Retail security reports

H

House of Cavani

cavani.co.uk

10

House of Cavani is a UK-based menswear e-commerce retailer specializing in stylish tweed suits, wedding suits, and Italian style menswear for modern gentlemen. The company operates a professionally designed Shopify store with a focus on quality men's clothing and accessories. Their market position is niche, targeting customers seeking classic and elegant menswear for special occasions. The website demonstrates a mature digital infrastructure with integrations of multiple marketing and analytics tools such as Google Analytics, TikTok Pixel, Microsoft Clarity, and Klaviyo, indicating a data-driven approach to customer engagement and marketing. Security posture is strong with HTTPS enforced, good security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a GDPR-compliant consent mechanism. Overall, the website is trustworthy, professional, and safe for general audiences.

A

ART & HOBBY

aerograf-fengda.pl

59

ART & HOBBY operates the Aerograf Fengda® online store, a leading e-commerce platform specializing in airbrush technology, compressors, spray guns, paints, and accessories. The company positions itself as a direct importer and distributor of multiple renowned brands, serving hobbyists and professionals across Poland and neighboring countries. The website offers a comprehensive catalog with thousands of products and emphasizes fast order fulfillment and professional service. Technically, the site is built on the Shoper e-commerce platform, employs modern tracking tools like Google Analytics and Tag Manager, and is mobile-optimized with good SEO practices. Security posture is adequate with HTTPS and secure forms, though additional security headers and cookie consent mechanisms are recommended. WHOIS data is unavailable publicly, which slightly impacts trust but does not negate the professional appearance and business legitimacy. Overall, the site is safe, well-structured, and serves a niche retail market effectively.

C

Cukrářství Budařovi

cukrarstvibudarovi.cz

48

Cukrářství Budařovi is a small family-owned confectionery business based in the Czech Republic, specializing in traditional pastries, cakes, and other sweet products. The company operates physical stores in Ostrožská Lhota and Uherské Hradiště and offers an e-commerce platform for customer orders. Their market position is local and regional, focusing on quality and traditional recipes. The website reflects a professional and consistent brand image with clear navigation and product categorization. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Analytics, and Mapy.cz mapping services. While the site is mobile-optimized and performs moderately well, it uses a deprecated map SDK which should be updated. The site is served over HTTPS, but lacks some advanced security headers and explicit privacy policy disclosures on the homepage. From a security perspective, the site demonstrates basic good practices such as HTTPS enforcement and secure form handling. However, the absence of WHOIS data and lack of published security or incident response policies reduce overall trust. No critical vulnerabilities were detected, but updating third-party libraries and enhancing security headers is recommended. Overall, the website is safe, professional, and suitable for its target audience. The main risk lies in the missing WHOIS data and limited privacy disclosures, which should be addressed to improve trust and compliance.

B

BeWooden Company s.r.o.

bewooden.cz

46

BeWooden Company s.r.o. is a Czech-based artisan company specializing in handcrafted wooden jewelry, watches, and fashion accessories. Established in 2013, it has positioned itself as a reputable brand in the retail sector, emphasizing sustainability, craftsmanship, and unique design. The company operates a professional e-commerce platform complemented by physical retail presence and offers custom corporate gifts. The website demonstrates strong branding consistency, excellent content quality, and positive customer engagement through reviews and social media. Technically, the site employs modern web technologies and integrates multiple marketing and analytics tools, ensuring a good user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain registration transparency but does not detract from the overall legitimacy supported by certifications and customer feedback. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen trust and compliance.

M

Matějovský

matejovsky-bedding.com

54

Matějovský Bedding operates as an e-commerce retailer specializing in home textiles including bedding, towels, kitchen textiles, and related accessories. The website presents a professional and well-structured catalog targeting consumers interested in quality home textile products, primarily in the Czech Republic and neighboring regions. The business model focuses on online sales with multiple language options and a broad product range including designer collections and gift packages. Technically, the website uses modern web technologies such as Bootstrap, Font Awesome 6 Pro, and Google Analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is adequate with HTTPS enforced and a cookie consent mechanism in place; however, the absence of security headers and explicit privacy policies suggests room for improvement. The lack of WHOIS registration data is a critical concern, impacting domain legitimacy and trustworthiness. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

M

Matějovský

matejovsky-obliecky.sk

53

Matějovský is a well-established Slovak e-commerce retailer and manufacturer specializing in high-quality bedding and home textile products. The website offers a broad catalog including licensed designs and caters primarily to consumers seeking quality bedding solutions. The platform is professionally designed with good navigation and mobile optimization, supporting a positive user experience. Technically, the site employs modern web technologies such as Bootstrap, Font Awesome 6 Pro, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks explicit security policies and incident response information. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

STACHEMA CZ s.r.o.

lignofix.cz

62

STACHEMA CZ s.r.o. operates a professional e-commerce website specializing in building chemicals such as paints, adhesives, plasters, and penetrations targeted primarily at professional users in the construction sector within the Czech Republic. The website offers a broad product catalog with detailed product listings, pricing, and stock availability, supporting a B2B and B2C business model. The company appears to hold a solid regional market position as a supplier of construction chemicals. Technically, the website employs modern JavaScript frameworks including Vue.js and React, integrates Google Tag Manager for analytics, and uses asynchronous form APIs to enhance user experience. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Security posture is good with HTTPS enforced and secure form handling, but lacks explicit security policies and incident response information. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust signals but is common for commercial entities. Overall, the website is professional, secure, and trustworthy with room for improvement in privacy transparency and security disclosures.

M

MN Modelar

mn-modelar.cz

38

MN Modelar operates a professional e-commerce platform specializing in plastic models and modeling supplies, targeting hobbyists primarily in the Czech Republic and Slovakia. The website offers a broad catalog of products from well-known brands, supported by customer reviews and secure payment options, positioning itself as a trusted regional retailer. Technically, the site employs modern web technologies including Bootstrap, jQuery, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security measures include HTTPS enforcement and reCAPTCHA on forms, though some HTTP security headers like Content-Security-Policy are missing. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy page. However, the absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and business indicators suggest a legitimate operation. Overall, the site is well-structured, user-friendly, and secure, with room for improvement in security header implementation and transparency regarding domain registration.

A

Avax-Models

avax-models.cz

49

Avax-Models is a Czech Republic based e-commerce retailer specializing in plastic model kits and related hobby supplies. Established since 2009, the company targets model hobbyists and enthusiasts with a broad catalog of products including aircraft, vehicles, figures, and accessories. The website is professionally designed with clear navigation and a focus on user experience, supporting multiple languages and providing comprehensive product information. Technically, the site uses modern JavaScript libraries such as jQuery and is hosted on a regional provider consistent with its market. Security posture is adequate with HTTPS and cookie consent mechanisms implemented, though it lacks advanced security headers and explicit security policies. The domain is currently expired, which poses a risk to business continuity and trust. Contact information including phone and email is clearly presented, and social media presence is established on Facebook and Instagram. Overall, the site demonstrates good privacy compliance and business credibility for a small retail operation.

H

HiSModel

hismodel.com

59

HiSModel is a specialized e-commerce retailer focused on historical sailing ship models and their accessories, targeting hobbyists and collectors primarily in the Czech Republic. The website offers a comprehensive catalog of plastic and wooden ship models, along with modeling supplies and instructional guides, positioning itself as a niche player in the retail sector. The business model is straightforward retail with an emphasis on specialized products and customer support. Technically, the site is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Microsoft Clarity for tracking and performance insights. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and CSRF protection on forms, though some security headers could be improved and the jQuery version updated to mitigate risks. Privacy compliance is well addressed with a clear privacy policy, cookie consent banner, and GDPR considerations. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which should be further investigated. Overall, the site is functional, trustworthy, and well-positioned within its niche but would benefit from enhanced security practices and domain registration transparency.

P

Plastikovy-model.cz

plastikovy-model.cz

48

Plastikovy-model.cz is a Czech Republic based e-commerce retailer specializing in plastic model kits including airplanes, cars, ships, military vehicles, and related modeling accessories such as paints, glues, and tools. The website targets hobbyists and model enthusiasts, offering a broad catalog of products from various well-known manufacturers. The business operates a niche online retail model with a clear focus on the modeling hobby market segment in the Czech Republic. Technically, the website employs a modern but standard technology stack including jQuery, Bootstrap, and Google Analytics for tracking. The site is mobile responsive and well-structured for user navigation. However, it lacks some advanced security headers and detailed WHOIS data, which slightly impacts trustworthiness. The site uses HTTPS properly and implements cookie consent mechanisms aligned with GDPR requirements. From a security perspective, the site shows good practices such as HTTPS enforcement and cookie consent but could improve by adding security headers like Content-Security-Policy and HSTS. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and terms of service are present and accessible, supporting compliance with data protection regulations. Overall, Plastikovy-model.cz presents a professional and trustworthy online retail presence for plastic model enthusiasts. The absence of WHOIS data is a minor concern but does not significantly detract from the site's legitimacy given the quality of content and contact transparency. Strategic improvements in security headers and ongoing library updates are recommended to enhance security posture.

J

JM Modely

jm-modely.cz

49

JM Modely is a Czech Republic based e-commerce retailer specializing in plastic model kits and related hobby products. The website offers a wide range of products including aircraft, military vehicles, ships, paints, tools, and accessories targeted at model hobbyists. The business operates primarily online, leveraging a Czech e-commerce platform (eshop-rychle.cz) and provides customer support via phone and online forms. The site is professionally designed with good navigation and product presentation, catering to a niche market of scale model enthusiasts. Technically, the website uses modern JavaScript libraries, a responsive design, and integrates Matomo analytics and Smartsupp chat for user engagement and tracking. Security posture is strong with HTTPS enforced and secure login forms, though some security headers are missing. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness. Overall, JM Modely presents a credible and functional online retail presence with room for improvement in privacy compliance and domain legitimacy verification.

A

ART & HOBBY, s.r.o.

airbrush-potreby.cz

57

ART & HOBBY, s.r.o. operates the website airbrush-potreby.cz, the largest Czech online retailer specializing in airbrush equipment, accessories, and model paints. The company is a direct importer and exclusive distributor of several prominent brands such as Fengda, IWATA, Harder & Steenbeck, Vallejo, and others. Their business model focuses on e-commerce with a strong presence in both retail and wholesale markets, targeting hobbyists, professional airbrush users, and businesses in the Czech and Slovak Republics. The website offers a comprehensive product catalog, expert advice, and fast shipping from a well-stocked inventory.

S

Special Hobby

specialhobby.cz

59

Special Hobby is a European-based company specializing in the production and retail of plastic and resin model kits and accessories, targeting hobbyists and modelers. The website presents a professional e-commerce platform with a broad product catalog including their own production and other well-known brands. The company maintains a multi-lingual presence with dedicated domains for different markets. Technically, the website uses modern frameworks such as Bootstrap and FontAwesome, integrates Google Tag Manager and Analytics with privacy-conscious consent settings, and enforces HTTPS for secure communications. Security posture is generally good, though improvements in security headers and cookie consent mechanisms are recommended. The lack of publicly available WHOIS data is due to EURid privacy policies, which is common for .eu domains and does not raise immediate concerns given the professional website and business presence. Overall, the website is trustworthy, well-maintained, and suitable for its target audience.

Eduard – Model Accessories ltd. operates a professional e-commerce website specializing in plastic model kits and related accessories such as decals, photoetched parts, and masks. The company targets hobbyists and collectors worldwide, offering a broad catalog of products with detailed descriptions and stock availability. The website demonstrates a mature digital presence with active social media integration and customer support channels. Technically, the site uses a modern tech stack including jQuery, Google Tag Manager, and a specialized e-commerce platform (oXyShop), delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and GDPR indicators. However, the absence of WHOIS registration data raises concerns about domain legitimacy, though the professional site and contact information mitigate this risk. Overall, the site is trustworthy and well-managed but would benefit from enhanced transparency in domain registration and security policies.

Č

Čalounictví Ota Veselý

calounictviota.cz

43

Čalounictví Ota Veselý is a small Czech upholstery business specializing in custom seating furniture, repairs, renovations, and vintage vehicle upholstery. The company emphasizes craftsmanship and restoring the value and beauty of furniture. The website is built on WordPress with WooCommerce for e-commerce capabilities, hosted by WEDOS, and uses common plugins such as WPBakery and Slider Revolution. The site is well-structured, mobile-optimized, and provides clear contact information and customer testimonials, supporting a trustworthy image. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. No blocking or WAF challenges were detected, allowing full content access. Overall, the website presents a professional and credible business presence with room for improvement in privacy compliance and security hardening.

V

Vespera

vespera.cz

58

Vespera is a Czech-based small business specializing in custom upholstery furniture manufacturing and retail. Their website showcases a professional e-commerce platform offering sofas, armchairs, stools, and beds, emphasizing craftsmanship and Czech production traditions. The company provides extended warranties and free shipping over a threshold, enhancing customer trust. Technically, the site is built on the Shoptet platform, leveraging jQuery, Google Tag Manager, and Google Analytics for tracking and marketing. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. WHOIS data is unavailable, which slightly reduces transparency but does not detract from the site's legitimacy based on content and contact information. Overall, the site presents a trustworthy, well-maintained online presence for a niche furniture manufacturer and retailer.

T

Tena Tex

tenatex.cz

58

Tena Tex is a Czech-based retailer specializing in upholstery fabrics, artificial leather (koženky), and upholstery supplies. The company has been operating since 2003 and targets upholstery professionals and customers in the Czech Republic. Their website showcases a well-structured product catalog with detailed descriptions, stock availability, and pricing. The business model is primarily e-commerce retail with a focus on quality and customer service, including free samples and consultations. Technically, the website is built using modern frontend technologies such as React, Next.js, and Material UI, indicating a contemporary digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS but lacks visible security headers and formal security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of privacy and cookie policies suggests incomplete compliance with GDPR and related regulations. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces domain trustworthiness but is common for small businesses. Overall, Tena Tex presents a professional and trustworthy online presence with a solid business foundation. Strategic improvements in privacy compliance, security headers, and WHOIS transparency would enhance their security posture and trust signals.

PF Nábytek is a Czech furniture manufacturer specializing in seating sets, armchairs, beds, and custom upholstered furniture. The company targets consumers seeking quality Czech-made furniture and offers both standard products and custom production services. The website reflects a professional and consistent brand presence with clear product categories and downloadable catalogs. Technically, the site is built on WordPress with common plugins such as Contact Form 7 and Google reCAPTCHA for form security. It uses HTTPS with a valid SSL certificate and includes a cookie consent mechanism, indicating basic privacy compliance. However, no advanced security headers or explicit security policies are present. The WHOIS data is unavailable, likely due to privacy protection, which limits transparency but is not uncommon for small businesses. Overall, the site is secure, functional, and trustworthy with room for improvement in security best practices and transparency.

L

Lumco spol. s r.o.

lumco.cz

42

Lumco spol. s r.o. is a Czech manufacturer specializing in high-quality upholstered furniture including sofas, armchairs, and custom interior solutions for both residential and B2B clients. The company positions itself as a reliable partner for bespoke furniture projects and collaborates with interior architects and businesses. Their website reflects a professional and consistent brand image with clear product offerings and contact information. Technically, the site uses modern frontend technologies such as Bootstrap, Font Awesome, and integrates marketing and tracking tools like Google Tag Manager and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and interactive elements such as a video showcase and product catalog downloads. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism but lacks advanced security headers and a published privacy policy, which are areas for improvement. The absence of WHOIS data is a concern for domain legitimacy verification, though the website content and business details appear credible. Overall, the site scores well on content quality and business credibility but should enhance privacy and security transparency to improve trust and compliance.

K

KOLINGER s.r.o.

kolinger.com

57

KOLINGER s.r.o. is a Czech family-owned manufacturer specializing in custom-made folding sofas since 1982. The company emphasizes functional, quality, and elegant furniture tailored to customer needs, serving both individual consumers and hospitality clients such as hotels. Their business model focuses on bespoke production, supported by a strong after-sales service including repairs and upholstery cleaning. The website reflects a mature business with clear contact information and a professional presentation, targeting Czech and Slovak markets. Technically, the website employs modern JavaScript libraries such as Flickity for carousels, Fathom Analytics for privacy-focused tracking, and Tawk.to for live chat support. The site is mobile-optimized with good navigation and content structure, although some accessibility features could be improved. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. No forms are present on the homepage, reducing attack surface but also limiting direct data collection. The WHOIS data is unavailable, which raises concerns about domain registration transparency and trustworthiness. Despite this, the website content and business information appear consistent and credible. No signs of malicious content or adult material were found, and the site is fully accessible without WAF or blocking mechanisms. Overall, the site demonstrates a solid business presence with room for improvement in privacy compliance and security hardening. Strategic recommendations include publishing clear privacy and terms policies, implementing security headers, and verifying domain registration details to enhance trust and compliance.

J

JV Pohoda

jvpohoda.cz

44

JV Pohoda is a specialized retailer of luxury and design furniture based in Plzeň, Czech Republic, with a domain registered since 2004. The company offers a wide range of premium furniture including seating, bedrooms, garden furniture, and custom-made pieces, targeting consumers seeking high-quality and design-oriented home furnishings. Their business model combines retail sales, outlet discounts, and bespoke manufacturing services, positioning them as a trusted local provider in the luxury furniture market. Technically, the website is built on WordPress with WooCommerce, utilizing popular plugins such as Yoast SEO and Google Site Kit, ensuring a modern and functional e-commerce platform. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but could improve by adding more security headers and incident response information. Overall, the website is professional, compliant with GDPR, and trustworthy, with clear contact information and social media presence. No blocking or WAF challenges were detected, and no adult or questionable content is present.

E

EXIT 112 s.r.o.

exit112.cz

61

EXIT 112 s.r.o. operates a well-established showroom in Jihlava, Czech Republic, specializing in Böhm brand upholstered furniture and complementary interior furnishings. The company targets consumers seeking quality Czech-made furniture, offering a broad product range including sofas, armchairs, beds, and accessories. The showroom also serves as an event space, enhancing its business model. Technically, the website employs modern frontend technologies such as jQuery, Bootstrap, and Swiper.js, with integrated analytics and marketing tools like Google Tag Manager and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and incident response information are absent. The absence of WHOIS data reduces domain trustworthiness, but the website's content and contact details support legitimacy. Overall, the site is safe, compliant with GDPR, and professionally maintained.

B

BS TEXTIL

bstextil.cz

45

BS TEXTIL is a Czech Republic-based textile retailer specializing in upholstery fabrics, curtains, and related textile collections. The company operates an e-commerce platform built on WordPress and WooCommerce, offering a variety of textile products targeted at retail customers and businesses in hospitality and interior design sectors. The website demonstrates a professional design with good navigation and mobile responsiveness, supported by SEO tools such as Yoast SEO. The technical infrastructure includes modern web technologies and security features like HTTPS and Google reCAPTCHA to protect user interactions. However, the absence of a visible privacy policy and limited WHOIS data reduces transparency and trust signals. Security posture is generally good but could be improved by implementing additional security headers and conducting regular audits. Overall, the website presents a legitimate and functional online presence for a small textile business.

D

DEKOR STUDIO PRAHA

dekorstudiopraha.cz

48

DEKOR STUDIO PRAHA is a small local business specializing in interior design with a focus on custom curtains, drapes, upholstery, and wallpaper services. The website presents a professional image with clear descriptions of services and a target audience of consumers seeking tailored interior textile solutions in Prague. The technical infrastructure is based on WordPress with common web technologies such as jQuery and Bootstrap, and integrates Google Analytics and Facebook Pixel for analytics and marketing purposes. Cookie consent is implemented comprehensively, reflecting awareness of privacy regulations. However, the absence of a privacy policy and terms of service pages, as well as missing WHOIS data, limit the overall trust and compliance posture. Security practices include HTTPS but lack security headers and formal vulnerability disclosure mechanisms. Overall, the site is accessible and functional but would benefit from enhanced transparency and security improvements.

Sole Retriever operates as a specialized digital platform focused on delivering timely sneaker news, release dates, and raffle information for popular brands such as Nike, Jordan, New Balance, adidas, and Crocs. Positioned as a leading source in the sneaker enthusiast community, the website offers curated content and a mobile app to engage its target audience of sneaker collectors and consumers. The business model likely revolves around content monetization through advertising and affiliate marketing. Technically, the site leverages modern web technologies including Next.js and React, hosted on Vercel, with CMS support from Sanity.io and backend services via Supabase. This infrastructure supports fast performance, good mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement and multiple security headers, although the absence of explicit privacy and cookie policies indicates room for compliance improvement. The WHOIS data is notably missing, which raises some concerns about domain legitimacy despite the professional web presence. Overall, the site is trustworthy and well-maintained but should address privacy compliance and domain transparency to enhance credibility further.

R

RETAIL MEDIA Slovakia, s.r.o.

zahradnymagazin.sk

53

Zahradnymagazin.sk is a specialized Slovak online portal dedicated to gardening enthusiasts, plant lovers, and those interested in garden and exterior design. Operated by RETAIL MEDIA Slovakia, s.r.o., the site offers rich content including gardening advice, trends, and inspiration, supported by advertising and affiliate links to a partner e-shop. The website leverages Joomla CMS and integrates Google services for analytics and advertising, reflecting a moderate to advanced digital infrastructure. The site is well-structured with good navigation and mobile optimization, providing a positive user experience. Security posture is solid with HTTPS and standard security headers, though lacks explicit security policy and incident response information. Privacy compliance is addressed with a cookie consent mechanism and privacy policy, aligning with GDPR requirements. Overall, the site presents a trustworthy and professional presence in its niche market.

M

Messe Düsseldorf GmbH

euroshop-tradefair.com

68

EuroShop is a globally recognized retail trade fair organized by Messe Düsseldorf GmbH, headquartered in Düsseldorf, Germany. The website promotes the upcoming EuroShop 2026 event, emphasizing its position as the world's leading retail trade fair with a broad international audience and diverse exhibitor base. The business model centers on event organization, exhibitor services, and visitor engagement within the retail sector. The website demonstrates a mature digital presence with modern technologies, good mobile optimization, and structured content that supports user navigation and engagement. Security posture is strong with HTTPS enforcement and consent management, though explicit security headers and incident response information are absent. Overall, the site reflects a trustworthy and professional business entity with consistent WHOIS data and transparent advertising practices.

S

Retail in Detail

shopper21.cz

62

Retail in Detail is a Czech-focused retail industry news and analysis website providing insights and updates relevant to retail professionals and stakeholders in the Czech Republic. The website appears to be a niche content publisher with a focus on retail market trends and developments. The technical infrastructure includes modern web technologies such as Font Awesome icons and Google Tag Manager for analytics and tracking. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance posture. Security headers and explicit security policies are not evident, indicating room for improvement in security best practices. WHOIS data is unavailable or privacy protected, which is common for small websites but limits trust verification. Overall, the website is accessible, professionally designed, and content-rich but requires enhancements in privacy, security, and transparency to improve trust and compliance.

The website www.kaufland.sk represents Kaufland Marketplace GmbH, a large retail e-commerce marketplace operating in Slovakia. The company provides an online platform for retail products, targeting a general consumer audience. The website is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page requiring CAPTCHA verification, which limits the ability to fully analyze the site's content and features. The visible business information indicates a legitimate and established company with official registration and VAT details provided in the footer. From a technical perspective, the site uses Cloudflare services including Turnstile CAPTCHA for bot mitigation and security. However, no metadata, structured data, or visible security headers were detected in the provided HTML content. The lack of visible privacy, cookie, or terms of service policies suggests incomplete compliance with common privacy and security best practices. The site’s performance, accessibility, and SEO optimization cannot be assessed due to the blocked content. Security posture is partially supported by Cloudflare's WAF and CAPTCHA, but the absence of explicit security policies, incident response contacts, or vulnerability disclosure mechanisms reduces transparency and trust. No vulnerabilities or exposed sensitive data were detected, but the inability to access the full site content limits this assessment. Overall, the site demonstrates moderate trustworthiness based on company information but scores low on content quality and privacy compliance due to the blocking and missing policies.

R

Raja SA

rajapack.es

72

Raja SA operates www.rajapack.es as a leading European B2B e-commerce platform specializing in packaging and warehouse materials. The company offers a wide range of products including cardboard boxes, postal boxes, protective packaging, and warehouse equipment, targeting professional and business customers. The website is well-branded, professionally designed, and provides comprehensive product information with fast delivery options, positioning Raja as a market leader in its sector. Technically, the site leverages the INTERSHOP e-commerce platform, uses modern JavaScript libraries such as Lozad for lazy loading, and integrates marketing and analytics tools including Google Tag Manager, AB Tasty, and ThankYou.io. The site is mobile-optimized and implements SEO best practices with structured data and meta tags. Cookie consent is managed via OneTrust, ensuring GDPR compliance. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes standard security headers. However, it lacks a publicly available security policy or incident response contact information, and no vulnerability disclosure program is evident. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a mature digital presence with strong business credibility and privacy compliance. Strategic improvements include publishing a dedicated security policy, providing incident response contacts, and implementing a vulnerability disclosure mechanism to enhance trust and security posture.

R

RAJA

rajapack.de

68

RAJAPACK is a leading European retailer specializing in packaging, shipping, storage, and office supplies, offering over 10,000 products with fast delivery. The company targets both business and private customers across multiple European countries through a well-structured e-commerce platform. Their market position is strong as Europe's number one in packaging solutions, supported by a consistent brand presence and positive customer reviews. Technically, the website is built on the INTERSHOP e-commerce platform, leveraging modern JavaScript libraries and third-party services such as Algolia for search, Google Tag Manager for analytics, AB Tasty for marketing optimization, and OneTrust for cookie consent management. The site is mobile-optimized, fast-loading, and SEO-friendly, with structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on sensitive forms, and implements cookie consent mechanisms aligned with GDPR. While explicit security headers are not fully documented in the HTML, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. However, publishing a dedicated security policy and incident response contacts would enhance transparency. Overall, RAJAPACK demonstrates a mature digital presence with good privacy compliance and business credibility. Strategic recommendations include formalizing security policies, adding vulnerability disclosure mechanisms, and continuous monitoring of third-party scripts to maintain security and compliance.

R

RAJAPACK

rajapack.ch

68

RAJAPACK is a leading European packaging solutions provider with a strong presence in Switzerland, offering a wide range of packaging materials and professional services. The company targets both business and private customers, emphasizing fast delivery and extensive product availability. The website reflects a mature e-commerce platform with multi-language support and regional adaptations. Technically, the site uses modern JavaScript libraries, an established e-commerce CMS (INTERSHOP), and integrates advanced analytics and marketing tools such as Google Tag Manager, AB Tasty, and Dynatrace. Security posture is solid with HTTPS enforcement, reCAPTCHA on sensitive forms, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable platform for customers.

R

RAJAPACK

rajapack.nl

66

RAJAPACK is a leading European B2B supplier specializing in packaging, warehouse supplies, and office articles. The company positions itself as the number one in Europe in the packaging sector, targeting business customers with a comprehensive e-commerce platform. The website reflects a mature digital infrastructure with modern technologies such as JavaScript frameworks, lazy loading, and integration with marketing and analytics tools like Google Tag Manager and AB Tasty. Privacy and cookie compliance are well implemented, with clear policies and consent mechanisms in place. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly available. Overall, RAJAPACK demonstrates a professional and trustworthy online presence consistent with its market position.

R

RAJAPACK

rajapack.it

67

RAJAPACK is a leading European e-commerce company specializing in packaging and shipping supplies, offering over 7,000 products with fast delivery. The website is well-structured, professionally designed, and targets business customers requiring packaging solutions. Technically, the site uses modern technologies including Algolia for search, Google Tag Manager, AB Tasty for marketing, and Dynatrace for performance monitoring. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent management, though no explicit security policy or incident response page is published. Overall, the site demonstrates a mature digital presence with strong compliance to privacy regulations and good security posture.

R

Raja SA

raja.fr

67

Raja SA is a leading European distributor specializing in packaging, supplies, and equipment for businesses. The company operates a professional B2B e-commerce platform targeting European businesses requiring packaging solutions, hygiene products, and related equipment. Raja holds a strong market position as a leader in its sector with a large-scale operation primarily based in France. Technically, the website leverages modern e-commerce infrastructure powered by INTERSHOP, enhanced with advanced search capabilities via Algolia, and integrates multiple marketing and analytics tools such as Google Tag Manager, AB Tasty, and Dynatrace RUM. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. From a security perspective, Raja employs HTTPS with strong SSL configurations, uses reCAPTCHA for form protection, and manages cookie consent through OneTrust, demonstrating good security hygiene. However, the absence of a public security policy, incident response contacts, and vulnerability disclosure program indicates areas for improvement in transparency and security maturity. Overall, Raja presents a trustworthy and professional online presence with robust business credibility and technical implementation. The lack of WHOIS data slightly impacts domain trust but does not detract significantly from the overall positive assessment. Strategic recommendations include enhancing security transparency and formalizing incident response and vulnerability disclosure mechanisms.

R

Rajapack AB

rajapack.se

68

Rajapack AB operates as a leading European e-commerce retailer specializing in packaging materials, including boxes, cartons, protective packaging, and shipping supplies. The company targets businesses and customers requiring packaging solutions, positioning itself as the number one packaging supplier in Europe with a broad product catalog and fast delivery times. The website reflects a mature digital presence with multi-language support and integration with various European country-specific domains. Technically, the website leverages modern JavaScript libraries, Algolia for search, Google Tag Manager for analytics, and OneTrust for cookie consent management, hosted on the INTERSHOP e-commerce platform. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers could be improved. Security posture is solid with HTTPS enforced, use of reCAPTCHA on forms, and cookie consent mechanisms aligned with GDPR. However, explicit security policies and incident response contacts are not published, and upgrading reCAPTCHA and security headers is recommended. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with minor technical and security improvements suggested to enhance resilience and user trust.

R

Raja SA

rajapack.be

66

RAJAPACK is a leading European B2B provider specializing in packaging, warehouse supplies, and office products. The company operates a professional e-commerce platform targeting business customers primarily in Belgium and across Europe. The website demonstrates a mature digital presence with multilingual support, comprehensive product categories, and integrated marketing and analytics tools. Security measures such as HTTPS, reCAPTCHA on login forms, and cookie consent management are implemented, reflecting a solid security posture. However, the domain WHOIS data is restricted, which slightly impacts transparency but does not detract from the overall legitimacy of the business. Strategic recommendations include enhancing security headers and publishing a security policy to further strengthen trust.

R

RAJAPACK UK

rajapack.co.uk

66

RAJAPACK UK is a leading European supplier of packaging products, specializing in B2B eCommerce solutions for businesses in logistics and eCommerce sectors. The company offers a wide range of packaging materials, including cardboard boxes, mailing bags, protective packaging, and eco-responsible products, with a strong emphasis on next-day delivery and customer service. Their market position is reinforced by extensive product catalogs and country-specific partner sites across Europe. Technically, the website leverages modern web technologies such as Algolia for search, Google Tag Manager for analytics, AB Tasty for marketing optimization, and Dynatrace for performance monitoring. The platform is built on INTERSHOP eCommerce software, ensuring robust eCommerce capabilities. The site is well-optimized for mobile devices, accessibility, and SEO, providing an excellent user experience. From a security perspective, the site enforces HTTPS, employs security headers, and integrates reCAPTCHA on sensitive forms to mitigate automated abuse. Cookie consent and privacy compliance mechanisms are implemented in line with GDPR requirements. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Overall, RAJAPACK UK presents a professional, trustworthy, and secure online presence with strong business credibility. The lack of WHOIS data is due to querying a subdomain rather than the registered domain, not indicating any legitimacy concerns. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and enhancing transparency around data protection roles.

R

RAJAPACK

rajapack.no

67

RAJAPACK is a leading European packaging supplier operating a professional e-commerce platform targeting business customers primarily in Norway and across Europe. The company offers a wide range of packaging products including boxes, envelopes, tapes, and protective materials with a focus on fast delivery and extensive product availability. The website demonstrates a mature digital presence with modern search and analytics technologies integrated, including Algolia Search, Google Tag Manager, AB Tasty, and OneTrust for cookie consent management. Security measures such as HTTPS and CAPTCHA on login forms are implemented, though additional security headers and published security policies could enhance the security posture. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. The absence of WHOIS data limits domain registration trust verification, but the website content and business information strongly indicate a legitimate and established business. Overall, the site is professionally designed, user-friendly, and compliant with relevant privacy regulations.

R

Raja SA

rajapack.sk

58

RAJAPACK is a leading European packaging materials supplier specializing in cardboard boxes, envelopes, and bubble films. The company operates a professional e-commerce platform targeting business customers across Slovakia and Europe, offering a wide product range and fast delivery. The website demonstrates strong digital maturity with modern technologies such as Algolia search, OneTrust cookie consent, and integration with analytics and marketing tools like Dynatrace and AB Tasty. Security measures include HTTPS enforcement, reCAPTCHA on login forms, and cookie consent mechanisms, reflecting a solid security posture. Overall, the site is well-designed, user-friendly, and compliant with GDPR, supporting RAJAPACK's market leadership and business credibility.

S

SvětKaravanů.cz

svetkaravanu.cz

71

SvětKaravanů.cz is a leading Czech e-commerce retailer specializing in accessories and equipment for caravans, camping, and outdoor activities. The website offers a wide range of products including caravan parts, tents, chemical toilets, camping furniture, and bike racks, targeting caravan enthusiasts and travelers primarily in the Czech Republic. The business positions itself as a market leader with a strong emphasis on competitive pricing, fast delivery, and customer support. Technically, the website employs modern JavaScript libraries, integrates error monitoring via Sentry, and uses Google Tag Manager for analytics and marketing. Cookie consent mechanisms and privacy policies indicate GDPR compliance. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though the absence of explicit security headers suggests room for improvement. The WHOIS data is unavailable, which slightly impacts trust but the professional presentation and contact details mitigate concerns. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

V

Veletrhy Brno, a.s.

kabo.eu

66

Veletrhy Brno, a.s. operates the STYL and KABO international trade fairs focused on fashion and footwear, held biannually in Brno, Czech Republic. These events serve as key B2B platforms for manufacturers, designers, buyers, and distributors primarily from Central and Eastern Europe. The website is professionally designed, mobile-optimized, and rich in content, providing comprehensive information about the events, exhibitors, and visitor services. Technically, the site employs modern JavaScript libraries and tracking tools, including Google Tag Manager, Google Analytics 4, and Facebook Pixel, ensuring robust analytics and marketing capabilities. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers are not explicitly detected. The absence of WHOIS data is a notable gap, slightly impacting domain trustworthiness. Overall, the site demonstrates a mature digital presence aligned with its business objectives.

B

Blue Events, s.r.o.

blueevents.eu

63

Blue Events, s.r.o. is a well-established Czech company specializing in organizing professional conferences, congresses, and summits primarily targeting the retail and business sectors. With over 30 years of experience, the company holds a strong market position as a leading event organizer in the Czech Republic, hosting notable events such as Retail Summit and Big Data conferences. Their target audience consists of business professionals and industry leaders seeking expert knowledge and networking opportunities. The business model revolves around event production and conference management, supported by partnerships with reputable companies.

A

Asociace českého tradičního obchodu, z.s.

acto.cz

60

Asociace českého tradičního obchodu (AČTO) is a Czech non-profit association representing traditional Czech retail networks, advocating for Czech retailers, protecting and developing the tradition of Czech stores, supporting Czech producers and regional products, and actively participating in legislative processes. It represents approximately 6,000 stores with around 25,000 employees, holding about 20% market share in the Czech food retail sector. The association offers certification for stores, legislative advocacy, and promotes cooperation with local producers. The website is professionally designed, mobile-optimized, and uses modern web technologies including Google Analytics and Facebook SDK for analytics and marketing purposes. Cookie consent mechanisms are implemented, though a dedicated privacy policy page is not found, indicating a compliance gap. The site uses HTTPS with good SSL configuration and secure form handling.

S

Svaz obchodu a cestovního ruchu ČR

socr.cz

50

Svaz obchodu a cestovního ruchu ČR (SOCR) is a well-established non-profit association founded in 1997, representing businesses in retail, hospitality, and tourism sectors within the Czech Republic. The organization provides advocacy, information dissemination, event organization, and support services to its members. The website reflects a professional and consistent brand presence with clear navigation and relevant content focused on industry news and events. Technically, the site is built using modern JavaScript frameworks (Vue.js) and integrates Google Analytics and Tag Manager for user tracking. While the site is mobile-optimized and performs moderately well, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is adequate with HTTPS usage but could be improved by adding security headers and incident response contact information. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

B

Bidfood

mujbidfood.cz

51

The website www.mujbidfood.cz is a professional wholesale online market operated under the Bidfood brand, targeting gastronomy and retail sectors primarily in the Czech Republic. It offers a broad assortment of frozen, chilled, dry foods, and non-food products. The platform supports multiple languages and provides registered users access to pricing and detailed product and recipe information. The business model is B2B e-commerce with a focus on wholesale distribution. The site demonstrates consistent branding and a good level of content quality and user experience. Technically, the website uses modern web technologies including jQuery, Bootstrap, and slick carousel for UI components. It is mobile optimized and provides a cookie consent mechanism compliant with GDPR. However, no explicit CMS or hosting provider information is available. Performance is moderate with good SEO and basic accessibility features. From a security perspective, HTTPS is enforced, and login forms use standard security attributes. However, no security headers were detected in the provided data, and there is no visible security policy or incident response information. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, although the website content and external links suggest a legitimate business. No critical vulnerabilities or exposed sensitive data were found. Overall, the website presents a trustworthy and professional wholesale e-commerce platform with room for improvement in security transparency and contact information visibility. The lack of WHOIS data reduces the trust score and should be addressed to enhance domain legitimacy assurance.

Nowaco market is a branded food retail store operated by Bidfood Czech Republic s.r.o., a leading food wholesale company in the Czech Republic. The website presents a professional and well-structured overview of their product offerings, including fresh and frozen fish, game meat, various meats, cheeses, and frozen goods. The business targets retail customers and gastronomic operations, leveraging its parent company's supply chain for quality assurance. Technically, the website uses standard web technologies including HTML, CSS, JavaScript, and Google Analytics for visitor tracking. The site is hosted by Active24 and shows moderate performance and basic mobile optimization. Security posture is moderate with cookie consent implemented but lacks visible security headers and formal privacy or security policies. The domain registration is consistent with the business history and shows no suspicious patterns. Overall, the website is trustworthy and professional but could improve in privacy compliance and security best practices.

B

Bidfood Dýšina a.s. & Bidfood Czech Republic s.r.o.

jeduvledu.cz

58

Jedu v ledu is a Czech Republic based business specializing in the production and distribution of packaged ice cubes and ice slush products. The company operates under the Bidfood umbrella, a recognized foodservice wholesaler. Their products are distributed nationwide through major retail chains, gas stations, and e-commerce platforms. The website serves as an informational portal highlighting product offerings, distribution channels, and contact details. Technically, the site is built on Drupal 7 with Bootstrap and jQuery, providing a moderate level of performance and mobile responsiveness. However, the Google Maps integration is broken due to a missing API key, and some outdated libraries are in use. Security posture is basic with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and policies. Overall, the site is professional and trustworthy but could benefit from technical and security enhancements.

B

Bidfood Czech Republic s.r.o.

pegaspremium.cz

48

Pegas Premium is a Czech premium ice cream brand operated by Bidfood Czech Republic s.r.o., offering high-quality ice cream products made with real cream and certified ingredients. The website presents a professional and visually appealing digital presence with strong branding and multiple e-commerce partnerships for product distribution. The technical infrastructure leverages modern JavaScript libraries and analytics tools, hosted via Active24, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy documentation, which are recommended for compliance and trust. Overall, the website is safe, trustworthy, and well-positioned in the retail ice cream market.