Retail security reports

G

Green idea s.r.o.

topvet.cz

0

Green idea s.r.o. is a Czech family-owned company specializing in the production and sale of natural cosmetics, dietary supplements, and veterinary care products. With over 30 years of experience and a strong emphasis on quality and ecological manufacturing, the company holds ISO 9001 and ISO 22716 certifications and offers a wide range of products through its e-commerce platform. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product information, targeting consumers interested in natural health and wellness products. Technically, the website leverages modern web technologies including jQuery, Bootstrap, Google Tag Manager, and various marketing and analytics tools such as Facebook Pixel and Smartlook. The platform is built on a custom CMS (SynetixCMS) and demonstrates good performance and accessibility standards. Security best practices are observed with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the absence of WHOIS registration data is a notable gap that affects the overall trust assessment. The company maintains active social media profiles and provides clear contact information, enhancing business credibility. Overall, Green idea presents a trustworthy and professional online presence with strong business and technical foundations. Strategic improvements in security headers and incident response transparency, along with verification of domain registration details, would further strengthen its security and credibility profile.

Y

YAMUNA Cosmetics s.r.o.

yamuna.cz

0

YAMUNA Cosmetics s.r.o. operates a Czech-language e-commerce website specializing in natural cosmetics and drugstore products. The site offers a broad catalog of skincare and body care items, targeting consumers interested in bio and natural cosmetic solutions. The company maintains a professional online presence with clear navigation, product categorization, and customer support features including login and shopping cart functionality. The website is supported by Google Analytics and includes a Google Translate widget to facilitate multilingual access. However, the WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency. The site uses HTTPS, but relies on outdated JavaScript libraries, which may pose security risks.

P

PONATURE s.r.o.

kilpisport.com

0

KilpiSport.com is a medium-sized retail and e-commerce business specializing in outdoor clothing, footwear, and accessories. The company operates both online and through nine physical stores in the Czech Republic, targeting outdoor enthusiasts and lifestyle customers. Their product range includes gear for hiking, running, cycling, and casual wear, emphasizing quality and performance materials. The website is professionally designed with clear navigation and a consistent brand presence, supported by a loyalty program and informative blog content. Technically, the site uses modern JavaScript frameworks, Google Tag Manager, and CDN hosting to deliver a responsive and moderately performant user experience. Security posture is good with HTTPS enforced and standard tracking scripts, though some security headers could be improved. Privacy and cookie policies are present with consent mechanisms, indicating GDPR compliance. However, the domain WHOIS data is missing, which slightly reduces trustworthiness but does not detract from the overall legitimacy of the business.

A

ALPA, a.s.

alpa.cz

0

ALPA, a.s. is a Czech company specializing in natural cosmetic products with a heritage spanning over 100 years. Their product portfolio includes massage products, embrocations, preparations for athletes, children's cosmetics, and other personal care items. The company targets general consumers, families, and athletes seeking traditional and natural health and cosmetic solutions. The website reflects a well-established brand with consistent messaging and a good level of professionalism. Technically, the website is built on the xartCMS platform, utilizing JavaScript libraries such as MooTools and jQuery for interactive features. Google Tag Manager is implemented for analytics and marketing purposes. The site is mobile-optimized with good SEO practices, though some accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism. However, it lacks important security headers and does not provide visible incident response or vulnerability disclosure information. The absence of WHOIS data reduces transparency but does not necessarily indicate malicious intent given the brand's established presence. Overall, the website presents a trustworthy and professional front for ALPA, a.s., with minor technical and security improvements recommended to enhance compliance and user trust.

K

Sportovní vybavení a potřeby, krejčovství na míru - konig.cz

konig.cz

0

Konig.cz is a Czech Republic-based retailer specializing in sports equipment and related services, including rental and technical tailoring. The website presents a comprehensive catalog of products for winter and summer sports such as skiing, snowboarding, windsurfing, and kiting. The business model combines e-commerce with physical rental and service offerings, targeting sports enthusiasts in the Czech market. Technically, the site uses a mix of common web technologies including jQuery, Bootstrap, and Google Analytics, with a custom or niche CMS platform. The site is mobile-optimized and offers good navigation and content relevance. Security posture is moderate with HTTPS enabled but missing some recommended security headers and lacking a vulnerability disclosure policy. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective but the site content and structure indicate a legitimate small business. Overall, the site scores well in content quality and business credibility but could improve in security and privacy compliance.

A

AJ Produkter

ajprodukter.se

0

AJ Produkter is a leading Swedish company specializing in office, warehouse, and workshop furniture and workplace equipment. The company operates a professional e-commerce platform complemented by a catalog sales model, targeting business customers seeking quality workplace furnishings with fast delivery and extended warranties. The website demonstrates a mature digital infrastructure utilizing modern JavaScript frameworks, comprehensive analytics, and marketing tools, ensuring a rich user experience and effective customer engagement. Security posture is strong with HTTPS, Content-Security-Policy headers, and cookie consent mechanisms in place, although explicit privacy and terms policies are not found in the provided content. WHOIS data is missing, which raises concerns about domain registration transparency but does not detract from the professional presentation and contact availability on the site. Overall, AJ Produkter presents a credible and well-established business with room for improvement in compliance documentation and domain registration transparency.

U

Universo L.O.L. Surprise!

universololsurprise.com

0

Universo L.O.L. Surprise! is a Spanish retail website specializing in the sale and promotion of L.O.L. Surprise! toys and related products. The site targets a general audience, primarily children and their parents, offering product information and multimedia content such as video trailers. The business operates as a small-sized e-commerce retailer with a niche market focus. Technically, the website is built on WordPress using the Genesis Framework and integrates Google Tag Manager and Cloudflare DNS services. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. Security-wise, the website enforces HTTPS and has domain transfer protections but lacks DNSSEC and some security headers like Content-Security-Policy. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security practices.

T

Tierra de Drones

tierradedrones.com

0

Tierra de Drones is a Spanish-language website specializing in drone reviews, comparisons, and affiliate marketing for drone products. The site targets consumers ranging from beginners to professionals interested in drones with cameras, offering detailed analyses, video content, and curated buying guides. The business operates primarily as a content-driven affiliate marketing platform, leveraging SEO and social media to attract drone enthusiasts. Technically, the site is built on WordPress with popular SEO and marketing plugins, hosted with NameCheap as registrar and using Cloudflare DNS services. The website demonstrates good digital maturity with structured data, responsive design, and integration of analytics and marketing tools. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced headers like CSP and DNSSEC. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional and trustworthy for its niche, though it would benefit from enhanced privacy disclosures and security policies.

S

SportCom

sportcom.eu

0

SportCom is a European-based company specializing in the manufacture and sale of combat sports and martial arts equipment, including boxing rings, MMA cages, mats, and accessories. The company also offers custom gym and product conception services, targeting combat sports professionals, gyms, and fitness centers. The website demonstrates a professional digital presence with clear navigation, multilingual support, and integration of modern marketing and analytics tools. Security posture is good with HTTPS and reCAPTCHA implemented, though additional security headers and a published security policy would enhance trust. Privacy compliance is basic with cookie consent and privacy/legal notices present. The WHOIS data is privacy protected by EURid, which is typical for European domains, and does not raise immediate concerns given the professional website and clear contact information. Overall, the site is trustworthy and well-positioned in its niche.

D

Dojomania

dojomania.com

0

Dojomania is a French-based e-commerce retailer specializing in combat sports equipment such as judo, karate, taekwondo, boxing, and MMA gear. The website offers a wide range of products including kimonos, belts, gloves, bags, and personalized embroidery services. It targets martial arts practitioners and clubs, positioning itself as a specialist retailer with a professional online presence. The site is built on the PrestaShop platform, leveraging modern web technologies and providing multilingual support. Security posture is good with HTTPS and security headers implemented, though there is no visible security policy or incident response information. Privacy and cookie policies are present and GDPR compliant. The absence of WHOIS data is a concern for domain legitimacy but the website content and contact information suggest a legitimate business. Overall, the site is well designed, functional, and trustworthy for its target audience.

T

Total Board Shop

totalboardshop.cz

0

Total Board Shop is a well-established retail business specializing in skateboarding and snowboarding equipment, streetwear, and custom textile printing services. Founded in 1994, it operates both a physical store in Prague and an online e-commerce platform. The company targets enthusiasts of skate and snow culture, offering a curated product range and supporting local talent. Technically, the website is built on WordPress with WooCommerce, utilizing modern JavaScript libraries and GDPR-compliant cookie management. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies or incident response details. Overall, the site is professional, user-friendly, and trustworthy, with good SEO and social media integration.

P

PPJ s.r.o.

leano.cz

0

LEANO.cz is a Czech Republic-based price comparison platform specializing in pharmacy, cosmetic, and health-related products. Operated by PPJ s.r.o., the website offers consumers a way to find the best prices across multiple online pharmacies and cosmetic stores. The platform features extensive categorization, city-specific pharmacy listings, and editorial content such as reviews and articles to support informed purchasing decisions. The business model primarily revolves around affiliate marketing and providing a convenient shopping list feature for users. Technically, the website employs modern web technologies including jQuery, the Nette framework, Google Tag Manager, and MailerLite for marketing automation. It is well-optimized for mobile devices and includes SEO best practices such as structured data markup. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, the absence of WHOIS registration data and lack of explicit contact information or security policy pages slightly reduce trustworthiness. Overall, LEANO.cz presents a professional and user-friendly platform with moderate technical maturity and a solid security posture.

C

Cirio 1856

cirio1856.com

0

Cirio 1856 is a well-established Italian food company specializing in authentic tomato products, fruits, and vegetables. The website presents a professional and comprehensive digital presence, targeting both consumers and business clients including food service professionals. The company emphasizes quality, sustainability, and organic product lines, supported by multiple country-specific domains indicating international market reach. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good SEO and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the overall website content and structure support legitimacy. Privacy compliance is strong with GDPR-aligned policies and consent banners.

Y

Home -

yuton.rs

0

The website www.yuton.rs represents a Serbian-based food product distributor operating under the Gaston Grupa umbrella. The company offers a variety of food products including tuna, seafood, fruits, vegetables, olives, oils, vinegars, pasta, rice, and specialty items. The site targets retail and wholesale buyers in Serbia and neighboring regions, positioning itself as a regional distributor within a larger group of related brands. The business is relatively new, with domain registration in early 2023, consistent with the company's recent establishment. From a technical perspective, the website uses several JavaScript libraries including multiple versions of jQuery, jQuery UI, and plugins for UI enhancements such as sliders and lightboxes. The site is moderately optimized for performance and mobile use but shows room for improvement in accessibility and SEO. The CMS or hosting provider is not explicitly identified. The website is accessible without any WAF or security challenges. Security posture is moderate; HTTPS is enabled but no DNSSEC or security headers are present. Multiple jQuery versions loaded may introduce vulnerabilities. No privacy or security policies are published, though a cookie consent banner is implemented, indicating some GDPR awareness. Contact information is clearly provided, enhancing business credibility. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and moderately professional but lacks comprehensive privacy and security policies. Strategic improvements in security headers, privacy documentation, and script management are recommended to enhance trust and compliance.

Z

Zahradnictví Hruška, Velim u Kolína

hruska-skolky.cz

0

Zahradnictví Hruška Velim u Kolína is a small retail business specializing in the sale of fruit trees, ornamental plants, and garden accessories, with additional services in garden design and realization. The company has a long-standing presence since 1991, serving local gardening enthusiasts and customers. The website reflects a professional and consistent brand image with a focus on product catalog and gardening advice. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and integrates Google Tag Manager and Analytics for tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and incident response information. The absence of WHOIS data reduces domain trustworthiness, but the website content and social media presence support legitimacy. Overall, the site is safe, well-maintained, and compliant with basic privacy regulations.

The website 4fstore.sk appears to be an established e-commerce retail platform, likely specializing in sportswear or apparel, based on the domain and URL patterns. The domain has been registered since 2013 and is hosted via Akamai CDN, indicating a mature infrastructure. The site employs modern web technologies including React and Tailwind CSS, and integrates multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, SalesManago, and Cookiebot for cookie consent management. However, explicit privacy policies, terms of service, and contact information are not found in the analyzed content, which may impact user trust and compliance. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and formal security policies. Overall, the site is functional and professionally designed but could improve transparency and security practices.

M

Moravská hvězda, vánoční dekorace.

moravskahvezda.eu

0

The website www.moravskahvezda.eu is a Czech-language e-commerce platform specializing in the sale of traditional Moravian stars and Christmas decorations. It targets general consumers interested in cultural and festive products, primarily within the Czech Republic. The business model is retail-focused, leveraging the eshop-rychle.cz platform for online sales. The site presents a consistent brand image with good content quality and clear navigation, although it lacks explicit business contact details and comprehensive privacy documentation. Technically, the site uses legacy JavaScript libraries such as jQuery 1.8.3 and jQuery UI 1.10.3, along with Matomo analytics for user tracking. The platform is built on eshop-rychle.cz, a specialized e-commerce solution. While the site is functional and moderately optimized for performance and mobile use, it shows room for improvement in modernizing its tech stack and enhancing accessibility and SEO. From a security perspective, the site uses HTTPS but lacks visible security headers and employs outdated JavaScript libraries that may expose vulnerabilities. There is no visible privacy or cookie policy, nor incident response or security contact information, which impacts compliance and trust. The WHOIS data is not publicly available due to EURid privacy policies, which is common for .eu domains and does not raise immediate suspicion. Overall, the website is moderately secure and professionally presented but would benefit from updates to its security posture, privacy compliance, and technical modernization to reduce risks and improve user trust.

E

EDELRID

edelrid.de

0

EDELRID is a well-established German company specializing in mountain sports, climbing, and occupational safety equipment with a history spanning over 160 years. The website serves both sports enthusiasts and professional users, offering a broad catalog of products and training services. The company maintains a strong market position with a focus on quality and innovation. Technically, the website is built with modern web technologies, including JavaScript frameworks and consent management tools, hosted on Cloudflare infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although DNSSEC is not enabled and no explicit security policy or incident response information is published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

N

Nike, Inc.

nike.com

0

Nike, Inc. operates a globally recognized e-commerce platform delivering innovative sportswear, footwear, and related services. The Finnish localized site targets athletes and consumers in Finland, offering a comprehensive product range with a strong brand presence. The website leverages modern web technologies including React and Next.js frameworks, supported by advanced analytics and performance monitoring tools such as New Relic and Adobe Experience Platform. Security posture is robust with HTTPS enforcement, comprehensive security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. The absence of WHOIS data is likely due to registry privacy policies and does not detract from the site's legitimacy. Overall, Nike's digital infrastructure demonstrates high maturity, supporting a seamless and secure user experience.

P

PUMA Europe GmbH

puma.com

0

PUMA Europe GmbH operates a professional e-commerce platform targeting the Finnish market under the global PUMA brand, a leading sportswear company founded in 1948. The website offers footwear, apparel, and accessories with a strong focus on performance and lifestyle products. The platform is built on Salesforce Commerce Cloud, integrating advanced personalization and analytics tools such as Emarsys and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high professionalism, strong branding consistency, and compliance with GDPR, supporting a high trustworthiness rating.

P

PUMA Europe GmbH

puma.cz

0

PUMA Europe GmbH operates a professional e-commerce platform targeting the Czech market and broader European region, offering footwear, apparel, and accessories under the globally recognized Puma brand. The company is a large enterprise with a long history dating back to 1948 and is part of the Puma SE group. The website reflects a mature digital presence with advanced personalization and marketing technologies integrated, including Salesforce Commerce Cloud and Emarsys. The site is well-structured, mobile-optimized, and provides comprehensive business and contact information, enhancing user trust and engagement. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit incident response contacts and vulnerability disclosure policies could be improved. Overall, the domain and website demonstrate high legitimacy and professionalism consistent with a global retail brand.

G

Gaston, s.r.o.

yuton.biz

0

Gaston, s.r.o. is a Czech-based distributor specializing in canned fish, vegetables, and fruits under multiple brands such as Gianna and Franz Josef. The company operates a medium-sized business with a regional presence supported by several subsidiaries across Central and Eastern Europe. Their website reflects a professional and consistent brand image with clear product categories and contact information. Technically, the site uses legacy JavaScript libraries like jQuery but implements modern UI components such as sliders and cookie consent mechanisms. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and updated libraries. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact details appear legitimate. Privacy and terms policies are not explicitly found, indicating room for compliance improvements.

A

AJ Produkty

ajprodukty.sk

0

AJ Produkty is a well-established European company specializing in office, warehouse, and industrial furniture and equipment. Founded in 1975 in Sweden, it has expanded to 19 countries, including Slovakia, where this localized website operates. The company offers a broad product range with over 15,000 items, focusing on ergonomic and functional solutions for various business environments. Their market position is strong, supported by a consistent brand presence and comprehensive customer service including warranties and free shipping offers. Technically, the website employs modern web technologies such as React, Google Tag Manager, and Cookiebot for consent management. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Analytics and error monitoring tools are integrated, indicating a mature digital infrastructure. From a security perspective, the site uses HTTPS with strong SSL configuration and a Content Security Policy header. Cookie consent is implemented with opt-in mechanisms, and no critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, which could be improved. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic recommendations include publishing security and incident response policies, implementing a vulnerability disclosure program, and enhancing accessibility features to further strengthen trust and compliance.

G

GIANA d.o.o.

giana.hr

0

GIANA d.o.o. is a Croatian-based distributor specializing in canned fish, vegetables, and fruits under multiple brand names. The company operates primarily in the retail sector with a regional presence in Central and Eastern Europe, supported by a network of partner domains within the Gaston group. The website presents a professional and consistent brand image with good content quality and clear navigation, targeting a general audience interested in food products. Technically, the site uses legacy and modern JavaScript libraries but lacks HTTPS implementation and security headers, which are critical for secure operations. The cookie consent mechanism is implemented, but privacy and terms of service policies are missing, indicating compliance gaps. Overall, the security posture is moderate with room for significant improvements in encryption and vulnerability management.

S

S.C. GAROM FOOD S.R.L.

garomfood.ro

0

S.C. GAROM FOOD S.R.L. operates as a regional distributor and retailer of canned fish, vegetables, fruits, and related food products in Romania. The company is part of the larger Gaston group, which has multiple regional partners across Central and Eastern Europe. The website presents a professional image with clear branding and product focus, targeting general consumers and business clients interested in quality food products. The business model centers on distribution and retail within the food sector, leveraging established brand partnerships.

G

Gaston, s.r.o.

giana.pl

0

Gaston, s.r.o. operates as a regional distributor specializing in canned fish, vegetables, and fruits under multiple brand names including Gianna and Franz Josef. The company targets general consumers and retail businesses primarily in Poland and neighboring countries. Their business model focuses on wholesale distribution with a portfolio of premium and exotic food products, positioning them as an established player in the retail food sector. Technically, the website employs a traditional jQuery-based stack with UI enhancements such as sliders and modals, indicating moderate digital maturity. The site is mobile optimized and provides a clear navigation structure, though it lacks modern CMS or advanced frameworks. Security posture is moderate; HTTPS is used but no explicit security headers or privacy policies are present, and WHOIS data is missing, which impacts trust. Overall, the website is functional and professional but could benefit from enhanced security and compliance documentation.

G

GA FOOD Kft.

gafood.hu

0

GA FOOD Kft. is a Hungarian company specializing in the distribution of premium and exotic food products, including seafood, fruits, vegetables, oils, and specialty items. It operates as part of the Gaston Group, which includes multiple partner brands and domains, positioning itself as a medium-sized player in the retail food sector. The website provides clear business contact information and brand consistency, targeting both general consumers and business clients interested in quality food products. Technically, the website uses multiple versions of jQuery and several JavaScript libraries to enhance user experience, but lacks modern security practices such as HTTPS and security headers. The cookie consent mechanism is implemented, but no privacy policy or terms of service pages are found, indicating gaps in compliance. Overall, the site is functional and professional but requires improvements in security and privacy compliance to enhance trust and protect users.

G

GORAL, spol. s r.o.

goral.sk

0

GORAL, spol. s r.o. is a Slovak-based distributor specializing in canned fish, vegetables, and fruit products under well-known brands such as Franz Josef Kaiser, Giana, and Marinna. The company operates primarily in the retail sector, targeting general consumers in Slovakia and neighboring countries. It is part of the Gaston Group, which includes several partner companies across Central and Eastern Europe. The website reflects a medium-sized business with a consistent brand presence and recognized market position, evidenced by awards like Superbrands 2025. Technically, the website employs a traditional tech stack centered around jQuery and related plugins for UI components and sliders. While the site is mobile-optimized and has good SEO fundamentals, it lacks modern security practices such as HTTPS enforcement and security headers. Multiple versions of jQuery are loaded, which could introduce security vulnerabilities. The site does not appear to use a known CMS, and no advanced analytics or tracking tools are detected. From a security perspective, the site shows basic compliance with cookie consent requirements but lacks a published privacy policy, terms of service, or incident response contacts. The absence of HTTPS and security headers reduces the overall security posture. No critical vulnerabilities or malware indicators were found, but improvements are needed to align with best practices and GDPR compliance. Overall, the website is functional and professional but requires enhancements in security and privacy documentation to improve trust and compliance. Strategic recommendations include implementing HTTPS, consolidating JavaScript libraries, publishing privacy and security policies, and adding security headers to protect users and data.

FRANZ JOSEF KAISER, operated by GASTON, s.r.o., is a premium food brand focused on high-quality products such as tuna, seafood, olives, oils, pasta, and related specialties. The website serves as a marketing and informational platform offering recipes and product details to a general consumer audience primarily in the Czech Republic. The brand holds a recognized consumer trust certification (Superbrands Consumer 2025), indicating a positive market position within its niche. Technically, the website is built on WordPress with modern plugins and frameworks, providing a good user experience with multilingual support and GDPR-compliant cookie management. Security posture is solid with HTTPS and consent mechanisms, though some improvements in security headers and contact transparency are recommended. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the professional presentation and compliance measures mitigate this risk. Overall, the site is functional, trustworthy, and well-positioned for its market segment.

D

Dev-Com Informatikai kft.

judobcknmbr.com

0

JUDOBCKNMBR.COM is a specialized e-commerce platform launched in 2024 by Dev-Com Informatikai kft., focused on providing official and custom judo backnumbers, sponsor labels, and related products. The website targets judokas and judo enthusiasts seeking personalized and competition-approved identifiers. The business leverages official partnerships with the International Judo Federation (IJF) and the European Judo Union (EJU), enhancing its market credibility within the niche sports apparel sector. The platform offers a user-friendly interface with clear navigation and product categorization, supporting a seamless ordering experience.

MYBACKNUMBER.com is an e-commerce website specializing in official judo back numbers for international federations such as IJF, EJU, and DJB. The site targets judo athletes, clubs, and federations, offering customized back numbers and club registration services. The business operates primarily in Germany and appears to be a niche market leader in its segment. The website is professionally designed with clear navigation and consistent branding, supporting a small-sized retail business model focused on sports equipment. Technically, the website employs a classic JavaScript stack including Prototype.js and Scriptaculous, with integrations for Google Tag Manager and Hotjar for analytics and user behavior tracking. The site shows moderate performance and basic mobile optimization. SEO practices are good with proper meta tags and structured navigation. However, no modern CMS or hosting provider details are evident. From a security perspective, the site uses HTTPS and secure login forms but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. No security policy or incident response contacts are published, and WHOIS data is missing, which raises concerns about domain registration legitimacy. The site does not expose sensitive data or show obvious vulnerabilities but would benefit from enhanced security practices. Overall, the website is functional, professional, and trustworthy from a user perspective but has gaps in domain registration transparency and privacy compliance. Strategic improvements in security headers, cookie consent, and WHOIS data verification are recommended to strengthen trust and compliance.

O

Official backnumber

officialbacknumber.com

0

Officialbacknumber.com is an e-commerce website specializing in the sale of official and custom backnumber products primarily targeting sports organizations and athletes, particularly in martial arts contexts. The site features multiple product categories including IJF-approved official backnumbers, sponsor labels, and children’s backnumbers. The business operates from Hungary and presents itself as a niche market player with official endorsements from recognized sports bodies such as IJF and EJU. The website is professionally designed with multilingual support and clear navigation, enhancing user experience for an international audience. Technically, the site uses a modern tech stack including jQuery, Bootstrap, and lightbox scripts, with moderate performance and good mobile optimization. Security posture is adequate with SSL usage and cookie consent mechanisms, though explicit security headers and policies are not evident. WHOIS data is unavailable or not publicly accessible, which raises some concerns about domain registration transparency but does not negate the legitimacy suggested by the website content and partner affiliations. Overall, the site is safe, trustworthy, and well-positioned within its niche market.

V

Vivatip

vivatip.hr

0

Vivatip is a Croatian-based e-commerce business specializing in trophies, medals, plaques, ribbons, and promotional materials. Established in 2003, it serves customers primarily in Croatia, offering a variety of award products and custom orders. The website is built on WordPress with WooCommerce and Elementor, reflecting a modern digital infrastructure suitable for retail operations. The site is well-structured with good SEO practices and moderate performance, optimized for mobile devices. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit privacy or cookie policies, indicating compliance gaps. No direct contact information or incident response details are visible, which may affect customer trust and regulatory compliance. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and regulatory adherence.

A

adidas Combat Sports

combat-sports.net

0

The website combat-sports.net represents a small-scale online presence focused on adidas Combat Sports products, likely targeting combat sports enthusiasts and athletes interested in adidas apparel and equipment. The site is built on WordPress using the Salient theme and includes basic integrations such as Instagram Feed. The technical infrastructure is moderate, hosted by OVH sas, a reputable provider, with HTTPS enabled but lacking advanced security headers and DNSSEC. The content is basic and consistent with the brand but lacks comprehensive privacy, cookie, and terms of service policies, as well as contact information, which impacts trust and compliance. Security posture is average with room for improvement in headers and vulnerability disclosures. Overall, the site is safe with no adult or questionable content detected.

K

KWON KG - Kampfsportartikel

kwon.com

0

KWON KG operates an e-commerce platform specializing in martial arts and security equipment, targeting martial arts practitioners primarily in Germany. The website offers a broad range of products including gear for Taekwondo, Karate, Judo, MMA, and other combat sports. The business model focuses on online retail with additional services such as product individualization and multilingual support. The company appears to be a medium-sized retailer with a consistent brand presence and a professional website design. Technically, the website uses modern web technologies including JavaScript and Google Tag Manager for analytics. The CMS is likely Shopware, inferred from URL and CSS patterns. The site is mobile-optimized with good SEO practices but lacks some accessibility features. Performance is moderate, and HTTPS is enforced, ensuring secure data transmission. From a security perspective, the site has a solid SSL configuration but lacks visible security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No WHOIS data is available for the domain, which raises concerns about domain registration legitimacy and reduces overall trust. Contact information is provided via phone and WhatsApp, but no company emails or physical addresses were found. Overall, the website is functional and professional but would benefit from improved transparency in privacy and security policies, better WHOIS registration clarity, and enhanced security headers to strengthen trust and compliance.

I

IPPON-SHOP.COM

ippon-shop.com

0

IPPON-SHOP.COM is a specialized e-commerce platform established since 2003, serving martial arts practitioners including Judoka, Karateka, and BJJ fighters. The site offers a wide range of high-quality martial arts products, including their own brand IPPON GEAR, and targets both individual consumers and clubs. Technically, the website is built on the Shopware CMS platform, utilizing modern web technologies and tracking tools such as Google Analytics and Facebook Pixel. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and comprehensive product categorization. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks some explicit security headers which could enhance protection. The absence of WHOIS data for the domain is a notable concern, impacting domain legitimacy verification. Overall, the website presents a professional and trustworthy front for its business, but domain registration details should be verified to strengthen trust.

E

Essimo B.V.

essimo-judo.com

0

Essimo B.V. operates the website essimo-judo.com, an e-commerce platform specializing in judo and martial arts equipment. The company offers a range of IJF approved products, uniforms, mats, and accessories targeting martial arts practitioners and clubs primarily in the Netherlands. The website is built on Magento Open Source, leveraging modern web technologies such as RequireJS, jQuery, and Knockout.js, providing a responsive and user-friendly shopping experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration on forms, although additional security headers could enhance protection. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy, suggesting the domain may be newly registered or privacy protected. Overall, the website presents a professional and trustworthy front for its niche retail market.

U

UVEX ARBEITSSCHUTZ GMBH

uvex-sportstyle-rx.com

0

The website www.uvex-sportstyle-rx.com represents UVEX ARBEITSSCHUTZ GMBH's specialized product line for prescription sports eyewear. It targets sports enthusiasts requiring high-quality, safe, and stylish prescription glasses for various sporting activities. The site is professionally designed, mobile-optimized, and uses modern technologies including TYPO3 CMS and Amazon Cloudfront CDN. Privacy and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are absent. WHOIS data is missing, which slightly reduces trust but the overall professional presentation and consistent branding support legitimacy. Recommendations include publishing explicit security and incident response policies and improving accessibility features.

R

Robel.sk

robelshoes.sk

0

Robel.sk is a Slovak-based e-commerce retailer specializing in branded footwear and accessories for women, men, and children. The company operates multiple country-specific domains, indicating a strong regional presence in Central and Eastern Europe. Their business model focuses on online sales complemented by in-store reservation and pickup options, with a customer-friendly 30-day return policy. The website is professionally designed with good navigation and multilingual support, targeting consumers seeking quality branded shoes and related products. Technically, the site uses a modern tech stack including Google Tag Manager, Facebook Pixel, Sentry for error tracking, and Cloudfront CDN, running on the CREATIVE shop CMS platform. Security practices are solid with HTTPS, CSRF protection, and reCAPTCHA integration, though cookie consent mechanisms and terms of service pages are missing, which could be improved for better GDPR compliance. Overall, the domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

K

Kytary.cz

kytary.cz

0

Kytary.cz is a well-established Czech e-commerce retailer specializing in musical instruments and related accessories. Founded in 2000, it holds a strong market position in the Czech Republic with the largest stock availability and competitive pricing. The website offers a broad range of products including guitars, keyboards, drums, sound equipment, and lighting, targeting musicians and music enthusiasts primarily in the Czech market. Their business model focuses on online sales with value-added services such as extended warranties, free delivery over a threshold, and installment payment options. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Analytics, and Facebook SDK, hosted on Czech hosting providers. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS, security headers, and use of reCAPTCHA, though explicit security policies and incident response information are not published. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements in security transparency and accessibility could be made.

F

Footshop a.s.

footshop.cz

0

Footshop a.s. operates a prominent e-commerce platform specializing in sneakers, clothing, and accessories, primarily targeting the Czech Republic and Central European markets. The website offers a broad selection of popular brands such as adidas, Nike, Converse, and Vans, supported by a loyalty program and multiple physical stores. The business model focuses on retail sales through both online and offline channels, positioning Footshop as a leading retailer in its niche. The website's content is professionally curated, with clear navigation and comprehensive product categorization, appealing to a general audience interested in fashion and footwear. Technically, the website employs modern web technologies including React, Webpack, and Google Tag Manager, ensuring a responsive and performant user experience. The presence of service workers and performance monitoring scripts indicates a commitment to maintaining site speed and reliability. The platform appears to be built on PrestaShop CMS, a common choice for e-commerce sites, and integrates third-party services for analytics and cookie consent management. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers to protect users. Privacy and cookie policies are clearly presented, with mechanisms for user consent, aligning with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected in the analysis. However, the absence of a dedicated security policy or incident response contact suggests areas for improvement in transparency and readiness. Overall, Footshop.cz demonstrates a mature digital presence with strong business credibility and a solid security posture. The lack of WHOIS data due to privacy protection is common and does not detract from the site's legitimacy. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility features, and maintaining vigilance on third-party scripts to sustain security and compliance.

I

Nejlevnější IQOS ILUMA, koupit v akci se slevou, návody a novinky

iqfan.cz

0

The website www.iqfan.cz is a Czech language platform focused on providing information, reviews, tips, and purchasing guidance related to IQOS tobacco heating devices, particularly the IQOS ILUMA series. It targets Czech-speaking users interested in IQOS products, offering discount codes and links to dealers and e-shops. The site maintains a moderate market position within the niche retail sector for tobacco alternatives. Technically, the site is built on ASP.NET Web Forms, uses jQuery 1.12.4, and integrates Google Analytics and Tag Manager for tracking. The design is professional and mobile-optimized, though accessibility features are basic. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and privacy policies. No WHOIS data is available, which limits domain trust verification. Overall, the site is content-rich and functional but would benefit from enhanced privacy compliance and security hardening.

E

eSportsmedia s.r.o.

fanshopfkpce.cz

0

Fanshop FK Pardubice is a Czech Republic based small retail e-commerce business specializing in fan merchandise for the FK Pardubice football club. The website offers a variety of products including clothing, accessories, and a custom jersey configurator, targeting local football fans. The business is operated by eSportsmedia s.r.o., which also appears to be the parent company and developer of the site. The company maintains a physical store located at the CFIG Arena in Pardubice, enhancing its local presence. Technically, the website uses a combination of jQuery, Slick Carousel, Fancybox, and the Nette PHP framework, indicating a moderately modern tech stack. The site is mobile optimized and includes basic SEO and accessibility features. Hosting is managed through a Czech registrar with name servers at forpsi.net. Google Analytics is implemented but misconfigured, and cookie consent is properly managed through a third-party service, reflecting a basic level of privacy compliance. From a security perspective, the site lacks explicit security headers and does not provide visible security or incident response policies. No critical vulnerabilities or blocking mechanisms were detected, but improvements are recommended to enhance security posture. The domain registration data is consistent with the business claims, and no suspicious patterns were found, supporting the legitimacy of the site. Overall, the website is professionally presented with good content quality and business credibility. Privacy compliance is basic but present. Security measures require enhancement to meet higher standards. The site is safe for general audiences and does not contain any adult or questionable content.

M

Macron

macron.com

0

Macron is a prominent European sportswear brand operating a professional e-commerce platform built on Magento with a modern Hyvä theme. The website offers a broad range of sportswear products and supports worldwide shipping, targeting athletes, sports teams, and retail consumers globally. The technical infrastructure leverages multiple third-party analytics and marketing tools, including Google Tag Manager, Hotjar, Microsoft Clarity, and reCAPTCHA, indicating a mature digital presence. The site implements comprehensive cookie consent and privacy mechanisms aligned with GDPR requirements, enhancing user trust and compliance. Security posture is strong with HTTPS enforced and CSRF protections in place, though explicit security headers could be better documented. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trustworthiness but does not detract from the professional presentation and functionality of the site.

C

CANIS SAFETY a.s.

canis.cz

0

CANIS SAFETY a.s. is a Czech-based company specializing in the sale of professional workwear, footwear, gloves, and personal protective equipment. The company targets both B2C and B2B customers, offering a broad range of products including custom tailoring and embroidery services. The website presents a professional e-commerce platform with clear navigation and a focus on safety and work-related apparel. Technically, the site employs modern tracking and marketing tools such as Google Analytics, Google Tag Manager, and Smartsupp Chat, alongside map integration via Mapy.cz API. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of security headers and explicit privacy policies suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the website content and structure indicate a legitimate business presence.

J

JAKO

jakojedenteam.cz

0

JAKOjedenteam.cz is the official Czech Republic importer and retailer of the JAKO sportswear brand, offering a comprehensive range of sports clothing and equipment tailored for various sports disciplines. The website serves sports clubs, teams, and individual athletes, providing both retail and team outfitting services with customization options. The site demonstrates a professional e-commerce platform with clear navigation, product categorization by sport and team lines, and integration of marketing and analytics tools such as Google Analytics and Facebook SDK. The technical infrastructure is modern, leveraging popular JavaScript libraries and ensuring mobile responsiveness. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and explicit security policies are recommended. The absence of WHOIS data for the domain is a notable concern, impacting trust and transparency. Overall, the website presents a legitimate and professional business presence with moderate risk, primarily due to domain registration opacity.

G

Gaston, s.r.o.

gaston.cz

0

Gaston, s.r.o. is a Czech-based distributor specializing in canned food products such as fish, vegetables, and fruits under multiple brands including Franz Josef Kaiser, Giana, and Marinna. The company operates a medium-sized business model focused on retail and wholesale distribution within the food sector, supported by a network of subsidiaries across Central and Eastern Europe. The website reflects a professional presence with clear branding and product categorization, targeting both retail customers and business clients. Technically, the website uses legacy jQuery libraries alongside modern tracking tools like Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and outdated JavaScript libraries present potential risks. The lack of WHOIS data and privacy policy documentation reduces trust and compliance confidence. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy transparency.

T

TOMZA s.r.o.

doncarton.cz

0

DonCarton.cz is an e-commerce platform operated by TOMZA s.r.o., specializing in packaging materials such as stretch films, bubble films, adhesive tapes, cardboard boxes, and related accessories. The company offers both standard products and custom manufacturing services, targeting businesses and individuals requiring packaging solutions. The website is built on the PrestaShop CMS, integrating modern tracking and marketing tools like Google Analytics, Google Tag Manager, and Smartlook, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though the absence of advanced security headers suggests room for improvement. The lack of WHOIS data for the domain is a notable concern, impacting trustworthiness, but the professional presentation and clear contact information mitigate some risk. Overall, the site is functional, user-friendly, and compliant with GDPR, serving its retail packaging niche effectively.

D

Double D

boutique-du-combat.com

0

Double D operates the website boutique-du-combat.com, an official adidas combat sports and martial arts equipment retailer based in France. The site offers a wide range of products including kimonos, gloves, protections, and accessories for disciplines such as judo, karate, taekwondo, MMA, boxing, and Brazilian jiu-jitsu. The company targets practitioners and enthusiasts of combat sports, positioning itself as a trusted official adidas partner with recognized sports federation endorsements. Technically, the website is built on the Prestashop e-commerce platform, utilizing modern JavaScript libraries and Google Tag Manager for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers are missing and no explicit security or incident response policies are published. WHOIS data is unavailable, which reduces domain transparency and trustworthiness, but the website content and branding strongly indicate a legitimate business. Overall, the site is well-structured and trustworthy for its target audience, with room for improvement in security policy transparency and domain registration clarity.

P

PetO

peto.com.au

0

PetO is a large Australian retail and e-commerce business specializing in dog and cat supplies. The company operates both online and through physical stores, positioning itself as Australia's largest dog and cat store. The website is built on the BigCommerce platform, leveraging modern e-commerce technologies and integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and HubSpot. The technical infrastructure is solid with HTTPS enforced and Cloudflare DNS used, although DNSSEC is not enabled. Security posture is adequate but could be improved by adding explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security documentation.