Retail security reports

W

Wendt & Kühn KG

wendt-kuehn.nl

0

Wendt & Kühn KG is a well-established German company specializing in handcrafted wooden figures and music boxes, with a heritage dating back to 1915. The company targets collectors and enthusiasts of traditional craftsmanship, offering a broad assortment of collectible figures, seasonal decorations, and gifts. Their website, localized for the Netherlands, is professionally designed using TYPO3 CMS and incorporates modern web technologies and cookie consent mechanisms. The site is accessible, mobile-optimized, and provides multilingual support through alternate hreflang links. Security posture is solid with HTTPS and cookie consent, though it lacks explicit published security policies or incident response contacts. Overall, the website reflects a trustworthy and credible business with a strong brand presence in the niche market of handcrafted collectibles.

L

lumipöllö®

lumipollo.com

0

lumipöllö® is a small boutique manufacturer and retailer specializing in unique headwear products, operating primarily through an e-commerce webshop and supported by a physical boutique manufacturing presence. The website reflects a niche market positioning targeting consumers interested in unique fashion headwear. The business appears to be established since 2012, consistent with domain registration data, and operates primarily in Germany. The digital presence is basic but functional, with limited interactive features and a focus on product presentation. Technically, the website uses older JavaScript libraries such as jQuery 1.11.0 and Lightbox, with styling through CSS and Google Fonts. Hosting and domain registration are managed by reputable providers, but there is no evidence of advanced CMS or modern frameworks. Performance and mobile optimization are basic, and SEO features are minimal. Security practices show room for improvement, including the absence of DNSSEC, lack of security headers, and use of outdated libraries that may expose vulnerabilities. Security posture is moderate with HTTPS assumed but no visible security headers or cookie consent mechanisms, which impacts GDPR compliance. No incident response or vulnerability disclosure information is provided. The website does not expose sensitive data but could benefit from enhanced security controls and privacy compliance features. Overall, the risk is moderate with recommendations to update technical components and improve compliance. Strategically, the company should focus on modernizing its technical stack, implementing security best practices, and enhancing privacy compliance to build greater trust with customers and meet regulatory requirements. The current digital maturity supports basic e-commerce operations but limits scalability and security resilience.

MAYBE STYLE s. r. o. is a Czech-based company specializing in the design and realization of professional LED lighting solutions for various interior types including commercial units, offices, industrial spaces, schools, and residential buildings. The company collaborates with investors, architects, project designers, and developers, leveraging high-quality European lighting products. Their website reflects a professional presence with clear business information, product catalogs, and contact options, targeting primarily B2B customers in the Czech market. The company claims over 20 years of experience and a substantial portfolio of completed projects and delivered luminaires. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Select2, and Facebook SDK for social integration. The site is mobile optimized and SEO friendly with proper meta tags and structured navigation. However, no CMS or hosting provider details are evident, and some security best practices such as security headers are missing. The cookie consent mechanism is implemented, but no dedicated privacy or security policy pages were found. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries visibly. The WHOIS data is privacy protected, which is common for small businesses, but limits verification of domain age and registrant details. No WAF or blocking mechanisms are detected, and no critical vulnerabilities or compliance gaps are apparent from the content. The site lacks explicit incident response or vulnerability disclosure information. Overall, MAYBE STYLE presents a credible and professional business website with good technical implementation and moderate security posture. Strategic improvements include adding comprehensive privacy and security policies, implementing security headers, and enhancing transparency around data protection and incident response to strengthen trust and compliance.

Conmetall spol. s r.o. is a Czech-based trading company specializing in hand tools, garden equipment, sanitary technology, and fastening materials, serving both B2B and retail customers. The company is part of the WÜRTH group since 1997, indicating a strong market position and access to extensive know-how. Their website presents a professional and consistent brand image with clear navigation and relevant content tailored to their target audience in the Czech Republic and broader European market. Technically, the website uses modern JavaScript libraries such as jQuery and Bootstrap, with a moderate performance profile and good mobile optimization. Security-wise, the site implements cookie consent mechanisms and GDPR compliance but lacks visible security headers and WHOIS data, which slightly reduces trust. Overall, the website is functional, professional, and compliant with privacy regulations, though improvements in security headers and domain registration transparency are recommended.

D

Destillation und Likörfabrik Ernst F. Ullmann

lauterbacher-tropfen.de

0

The website www.lauterbacher-tropfen.de represents a small, family-owned German business specializing in the production and retail of traditional spirits and liqueurs since 1869. The company operates both physical locations including a museum and tasting events, as well as an online shop powered by Magento 2. The site is well-structured, professionally designed, and targets mature consumers interested in alcoholic beverages and regional heritage. Technically, the site uses modern eCommerce technologies with integrations such as Google Analytics, Google Tag Manager, and Amazon Pay, ensuring a functional and user-friendly experience. Security posture is good with HTTPS enforced and secure cookie settings, though some security headers could be improved. Privacy compliance is strong with GDPR-aligned cookie consent and privacy policies. Overall, the site is trustworthy and credible, with no signs of blocking or malicious activity.

C

COOP Morava

nacoopka.cz

0

COOP Morava operates the naCOOPka platform, a retail loyalty application designed to provide customers with benefits such as discounted products, store locators, and contest participation. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content targeting consumers shopping at COOP Morava stores in the Czech Republic. Technically, the site uses modern web technologies including JavaScript and Google Tag Manager, with HTTPS enforced and a cookie consent mechanism implemented. However, the absence of WHOIS data and a dedicated privacy policy page slightly reduce trust from a compliance and domain legitimacy perspective. Security posture is generally good but could be improved by adding security headers and publishing a security policy. Overall, the site is functional, trustworthy, and serves its business purpose effectively.

V

NÁŠ CHLÉB | Vaše pekárna

vasepekarna.cz

0

The website represents a small local bakery business in the Czech Republic, focusing on bread and bakery products. The business appears to have been established around 2019, consistent with the domain registration date. The website uses WordPress with the Divi theme and integrates common marketing and tracking tools such as Google Tag Manager, Facebook Pixel, and MailerLite. While the site is accessible and appears professionally designed with good mobile optimization, it lacks critical compliance documents such as a privacy policy and terms of service. Contact information is not explicitly found, which may hinder customer trust and compliance. Security posture is basic, with no detected security headers or explicit security policies, indicating room for improvement in protecting user data and enhancing trust.

E

Prodej potravin E-COOP – Online eshop s prodejem potravin a dalšího zboží E-coop nabízí pohodlné a bezpečné nakupování

e-coop.cz

0

The website e-coop.cz operates as an online grocery store for the COOP group in the Czech Republic, offering a wide range of food products with convenient home ordering and multiple pickup locations. The business targets general consumers seeking online grocery shopping solutions and positions itself as a regional player in the retail sector. Technically, the site is built on WordPress CMS, utilizing common web technologies such as jQuery, Leaflet.js for mapping, FontAwesome for icons, and Cookiebot for cookie consent management. The site integrates Google Analytics and Adform for tracking and advertising purposes, indicating a moderate level of digital maturity. Security-wise, the website employs HTTPS and cookie consent mechanisms but lacks visible security headers and explicit privacy or terms of service policies, which are areas for improvement. No critical vulnerabilities or WAF blocks were detected, suggesting a stable security posture. Overall, the site presents a professional and functional e-commerce platform with moderate risk, primarily due to incomplete privacy and security policy disclosures.

COOP club is a Czech Republic-based retail customer engagement website supporting COOP stores. It offers recipes, healthy lifestyle advice, product information, contests, and newsletters aimed at COOP customers. The site is built on WordPress with modern web technologies including jQuery, Semantic UI, and Google services for analytics and spam protection. The website is well-branded, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and reCAPTCHA, but lacks some security headers and explicit privacy/cookie policies. WHOIS data is unavailable, which limits domain trust verification, but the site’s content and external references indicate legitimacy. Overall, the site is a good example of a regional retail marketing platform with room for improvement in privacy compliance and security hardening.

C

COOP MORAVA, s.r.o.

coopmorava.cz

0

COOP MORAVA, s.r.o. operates the largest retail cooperative network in the Moravia region of the Czech Republic, with over 800 stores under the COOP brand. The company focuses on providing grocery and household products to general consumers, supported by promotional campaigns, a mobile application, and recipe content to engage customers. The website reflects a mature digital presence with a professional design and consistent branding, targeting a broad consumer base in the region. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent mechanisms. The absence of WHOIS data and privacy policy pages slightly reduces trustworthiness. No critical vulnerabilities or exposed sensitive data were found in the content. The tracking and analytics usage is extensive, which may raise privacy considerations. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced transparency in privacy and security policies, improved security headers, and WHOIS data availability to strengthen its compliance and trust posture.

G

Golf UK s.r.o.

golfuk.cz

0

Golf UK s.r.o. operates a specialized e-commerce platform focused on golf equipment and accessories, serving primarily the Czech market. Established in 2007, the company offers a wide range of products including golf clubs, balls, bags, shoes, and apparel, catering to golf enthusiasts and players. The website demonstrates a consistent brand presence with clear navigation and a professional design, supporting a positive user experience. Technically, the site leverages the 4SHOP e-commerce platform, integrates modern JavaScript libraries such as jQuery 3.6.0, and employs Google Tag Manager and Analytics for tracking and marketing purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of explicit security headers and limited privacy policy details suggest room for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and stability. Strategic recommendations include enhancing security headers, expanding privacy and security policies, and conducting regular security audits to strengthen compliance and trust.

Estian.cz is a Czech-based small retail business specializing in premium coffee, ionized syrups, teas, and water dispensers. The website presents a professional e-commerce platform targeting consumers interested in high-quality beverage products. The business appears niche-focused with a clear product offering and a localized market presence. Technically, the website uses modern JavaScript libraries and font loading techniques, with a cookie consent mechanism implemented to comply with privacy regulations. However, no explicit privacy policy page was found, which is a compliance gap. Security posture is moderate with secure login forms and cookie consent but lacks visible HTTP security headers and advanced security policies. WHOIS data is unavailable, likely due to privacy protection, which reduces transparency but is common for small businesses. Overall, the website is functional, professional, and moderately trustworthy, but improvements in privacy disclosures and security headers are recommended.

N

Norma24

norma24.de

0

Norma24 is a German online retail platform offering a wide range of Norma products with a focus on quality, variety, and fast delivery. The website is built on the Spryker e-commerce framework and leverages modern marketing and analytics tools such as Usercentrics CMP for cookie consent, Microsoft Clarity, Google Tag Manager, Facebook Pixel, and Emarsys for customer engagement and tracking. The technical infrastructure is supported by Akamai CDN services, ensuring reliable hosting and performance. Security measures include HTTPS enforcement and standard security headers, reflecting a solid security posture. However, the absence of explicit privacy policy, terms of service, and contact information pages indicates areas for compliance and transparency improvement. Overall, the website presents a professional and trustworthy e-commerce experience for general consumers in Germany.

M

My interior service s.r.o.

myishop.cz

0

My interior service s.r.o. operates the MYi e-commerce platform specializing in design furniture sales primarily targeting consumers interested in stylish interior solutions within the Czech Republic. The website presents a professional and consistent brand image with a clear focus on retailing high-quality furniture products and curated collections. The company was founded in 2017, and the domain registration aligns well with this timeline, supporting the legitimacy of the business. The platform integrates multiple social media channels to enhance brand engagement and customer outreach. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics, Google Tag Manager, and Smartsupp chat, hosted behind Cloudflare DNS services. The site demonstrates good mobile optimization and SEO practices, although no explicit CMS or framework is detected, suggesting a custom-built solution. Performance is moderate, with room for improvement in accessibility features and security headers. From a security perspective, the site enforces HTTPS and provides a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy documentation and incident response contacts, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain registration consistency and legitimacy. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, positioning it as a trustworthy and professional e-commerce platform. Strategic improvements in security headers and incident response transparency would further strengthen its security posture and user trust.

V

Vaše pekárna a.s.

mojesklizeno.cz

0

MojeSklizeno.cz is a Czech franchise business website offering franchising opportunities for the Sklizeno brand, which focuses on healthy lifestyle retail stores selling farm and bio foods, delicacies, and alternative diets. The company positions itself as a market leader with over ten years of experience and targets entrepreneurs interested in healthy food retail franchising in the Czech Republic. The website provides detailed business model information, franchise concepts, financial models, and contact forms for prospective franchisees. Technically, the site uses Bootstrap and Google Analytics, hosted on Czech-based servers, with moderate performance and good mobile optimization. Security posture is basic with HTTPS implied but lacks explicit security headers and privacy/cookie policies, representing compliance gaps. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

M

Mars, Incorporated

marspromo.cz

0

Mars Czech promotional website serves as a regional marketing platform for Mars, Incorporated, focusing on brand promotions, initiatives, and consumer engagement within the Czech Republic. The site features official Mars branding and links to global Mars social media channels, reinforcing its legitimacy and corporate alignment. The business model centers on consumer goods promotion and marketing campaigns tailored to the local market. Technically, the site employs modern JavaScript modules and the Vue.js framework, with Bootstrap and FontAwesome for styling and icons, indicating a contemporary front-end approach. However, no CMS or hosting provider details are evident, and performance is moderate with basic SEO and accessibility features. Security posture is moderate; HTTPS is assumed but no security headers or incident response information are present. Privacy compliance is strong with clear links to comprehensive privacy, cookie, and legal policies hosted on mars.com, though no cookie consent mechanism is implemented. Overall, the site is professional, trustworthy, and safe for general audiences, with room for improvement in security and contact transparency.

Skupina COOP is a large cooperative retail network in the Czech Republic, operated by the Svaz ceskych a moravskych spotrebnich druzstev. The organization manages the largest network of retail grocery stores under the COOP brand and also operates several educational institutions focused on hospitality, gastronomy, and services. The website provides comprehensive information about the cooperative stores, schools, and customer services, targeting Czech consumers and cooperative members. Technically, the site uses a mix of JavaScript libraries including jQuery, Select2, Google Maps API, and tracking tools such as Google Analytics and Adform. The hosting is managed via Websupport.cz, and the site is accessible with no blocking or WAF challenges detected. Security posture is moderate with HTTPS enabled but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented with multiple official emails, phone numbers, and physical addresses. Social media presence on Facebook and YouTube adds to trust. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

K

Ráj korálků, perlí, skla a jablonecké bižuterie. Korálková dílna pro děti.

kristalovyraj.cz

0

The website kristalovyraj.cz represents a retail business specializing in Czech glass, jewelry, and related decorative products, including a creative bead workshop for children. It positions itself as the largest Czech glass and jewelry retail center in Central Europe, targeting a general audience primarily within the Czech Republic. The business model focuses on in-person retail sales combined with experiential creative workshops, supported by partnerships with local cultural and tourism organizations. Technically, the website is built on the Mozello CMS platform, utilizing common JavaScript libraries such as jQuery and Fancybox, and is hosted via Amazon CloudFront CDN. The site demonstrates good mobile optimization and basic SEO practices but lacks advanced security headers and explicit privacy and terms of service documentation. Cookie consent mechanisms are implemented, linking to a cookie policy hosted on the Mozello platform. From a security perspective, the site uses HTTPS (assumed from CDN usage), but no security headers were detected in the provided data. There is no exposed sensitive data or known vulnerabilities from the analysis, but the absence of WHOIS data and domain registration details reduces trustworthiness. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the security posture is moderate but could be improved with better transparency and security best practices. The overall risk assessment suggests the website is functional and legitimate based on content and partner affiliations but lacks critical domain registration transparency and formal privacy documentation. Strategic recommendations include publishing privacy and terms policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

S

Svaz výrobců skla a bižuterie

krehkakrasa.cz

0

The website www.krehkakrasa.cz represents the annual event 'Křehká Krása', a sales exhibition focused on Czech glass and bijouterie products held in Jablonec nad Nisou. The event is organized by the Svaz výrobců skla a bižuterie and enjoys partnerships with local government and cultural institutions, positioning it as a reputable regional event attracting over 10,000 visitors. The site provides detailed event information, schedules, exhibitor lists, and contact details, targeting a general audience including families and enthusiasts of Czech craftsmanship. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Fancybox, and Slick Carousel, with Google Fonts for typography. The site is mobile-optimized and well-structured for SEO, though no CMS or hosting provider details are evident. Performance is moderate with good navigation and content relevance. However, no analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain is a concern, limiting the ability to verify domain legitimacy and age. Contact information is clearly provided, but no incident response or security policy information is available. Overall, the security posture is basic and could be improved with standard best practices. The overall risk assessment suggests the site is legitimate and safe for general users but would benefit from enhanced transparency and security measures. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, verifying domain registration details, and adding incident response contacts to improve trust and compliance.

Č

Česká asociace streetwork, o.p.s.

restartshop.cz

0

Restart Shop is a Czech non-profit social enterprise operated by Česká asociace streetwork, o.p.s., focused on sustainability through the sale of donated goods and providing training employment to socially disadvantaged individuals. The website presents detailed information about their projects, social impact, and contact details, supported by multiple EU and local government grants. The technical infrastructure is modern with use of JavaScript libraries, Google Tag Manager, and cookie consent mechanisms, hosted on a Czech provider. Security posture is good with HTTPS and cookie consent, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

Š

ŠUMAVSKÝ PRAMEN a.s.

sumavskypramen.cz

0

ŠUMAVSKÝ PRAMEN a.s. operates as a regional supplier of bottled spring water and related products such as water dispensers (aquamaty), coffee, and syrups under the Estian brand. The company targets both general consumers and businesses in the Czech Republic and Slovakia, emphasizing health, hydration, and quality. Their business model includes product sales, rentals, and free delivery services, supported by a professional website and active social media presence. The website content is well-structured, informative, and designed to engage customers with product offerings and company news via a blog.

I

IT Děčín s.r.o.

hpdecin.cz

0

IT Děčín s.r.o. operates the e-commerce website hpdecin.cz, specializing in the retail sale of computers, notebooks, printers, multifunction devices, consumables, and software primarily focused on HP products. The company targets retail customers and businesses within the Czech Republic, positioning itself as a specialist local retailer with a broad product offering and customer advisory services. The website demonstrates a professional and consistent brand presence with clear navigation and comprehensive product categorization. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, reCAPTCHA v3, and integrates with local services such as Seznam.cz and Mapy.cz. The site is built on a CMS platform likely VirtueMart, optimized for mobile devices, and includes accessibility features at a basic level. Performance is moderate with good SEO practices and structured data enhancing search visibility. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA to protect forms. Cookie consent is managed with Google Consent Mode, indicating privacy compliance efforts. However, explicit security headers such as CSP and HSTS are not confirmed and should be implemented to strengthen security posture. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data for the domain is unavailable, which limits the ability to fully verify domain legitimacy and registration details. This is a notable risk factor despite the professional appearance and trust signals on the website. Overall, the site is safe for general audiences, with no adult or questionable content detected. Strategic recommendations include enhancing security headers, maintaining up-to-date third-party libraries, establishing a clear security policy and incident response contact, and improving accessibility compliance to further strengthen trust and security.

R

Ralton s.r.o.

raltonshop.cz

0

Ralton s.r.o. operates an e-commerce platform specializing in handcrafted Czech glass and crystal stones, targeting manufacturers, designers, and retailers in the decorative components market. The website presents a professional and well-structured catalog with filtering options for shapes, colors, and effects, supporting a niche market position. The company emphasizes traditional craftsmanship with a modern online sales approach. Technically, the website employs a mature tech stack including Bootstrap, jQuery, and Font Awesome, with integrated Google Analytics and cookie consent mechanisms, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent compliance; however, the absence of HTTP security headers and vulnerability disclosure policies suggests room for improvement. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not detract significantly from the business credibility given the consistent branding and external references. Overall, the website is safe, professional, and compliant with basic privacy regulations, suitable for its target audience.

V

Vinný král

vinny-kral.cz

0

Vinný král is an e-commerce retailer specializing in a wide range of wines and related alcoholic beverages, targeting adult consumers primarily in the Czech Republic. The website offers a comprehensive catalog of wines categorized by variety and country, along with specialty products such as mead and liqueurs. The business model focuses on online sales with additional services like wine cellar rental and guided tastings. The site enforces age verification to comply with legal requirements for alcohol sales. Technically, the website is built on the PrestaShop CMS platform, utilizing jQuery, Bootstrap, and other common web technologies. While the site is mobile-optimized and provides a good user experience with clear navigation and product presentation, it lacks HTTPS encryption and modern security headers, which exposes users to potential risks. The use of outdated JavaScript libraries further increases vulnerability to exploits. From a security perspective, the absence of HTTPS and security headers, combined with missing privacy and cookie policies, indicates a low security maturity level and poor compliance with GDPR and other data protection regulations. The WHOIS data is unavailable, which raises concerns about domain legitimacy and trustworthiness. The site does provide clear contact phone information and terms of service, but lacks detailed business registration or privacy disclosures. Overall, Vinný král presents a functional and content-rich online wine retail platform with moderate technical implementation but significant security and compliance gaps. Strategic improvements in security infrastructure, privacy compliance, and domain registration transparency are recommended to enhance trust and protect customers.

S

SLUSNY

slusny.net

0

SLUSNY is a Czech Republic-based e-commerce retailer specializing in yoyos, claiming to have the largest selection in the country and led by European champions. The website is built on WordPress with WooCommerce and Elementor, indicating a mature digital infrastructure suitable for retail operations. The site includes modern marketing and analytics tools such as Google Tag Manager and Leadhub, supporting data-driven marketing efforts. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is partially addressed with a cookie consent mechanism, though no explicit privacy policy or terms of service were found in the analyzed content. Overall, the website presents a professional retail presence with room for improvement in privacy and security transparency.

B

BaSys.cz

basys.cz

0

BaSys.cz operates as an e-commerce platform specializing in professional audio equipment, targeting audio professionals and enthusiasts primarily in the Czech Republic. The website presents a focused product offering with brands like Pioneer, Bose, and Behringer, positioning itself as a niche retailer in the audio equipment market. The business model is centered on online retail with a medium-sized market presence. Technically, the site is built on Magento CMS, utilizing common web technologies such as jQuery, Bootstrap, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and includes cookie consent mechanisms, reflecting basic compliance with privacy regulations. Security posture is adequate with HTTPS enabled and some best practices observed, though the absence of security headers and explicit security policies suggests room for improvement. The lack of WHOIS data and absence of visible privacy policy or contact information reduce overall trust and transparency. Strategic recommendations include enhancing transparency through published policies, improving security headers, and providing clear contact channels for incident response.

E

Emado Hradec Králové, Emado Pardubice, Emado Žďár nad Sázavou

emado.cz

0

Emado.cz is a Czech Republic-based retailer specializing in office and school supplies, operating multiple wholesale and retail branches in cities such as Hradec Králové, Pardubice, and Žďár nad Sázavou. The website presents a professional and well-structured e-commerce platform built on WordPress with the Divi theme, featuring SEO optimization and user-friendly navigation. The company targets businesses, schools, and individual customers seeking comprehensive office and school supply solutions. Technically, the site employs modern web technologies including Google reCAPTCHA for form security and cookie consent mechanisms to comply with privacy regulations. However, the absence of WHOIS data and explicit privacy policy pages slightly detracts from its credibility. Security posture is moderate with HTTPS enforced but lacking some recommended security headers and incident response information. Overall, the site is functional, trustworthy for general users, and safe in content, but could improve transparency and security practices.

T

The Procter & Gamble Company

pg.com

0

The Procter & Gamble Company operates a comprehensive and professionally designed website at us.pg.com, serving as a digital presence for its consumer goods business in the United States. The company is a global leader in manufacturing and retail of consumer products, with a strong emphasis on sustainability, innovation, and community impact. The website reflects a mature digital infrastructure using modern technologies such as React and Next.js, hosted on Azure, and integrates advanced analytics and consent management tools to ensure compliance and user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers should be verified. Privacy compliance is robust, with clear policies and consent mechanisms in place. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the main domain pg.com is a well-established and trusted corporate domain. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity.

R

Rodinné kuchyňské a designové studio HVT Interiéry

hvt.cz

0

HVT Interiéry is a Czech-based family-owned luxury kitchen and interior design studio specializing in custom German kitchens and bespoke interior solutions. Established in 1998, the company has positioned itself as a niche provider of high-quality kitchen designs, partnering with renowned German brands such as Schüller, Bora, Gaggenau, and Miele. Their website reflects a mature business with a clear focus on premium services targeted at discerning customers seeking tailored kitchen and interior design solutions. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices, and is hosted by Wedos, a reputable Czech hosting provider. The site is mobile-optimized and includes comprehensive privacy and cookie policies, demonstrating GDPR compliance. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the company.

Kucharek is a Czech Republic-based food product brand specializing in manufacturing and retailing seasonings, soups, broths, and liquid spices. The company operates under the parent company PrymatGroup and has an established market presence since 2010. Their website serves as a marketing and informational platform offering product details, recipes, and news updates targeted at general consumers interested in cooking. Technically, the website is built on WordPress with modern frameworks and libraries, including Google Tag Manager and reCAPTCHA, indicating a mature digital infrastructure. Security measures such as HTTPS, Wordfence plugin usage, and cookie consent mechanisms are in place, reflecting a good security posture. However, some security headers could be improved for enhanced protection. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable digital asset for the business.

T

Truhlíky Herink

truhlikyherink.cz

0

Truhlíky Herink is a small Czech e-commerce business specializing in handcrafted wooden raised garden beds and planters. The company emphasizes quality craftsmanship and offers customizable products primarily targeting gardening enthusiasts and homeowners with balconies or gardens. Their market position is that of a specialized local retailer with a focus on durable, aesthetically pleasing wooden garden products. Technically, the website is built on the Upgates e-commerce platform, utilizing modern web technologies such as Bootstrap, jQuery, and Google Analytics 4. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms with granular user control, but lacks some security headers and published security policies. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness from a domain registration perspective. Overall, the website is safe, professional, and functional, but would benefit from enhanced security practices and domain registration transparency.

V

Vinotéka Herink

vinoherink.cz

0

Vinotéka Herink operates the website vinoherink.cz, an established Czech e-commerce retailer specializing in wines and gourmet delicacies with over 25 years of tradition. The company offers a wide range of products including wines from various countries, gift packages, and complementary gourmet foods. The website targets mature consumers interested in quality wines and related products. Technically, the site is built on the Upgates e-commerce platform, leveraging modern web technologies and marketing tools such as Google Analytics 4, Google Tag Manager, and Facebook Pixel, all integrated with user consent mechanisms. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and standard security headers present, though no explicit security or incident response policies are published. The absence of WHOIS data for the domain is a concern for trustworthiness, but the website content and business presentation are professional and credible. Overall, the site is suitable for its business purpose with moderate risk due to missing domain registration transparency.

U

UNITED BAKERIES a.s.

baker-st.cz

0

Baker Street is a premium bakery brand operated by UNITED BAKERIES a.s., offering high-quality sourdough breads and bakery products made with traditional craftsmanship and quality ingredients. The company targets general consumers seeking artisanal bakery goods and distributes products through its own store and major retail chains in the Czech Republic. The website reflects a medium-sized retail business with a consistent brand presence and award-winning products. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and SEO-friendly, though accessibility could be improved. Security posture is good with HTTPS and cookie consent mechanisms, but could benefit from enhanced security headers and explicit security policies. Overall, the domain registration and business information are consistent and trustworthy, with no signs of suspicious activity.

A

ACCOM Czech a.s.

accomczech.cz

0

ACCOM Czech a.s. operates as a distributor and retailer specializing in dairy and related food products within the Czech Republic. The company offers a broad assortment of products including yogurts, cheeses, creams, and milks, targeting primarily B2B customers and retail consumers. The website reflects a medium-sized enterprise with a professional online presence, supporting customer registration and product search functionalities. The business is positioned as a regional player with multiple associated brands and a clear product catalog.

VERNER POTRAVINY s.r.o. is a Czech retail company specializing in food sales, operating as a small retail chain. The website provides minimal content focused on basic company identification and contact information, targeting general consumers in the Czech Republic. The business appears established since 2002, supported by consistent WHOIS data and domain age. Technically, the website is simple, using basic CSS styling without advanced frameworks or CMS, hosted by REG-ZONER. The site lacks modern security features such as HTTPS and security headers, and no privacy or cookie policies are published, indicating low digital maturity and compliance. Security posture is weak due to missing HTTPS and security best practices, exposing the business to potential risks. Overall, the website is functional but minimal, with room for significant improvements in security, privacy compliance, and user experience.

T

TEMPO, obchodní družstvo

odtempo.cz

0

TEMPO, obchodní družstvo is a Czech retail cooperative operating 86 stores and a logistics center supplying daily necessities. The company collaborates with partners such as COOP and CBA and holds recognized certifications like 'Tradiční český obchod', indicating a strong regional market presence and commitment to quality. The website supports automated 24/7 store operations and offers online shopping via Foodora, complemented by a mobile app for customer convenience. Technically, the site is built on the Webnode CMS platform, leveraging AWS Cloudfront CDN and modern JavaScript libraries, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit policies could enhance protection. Overall, the domain registration aligns with the business identity, and no blocking or suspicious content is detected, reflecting a trustworthy and professional online presence.

V

Vaše pekárna a.s.

sklizeno.cz

0

Sklizeno is a Czech retail company specializing in high-quality food products including fresh meat, dairy, bakery items, and organic and specialty foods catering to diverse dietary needs such as vegan and gluten-free. The company positions itself as a provider of authentic and healthy food experiences with a strong emphasis on quality and transparency of suppliers. Their digital presence is built on WordPress with a moderate technical infrastructure leveraging common analytics and marketing tools. Security posture is solid with HTTPS and no evident vulnerabilities, though additional security headers and policies could enhance protection. The absence of WHOIS data introduces some uncertainty about domain legitimacy, but the website content and business information are professional and trustworthy. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations, making it a reliable platform for customers.

F

FLOSMAN a.s.

potravinycz.cz

0

Potraviny CZ is a regional Czech grocery retail chain operating in southern, western, and central Bohemia, Vysočina, and southern Moravia. It is a member of the Flop group, indicating a solid market position within the Czech retail sector. The website provides information about the store network, promotional flyers, and contact details, targeting local consumers seeking grocery products. Technically, the site is built on WordPress using the Divi theme, enhanced with SEO and GDPR compliance plugins, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it lacks explicit terms of service and incident response information.

N

NORMA

norma-online.de

0

NORMA is a well-established German retail discount grocery chain offering a wide range of discounted food and household products. The website serves as a digital platform for showcasing current offers, store locations, and additional services such as online shopping and career opportunities. The site is professionally designed with consistent branding and clear navigation, targeting general consumers in Germany and neighboring countries. Technically, the website uses modern JavaScript libraries, is hosted on Akamai CDN, and employs HTTPS with cookie consent management, indicating a mature digital infrastructure. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though explicit security headers and policies could be improved. Privacy compliance is partial, with cookie consent present but no explicit privacy policy or terms of service detected. Contact is available via forms but lacks direct emails or phone numbers. Overall, the website is trustworthy and professional, suitable for its retail business model.

Maloobchodní síť Hruška, spol. s. r. o., operates a retail grocery chain in the Czech Republic, providing consumers with a variety of products through physical stores and franchise opportunities. The website serves as a digital portal for catalogs, store locations, contests, and customer engagement via newsletters. The company is positioned as a medium-sized regional retail player with a consistent brand presence and clear contact information. Technically, the website is built on WordPress with common plugins and integrates Cookiebot for GDPR-compliant cookie consent management. The site uses HTTPS and Google Tag Manager for analytics and marketing, reflecting a moderate level of digital maturity. Security posture is good with no critical vulnerabilities detected, though security headers and explicit security policies could be improved. Privacy compliance is strong with clear cookie and privacy policies. Overall, the website is professional, trustworthy, and safe for general audiences.

F

FLOP Potraviny

flop-potraviny.cz

0

FLOP Potraviny is a Czech Republic-based retail grocery business offering food products to the local market. The website is built on WordPress using the Divi theme and incorporates SEO and GDPR compliance plugins such as Yoast SEO and Complianz. The site targets general consumers in the Czech Republic with a focus on grocery retail. Technically, the site uses modern web technologies and includes Google Tag Manager for analytics and tracking. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service found. The absence of WHOIS registrant data reduces transparency but is likely due to privacy protection. Overall, the site is professionally designed and functional but could improve in security and compliance transparency.

Skupina COOP is a large cooperative retail group operating the largest network of grocery stores in the Czech Republic. The organization also manages several educational institutions focused on hospitality, gastronomy, and services. The website reflects a mature business with a strong market position and extensive regional cooperative listings. Technically, the site uses common web technologies including jQuery, Select2, Google Analytics, and Google Maps API, hosted on Websupport.cz. The site is mobile optimized and has good SEO practices but lacks some advanced accessibility features. Security posture is moderate with HTTPS enabled but missing key security headers and no DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Contact information is clearly presented with multiple verified emails, phone number, and physical addresses. Social media presence on Facebook and YouTube supports trust. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance.

D

Družstvo CBA CZ

cba.cz

0

CBA.cz represents a well-established Czech retail cooperative operating a chain of grocery stores. The website offers customers access to store locations, promotional flyers, loyalty programs, contests, and recipes, targeting general consumers in the Czech Republic. The business model focuses on retail grocery sales supported by customer engagement through loyalty and promotional activities. The domain age and WHOIS data confirm a longstanding presence since 1999, reinforcing market credibility. Technically, the website is built on WordPress with common web technologies such as jQuery and Google Fonts. It employs HTTPS with good SSL configuration and includes a cookie consent mechanism compliant with GDPR. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. No advanced security headers were detected, and no explicit security or incident response policies are published. From a security perspective, the site benefits from HTTPS and cookie consent but lacks visible security policies or incident response contacts. No vulnerabilities or suspicious content were identified. Privacy compliance is strong with clear cookie management and a comprehensive privacy policy. Business credibility is supported by consistent branding, clear business information, and trust signals such as loyalty programs and social media presence. Overall, the website is professional, secure, and compliant with privacy regulations, suitable for its retail audience. Recommendations include enhancing security headers, publishing explicit security policies, and providing incident response contacts to further strengthen trust and security posture.

G

Globus ČR, k.s.

globus.cz

0

Globus ČR, k.s. operates a chain of hypermarkets in the Czech Republic, providing a wide range of groceries and household products to general consumers. The company holds a strong market position as a leading retail chain with a well-established brand and consistent online presence. Their website serves primarily as an informational and promotional platform rather than a full e-commerce portal. Technically, the website employs modern web technologies including Tailwind CSS for styling and integrates Google services for analytics, advertising, and security (reCAPTCHA). The site is mobile-optimized and demonstrates good performance and SEO practices. Security-wise, the site enforces HTTPS, uses security headers, and incorporates cookie consent mechanisms, reflecting a mature security posture. However, the absence of WHOIS data and lack of published security policies or incident response contacts slightly reduce transparency. Overall, the website is professional, trustworthy, and compliant with GDPR, but could improve by publishing more explicit security and incident response information.

S

SIA „e.Beauty”

e-beauty.lv

0

e-beauty.lv is a well-established Latvian beauty industry information portal operated by SIA „e.Beauty”. The website provides comprehensive news, event listings, product catalogs, and professional training information targeted at beauty professionals and clients in Latvia. The site leverages Joomla CMS with modern web technologies such as Bootstrap and jQuery, hosted behind Cloudflare DNS and CDN services, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and email cloaking implemented, though security headers and cookie consent mechanisms are lacking. The domain registration data aligns well with the website content and business history, supporting legitimacy. Overall, the site is professional, content-rich, and trustworthy, serving as a key resource in the Latvian beauty sector.

S

StoreField®

store-field.com

0

StoreField® is a Slovak-based startup founded in 2024 that specializes in sustainable retail solutions by providing living microgreens grown directly in local stores. Their innovative approach eliminates transport and plastic packaging, offering fresh, nutrient-rich produce to retailers and shoppers. The website reflects a modern, professional digital presence with excellent design, clear navigation, and strong branding consistency. Technically, the site leverages modern frameworks such as Livewire and Alpine.js, with good performance and mobile optimization. Security posture is solid with HTTPS and secure forms, though some security headers and DNSSEC could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

K

Katalog.cz

katalog.cz

0

Katalog.cz is a Czech online product catalog and e-shop comparison platform that aggregates a wide range of product categories including furniture, electronics, clothing, toys, and cosmetics. The site provides users with price comparisons, promotional offers, and a magazine/blog section with lifestyle and business articles. It targets Czech consumers interested in online shopping and product discovery. The platform demonstrates a professional and consistent brand presence with good content quality and user experience. Technically, the site uses modern web technologies such as Bootstrap, Font Awesome, FancyBox, and Google Tag Manager for analytics. HTTPS is properly implemented, ensuring secure data transmission. However, the site lacks explicit privacy and cookie policies, which impacts its privacy compliance score. No WHOIS data is available, likely due to privacy protection, but the website's professional appearance and active content suggest legitimacy. Security best practices could be improved by adding security headers and publishing incident response information.

N

news&com S.R.L.

meravigliedicalabria.it

0

Meraviglie di Calabria is a specialized e-commerce and cultural platform dedicated to promoting and selling artisan and regional products from Calabria, Italy. The website is operated by news&com S.R.L., a small-sized company with a strong media presence through its associated publications. The platform offers a curated marketplace featuring jewelry, ceramics, textiles, wines, and liquors, combined with cultural storytelling and news to engage its target audience of consumers passionate about Calabrian heritage. Technically, the website is built on WordPress with WooCommerce and uses modern UI frameworks like Yootheme and Uikit, ensuring a responsive and user-friendly experience. Security measures include SSL encryption, spam protection, and cookie consent mechanisms, although some security headers could be improved. Overall, the site demonstrates a good security posture and compliance with GDPR regulations. The domain registration is consistent with the business identity, enhancing trustworthiness. Strategic recommendations include enhancing security headers, conducting regular vulnerability assessments, and improving accessibility features to further strengthen the platform's reliability and user trust.

N

Notino, s.r.o.

notino.cz

0

Notino, s.r.o. operates a leading e-commerce platform in the Czech Republic specializing in perfumes, cosmetics, and health products. The website offers a comprehensive shopping experience with express delivery, personal pickup options, and virtual makeup try-on features. The company targets consumers interested in beauty and health products, maintaining a strong market position with a large product catalog and physical stores. Technically, the site leverages modern technologies including React, Google Analytics, and New Relic for performance monitoring, ensuring a fast and responsive user experience optimized for mobile devices. Security posture is robust with HTTPS enforcement, content security policies, and cookie consent mechanisms, although explicit security policy and incident response pages are not found. Overall, the site demonstrates professionalism, good privacy compliance, and extensive analytics usage, supporting a high trustworthiness rating despite the absence of WHOIS data.

K

Kuchyňské studio DAMIO

damio.cz

0

Kuchyňské studio DAMIO is a Czech Republic-based small business specializing in the design, manufacture, and delivery of custom kitchens and interior solutions for residential, commercial, and public spaces. The company operates physical studios in Litomyšl and Pardubice and emphasizes personalized service and quality craftsmanship. Their website showcases a portfolio of completed projects and offers graphic design and visualization services to support client planning. Technically, the website employs modern web technologies including Google Fonts, Leaflet.js for maps, and tracking tools such as Facebook Pixel and Seznam Retargeting. The site is mobile-optimized with good SEO practices and a cookie consent mechanism, reflecting a moderate level of digital maturity. However, no CMS or hosting provider details are evident, and some security headers appear missing. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces domain transparency and trustworthiness, though the website content and contact information appear professional and legitimate. Overall, the website presents a trustworthy and professional business front with room for improvement in security policy transparency and domain registration clarity. Strategic enhancements in security headers and incident response documentation would strengthen their security posture and compliance stance.