Transportation security reports

V

VARS BRNO a.s.

vars.cz

68

VARS BRNO a.s. is an innovative Czech company specializing in Intelligent Transportation Systems (ITS), infrastructure management, and project engineering with over 25 years of experience. As a member of the VINCI Energies group, it holds a strong market position as a leader in implementing advanced solutions for transportation and infrastructure management. The company offers key services including traffic telematics, infrastructure management solutions, and infrastructure project design. The website is professionally designed, primarily in Czech with English alternatives, and targets infrastructure managers and related organizations. Technically, the site runs on WordPress with modern plugins such as Yoast SEO and Matomo Analytics, indicating a mature digital infrastructure with privacy-conscious analytics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and well-structured for its audience.

BYD Trutnov, operated by Autostyl a.s., is an authorized dealership and service center specializing in electric vehicles and plug-in hybrids from the BYD brand. Positioned as the first BYD representative in the Trutnov region of the Czech Republic, the company focuses on delivering modern, eco-friendly mobility solutions to local consumers. The website reflects a professional business presence with clear branding, comprehensive product offerings, and accessible customer contact points. Technically, the website is built on a modern stack including October CMS, Bootstrap, and JavaScript libraries such as Swiper.js and jQuery. It is mobile-optimized and includes SEO best practices like meta tags and Open Graph data. Google Tag Manager is used for analytics and tracking, with a cookie consent mechanism that aligns with GDPR requirements. From a security perspective, the site enforces HTTPS and implements cookie consent controls, but lacks visible security headers which could enhance protection against common web threats. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data raises concerns about domain legitimacy and should be investigated further. Overall, the website presents a trustworthy and professional front for the business, but improvements in security headers and domain registration transparency are recommended to strengthen trust and compliance.

T

Toyota Česko

toyotatrutnov.cz

65

Toyota Central Europe - Czech s.r.o., represented online by Autostyl a.s., operates as an official regional dealer for Toyota in the Czech Republic. The company provides comprehensive automotive sales, servicing, and customer support, targeting consumers interested in Toyota vehicles and accessories. The website reflects a professional and consistent brand presence aligned with Toyota's corporate identity. Technically, the site leverages Adobe Experience Manager and Scene7 for content management and media delivery, supported by Google Tag Manager for analytics and cookie consent management. The infrastructure indicates a mature digital presence with moderate performance and good mobile optimization. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed through cookie consent mechanisms and GDPR-aligned privacy policies. Overall, the domain appears legitimate and trustworthy despite the absence of public WHOIS data, which is common for corporate domains. Strategic recommendations include enhancing public security policy disclosures and incident response information to further build trust and compliance.

R

Rentstyl, s.r.o.

rentstyl.cz

53

Rentstyl, s.r.o. operates a Czech-language website offering operational leasing and car rental services primarily for Škoda and Toyota vehicles. The company targets individuals and businesses seeking flexible vehicle leasing solutions with fixed monthly payments including insurance and servicing. The website is professionally designed with good content quality and clear navigation, optimized for mobile devices. Technically, the site uses a custom MVC-based CMS integrated with BSSHOP e-commerce platform and employs Google Tag Manager for analytics and marketing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though HTTP security headers are not explicitly detected. The absence of WHOIS data limits domain ownership transparency, which slightly impacts trustworthiness. Overall, the site presents a legitimate and professional business with moderate risk due to incomplete domain registration information.

Š

Škoda Auto a.s.

skodaplus.cz

73

Škoda Plus is a certified used car sales program operated by Škoda Auto a.s. in the Czech Republic, offering quality-assured used vehicles through authorized dealers. The website presents a professional and well-structured platform with comprehensive information about the program, vehicle offerings, financing, and insurance options. Technically, the site uses modern web technologies including React and Next.js, with integration of Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and nonce attributes on scripts, although some security headers and explicit policies are missing. Privacy and cookie policies are present and GDPR compliant. The absence of WHOIS data limits domain trust assessment, but the branding and content strongly indicate legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy for its target audience.

S

Sáňkařská dráha Špindlerův Mlýn

sankarska-draha.cz

45

Sáňkařská dráha Špindlerův Mlýn operates the longest illuminated sledding track in the Czech Republic, offering a unique winter sports experience primarily targeting families, groups of friends, and corporate clients visiting the Krkonoše region. The business model integrates transportation, equipment rental, and hospitality services to enhance visitor experience. The website is professionally designed using WordPress with modern plugins for SEO, GDPR compliance, and user engagement such as newsletter subscriptions. Technically, the site employs a solid tech stack including Slider Revolution and WPBakery, though some plugins may require updates to mitigate potential vulnerabilities. Security posture is adequate with HTTPS and reCAPTCHA protections, but could be improved by implementing additional security headers and publishing security policies. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which impacts overall trust. The site is fully accessible without WAF or blocking mechanisms, and content is family-friendly and safe for general audiences.

B

Birne by Direct

birne.com

68

Birne by Direct operates a flexible car leasing and rental service primarily targeting customers in the Czech Republic. The business model emphasizes ease of use with clear monthly fees, no mileage limits, and flexible return options. The website is built on the Shopify platform, leveraging modern web technologies and integrates multiple analytics and marketing tools such as Google Analytics, Hotjar, HubSpot, and Visual Website Optimizer. The site demonstrates good digital maturity with cookie consent mechanisms and GDPR compliance evident through a comprehensive privacy policy in Czech. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, although explicit security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for its target market.

A

Autosklo Hleďa

hleda.cz

45

Autosklo Hleďa is a regional automotive service provider based in the Czech Republic, specializing in automotive glass repair and replacement, air conditioning servicing, tire services, general auto repair, and vehicle rental. The company operates multiple branches in key cities such as Vyškov, Kroměříž, Prostějov, and Šumperk, targeting vehicle owners in the Střední Morava region. Their website reflects a professional and consistent brand presence with clear service offerings and contact information. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Google Tag Manager, ensuring a responsive and user-friendly experience. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanisms. Security posture is moderate, with HTTPS usage and some best practices observed, but lacks explicit security headers and incident response information. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification, though the website content and business operations appear credible and trustworthy. Overall, the website scores well in content quality, technical implementation, and business credibility, with room for improvement in security and domain registration transparency.

L

LKQ CZ s.r.o.

elit.cz

73

LKQ CZ s.r.o. operates as the largest supplier of automotive parts, accessories, and related products in the Czech Republic, serving a broad audience including vehicle owners, workshops, and retail customers. The company leverages a comprehensive e-commerce platform with a wide network of physical stores and service points, positioning itself strongly in the transportation and retail sectors. The website reflects a professional and user-friendly design, supporting the business model effectively. Technically, the website employs modern web technologies such as AngularJS, Google Tag Manager for analytics, and OneTrust for cookie consent management, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience, although some accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks visible security headers and explicit privacy policies, which are important for compliance and trust. The absence of WHOIS data for the domain raises some concerns about transparency and domain legitimacy, although the website content and branding suggest a legitimate business. Overall, the website presents a solid business presence with good technical foundations but would benefit from enhanced security practices, clearer privacy documentation, and verified domain registration details to improve trust and compliance.

A

APACHE

apache-bike.cz

54

APACHE is a Czech-based company specializing in the import and retail of bicycles and electric bicycles, serving primarily the Czech market. The website presents a clear product catalog with categories for various types of e-bikes and traditional bicycles, targeting cycling enthusiasts and consumers interested in quality bikes. The company has a long-standing domain registration dating back to 2001, supporting its legitimacy and market presence. Technically, the website uses modern frontend technologies including the Foundation CSS framework and jQuery, with lazy loading implemented for images to improve performance. The site is mobile-optimized and provides a good user experience with clear navigation and consistent branding. However, some technical improvements could be made in accessibility and SEO optimization. From a security perspective, the website lacks visible security headers and a published privacy policy, which are important for compliance and user trust. The cookie consent mechanism is implemented, indicating some awareness of privacy regulations. No contact emails or phone numbers were found in the HTML content, which limits direct communication channels for users and security incident reporting. Overall, the website is functional, professional, and safe for general audiences, but improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and regulatory adherence.

Autostyl a.s. is a well-established automotive dealership and service provider based in Trutnov, Czech Republic, specializing in authorized sales and servicing of Škoda, Toyota, and BYD vehicles. The company offers a comprehensive range of services including new and used car sales, authorized servicing, spare parts, operational leasing, and other automotive-related services. With a business history dating back to 1992 and ISO 9001:2015 certification, Autostyl holds a strong regional market position supported by official partnerships with major automotive brands. Technically, the website is built on a modern stack including OctoberCMS, Bootstrap, jQuery, and Swiper.js, with Google Analytics integration for user tracking. The site is mobile-optimized, well-structured, and SEO-friendly, providing a good user experience. Cookie consent mechanisms and GDPR compliance are implemented, reflecting awareness of privacy regulations. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for commercial domains in the EU, though it limits transparency about domain registration details. Overall, the website presents a professional and trustworthy digital presence with moderate to good security posture. Strategic improvements in security headers and publishing a security policy could enhance trust and compliance. The domain's privacy protection is justified given the business type, and no suspicious indicators were found.

M

Mercedes-Benz Financial Services Česká republika s.r.o.

operativni-leasing-mercedes.cz

55

The website www.operativni-leasing-mercedes.cz serves as an official platform for Mercedes-Benz Financial Services Česká republika s.r.o., offering operational leasing services for Mercedes-Benz vehicles in the Czech Republic. The site targets businesses and individuals interested in leasing various Mercedes-Benz models, providing a configurator tool and detailed vehicle information. The business is positioned as a key player in automotive financial services within its regional market, leveraging the strong Mercedes-Benz brand. Technically, the website employs modern JavaScript modules, Google Analytics, and Google Tag Manager for tracking, and is built with a focus on responsive design and user experience. The site loads moderately fast and is mobile-optimized, though some SEO and accessibility features could be enhanced. The absence of a detected CMS suggests a custom or proprietary platform. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The missing WHOIS data is a concern for domain legitimacy but does not directly impact the website's operational security posture. Overall, the website presents a professional and trustworthy front for Mercedes-Benz leasing services, with room for improvement in security transparency and contact information availability. The risk level is moderate, primarily due to the lack of WHOIS data and some security best practices not fully implemented.

P

Pardubice Airport

airport-pardubice.cz

56

Pardubice Airport operates as a regional transportation hub in the Czech Republic, providing passenger flight services and collaborating with multiple travel agencies and airlines to offer holiday destinations. The website reflects a professional and user-friendly digital presence built on WordPress with Elementor, featuring flight schedules, partner offers, and airport services. The technical infrastructure includes modern web technologies and analytics tools such as Google Tag Manager, supporting moderate user tracking and marketing efforts. Security posture is generally good with HTTPS and cookie consent mechanisms in place, though the absence of WHOIS data and some security headers suggests room for improvement. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR consent. Overall, the airport's digital presence supports its business model effectively but would benefit from enhanced transparency in domain registration and additional security policies.

H

HOCHTIEF CZ

hochtief.sk

57

HOCHTIEF SK represents a branch or related site of HOCHTIEF CZ, a well-established construction company with a history spanning over 50 years. The company offers a broad range of construction services, from initial project discussions to the execution of complex contracts, leveraging traditional Czech construction expertise. The website targets business clients in the construction and infrastructure sectors primarily in Slovakia and the Czech Republic. The business model focuses on service provision in transportation and real estate infrastructure development, positioning itself as a significant player in the regional market.

Valbek, spol. s r.o. is a well-established Czech engineering and project management company specializing in infrastructure and construction projects since 1990. The company offers a broad range of services including project design, geotechnical surveys, construction supervision, and software development for the construction industry. With a large team of experts and multiple ISO certifications, Valbek holds a strong market position in the Czech Republic and neighboring countries. The website reflects a professional and comprehensive digital presence with clear service descriptions and contact information. Technically, the website uses a traditional tech stack with jQuery and bxSlider, and integrates modern fonts and photo galleries. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR. However, some technologies like jQuery are outdated, and security headers are not visibly implemented, which could be improved. From a security perspective, the company demonstrates maturity through ISO 27001 certification and published security policies. The website enforces HTTPS and provides cookie consent, but lacks a dedicated incident response contact and security.txt file. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations. The domain age and WHOIS data align well with the company's history, supporting legitimacy. Strategic improvements in security headers, technology updates, and incident response transparency would enhance the security posture and user trust.

M

Metrostav

metrostav.cz

65

Metrostav is a leading Czech construction company with a strong presence in infrastructure and engineering projects across the Czech Republic and Europe. The website reflects a professional business with a focus on technical excellence and a broad portfolio of construction services. The company targets clients in the construction and transportation sectors, emphasizing its market leadership and technical capabilities. The digital infrastructure is modern, leveraging Next.js, Google Tag Manager, Cookiebot for consent management, and analytics tools such as Microsoft Clarity and Hotjar, indicating a mature digital presence. Security posture is generally strong with HTTPS enforced and a comprehensive cookie consent mechanism, although some security headers are missing and no explicit security or incident response policies are published. The absence of WHOIS data reduces the domain trustworthiness score, but the website content and technology usage support legitimacy. Overall, the site is well-designed, GDPR compliant, and suitable for its business audience.

L

LaValette

lavaletteclub.com

58

LaValette Club Malta operates as an airport lounge and VIP service provider at Malta International Airport, offering memberships, one-time passes, and VIP terminal services. The website presents a professional and user-friendly interface targeting travelers seeking luxury and comfort during their airport experience. The business model focuses on membership sales and premium services, positioning itself as a key hospitality player within the transportation sector in Malta. Technically, the site is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure with good SEO and mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and incident response policies. The absence of WHOIS registration data is a notable concern, impacting domain legitimacy and trust. Overall, the website is functional, secure, and compliant with privacy regulations, but would benefit from enhanced transparency and security documentation.

S

SkyParks

skyparksbusiness.com

48

SkyParks is a multi-purpose business and leisure centre located at Malta International Airport, offering office spaces, meeting rooms, and various amenities such as restaurants, fitness, childcare, and banking services. The website positions SkyParks as a key hub combining business and leisure for tenants, travellers, and local residents. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, Hotjar, and AddThis for marketing and analytics. The site is mobile optimized and SEO friendly with good content quality. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are not explicitly detected and no incident response or security policies are published. Privacy and cookie policies are present and indicate GDPR compliance. However, the WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional website content and association with Malta International Airport. Overall, the website is trustworthy and professional but would benefit from improved transparency on domain registration and enhanced security policies.

A

Autoservis Dubina Pardubice

autoservisdubina.cz

41

Autoservis Dubina Pardubice is a small automotive service provider based in the Czech Republic, specializing in comprehensive car servicing, repairs, diagnostics, and spare parts sales. The company targets local vehicle owners and offers a broad range of services including chiptuning, tire service, air conditioning, and technical inspections. The website is built on Joomla CMS and uses common JavaScript libraries, presenting a professional and consistent brand image. However, the site lacks privacy and cookie policies, which impacts compliance with GDPR regulations. Security posture is moderate with no visible HTTPS verification or security headers, indicating room for improvement. Overall, the website is functional and trustworthy but would benefit from enhanced security and privacy measures.

FIBICH CampingCars s.r.o. is a Czech-based company specializing in the sale, service, and rental of caravans and recreational vehicles. With over 14 years of experience, they serve customers primarily in the Czech Republic, including locations near Pardubice, Hradec Králové, and Prague. Their offerings include authorized dealership of well-known brands such as Sterckeman, Mini Freestyle, Benimar, Sunlight, and Challenger, complemented by a showroom, service center, and accessory sales. The company targets travelers and caravan enthusiasts seeking flexible and comfortable travel solutions. Technically, the website employs modern web technologies including HTTPS, Google Analytics, Facebook SDK, and Google reCAPTCHA for security and user tracking. The site is mobile-optimized with good navigation and content quality, although some accessibility features could be improved. The absence of a CMS or hosting provider information limits deeper infrastructure insights. From a security perspective, the site enforces HTTPS and uses CAPTCHA to protect forms, but lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance. The WHOIS data for the domain is unavailable, which reduces trustworthiness from a domain registration standpoint. No security.txt or incident response contacts are provided, indicating room for improvement in security transparency. Overall, the website presents a professional and trustworthy front for its business, but would benefit from enhanced privacy compliance documentation, improved security headers, and verified domain registration information to strengthen its security posture and user trust.

A

Auta BO

autabo.cz

42

Auta BO is a small Czech Republic based business specializing in the sale of verified used cars. Founded in 2023, the company emphasizes trust and quality by offering vehicles with verified mileage, full service history, Cebia certification, and a one-year warranty via AutoCheck. They provide additional services such as vehicle delivery to customers or trusted service centers, as well as assistance with insurance and financing. The website is built on WordPress using the Astra theme and Elementor page builder, reflecting a modern and professional digital presence. While the site is mobile optimized and well-structured, it lacks key compliance documents such as privacy and cookie policies. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and configuring analytics properly. Contact information is clearly presented, including phone, email, and physical address, along with active social media channels on Instagram and Facebook.

A

Auto Trutnov s.r.o.

autotrutnov.cz

44

Auto Trutnov s.r.o. is a small automotive dealership based in the Czech Republic, specializing in authorized sales and servicing of Ford, Nissan, and Piaggio vehicles, along with vehicle conversion services. The company has a long-standing presence since 2004, supported by domain registration data. The website serves as a basic informational portal linking to brand-specific subdomains and highlighting key services. Technically, the site uses standard web technologies including Google Analytics for visitor tracking but lacks advanced frameworks or CMS platforms. Security posture is moderate with HTTPS implied but no visible security headers or privacy policies, indicating room for improvement in compliance and security transparency. No contact information or privacy-related policies are present on the homepage, which impacts user trust and regulatory compliance. Overall, the website is accessible, safe, and functional but would benefit from enhanced privacy, security, and contact transparency to improve user confidence and compliance.

A

Avio Aero

avioaero.com

70

Avio Aero is a prominent European aviation manufacturing company specializing in the design, manufacture, and maintenance of commercial and military propulsion systems and components. As a subsidiary of GE Aerospace, it holds a strong market position with a focus on innovation, including the development of the Catalyst turboprop engine. The website reflects a professional and well-branded digital presence targeting aviation industry stakeholders and potential employees. Technically, the website is built on Drupal 11 with modern front-end technologies such as Bootstrap and GSAP, ensuring good performance, mobile optimization, and accessibility. The site integrates third-party services like Google Tag Manager and Evidon for analytics and cookie consent management, demonstrating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and includes security headers and cookie consent mechanisms. However, it lacks publicly available security policies, incident response information, and vulnerability disclosure details, which are recommended for enhanced trust and compliance. The absence of WHOIS registrant data raises some concerns about domain registration transparency, though the website content and external links strongly indicate legitimacy. Overall, Avio Aero's website is a high-quality, professional platform with strong business credibility and technical implementation. Addressing the gaps in security transparency and domain registration information would further strengthen its trustworthiness and compliance posture.

S

Správa železnic, státní organizace

zeleznicenaletiste.cz

57

Správa železnic, státní organizace, operates the official website zeleznicenaletiste.cz to provide information about the modernization and construction of railway infrastructure connecting Prague, Václav Havel Airport, and Kladno. The website serves as a communication platform for residents, commuters, and travelers, offering project updates, news, and detailed descriptions of the railway sections. The organization holds a strong market position as a government entity responsible for transportation infrastructure in the Czech Republic. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, and Unite Gallery. It integrates analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and accessibility features, although some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security headers and a public security policy or vulnerability disclosure program are absent. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's profile. Overall, the website demonstrates a solid security posture and good privacy compliance, with room for enhancements in security policy transparency and accessibility. The site is trustworthy, professionally maintained, and serves its public sector mission effectively.

Fantova budova is a culturally significant Secessionist building in Prague, managed by Správa železnic, the Czech state railway organization. The website serves as an informational and promotional platform for the ongoing restoration project and event space rental. The site is well-structured, professionally designed, and provides relevant content primarily in Czech with English alternatives. Technically, it is built on the Liferay CMS platform and uses modern JavaScript libraries and tracking tools. Security posture is good with HTTPS enforced and cookie consent implemented, though it lacks explicit security headers and published security policies. Overall, the site is trustworthy and serves its purpose effectively.

S

Správa železnic, státní organizace

vrtky.cz

59

The website vrtky.cz serves as an official public information portal for the Czech Republic's high-speed rail infrastructure project, managed by Správa železnic, a state organization. It provides comprehensive information about the development, planning, and updates of high-speed rail lines (VRT) aimed at improving transportation efficiency and regional mobility. The site targets Czech residents, transport professionals, and government stakeholders, offering news, maps, and project details. Technically, the site is built on the Liferay CMS platform and employs modern web technologies including jQuery, Slick Carousel, and Google Tag Manager. It integrates analytics and marketing tools such as Google Analytics and Facebook Pixel, and implements cookie consent mechanisms in compliance with GDPR. The site is mobile-optimized and features a professional design with clear navigation. From a security perspective, the website uses HTTPS with good SSL configuration and basic security best practices. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, vrtky.cz is a trustworthy and professionally maintained government-related website with a strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve security posture and transparency.

S

SmartPlan

smart-plan.cz

44

SmartPlan is an independent consulting company specializing in the implementation of Smart City concepts aligned with sustainable development principles. The company serves municipalities and public institutions, helping them leverage modern technologies to address urban challenges in transportation, energy, and environmental management. Their market position is supported by over 10 years of experience, 100+ completed projects, and presence in more than 15 countries. The website demonstrates a mature digital presence built on WordPress with Elementor, optimized for performance and SEO. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security and privacy policies are not published. Overall, the business appears credible and professionally managed with room for improvement in transparency and security documentation.

P

Postolka Drilling

postolka.cz

47

Postolka Drilling, s.r.o. is a specialized drilling service provider based in the Czech Republic, focusing on controlled and uncontrolled horizontal directional drilling (HDD) with flushing and recycling capabilities. Established originally in 1992, the company has a strong market position as one of the most experienced HDD providers in the country, serving construction and infrastructure sectors. Their website reflects a professional and consistent brand image, providing detailed service descriptions and references to past projects. The technical infrastructure is built on WordPress with modern plugins and includes essential security features such as HTTPS and Google reCAPTCHA on contact forms. Cookie consent mechanisms are implemented in compliance with GDPR requirements, although explicit privacy and terms of service pages are not detected on the homepage. Overall, the website demonstrates good digital maturity and business credibility.

M

Motoforza

motoforzafairings.com

61

Motoforza is a Czech Republic based manufacturer and retailer specializing in composite motorcycle fairings and accessories. With over 30 years of experience, the company serves a niche market of motorcycle enthusiasts and racers by offering high-quality aftermarket parts tested in professional racing series. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product categories. Technically, the site employs modern analytics and marketing tools including Google Analytics, Facebook Pixel, and Microsoft Clarity, alongside live chat support. Security posture is solid with HTTPS enforced and secure form handling, though improvements are needed in cookie consent and security headers. The absence of WHOIS registration data is a notable anomaly that requires further investigation to confirm domain legitimacy. Overall, the business presents a credible and professional online presence with room for enhanced privacy compliance and security transparency.

BrnoKontejnery.cz is a Czech Republic-based small business specializing in container transport, rental, earthworks, waste removal, construction machinery rental, and related services primarily serving Brno and surrounding regions. The website presents a professional and consistent brand image with clear service offerings and customer testimonials, targeting both individual and business customers in the construction and logistics sectors. The domain age and WHOIS data support the legitimacy and established presence of the business. Technically, the website uses a modern but standard technology stack including jQuery, Bootstrap, Owl Carousel, and Google Tag Manager for analytics. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, and no CMS or hosting provider details are explicitly detected. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is basic with a privacy policy and cookie banner present, but no incident response or vulnerability disclosure policies are found. Overall, the website is safe, professional, and trustworthy with no adult or questionable content. The security posture is adequate but could be improved by adding security headers and formal policies. The business credibility is strong given the consistent WHOIS data and clear contact information. The AI overall score reflects a good quality website with room for security and privacy enhancements.

E

ERA a.s.

era.cz

58

ERA a.s. is a globally recognized leader in next-generation surveillance and flight tracking solutions, specializing in multilateration and ADS-B technologies. The company serves a specialized market including air traffic management authorities, military and security agencies, and aviation industry stakeholders. With over 160 installations across 70 countries and 5 continents, ERA holds a strong market position supported by decades of tradition and experience. Their business model focuses on providing mission-critical surveillance systems and related services in a B2B context. Technically, the website demonstrates a mature digital infrastructure using modern web technologies such as HTML5, CSS3, JavaScript, and third-party libraries like Google Tag Manager and Picturefill for responsive images. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. However, there is room for improvement in security headers and accessibility compliance. From a security perspective, ERA's website enforces HTTPS and uses secure form submission methods, with no visible vulnerabilities or exposed sensitive data. The presence of ISO 27001 certification and partnerships with reputable companies like Airbus enhance trust. However, the absence of explicit security headers and incident response information suggests areas for enhancement. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, ERA's website reflects a professional, trustworthy, and well-maintained digital presence consistent with its industry standing. The lack of public WHOIS data due to privacy protection is justified given the company's international operations. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving accessibility to further strengthen the security posture and user trust.

O

OMNIPOL a.s.

omnipol.cz

10

OMNIPOL a.s. is a well-established Czech industrial group specializing in aerospace and defense manufacturing with a history dating back to 1934. The company integrates several subsidiaries focused on aircraft production, surveillance systems, military communications, and aviation instruments, serving clients in over 60 countries. Their website reflects a professional and modern digital presence with clear branding and comprehensive business information. Technically, the site uses modern JavaScript frameworks and libraries, is mobile-optimized, and includes GDPR-compliant privacy and cookie policies. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and incident response information. The absence of WHOIS data reduces domain trust slightly but does not detract from the overall legitimacy of the business.

L

Latecoere

latecoere.aero

67

Latecoere is a well-established aerospace company specializing in aerostructures and interconnection systems, serving major aircraft manufacturers and airlines globally. With a century-long history, it maintains a strong market position through continuous R&D investment and a broad international presence. The company offers key services including manufacturing of doors, fuselages, wiring harnesses, and avionics racks, positioning itself as a Tier 1 supplier in the aerospace manufacturing sector. Technically, the website is built on WordPress with modern SEO and privacy tools such as Yoast SEO and Complianz GDPR compliance plugins. It uses Matomo for analytics, emphasizing privacy-conscious tracking. The site is mobile optimized and presents a professional design with clear navigation, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection, which is justified given the corporate nature. Overall, the security posture is solid but could be improved by adding security headers and formal policies. The overall risk is low with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure program to further strengthen trust and compliance.

L

LA COMPOSITE, s.r.o.

lacomposite.cz

60

LA COMPOSITE, s.r.o. is a Czech-based manufacturing company specializing in composite materials and structures primarily for the aerospace industry, with extensions into transportation sectors such as automotive and railway. Founded in 1995, the company has a solid market position with a focus on engineering, prototyping, and serial production using advanced composite technologies. The website reflects a professional digital presence built on WordPress, featuring modern design elements and responsive layout. Technical infrastructure includes common industry-standard plugins and scripts, with enforced HTTPS ensuring secure communications. However, the absence of a privacy policy and cookie consent mechanism indicates gaps in GDPR compliance. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the lack of security headers suggests room for improvement. Overall, the website is trustworthy and well-maintained, supporting the company's credibility in its niche market.

G

GE Aviation Czech s.r.o.

geaviationturboprop.com

67

GE Aviation Czech s.r.o. operates as a specialized division of GE Aviation focusing on the design, development, manufacturing, and servicing of turboprop engines, specifically the GE H-Series. The website serves aerospace industry professionals, customers, and partners, providing detailed product information, customer support, career opportunities, and news updates. The company is positioned as a medium-sized enterprise within the transportation sector, headquartered in the Czech Republic and founded in 2016 as part of the larger GE Aviation group. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, and reCAPTCHA for security and analytics purposes. The site is hosted via Websupport.cz and demonstrates good mobile optimization and SEO practices. However, no major CMS or frameworks are explicitly detected, suggesting a custom or proprietary platform. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to mitigate bot activity. A cookie consent mechanism is implemented, reflecting GDPR compliance. However, the absence of explicit security headers and a published security policy indicates room for improvement in security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the business's credibility and market position. Strategic enhancements in security policies and technical headers would further strengthen its security and compliance standing.

E

Evektor

evektor.com

64

Evektor is a Czech-based company specializing in aircraft development and mechanical engineering services, with a strong focus on manufacturing EASA certified aircraft and providing engineering solutions across various industries. The company holds significant certifications such as EASA certification, AS9100D, and type certificates for specific aircraft models, positioning it as a reputable player in the aviation and manufacturing sectors. Their website showcases a professional digital presence with detailed information about their products, services, and certifications, targeting aviation professionals, flight schools, and engineering clients. Technically, the website is built on the Webflow platform, leveraging modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and Typeform for user engagement and data collection. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. However, some security best practices such as security headers and explicit incident response policies are not publicly documented. From a security perspective, the site uses HTTPS with strong SSL configuration and implements cookie consent for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified to ensure trustworthiness. Overall, Evektor's website reflects a mature business with a solid technical foundation and compliance posture, though improvements in transparency around security policies and domain registration verification are recommended to enhance trust and security assurance.

E

ERA a.s.

era.aero

62

ERA a.s. is a specialized technology company focused on next-generation surveillance and flight tracking solutions, including multilateration and ADS-B technologies. The company serves both civil air traffic management and military sectors, positioning itself as a global leader with over 160 installations in more than 70 countries. ERA operates under the parent company OMNIPOL a.s. and maintains partnerships with major industry players such as Airbus. The website reflects a mature business with comprehensive service offerings and a strong market presence in the aviation and defense technology sectors. Technically, the website employs modern web technologies, including responsive design and asynchronous script loading, ensuring good user experience and accessibility across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. The WHOIS data is incomplete and malformed, limiting domain trust analysis, but the overall business credibility and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing explicit incident response contacts, and improving WHOIS transparency to strengthen trust further.

A

ATC SPACE s.r.o.

atc-space.cz

61

ATC SPACE s.r.o. is a Czech aerospace manufacturing company specializing in the production of aluminum alloy components and assemblies for the European Ariane rocket program. The company positions itself as a key supplier contributing to the next generation of European launch vehicles, targeting aerospace industry stakeholders and space agencies. The website reflects a professional and focused business with clear branding and relevant content. Technically, the site is built on WordPress using the Divi theme, incorporates Google Analytics and reCAPTCHA for security and analytics, and is served over HTTPS with good SSL configuration. However, the absence of WHOIS data and lack of explicit privacy and cookie policies indicate areas for improvement in transparency and compliance. Security posture is generally good but could be enhanced by implementing security headers and publishing formal security policies. Overall, the website is trustworthy and well-maintained, supporting the company's business credibility in the aerospace sector.

H

HungaroControl

hungarocontrol.hu

71

HungaroControl is the national air navigation service provider for Hungary, offering air traffic services, training for air traffic personnel, and aviation research and development. The website reflects a professional governmental entity with a clear focus on transportation and aviation sectors. The digital infrastructure includes modern analytics and marketing tools such as Google Analytics, Hotjar, and Cookiebot, ensuring compliance with privacy regulations through a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforcement and no visible vulnerabilities, though some security headers could be improved. Overall, the website is well-structured, accessible, and trustworthy, serving its target audience effectively.

A

AgentFly Technologies s.r.o.

agentfly.com

70

AgentFly Technologies s.r.o. is a specialized technology company focused on innovative solutions for air traffic management, unmanned aerial systems integration, tactical military and security operations, and aerial work automation. The company targets aviation professionals, UAS operators, regulators, and defense sectors, positioning itself as a niche B2B provider with notable partnerships including AFRL, FAA, NATO, ONR, CERDEC, and NASA. The website presents a professional image with clear service descriptions and a modern design. Technically, the website employs modern web technologies including Google Analytics with IP anonymization and Cookiebot for cookie consent management, ensuring a moderate level of digital maturity. The site is mobile optimized and provides a good user experience, though some accessibility and SEO enhancements could be made. The absence of a CMS or hosting provider details limits deeper infrastructure insights. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and published security policies or incident response contacts. The missing WHOIS data for the domain raises concerns about domain registration legitimacy, though the professional web presence and contact information mitigate some risk. Overall, the website is functional, professional, and compliant with basic privacy requirements, but improvements in transparency, security headers, and domain registration verification are recommended to enhance trust and security posture.

A

AERO Vodochody AEROSPACE a.s.

aero.cz

53

AERO Vodochody AEROSPACE a.s. is a well-established aerospace manufacturer specializing in the development and production of military jet aircraft, with a history spanning over 100 years. The company supports pilot training globally and offers customer services including maintenance and industrial cooperation. Their market position is strong in the subsonic jet trainer segment, with a large installed base and ongoing production of advanced aircraft such as the L-39 Skyfox. The website reflects a mature digital presence with professional design, SEO optimization, and compliance with cookie consent regulations. Technically, the site uses WordPress CMS with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and reCAPTCHA protections, though additional security headers and explicit security policies could enhance trust. The absence of WHOIS data is a concern for domain registration transparency but does not detract from the professional business presentation. Overall, the site is accessible, content-rich, and trustworthy for its target audience in aerospace and defense sectors.

Z

Zaslat s.r.o.

zaslat.sk

63

Zaslat s.r.o. operates an online parcel shipping platform primarily serving Slovakia and international markets. The company offers a convenient service allowing customers to compare prices and book courier shipments from home, partnering with multiple carriers such as FedEx, GLS, and others. The platform is well-established with over 26,800 customers and nearly 98,000 reviews, indicating strong market presence and customer trust. Technically, the website leverages modern frameworks like Nuxt.js and Vue.js, integrates Google and Facebook APIs for authentication and analytics, and employs security measures such as HTTPS and reCAPTCHA. However, the absence of explicit privacy and terms of service policies suggests room for improvement in compliance documentation. Overall, the site is professional, user-friendly, and secure, but could enhance transparency and security posture by publishing dedicated policies and incident response information.

Z

Zaslat s.r.o.

zaslat.cz

64

Zaslat s.r.o. operates an online platform that enables customers to compare parcel shipping prices and arrange courier pickups for domestic and international deliveries. The company targets both individual consumers and businesses, offering a convenient alternative to traditional postal services with significant cost savings. With a strong market presence in the Czech Republic and partnerships extending internationally, Zaslat has established itself as a trusted logistics intermediary since its founding in 2014. The website demonstrates a mature digital infrastructure leveraging modern web frameworks and third-party integrations to provide a seamless user experience. Security measures such as HTTPS and Google reCAPTCHA are implemented, though explicit privacy and security policies are not clearly presented. Overall, the business exhibits a solid reputation supported by extensive customer reviews and active social media engagement.

A

Asociace leteckého a kosmického průmyslu

czaerospace.org

51

The website www.czaerospace.org represents the Asociace leteckého a kosmického průmyslu, a Czech aerospace and space industry association. It serves as a professional platform for industry leaders, innovative companies, and research and development capacities within the Czech aerospace sector. The site highlights its role as the largest sector association in the country, providing representation, networking, and information dissemination services to its members. The content is primarily in Czech with an English alternate version, targeting aerospace industry professionals and stakeholders in the Czech Republic. Technically, the website is built on WordPress CMS using Elementor page builder and Yoast SEO plugin, indicating a modern and maintainable infrastructure. It employs common web technologies such as jQuery and Swiper.js for interactive elements. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured data. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and implements a cookie consent banner, reflecting basic compliance with privacy regulations. However, no advanced security headers were detected, and no explicit privacy policy or terms of service pages were found, which could be improved to enhance trust and compliance. No vulnerabilities or exposed sensitive data were identified in the content. WHOIS data is unavailable or malformed, which slightly reduces trustworthiness but does not negate the professional appearance and industry presence of the site. Overall, the website presents a credible and professional front for the Czech aerospace industry association, with solid technical foundations and moderate security posture. Strategic recommendations include improving transparency with clear privacy and security policies, enhancing security headers, and providing direct contact information for incident response and data protection inquiries.

M

myapps.hu

myapps.hu

61

myApps.hu is a specialized company focused on developing Android and iOS mobile applications tailored for the tourism sector. Their offerings include digital tour guides, audio guides, map-based navigation, and personalized tour guiding solutions. The company targets museums, exhibitions, and tourist destinations, providing interactive and engaging experiences for visitors. The website is professionally designed with multilingual support and integrates modern technologies such as WordPress CMS, Google Analytics, and reCAPTCHA for security and analytics purposes. However, the site lacks visible privacy policies, terms of service, and direct contact information, which are important for trust and compliance. The security posture is generally good with HTTPS enforced and no exposed sensitive data, but could be improved by adding explicit security headers and publishing security policies. Overall, the website presents a credible and professional business with room for improvement in privacy and security transparency.

Z

Zaslat s.r.o.

chytrybalik.cz

59

ChytrýBalík, operated by Zaslat s.r.o., is an established parcel shipping service focused on providing fast and reliable parcel delivery across the Czech Republic and Europe. The platform enables users to order parcel shipments online, arrange home pick-up, and track deliveries, targeting both individual and business customers. The website is professionally designed with clear navigation and relevant content, supporting a positive user experience and trustworthiness. Technically, the site leverages modern web technologies including Vue.js, Google reCAPTCHA v3 for bot protection, and Google Tag Manager for analytics. Hosting is via a CDN provider ensuring moderate performance and good mobile optimization. However, some technical improvements are recommended such as adding security headers and cookie consent mechanisms to enhance compliance and security posture. Security-wise, the site enforces HTTPS and uses anti-bot measures, but lacks visible security headers and explicit incident response or vulnerability disclosure information. The absence of WHOIS data reduces domain trust, though the presence of clear company contact details and policies mitigates some concerns. Overall, the security posture is moderate with room for improvement. The overall risk is moderate; the business appears legitimate and professional but should address WHOIS transparency, privacy compliance, and security best practices to strengthen trust and reduce potential vulnerabilities.

FleetPartner is a Czech Republic-based fleet management service provider operating under the Continental AG BestDrive brand umbrella. The website serves primarily as a login portal for users, with basic contact information and corporate branding. The business targets fleet operators and automotive service customers, positioning itself as a regional player in transportation services. The site content is minimal but professional, focusing on user access and contact facilitation. Technically, the website employs a modern JavaScript stack including jQuery, FontAwesome, and Chart.js, hosted on CSC DNS infrastructure. While the site is functional and moderately optimized for performance, it lacks advanced SEO, accessibility, and mobile optimization features. No CMS or complex frameworks are detected, indicating a custom-built solution. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks visible security headers such as CSP or HSTS. There is no explicit privacy or cookie consent mechanism, and no public security or incident response policies are found. The login form is basic but uses standard password input types. Overall, the security posture is moderate but could be improved with standard best practices. The domain registration is consistent with the business profile, created in 2015 and registered through a reputable registrar. No suspicious patterns or privacy protections are used, supporting legitimacy. Contact details are clearly provided, but the absence of detailed privacy and cookie policies reduces compliance confidence. Strategic improvements in security headers, privacy compliance, and user experience would enhance trust and operational security.

BestDrive.cz is a professional automotive service and tire sales network operating extensively across the Czech Republic with over 140 locations. The company offers a wide range of services including tire sales, professional autoservice, seasonal tire storage, and vehicle maintenance. The website reflects a mature digital presence with strong branding linked to Continental AG, indicating a reputable market position. Technically, the site is built on Adobe Experience Manager, leveraging modern web technologies and optimized for performance and mobile use. Security practices are robust with HTTPS, security headers, and CAPTCHA protections, though public security policies and incident response contacts are not published. Overall, the site is trustworthy, professional, and compliant with GDPR, serving both private customers and fleet operators effectively.

G

GE Aviation Czech s.r.o.

geturboprops.com

66

GE Aviation Czech s.r.o. operates as the turboprop division of GE Aviation, specializing in the design, development, manufacturing, and servicing of GE H-Series and Catalyst™ turboprop engines. The website targets aerospace industry professionals, customers, and potential employees, providing detailed product information, customer support options, and career opportunities. The company is positioned as a medium-sized entity within the transportation and technology sectors, backed by the global GE Aviation brand. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Google Analytics, and reCAPTCHA for bot protection. It features a responsive design optimized for mobile devices and includes a comprehensive cookie consent mechanism aligned with GDPR requirements. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks visible security headers and does not publish a dedicated security policy or incident response contacts. The absence of WHOIS registration data is a notable transparency gap, though the website's professional branding and external links to official GE resources support its legitimacy. Overall, the website presents a professional and trustworthy front for GE Aviation Czech's turboprop business, with room for improvement in security transparency and domain registration clarity. Strategic recommendations include enhancing security headers, publishing security policies, and improving WHOIS data visibility to strengthen trust and compliance.

Automodul.cz is an established Czech online platform specializing in automotive classifieds, offering a wide range of personal and commercial vehicles for sale sourced from major Czech car bazaars, dealerships, and private sellers. The site targets general consumers interested in purchasing vehicles, providing extensive search and comparison tools to facilitate informed buying decisions. The platform is owned by VLTAVA LABE MEDIA a.s., a recognized media company in the Czech Republic, which supports its credibility and market presence. Technically, the website employs a modern technology stack including Bootstrap for responsive design, Select2 for enhanced form controls, and integrates multiple analytics and advertising services such as Google Analytics, Facebook Pixel, Gemius Audience, and Cxense. The site is mobile optimized and demonstrates good SEO practices, although accessibility features are basic. Performance is moderate, with preconnect and preload hints used to optimize resource loading. From a security perspective, the site uses HTTPS as indicated by external script URLs, but lacks visible security headers in the provided data, which could be improved to enhance protection against common web vulnerabilities. The absence of a visible privacy policy and cookie policy pages in the analyzed content suggests gaps in privacy compliance, although a cookie consent mechanism appears to be implemented. No WHOIS data was retrievable, likely due to privacy protection, which slightly reduces trust but is not uncommon for commercial websites. Overall, Automodul.cz presents a professional and functional online marketplace for vehicle sales in the Czech Republic with a moderate security posture and some compliance gaps. Strategic improvements in privacy disclosures, security headers, and contact transparency would strengthen its trustworthiness and regulatory adherence.