning customers, providing both retail and wholesale services. Technically, the site uses a custom or proprietary platform with legacy jQuery libraries, integrated with modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. The hosting provider is POSKYTOVATEL.cz, and the site is served over HTTPS, ensuring basic transport security. Security posture is moderate, with secure login forms but lacking advanced security headers and privacy policies. WHOIS data is unavailable, which limits domain trust evaluation. Overall, the site is professional and functional but could improve privacy compliance and security best practices.

K

KRPA Slovakia spol. s r.o.

krpa.sk

0

KRPA Slovakia spol. s r.o. operates a professional e-commerce website specializing in wholesale and retail distribution of paper and office supplies in Slovakia. The company offers a broad range of products including postal envelopes, office paper, notebooks, labels, and other stationery items, targeting business and retail customers with next-day delivery services. The website is well-branded and consistent with the company's market positioning as a regional wholesaler and manufacturer. Technically, the site uses modern e-commerce infrastructure powered by the Upgates platform, integrates Google Analytics 4 and Google Ads for marketing and tracking, and implements cookie consent mechanisms to comply with privacy regulations. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is accessible without WAF or blocking mechanisms, providing a safe and professional user experience. However, explicit privacy and terms of service pages are not detected, which could be improved for compliance and user trust.

P

PAPÍRNY BRNO a.s.

papirnybrno.cz

0

PAPÍRNY BRNO a.s. is a leading Czech manufacturer and retailer specializing in school and office paper products, including notebooks, diaries, paper bags, and gastro packaging. The company operates an e-commerce platform offering a wide range of paper goods targeting schools, offices, and gastronomy sectors. Their market position is strong within the Czech Republic, supported by a clear brand presence and active social media engagement. The website is professionally designed with good navigation and mobile optimization, reflecting a medium-sized enterprise with a solid digital infrastructure. Technically, the site uses modern web technologies and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and Hotjar, managed via Google Tag Manager. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, although additional security headers and a published security policy would enhance their security maturity. WHOIS data is unavailable, limiting domain trust assessment, but the business information on the site is transparent and credible. Overall, the website is safe, GDPR compliant, and well-positioned for its target audience.

V

Vladeko, spol. s r.o.

jezirka.cz

0

The website www.jezirka.cz represents Vladeko, spol. s r.o., a specialized retailer focused on garden and swimming pond equipment, primarily featuring Oase brand products. It serves the Czech market with a comprehensive e-commerce platform offering pumps, filtration systems, lighting, water treatment chemicals, and accessories for pond maintenance. The site is well-structured, professionally designed, and targets garden enthusiasts and pond owners in the Czech Republic. Technically, the site runs on PrestaShop CMS, uses modern JavaScript libraries, and integrates Google Analytics and advertising scripts. HTTPS is enforced, but security headers are missing, and no cookie consent mechanism is present, indicating partial privacy compliance. The WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and contact information appear legitimate and consistent with a small retail business. Overall, the site demonstrates good digital maturity but could improve security and privacy practices.

Oase-Filtrace.cz is a specialized e-commerce retailer focused on water garden and aquarium products, including filtration systems, pumps, and accessories. The website targets garden owners and pond enthusiasts primarily in the Czech Republic. The business model centers on online retail with additional customer support and services such as OASE servicing and training. The site demonstrates a good level of content quality, clear navigation, and consistent branding, supporting a positive market position within its niche. Technically, the website is built on the Shoptet e-commerce platform, utilizing jQuery 1.11.3, Google Analytics (GA4), and Facebook SDK for tracking and marketing. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in modernizing the tech stack and enhancing security headers. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating a baseline security posture. However, the absence of advanced security headers and the use of an outdated jQuery version present potential vulnerabilities. No explicit security or incident response policies are published, which could be improved to enhance trust and compliance. Overall, the website is professional and trustworthy in appearance and function, but the lack of WHOIS data and domain registration details reduces the domain's trustworthiness score. Strategic improvements in security practices and transparency would strengthen the site's risk profile and business credibility.

Dětská hřiště JungleGym is a Czech-based e-commerce retailer specializing in children's playground equipment including slides, playhouses, and swings. The company emphasizes quality, safety, and professional installation services, leveraging over 15 years of experience and Dutch quality standards. Their website is built on the Shoptet platform, featuring a well-structured catalog, customer reviews, and clear contact information. Technically, the site uses standard web technologies such as jQuery and integrates Google Analytics and Facebook SDK for marketing and analytics purposes. Security posture is generally good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and updating legacy libraries. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and transparent contact details mitigate concerns. Overall, the website is suitable for families and customers seeking reliable children's playground products.

K

Kinet s.r.o.

vladeko.cz

0

Vladeko.cz is a Czech-based company specializing in the manufacturing and retail of wooden garden furniture and structures, including pergolas, altány, garden houses, and children's playground equipment. The company operates both a physical showroom in Tachlovice and an e-commerce platform, targeting homeowners, municipalities, and businesses interested in quality wooden garden products. Their business model combines custom woodworking services with online sales, supported by design, visualization, and installation offerings. The website reflects a mature digital presence with a clear product catalog and user-friendly navigation. Technically, the website is built on the PrestaShop CMS platform, utilizing modern web technologies such as Bootstrap for responsive design, Google Analytics and Tag Manager for tracking, and Cookiebot for consent management. The site is served over HTTPS with a good SSL configuration, though some security headers could be improved. Performance is moderate, with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits transparency, but the presence of physical contact information and partner links supports legitimacy. Overall, Vladeko.cz presents a trustworthy and professional online presence for a medium-sized retail and manufacturing business in the garden furniture sector. Strategic improvements in security headers and transparency around privacy and incident response would enhance their security posture and compliance standing.

M

Mammut

mammut.com

0

Mammut is a well-established Swiss premium outdoor brand founded in 1862, specializing in high-quality outdoor clothing, footwear, and equipment for mountain sports enthusiasts worldwide. The website serves as a multilingual, multi-regional e-commerce platform with localized country sites, reflecting a mature digital presence. The technical infrastructure leverages modern web technologies including React and Next.js, with integrated consent management and analytics tools, indicating a good level of digital maturity. Security posture is strong with HTTPS enforced and consent mechanisms in place, though some security headers and privacy policies are not directly evident in the analyzed content. The absence of WHOIS data for the domain introduces some uncertainty in domain legitimacy, but the brand's global recognition and consistent website branding mitigate this concern. Overall, the website is professional, secure, and user-friendly, serving a large international customer base effectively.

D

DrWitt

drwitt.cz

0

DrWitt.cz is a Czech website representing a small retail business specializing in functional mineral water beverages enriched with vitamins and minerals. The company appears to be established since 2018 and targets general consumers interested in health and wellness products. The website is professionally designed with consistent branding and clear messaging about their product offerings. Technically, the site uses modern web technologies including Bootstrap, Font Awesome, Google Fonts, and integrates Google Analytics and advertising tools such as Google Ads and Seznam Sklik. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good GDPR compliance. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA, though explicit security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy and professional digital presence for a small Czech beverage company.

The website lotus-hodinky.cz represents Janeba Time, s.r.o., a small retail business specializing in Lotus brand watches and jewelry, part of the Festina Group. The site targets consumers interested in modern and hybrid watches, smartwatches, and jewelry, offering authorized dealer information and service details. The business maintains a consistent brand presence with professional multimedia content and clear product portfolios. Technically, the site is built on Incomedia WebSite X5 Pro CMS, leveraging modern JavaScript libraries and Google Analytics for user tracking. Cookie consent is implemented with a clear mechanism, supporting GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No direct contact information or terms of service pages were found, which could be enhanced for better user trust and compliance. The domain registration data is consistent with the business profile, indicating legitimacy and stable operation since 2015.

A

Athlete Performance Solutions

athleteps.eu

0

Athlete Performance Solutions operates as an authorized licensee of Nike, specializing in the retail and distribution of Nike sports apparel and footwear. The website is built on the BigCommerce platform, leveraging modern e-commerce technologies and integrations such as Google Analytics 4, Klaviyo, and Klarna for payments. The site demonstrates a good level of digital maturity with GDPR-compliant privacy and cookie policies, and a professional design optimized for mobile users. Security posture is strong with HTTPS enforced and several security headers present, although the absence of explicit Terms of Service and contact information limits full trust assessment. The lack of WHOIS data for the domain raises concerns about domain legitimacy, warranting further verification. Overall, the site presents a moderate risk profile with room for improvement in transparency and contactability.

B

Blažek

blazek.cz

0

Blažek is a well-established Czech brand specializing in men's fashion, offering a wide range of formal and casual clothing and accessories. The company operates an e-commerce platform complemented by physical stores and bespoke tailoring services, positioning itself as a significant player in the Czech retail fashion market. The website reflects a professional and consistent brand image, targeting male customers seeking quality and style. Technically, the site employs modern web technologies and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and secure forms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates a mature digital presence with room for enhanced security transparency.

L

Leman Sport

lemansport.cz

0

Leman Sport is a Czech Republic based specialist retailer focusing on sports equipment, particularly Molten brand balls and related accessories. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting sports clubs, schools, and individual athletes. The website demonstrates a consistent brand presence with good content quality and clear navigation tailored for its target audience. Technically, the site uses modern web technologies including Google Analytics and Facebook Pixel for marketing and tracking, and is hosted by a Czech registrar, REG-WEDOS, with a domain age consistent with an established business since 2012. Security posture is generally good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit privacy and terms documentation. Overall, the site is professional, safe, and trustworthy, but would benefit from enhanced compliance and security transparency.

A

Arc'teryx Australia

arcteryx.com.au

0

Arc'teryx Australia operates a professional e-commerce website specializing in high-performance outdoor clothing and equipment. The company targets outdoor enthusiasts in Australia, offering premium products with a focus on innovation in climbing, skiing, and alpine technologies. The website is built on the Shopify platform, leveraging modern technologies and multiple third-party marketing and analytics tools to enhance user experience and business intelligence. Security posture is solid with HTTPS enforced and reputable third-party integrations, though there is room for improvement in security headers and incident response transparency. Privacy and cookie policies are present and indicate compliance with GDPR standards. Overall, the website presents a trustworthy and professional online presence suitable for its market segment.

ARVA Canada operates a professional e-commerce platform specializing in avalanche safety equipment including transceivers, airbags, backpacks, shovels, and probes. The company targets backcountry skiers, snowboarders, and mountain rescue professionals, positioning itself as a niche leader in Canadian outdoor safety retail. The website is built on Shopify, leveraging modern e-commerce technologies and integrations such as Google Analytics, Klaviyo, and Langshop for marketing and analytics. The site demonstrates good digital maturity with fast performance, mobile optimization, and clear navigation. Security posture is strong with HTTPS enforced and secure payment options, though explicit security headers and incident response information could be improved. Privacy and cookie policies are present and GDPR compliant, supporting user trust. Overall, the business presents a credible and professional online presence with room for enhanced security transparency and vulnerability disclosure.

P

Pieps GmbH

pieps.com

0

PIEPS GmbH is a specialized manufacturer and retailer of premium alpine safety equipment, including avalanche beacons, probes, shovels, backpacks, and related accessories. The company targets both professional alpine guides and recreational enthusiasts, emphasizing safety, innovation, and reliability. Their market position is strong within the alpine safety niche, supported by advanced technology such as Bluetooth-enabled devices and proprietary interference protection systems. The website reflects a mature digital presence with multilingual support and a dedicated service portal for device management and warranty services. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities and WPML for multilingual content. It employs modern JavaScript libraries like Swiper.js and integrates cookie consent management and Google reCAPTCHA for security and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. From a security perspective, the site enforces HTTPS and uses security best practices such as CAPTCHA and cookie consent. However, explicit security headers are not clearly detected, and no public security policy or incident response contacts are provided. The absence of WHOIS data for the domain is a notable gap, potentially due to privacy protection or registrar policies, but the website's professional presentation and valid contact information mitigate concerns about legitimacy. Overall, PIEPS GmbH's website demonstrates a solid business and technical foundation with good security hygiene and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and clarifying domain registration transparency to further strengthen trust and compliance.

H

HAMSIK®

hamsikwinery.com

0

HAMSIK winery operates as a family-owned premium winery business specializing in Prosecco, champagne, and other alcoholic beverages. The website targets adult consumers with a focus on quality and tradition, leveraging e-commerce and retail channels. The brand maintains a professional online presence with a modern WordPress-based infrastructure using WooCommerce and Divi theme. The site includes an age verification gate to comply with legal requirements for alcohol sales. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. The website lacks explicit privacy and security policies, which are important for compliance and trust. Technically, the site is well-structured but could improve security headers and accessibility features. Overall, the business appears credible but would benefit from enhanced transparency and security documentation.

P

Pitbull

pitbull.eu

0

Pitbull.eu is an e-commerce website specializing in retailing branded clothing and accessories for men, women, and kids. The site leverages Shopify as its platform, integrating modern technologies such as Sanity CMS for content management and Mux for video streaming. The business targets customers interested in sportswear and casual apparel, positioning itself as a niche brand with a consistent and professional online presence. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content.

Č

České povlečení

ceskepovleceni.cz

0

Českepovleceni.cz is a Czech Republic-based e-commerce retailer specializing in high-quality bedding, bed linens, and home textile products primarily sourced from Czech manufacturers. The website targets domestic customers seeking quality local products with options for custom sizes and a physical store presence in Hořice. The business model focuses on direct online sales complemented by a brick-and-mortar store, emphasizing trust and customer service. The site is professionally designed with clear navigation and product categorization, supporting a positive user experience.

A

Armik.cz: Armyshop a outdoor

armik.cz

0

Armik.cz is a Czech Republic based e-commerce retailer specializing in military, outdoor, survival, and sporting goods. The website offers a wide range of products including clothing, tactical gear, and accessories, targeting outdoor enthusiasts and military gear consumers. The business has been operating since 2008, indicating a stable market presence. Technically, the site uses a proprietary e-commerce platform with modern JavaScript integrations including Google Tag Manager and Google Analytics, supporting marketing and analytics efforts. The site is mobile optimized and provides a good user experience with clear navigation and product categorization. Security posture is adequate with HTTPS enabled and asynchronous script loading, but lacks visible security headers and explicit privacy or cookie policies, which are compliance gaps. No direct contact emails or phone numbers were found in the analyzed content, limiting direct customer support visibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

B

Brunswick Bowling

brunswickbowling.com

0

Brunswick Bowling is a well-established company specializing in high-performance bowling equipment and supplies, targeting bowlers of all skill levels. The company positions itself as a leading supplier in the retail bowling industry, offering a wide range of products including bowling balls, bags, shoes, and apparel. The website reflects a professional retail business model with a focus on e-commerce and brand consistency. Technically, the site is built on Craft CMS, hosted on DigitalOcean infrastructure, and employs modern web technologies such as Google Tag Manager, Facebook Pixel, and Cookiebot for tracking and consent management. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the website uses HTTPS, implements CSRF tokens, and has a cookie consent mechanism, but lacks explicit security policies and some security headers. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy and professionally maintained but would benefit from publishing clear privacy and terms of service pages and providing explicit contact information to enhance compliance and user trust.

M

Mala GPS

malagps.cz

0

Mala GPS operates as a Czech-based e-commerce retailer specializing in GPS tracking devices tailored for pets, personal safety, bicycles, and property monitoring. The company emphasizes reliability, simplicity, and safety, targeting consumers who seek peace of mind through GPS technology. Their market position is strengthened by Czech manufacturing, competitive subscription pricing, and customer support in the Czech language. The website offers a comprehensive product catalog, customer testimonials, and mobile applications for iOS and Android, reflecting a mature digital presence. Technically, the website is built on the Shoptet e-commerce platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates multiple analytics and marketing tools including Google Analytics 4, Facebook Pixel, and Microsoft Clarity. The site is mobile-optimized, accessible, and employs HTTPS with CSRF protection in forms, indicating a solid technical foundation. From a security perspective, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, Mala GPS presents a professional and trustworthy online presence with good security hygiene and privacy compliance. The main risk lies in the opaque domain registration status, which slightly diminishes trustworthiness. Strategic improvements in security transparency and domain registration clarity are recommended.

G

Good Sailors s.r.o.

ceskeparky.cz

0

The website ceskeparky.cz operates as an e-commerce platform focused on selling souvenirs that support Czech national parks and ecological projects. The business is run by Good Sailors s.r.o. and collaborates with national parks and environmental organizations, including endorsement by the Czech Ministry of Environment. The platform targets eco-conscious consumers and visitors to Czech natural reserves, offering products such as clothing, books, and accessories with nature-inspired motifs. The business model integrates charitable contributions from sales proceeds to support conservation efforts. Technically, the website is built on the Shoptet e-commerce platform, utilizing technologies such as jQuery 1.11.3, Google Analytics, and Facebook SDK for tracking and marketing. The site is mobile-optimized, accessible, and SEO-friendly with proper metadata and structured content. Performance is moderate, with room for improvement in updating legacy libraries. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, with a cookie consent mechanism compliant with GDPR. However, no explicit security headers were detected, and the WHOIS data is missing, which reduces transparency and trust. No vulnerabilities or malware were found, and the site maintains a good security posture overall. Overall, the website presents a professional and trustworthy front for a niche retail business with a strong social and environmental mission. Strategic improvements in security headers, WHOIS transparency, and technology updates would enhance its security and credibility further.

C

Confederação do Comércio e Serviços de Portugal

ccp.pt

0

Confederação do Comércio e Serviços de Portugal (CCP) is a well-established Portuguese confederation representing the commerce and services sectors. The organization provides economic data, legal information, events, and member support services, positioning itself as a key player in promoting competitiveness and innovation within Portugal's commerce and service industries. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders in these sectors. Technically, the website is built on WordPress with modern libraries such as jQuery, Owl Carousel, and FancyBox. It employs Google Analytics for tracking and uses a cookie consent mechanism compliant with GDPR. The site is hosted likely on SiteGround, with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

A

APED - Associação Portuguesa de Empresas de Distribuição

aped.pt

0

APED (Associação Portuguesa de Empresas de Distribuição) is a Portuguese association representing retail distribution companies. The website serves as a portal for information about the association's strategic axes, social organs, member areas, news, and initiatives. It targets retail companies and stakeholders in Portugal, providing documentation and support to its members. The site is built on WordPress using the Divi theme, leveraging common web technologies such as jQuery and Swiper for interactive elements. The technical infrastructure is modern and mobile-optimized, with good SEO and accessibility basics. Security posture is solid with HTTPS and standard security headers, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is addressed with cookie consent and a privacy policy, but terms of service and vulnerability disclosure policies are absent. Overall, the site is professional, trustworthy, and well-aligned with the business it represents.

C

Cortinatex Kft.

szonyegakcio.hu

0

Cortinatex Kft. operates szonyegakcio.hu, a Hungarian e-commerce website specializing in a wide range of rugs and home textile products. The business targets Hungarian consumers seeking quality rugs in various styles and sizes, offering additional home comfort products. The company has an established market presence since 2016, with a clear focus on retail and customer satisfaction through competitive pricing and convenient delivery services. The website is well-structured, professionally designed, and provides comprehensive product categories and information to facilitate user shopping experience. Technically, the website leverages a mature technology stack including jQuery, Tippy.js, and Perfect Scrollbar, running on the UNAS e-commerce platform. It integrates modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, enabling effective user tracking and advertising. The site is mobile-optimized and SEO-friendly, ensuring good accessibility and performance for users. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While no explicit security policy or incident response information is published, the site follows best practices in data protection and does not expose sensitive information. The domain registration data aligns with the business claims, indicating legitimacy and stability. Overall, szonyegakcio.hu presents a trustworthy and professional online retail platform with solid technical and privacy compliance foundations. Strategic improvements could include publishing explicit security policies and enhancing security headers to further strengthen the security posture.

B

BARBOT

barbot.pt

0

BARBOT is a well-established Portuguese paint brand with a history spanning over 100 years, offering a wide range of paint products and professional services. The website targets both consumers and professionals in Portugal, providing product catalogs, color consultancy, and DIY project inspiration. The digital infrastructure is built on WordPress with WooCommerce and Elementor, indicating a mature e-commerce platform with modern web technologies. Security posture is strong with HTTPS enforcement and CAPTCHA on login forms, though there is room for improvement in security headers and published policies. Privacy compliance is basic, with a cookie consent banner but no explicit privacy or terms of service pages detected. Overall, the website is professional, trustworthy, and well-positioned in the retail paint market in Portugal.

T

test

dobre-knihy.cz

0

Dobré knihy is a prominent Czech online retailer specializing in books, audiobooks, games, toys, stationery, and gifts. The website offers a large catalog with over 90,000 titles in stock, targeting Czech-speaking customers primarily. The business model is e-commerce retail with a strong focus on book sales and related products. The site features clear navigation, product categorization, and a user-friendly shopping experience. Structured data and contact information are provided to enhance trust and usability. Technically, the website employs modern JavaScript frameworks and tracking technologies including Google Tag Manager, Microsoft Clarity, and Exponea for analytics and marketing. The site is mobile-optimized and accessible, with secure HTTPS connections and validated forms for login and shopping cart functionality. However, some security best practices such as security headers and vulnerability disclosure mechanisms are not evident. From a security perspective, the site enforces HTTPS and cookie consent mechanisms compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data is a notable concern, reducing domain transparency and trustworthiness. Overall, the security posture is good but could be improved by adding security headers and publishing incident response information. The overall risk assessment indicates a legitimate and professional e-commerce platform with minor transparency and security improvements recommended. Strategic focus should be on enhancing domain registration visibility, implementing security headers, and formalizing security policies to strengthen trust and compliance.

HORNBACH Baumarkt AG operates a large-scale retail and e-commerce platform specializing in home improvement, garden, and construction products primarily serving the German market and neighboring countries. The website is professionally designed, well-structured, and optimized for performance and mobile devices, reflecting a mature digital infrastructure. The company leverages modern technologies including StencilJS, Usercentrics for consent management, Dynatrace for real user monitoring, and Coveo for search analytics, indicating a high level of digital maturity. Security posture is strong with HTTPS enforcement, security headers, and cookie management, although explicit security policies and incident response contacts are not prominently published. Overall, the website demonstrates high trustworthiness and compliance with GDPR, supported by comprehensive privacy and cookie policies. The domain registration data aligns well with the business claims, reinforcing legitimacy. Strategic recommendations include publishing a dedicated security policy, incident response information, and vulnerability disclosure to further enhance transparency and security culture.

M

Mimosa.květiny

kvetinymimosa.cz

0

Mimosa.květiny is a small local flower shop based in Blansko, Czech Republic, offering a variety of floral products including bouquets, flower delivery, workshops, and wedding arrangements. The business operates an e-commerce platform with free delivery within the Blansko area, targeting local customers seeking creative and handmade floral decorations. The website is professionally designed with consistent branding and clear contact information, supporting a positive user experience and trustworthiness. Technically, the website is built on the Webnode CMS platform and utilizes Amazon Cloudfront CDN for content delivery. It employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good SEO practices. The site uses HTTPS with a valid SSL certificate, ensuring secure communication. Cookie consent mechanisms and privacy policies are implemented, indicating compliance with GDPR requirements. From a security perspective, the website has a good posture with HTTPS and cookie consent but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious content were detected. However, the absence of WHOIS data for the domain reduces the ability to fully verify domain legitimacy and trustworthiness. Overall, the website presents a trustworthy and professional front for a small retail flower business with moderate technical maturity and good privacy compliance. Strategic improvements in security headers and domain registration transparency would enhance trust and security posture.

N

Nativia s.r.o.

kockanenipes.cz

0

Kočka není Pes is a Czech Republic based small business operating a WordPress-powered website that combines media content and e-commerce focused on pet care products and information. The company, Nativia s.r.o., founded in 2015, offers a TV series, articles, workshops, and an online shop specializing in pet food brands such as Cat’s Love, Dog’s Love, and Royal Canin. The website targets pet owners and enthusiasts primarily in the Czech market. Technically, the site uses a modern WordPress theme (Enfold) with WooCommerce for e-commerce functionality, integrates social media, and uses GoPay for payment processing. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features.

Z

Internetové knihkupectví, prodej Audioknih ke stažení, více než 70.000 titulů skladem! | Záložka.cz

zalozka.cz

0

Záložka.cz is an established Czech online bookstore offering a wide range of over 70,000 titles including physical books, audiobooks, and e-books. The website targets general consumers interested in literature and educational materials, supported by a network of over 3,500 pickup points. Technically, the site employs a modern frontend stack with Bootstrap, Font Awesome, and Google Fonts, alongside multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, Facebook Pixel, and Smartlook. The site is served over HTTPS, ensuring encrypted communication, but lacks visible advanced security headers and explicit privacy or cookie policies, which are important for compliance and user trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the website content and structure suggest a legitimate retail business. Overall, the site provides a good user experience with clear navigation and a professional design, but improvements in privacy compliance and security posture are recommended.

I

INVITAL

rostlinna-akvaria.cz

0

INVITAL operates the largest online aquarium retail store in the Czech Republic and Slovakia, offering a comprehensive range of aquarium products including tanks, furniture, filters, lighting, fish food, accessories, and aquatic plants. The website is professionally designed with good content quality and targets aquarium hobbyists in the region. The business model is e-commerce retail with a strong market position as a leading aquarium supplier in its geographic area. Technically, the website employs modern JavaScript libraries such as jQuery, Google Tag Manager, and Facebook SDK, with a cookie consent mechanism indicating awareness of privacy regulations. Performance and mobile optimization are good, though accessibility could be improved. Security posture is moderate with HTTPS enabled but lacking some security headers and explicit security policies. No WHOIS data was found, which impacts domain trust assessment. Overall, the site is safe, professional, and trustworthy for its audience.

F

FitRuha.hu

fitruha.hu

0

FitRuha.hu is a specialized e-commerce retailer focused on fitness apparel, offering a curated selection of well-known brands such as NEBBIA, MOTIVATED, ADIDAS, and others. The website targets fitness enthusiasts primarily in Hungary and nearby regions, providing fast delivery and customer-friendly policies including free returns. The business operates since 2015, positioning itself as a niche player in the fitness clothing market with a consistent brand presence and clear contact channels. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, and other marketing and analytics tools. It uses a proprietary or custom CMS platform (Shopion.cz) and demonstrates good mobile optimization and SEO practices. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and includes CSRF tokens in forms, alongside a comprehensive cookie consent mechanism compliant with GDPR. However, security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, suggesting potential areas for enhancement. No vulnerabilities or exposed sensitive data were found. Overall, the website presents a low-risk profile with strong privacy compliance and business credibility. Strategic recommendations include improving security headers, enhancing accessibility, and considering a formal vulnerability disclosure policy to further strengthen security posture.

S

Schrift Publishers, Inc.

schriftfoundry.com

0

Schrift Foundry operates as a specialized digital type foundry offering retail font collections, historical revivals, and handcrafted typefaces. The company targets designers and typographers seeking quality fonts with licensing options. The website is built on the Webflow platform, integrating modern technologies such as FontDue for font store management and Google Tag Manager for analytics. The site is mobile optimized and presents a professional design with clear navigation and social media integration. Security posture is solid with HTTPS and cookie consent, though explicit security headers and privacy policies are missing. The absence of WHOIS data raises concerns about domain registration transparency, which should be addressed to enhance trust. Overall, the website is functional and credible but would benefit from improved privacy compliance and security disclosures.

Superstrain is a specialized e-commerce retailer focused on premium hemp-derived products including Delta 8, HHC, THCP, Amanita Mushroom Gummies, and related alternative wellness items. The company targets adult consumers interested in vaping and alternative supplements, positioning itself as a leading online provider with a broad brand portfolio and comprehensive product categories. The website is built on Shopify, leveraging a mature e-commerce platform with integrated marketing, analytics, and customer review tools. The presence of age verification and privacy policies indicates compliance with regulatory requirements for adult products. However, the absence of WHOIS data and explicit security policies slightly detracts from overall trust. Technically, the site uses modern web technologies and third-party services to enhance user experience and marketing effectiveness. Security posture is generally strong with HTTPS and form protections, but could be improved with explicit security headers and incident response disclosures. Overall, the site presents a professional and trustworthy front for its niche market but would benefit from enhanced transparency and security documentation.