Transportation security reports

The website 'Učme se přežít' is an educational platform focused on motorcycle safety and road safety awareness primarily in the Czech Republic. It offers various training courses, publications, and organizes events aimed at improving motorcycle handling skills and safety knowledge. The site is supported by partnerships with government agencies and safety organizations, enhancing its credibility within its niche market. Technically, the website employs modern web technologies such as the Svelte framework and ES modules, providing a responsive and user-friendly experience. However, the absence of privacy and cookie policies indicates a gap in compliance with data protection regulations. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks visible security headers and formal incident response contacts. The missing WHOIS data reduces domain trustworthiness, though the content and partnerships suggest legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security practices.

The website 'Člověk VS silnice' operated by Tým silniční bezpečnosti is a Czech Republic based non-profit platform focused on road safety education and awareness. It targets general road users, motorcyclists, and safety advocates by providing educational content on topics such as first aid, seatbelt usage, and reaction times. The site maintains partnerships with various organizations to support its mission. Technically, the website uses modern JavaScript libraries including jQuery, Foundation Sites framework, and integrates Google Analytics and Facebook Pixel for analytics and marketing. The site is mobile optimized and provides a cookie consent mechanism compliant with GDPR principles, although it lacks explicit privacy policy and terms of service pages. Security posture is moderate with HTTPS enabled but missing security headers and explicit incident response contacts. Overall, the domain registration data supports legitimacy with consistent WHOIS information and an appropriate domain age. The website is safe for general audiences with no adult or questionable content detected.

Tým silniční bezpečnosti (TSB) is a Czech non-profit organization operating under Bezpečně na silnicích o.p.s. since 2010, focused on reducing serious traffic accidents through preventive programs and educational activities. The organization targets a broad audience including children, seniors, and cyclists, delivering road safety education and awareness campaigns. The website reflects a well-established brand with multiple projects and partnerships with reputable entities such as Škoda Auto and the Czech Police. Technically, the site uses modern web technologies including jQuery, Foundation framework, and integrates Google Analytics and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR principles, although explicit privacy and terms of service documents are not found. Security posture is good with HTTPS enforced and consent revocation scripts, but lacks visible security headers and formal incident response information. Overall, the domain registration aligns with the organization's profile, supporting legitimacy and trustworthiness.

M

METRANS a.s.

metrans.eu

60

METRANS a.s. is a leading European logistics company specializing in intermodal transport solutions, terminal and depot services, rail logistics, and container handling. As a member of the HHLA Group, METRANS leverages a powerful intermodal network to serve business customers across Europe. The website reflects a mature digital presence with a professional design, comprehensive service offerings, and multiple customer engagement portals. Technically, the site is built on WordPress with Elementor, uses modern JavaScript libraries, and integrates Google Analytics for performance and user insights. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a large enterprise in the transportation sector.

D

Drivecool

drivecool.cz

54

Drivecool is a Czech-based transportation company specializing in domestic and international automotive transport services across more than 20 European countries. The company operates a fleet of over 55 vehicles and has completed over 5000 shipments, positioning itself as a reliable logistics partner in the region. Their website presents a professional image with clear service offerings and client logos, targeting businesses and individuals needing transport solutions. Technically, the website is built on WordPress with Elementor, incorporating modern web technologies and Google services for translation and analytics. Security posture is solid with HTTPS and reCAPTCHA implemented, though lacking advanced security headers and explicit security policies. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and contact transparency. Overall, the site is functional, secure, and business-focused, though improvements in privacy compliance and domain registration transparency are recommended.

M

MTM Transport a.s.

mtmtransport.cz

44

MTM Transport a.s. is a medium-sized Czech freight forwarding and logistics company specializing in international and domestic transport services, with a strong focus on Northern and Eastern Europe, particularly Scandinavia and the Baltic states. The company offers comprehensive logistics solutions including full truck loads, consolidated shipments, warehousing, customs clearance, and real-time GPS tracking. Established since 2004, MTM Transport has built a reputation for professionalism and reliability, supported by experienced staff and a modern fleet. The website infrastructure is built on the Webflow platform, leveraging modern web technologies such as Google Tag Manager, reCAPTCHA, and Cookiebot for consent management. The site is well-optimized for performance and mobile responsiveness, with clear navigation and professional design. Security measures include HTTPS enforcement and form protection via reCAPTCHA, although additional security headers could enhance the security posture. While the WHOIS data for the domain is unavailable, which slightly reduces trustworthiness, the website content, contact information, and GDPR compliance statements indicate a legitimate and professional business. No critical security vulnerabilities or suspicious content were detected. Overall, the site demonstrates a solid digital presence aligned with the company's business operations. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining regular audits of third-party scripts to further strengthen security and compliance.

S

SEDOS transport s.r.o.

sedostransport.cz

50

SEDOS transport s.r.o. is a Czech Republic based company specializing in domestic and international transportation of heavy and oversized cargo, including machinery and specialized freight. The company emphasizes professional service with over 20 years of experience, a modern fleet, and comprehensive logistics solutions. Their website presents detailed service offerings and contact information, targeting businesses requiring specialized transport solutions. Technically, the website uses modern JavaScript libraries, Google Analytics, and a cookie consent mechanism, indicating moderate digital maturity. Security posture is good with HTTPS and reCAPTCHA implemented, but lacks explicit security policies and incident response contacts. The absence of WHOIS data reduces domain trustworthiness, though the website content and business information appear legitimate. Overall, the site is professional and functional with room for improvement in transparency and security disclosures.

The website www.topctyrkolky.cz operates as a specialized e-commerce platform focused on the sale of four-wheelers (ATVs), scooters, motorcycles, and related accessories primarily targeting customers in the Czech Republic. The business claims a long-standing presence since 2005 and offers additional services such as warranty and post-warranty repairs, as well as spare parts sales. The site features product listings, promotional offers, and a contact form, supporting a retail and service business model. Technically, the website employs legacy JavaScript libraries such as jQuery 1.10.2 and jQuery UI 1.10.2, with basic mobile optimization and SEO practices. The cookie consent mechanism is implemented, indicating some level of privacy compliance, though no explicit privacy policy page was found. Security posture is moderate but impacted by outdated libraries and lack of visible security headers or HTTPS status information. WHOIS data is missing or unavailable, which reduces domain trustworthiness despite the legitimate business content. Overall, the site is functional but would benefit from technical modernization and enhanced security and privacy compliance.

A

Auto Yetti s.r.o.

autoyetti.eu

49

Auto Yetti s.r.o. operates as a Czech-based used car dealership offering a broad selection of pre-owned vehicles, car purchase services, and financing options. The company targets consumers in the Czech Republic seeking reliable and affordable used cars, positioning itself as a trusted local player with a professional online presence. The website is built on WordPress with common plugins and includes a modern design, clear navigation, and mobile optimization. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Security posture is adequate with HTTPS and cookie consent, though additional security headers and incident response information could enhance trust. WHOIS data is privacy protected, which is typical for small businesses but reduces transparency. Overall, the site is professional, trustworthy, and serves its business purpose effectively.

I

Train Line – Mezinárodní a vnitrostátní kamionová přeprava

itrain.cz

59

The website itrain.cz represents a newly established Czech transportation service specializing in international and domestic truck freight. The domain was registered in early 2024, consistent with a startup or new business venture. The site is built on WordPress using the Bold Page Builder plugin, indicating a modern but basic technical infrastructure. The website design is professional and mobile-optimized, providing a good user experience with clear navigation. However, the content is relatively basic and lacks comprehensive business and compliance information such as privacy policies or terms of service. Security posture is moderate with HTTPS enabled but missing important security headers and explicit security policies. Contact information is limited to a contact form without direct emails or phone numbers, which may impact user trust and business credibility. Overall, the site is functional and safe but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

N

NEVECOM

nevecom.cz

52

NEVECOM is a Czech automotive dealership and service provider specializing in authorized sales and servicing of Renault and Dacia vehicles, along with offering used and certified pre-owned cars including Škoda and other brands. With over 27 years of experience, the company positions itself as an independent mobility provider offering comprehensive vehicle sales, maintenance, accident repairs, and rental services. The website reflects a professional and consistent brand image targeting vehicle buyers and owners in the Czech Republic. Technically, the site is built on Omnio CMS, uses modern JavaScript libraries like jQuery, and integrates Google Analytics and advertising retargeting services. It is mobile-optimized and provides clear navigation and relevant content. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit policies could be improved. WHOIS data is unavailable, which limits domain trust assessment, but the website content and business information appear legitimate and professional.

A

Autosklo Hleďa

autosklo-hleda.cz

42

Autosklo Hleďa is a regional automotive service provider based in the Czech Republic, specializing in automotive glass repair and replacement, air conditioning servicing, tire services, general vehicle repairs, and vehicle rental. The company operates multiple branches across the Střední Morava region, including Vyškov, Kroměříž, Prostějov, and Šumperk, and maintains partnerships with numerous insurance companies, enhancing its market credibility. The website presents a professional and user-friendly interface with clear navigation and comprehensive contact information, targeting vehicle owners in the region. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Owl Carousel, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and includes GDPR-compliant forms and cookie consent mechanisms, reflecting awareness of privacy regulations. However, the absence of explicit security headers and lack of published security policies suggest room for improvement in security posture. Security-wise, the site uses HTTPS and secure forms with GDPR consent notices, but no advanced security policies or incident response contacts are evident. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and business information appear legitimate and consistent with a small regional service provider. Overall, the website is functional, professional, and compliant with basic privacy requirements, but it would benefit from enhanced security measures and transparency regarding domain registration details to improve trust and resilience against potential threats.

A

Autolaros Speed Ostrava s.r.o.

autolaros.cz

60

Autolaros Speed Ostrava s.r.o. is a well-established authorized automotive dealership and service center specializing in Hyundai and Mazda vehicles in the Ostrava region of the Czech Republic. With over 30 years of market presence and a team of 40 specialists, the company offers comprehensive services including new and used car sales, leasing, financing, insurance, trade-in, and vehicle registration. The website reflects a professional and consistent brand image targeting local car buyers and owners. Technically, the site is built on WordPress with Elementor and integrates modern tools such as Google Analytics, Facebook Pixel, and reCAPTCHA for security and marketing. Security posture is good with HTTPS and form protections, though explicit security policies and vulnerability disclosure mechanisms are absent. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms of service pages. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

Cykloserver.cz

cykloserver.cz

39

Cykloserver.cz is a well-established Czech cycling news and community platform founded in 2000, serving hobby cyclists and enthusiasts primarily in the Czech Republic and Slovakia. The site offers a variety of content including cycling news, event calendars, trip tips, and an online cycling atlas, supported by partnerships with relevant cycling organizations. The business model appears to be content-driven with advertising and partner promotions. Technically, the website uses standard web technologies with HTTPS and Google Analytics integration, hosted by a Czech hosting provider. While the site is functional and content-rich, it lacks formal privacy and cookie policies and does not implement advanced security headers, which are areas for improvement. The security posture is moderate with secure forms and HTTPS but missing some best practices. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

Partnerství, o.p.s. is a Czech non-profit organization specializing in sustainable tourism, cycling infrastructure, and community development. With over 20 years of experience, it coordinates national certification programs such as 'Cyklisté vítáni' and provides monitoring services for cyclists and pedestrians. The organization also promotes wine tourism and cultural heritage in the South Moravian region. Technically, the website is built on ASP.NET WebForms with modern front-end libraries like Bootstrap and FontAwesome, and it integrates Google Tag Manager for analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit policies could be improved. The absence of WHOIS data reduces domain trust but the website content and business information appear professional and legitimate.

L

Louda Holding a. s.

louda.cz

10

Louda Holding a. s. is a well-established Czech family-owned holding group founded in 1992, operating across six diverse sectors including automotive sales and service, mobility and financing, real estate development, manufacturing, glass production, and education. The company employs over 1,500 people and holds a strong market position as the largest ŠKODA and Hyundai car dealer in the Czech Republic and the largest carsharing provider. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting a general Czech audience. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Tag Manager, and Cookiebot, hosted via REG-ZONER, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA integration, and cookie consent management, though it lacks some advanced security headers and explicit security policies. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious content or blocking mechanisms.

V

Volkswagen Užitkové vozy

vw-uzitkove.cz

59

Volkswagen Užitkové vozy is the official Czech Republic website for Volkswagen commercial vehicles, offering a comprehensive portfolio of new vehicle models, configurators, financing options, and after-sales services including servicing and accessories. The site targets both business customers and individual buyers interested in commercial vehicles, positioning itself as a key player in the Czech automotive transportation sector. The website demonstrates strong brand consistency with official Volkswagen branding and links to related Volkswagen services and partners. Technically, the site is built on modern frameworks such as Next.js and React, providing a responsive and accessible user experience with good SEO practices. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though some security headers are not detected and no explicit security or incident response policies are published. Privacy compliance is well addressed with visible cookie consent and privacy policy pages. The absence of WHOIS data reduces domain trustworthiness, but the overall professional presentation and official branding mitigate concerns. Strategic recommendations include improving security header implementation, publishing a security policy, and enhancing transparency around incident response.

S

Ski Classics

skiclassics.com

53

Ski Classics is an established international series of long-distance cross-country ski races in classic style, operating since 2011 with a domain registered since 2003. The website serves as an information hub for the events, targeting skiing enthusiasts and athletes. The business is positioned as a niche sports event organizer with a medium-sized operational scale, primarily focused on transportation and sports sectors. Technically, the website is built on WordPress with WooCommerce, leveraging modern web technologies including Google Analytics, Tag Manager, and reCAPTCHA for bot protection. The site demonstrates good SEO and mobile optimization, though accessibility is basic. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and DNSSEC. No incident response or security policy is published, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, with room to enhance security and transparency.

J

Jihočeská plavební společnost s.r.o.

jihoceskaplavebni.cz

46

Jihočeská plavební společnost s.r.o. is a small regional transportation company specializing in passenger boat services and sightseeing cruises on the Vltava and Lužnice rivers in South Bohemia, Czech Republic. The company offers scheduled boat rides, group bookings, and online ticket sales, targeting tourists and local residents. Their website is built on WordPress with WooCommerce and Tickera plugins, indicating a moderate level of digital maturity with e-commerce capabilities. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is generally good with HTTPS and bot protection via Google reCAPTCHA, but lacks some security headers and explicit security policies. The absence of WHOIS data reduces domain transparency and trust slightly, but the presence of clear contact information, social media links, and partner logos supports legitimacy. Overall, the website is professional and trustworthy with room for security and compliance improvements.

Správa a údržba silnic Jihomoravského kraje is a regional government organization responsible for the maintenance and management of roads in the Jihomoravský region of the Czech Republic. The website provides comprehensive information about their services including summer and winter road maintenance, public tenders, and contact details. The organization is well-established with a domain registered since 2001, reflecting a stable presence in the transportation sector. The site targets local residents, businesses, and public institutions requiring road maintenance services or information. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap 5 and jQuery. It integrates Google services including Fonts, Analytics, and reCAPTCHA for security and user experience enhancements. The site is mobile optimized and includes accessibility features, although some improvements could be made. Performance is moderate with good SEO practices in place. From a security perspective, the site uses HTTPS with a valid SSL configuration and employs Google reCAPTCHA v2 Invisible on its contact form to prevent spam. However, no explicit security headers were detected, and there is no visible security or incident response policy published on the site. The cookie consent mechanism complies with GDPR requirements, providing an opt-out approach. Overall, the website is professional, trustworthy, and serves its public service function effectively. Recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen the security posture and user trust.

A

AirWork & Heliseilerei GmbH

air-work.com

43

AirWork & Heliseilerei GmbH is a Swiss-based company specializing in engineering, equipment, and services for the helicopter industry. Established in 1999, the company offers a range of solutions including load lifting devices, maintenance, expert training, and documentation tailored to helicopter operations. Their market position is that of a specialized niche provider with recognized certifications such as EASA Part 21 G and ISO 9001:2015, supporting their credibility in the aerospace sector. Technically, the website employs modern frontend technologies like Swiper.js for interactive sliders and Google Fonts for typography, likely running on a CMS such as OctoberCMS or a custom PHP framework. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Hosting and domain registration are consistent with the business profile, with DNS hosted on webland.ch and domain registered through COREhub, S.R.L. From a security perspective, the site uses HTTPS but lacks important security headers and does not implement DNSSEC, which are areas for improvement. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be a risk factor. The absence of tracking and analytics scripts suggests minimal user tracking, which is positive for privacy. Overall, the website is professional and trustworthy with strong business credibility but requires enhancements in privacy compliance and security best practices to reduce risk and improve user trust. Strategic recommendations include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and publishing incident response contacts.

B

Bell Textron Inc.

bellflight.com

67

Bell Textron Inc. is a leading manufacturer of vertical lift aircraft, including commercial and military rotorcraft. The company has a rich history spanning approximately 90 years and operates as a subsidiary of Textron Inc. Their website showcases a comprehensive portfolio of products and services, including innovative rotorcraft technologies, training, maintenance, and support. The site targets aviation professionals, military clients, and commercial customers globally. Technically, the website employs modern JavaScript frameworks, multimedia content, and integrates with marketing and analytics platforms such as Google Tag Manager and HubSpot. The hosting infrastructure leverages Akamai CDN and service workers for performance optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and corporate affiliations. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing incident response contacts to further strengthen security transparency.

B

Breeze-Eastern, LLC

breeze-eastern.com

49

Breeze-Eastern, LLC is a specialized aerospace manufacturing company focused on designing and producing helicopter rescue hoists, winches, cargo hooks, and weapons handling systems for both military and civilian operators. The company holds a unique market position as the world's only dedicated helicopter hoist and winch provider and is recognized as the largest cargo hook OEM globally. Their offerings include comprehensive OEM training and customer support, emphasizing operational safety and efficiency. The website reflects a medium-sized enterprise with a professional and consistent brand presence, targeting aerospace operators worldwide. Technically, the website is built on a modern WordPress CMS platform with popular plugins such as WPBakery Page Builder and Popup Maker. It uses HTTPS with good SSL configuration and integrates multimedia content including YouTube videos. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS and uses AJAX with nonce tokens for form validation, indicating attention to secure data handling. However, it lacks explicit security headers and does not publish incident response or vulnerability disclosure policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and business information appear legitimate and professional. Overall, Breeze-Eastern's website presents a credible and professional digital presence aligned with its aerospace manufacturing business. Strategic improvements in security policy transparency, WHOIS data availability, and enhanced accessibility would further strengthen its security posture and trustworthiness.

I

Immoos GmbH | Bergungs- und Sicherheitssysteme

immoos.ch

52

Immoos GmbH is a Swiss-based company specializing in evacuation and safety solutions, particularly in rescue technology for cable cars and industrial installations. Established in 1997, the company has a strong international presence, serving customers in around 60 countries. Their product portfolio includes personal protective equipment, fall protection systems, and specialized rescue devices. The website reflects a professional and well-structured digital presence, supporting multiple languages and e-commerce capabilities. Technically, the site is built on WordPress with modern libraries like Bootstrap and jQuery, and it employs SEO best practices through Rank Math. Security posture is solid with HTTPS and some security best practices, though there is room for improvement in headers and incident response transparency. Overall, the site is trustworthy and aligns well with the company's business claims.

O

Onboard Systems International

onboardsystems.com

50

Onboard Systems International is a specialized manufacturer and supplier of aerospace cargo handling equipment, including cargo hooks and hoist and winch systems. The company targets businesses in the aerospace and transportation sectors, providing niche products for cargo operations. The website presents a basic but consistent brand image aligned with related sister companies in the aerospace industry. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and FontAwesome, and integrates common analytics tools like Google Analytics and Quantcast. However, the site lacks advanced SEO, accessibility features, and visible privacy or security policies. Security posture is moderate with HTTPS implied but no explicit security headers detected. The absence of WHOIS data raises concerns about domain legitimacy and trustworthiness, although the site content is professional and safe. Overall, the digital maturity is basic with room for improvement in privacy compliance, security best practices, and business transparency.

The website www.parkovanivbrne.cz serves as the official information portal for the new parking system in Brno, Czech Republic. It provides comprehensive details about parking zones, regulations, payment options, and mobility funds targeted at residents, subscribers, and visitors. The site is positioned as a municipal service platform, aiming to simplify parking management and user experience in the city. Technically, the site employs modern web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, Smartlook, and Cookiebot for analytics and marketing purposes. The site is mobile optimized and features a cookie consent mechanism compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data reduces trust slightly but does not negate the official nature of the site. Overall, the website presents a professional, trustworthy, and user-friendly platform for parking information in Brno. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and providing clearer contact information to improve business credibility and user trust.

B

Bílé Stopy, s.r.o.

bilestopy.cz

53

Bílé Stopy, s.r.o. operates a specialized online platform providing up-to-date information on Nordic skiing trails, including grooming status and trail conditions primarily targeting Nordic skiing enthusiasts in the Czech Republic. The website leverages modern web technologies such as React and Next.js, along with Mapbox GL JS for interactive mapping features, indicating a moderate level of digital maturity. However, the platform lacks explicit privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. Security posture is moderate with no detected security headers and limited visible security best practices. The absence of contact information and incident response channels further limits the security and compliance maturity of the site. Overall, the website is functional and professionally designed but requires improvements in privacy compliance and security hardening to enhance trust and regulatory adherence.

I

International Commission for Alpine Rescue

alpine-rescue.org

66

The International Commission for Alpine Rescue (ICAR) is a globally recognized non-profit organization dedicated to alpine rescue and mountain safety. The website serves as a comprehensive platform for disseminating recommendations, event information, organizational details, and collaboration tools for mountain rescue professionals worldwide. The presence of numerous reputable partners and sponsors underscores its authoritative position in the alpine rescue community. Technically, the website employs modern web technologies including the Unpoly.js framework and Matomo analytics, ensuring a responsive and user-friendly experience across devices. The site is well-structured with clear navigation and professional design, supporting excellent content quality and user engagement. From a security perspective, the site enforces HTTPS and implements CSRF protections in forms, with privacy-conscious analytics settings. However, the absence of explicit security headers and vulnerability disclosure mechanisms suggests room for improvement in security posture. The lack of WHOIS data limits domain trust verification, though the website's professional presentation and partner ecosystem mitigate some concerns. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic enhancements in security headers, vulnerability disclosure, and WHOIS transparency would further strengthen trust and compliance.

T

Tým silniční bezpečnosti

nakolejensprilbou.cz

45

The website 'Na kole jen s přilbou' is a Czech Republic-based cycling safety awareness project managed by the Tým silniční bezpečnosti (Road Safety Team). It focuses on educating cyclists about the importance of helmet use and safe cycling practices through articles, news, downloadable materials, videos, and events. The project is supported by multiple government and safety organizations, indicating a strong partnership ecosystem and a credible market position within the transportation safety sector. The domain has been active since 2012, consistent with the project's maturity and content depth. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Slick Carousel, and Google Fonts, with Google Analytics and Facebook Pixel for tracking. The site is mobile optimized and uses HTTPS with Google reCAPTCHA for form security. However, it lacks explicit privacy and terms of service pages and does not display advanced security headers, which are areas for improvement. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent with granular categories. No critical vulnerabilities or WAF blocking were detected. The absence of a published privacy policy and terms of service, as well as missing explicit contact information, slightly reduce privacy compliance and business credibility scores. Overall, the website is a trustworthy, well-branded educational platform with good technical implementation and moderate security posture. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact channels for incident response to improve compliance and trust further.

T

Travelport CZ

travelport-partner.cz

64

Travelport Česká republika operates as a platform provider in the travel industry, focusing on connecting entities within the travel sector through a unified and independent platform for buying and selling travel services. The website is hosted on the Wix platform and demonstrates a moderate level of digital maturity with good design and mobile optimization. Security posture is adequate with HTTPS enforced and some security best practices observed, though the absence of explicit security headers and privacy policies indicates room for improvement. The lack of WHOIS data and contact information reduces overall trustworthiness and business credibility. Strategic recommendations include enhancing transparency with privacy and cookie policies, improving security headers, and providing clear contact and incident response information.

M

Městská Policie Brno

dopravnihristebrno.cz

42

Dopravní hřiště Riviéra Brno is a municipal traffic education facility operated by the Municipal Police of Brno, Czech Republic. It provides traffic safety education primarily targeting children, schools, and the general public through interactive projects, tests, and bicycle registration services. The website reflects a well-established public service with a clear focus on traffic education and safety, supported by EU funding and local government partnerships. The content is professionally presented in Czech and targets local audiences including schools and families. Technically, the website is built on TYPO3 CMS with modern web technologies including responsive design, external fonts, and icon libraries. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. SEO practices are adequate with proper meta tags and structured navigation. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit security policies or incident response information. Cookie consent mechanisms are absent despite GDPR relevance, which is a compliance gap. The WHOIS data aligns well with the municipal police entity, confirming legitimacy and trustworthiness. Overall, the website is a credible, well-maintained public service platform with good content quality and business credibility. Security and privacy compliance can be improved by adding cookie consent, security headers, and publishing security policies. These enhancements would strengthen user trust and regulatory compliance.

T

Technická správa komunikací hl. m. Prahy, a.s.

libenak.eu

59

The website libenak.eu serves as the official information portal for the extensive reconstruction project of the Libeňský most in Prague, managed by Technická správa komunikací hl. m. Prahy, a.s. It provides detailed updates, project descriptions, and visualizations targeting residents, professionals, and stakeholders interested in the infrastructure development. The site is well-structured, professionally designed, and optimized for SEO and mobile devices, leveraging WordPress with Elementor and Yoast SEO plugins. Technically, it employs modern web technologies and integrates Google Tag Manager for analytics and marketing purposes. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear cookie consent mechanisms and a comprehensive privacy policy. Business credibility is supported by consistent branding, official partner links, and transparent project information. Overall, the site presents a trustworthy and authoritative source for the Libeňský most reconstruction project.

T

Technická správa komunikací hl. m. Prahy, a.s.

cdsw.cz

56

Technická správa komunikací hl. m. Prahy, a.s., through its CDSw department, provides specialized geographic information system (GIS) solutions focused on municipal infrastructure management in Prague. The company develops proprietary GIS applications, maintains geographic data, and offers related services such as hosting, training, and consulting. Their market position is that of a trusted municipal technology provider with a medium-sized operation and a history dating back to 1998. The website reflects a professional and consistent brand image with clear focus on their core services and target audience. Technically, the website is built on WordPress with Elementor and several plugins supporting SEO, cookie compliance, and UI components. Hosting assets are served via Azure Blob Storage, indicating a modern infrastructure. Performance and mobile optimization are good, though accessibility could be improved. The site uses Google Tag Manager and Google Analytics for tracking, with a cookie consent mechanism in place, supporting GDPR compliance. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business claims, showing a long-established presence and no suspicious patterns. Overall, the website is secure, professional, and compliant with privacy regulations, though it could benefit from enhanced security headers and clearer incident response information. The risk level is low, and the site effectively supports the business objectives of the municipal GIS service provider.

T

Technická správa komunikací hl. m. Prahy, a.s.

opravujeme.to

65

The website opravujeme.to is an official municipal platform operated by Technická správa komunikací hl. m. Prahy, a.s., providing centralized and up-to-date information on temporary traffic restrictions and roadworks in Prague. It serves residents and commuters by consolidating traffic disruption data in one accessible location, enhancing public awareness and planning. The site is well-branded with official logos and links to authoritative city and transportation websites, reinforcing its credibility. Technically, the website employs modern frontend technologies including Bootstrap, FontAwesome, Quill Editor, and Vue.js components for cookie consent management. Google Tag Manager is used for analytics, with a clear cookie consent mechanism in place, reflecting good privacy compliance. The site is mobile-optimized and presents a clean, navigable user interface with relevant content. From a security perspective, HTTPS is implied and cookie consent is implemented, but no explicit security headers or published security policies were detected. There is no visible incident response or vulnerability disclosure information, which could be improved. No vulnerabilities or sensitive data exposures were found in the content analyzed. Overall, the website demonstrates a solid business credibility and privacy compliance posture with room for enhancement in security policy transparency and technical security headers. The domain registration data aligns well with the business entity, supporting legitimacy and trustworthiness.

Ř

Ředitelství silnic a dálnic s. p.

rsd.cz

66

Ředitelství silnic a dálnic s. p. (ŘSD) is the Czech Republic's government agency responsible for the construction, modernization, maintenance, and management of highways and first-class roads. Established in 1997, it holds a critical national role in transportation infrastructure, serving the general public, contractors, and government stakeholders. The website reflects its authoritative position with comprehensive content, official contact information, and clear navigation tailored to its audience. The business model is that of a public sector entity focused on infrastructure development and maintenance.

P

POLAR televize Ostrava s.r.o.

dopravniinfo.tv

54

Dopravniinfo.TV is a Czech Republic based specialized media service providing video reports focused on traffic and road conditions. Operated by POLAR televize Ostrava s.r.o., the website offers free downloadable video content for public and media use, collaborating with the national Road and Motorway Directorate (ŘSD ČR). The platform targets regional audiences interested in transportation updates and road safety information. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Facebook Pixel, hosted on Websupport.cz infrastructure. The website is mobile-optimized with good navigation and content relevance. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is basic with no explicit privacy policy found, but cookie management is detailed and user-friendly. Overall, the site demonstrates a professional and trustworthy presence in its niche market.

The website dopravniinfo.gov.cz serves as the official traffic information portal for the Czech Republic, operated by the Ředitelství silnic a dálnic ČR (Road and Motorway Directorate). It provides real-time updates on traffic conditions, accidents, road closures, and other relevant transportation data, targeting the general public and road users within the country. The platform integrates advanced mapping technologies and fleet vehicle data to offer accurate and timely traffic insights. Technically, the site employs modern web technologies including React and Material-UI, ensuring a responsive and user-friendly experience across devices. Security-wise, the site uses HTTPS and has a cookie consent mechanism, but lacks visible security headers and explicit security policies, which are areas for improvement. The absence of WHOIS data is notable but likely due to registry policies for government domains. Overall, the site is trustworthy, professional, and serves a critical public function with moderate technical maturity and a good security posture.

D

Dopravní podnik hl. m. Prahy, akciová společnost

dpp.cz

62

Dopravní podnik hl. m. Prahy, akciová společnost (DPP) is the primary public transportation operator in Prague, Czech Republic, managing metro, tram, and bus services. The website serves as a comprehensive portal for passengers, providing schedules, ticketing information, service updates, and customer support. The company maintains a strong market position as the main public transit provider in the city, targeting daily commuters and visitors. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and analytics tools, with good mobile optimization and accessibility. The presence of structured data enhances SEO and content discoverability. Security measures include HTTPS enforcement and CSRF tokens on forms, though some security headers could be improved. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanisms, reflecting GDPR adherence. However, the absence of a security policy or incident response contact is noted. Overall, the website is professional, trustworthy, and user-friendly, though the lack of WHOIS data reduces domain trustworthiness. Strategic improvements in security headers and transparency around incident response would enhance the security and compliance profile.

T

Technická správa komunikací hlavního města Prahy, a.s.

tsk-praha.cz

56

Technická správa komunikací hlavního města Prahy, a.s. (TSK Praha) is a large public company responsible for managing and maintaining the transportation infrastructure of Prague, including roads, bridges, tunnels, greenery, cycling paths, and parking facilities. The company operates under the ownership of the City of Prague and aims to improve the quality of life in the city through efficient infrastructure management and development. Their website reflects a professional and comprehensive digital presence with detailed information about their activities, projects, and public services. The technical infrastructure of the website is built on WordPress with modern plugins such as Yoast SEO, WPForms, and Instagram Feed integration. The site is well-optimized for SEO, mobile-friendly, and includes accessibility features. Security measures include HTTPS enforcement, security headers, Google reCAPTCHA on forms, and a cookie consent mechanism compliant with GDPR. Security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the website lacks explicit incident response contact information and a vulnerability disclosure policy, which are recommended for enhanced security transparency. Privacy compliance is robust, with clear privacy and cookie policies and user consent mechanisms. Overall, TSK Praha presents a trustworthy and professional online presence consistent with its role as a public infrastructure manager. Strategic recommendations include publishing incident response contacts, establishing a vulnerability disclosure program, and enhancing security policy disclosures to further strengthen trust and security posture.

M

Metrák, s.r.o.

metrak.cz

55

Metrák, s.r.o. operates an online platform for ordering waste container rentals and construction material deliveries across the Czech Republic. The company leverages a large network of over 450 local suppliers and nearly 3,000 containers to provide fast and reliable service. Their website offers a user-friendly interface with online pricing, ordering, and payment capabilities, targeting both individual and business customers. The business is well-positioned in the transportation and logistics sector with strong customer trust signals including high ratings on Google and Firmy.cz. Technically, the website is built on modern web technologies including Next.js and React, with integration of multiple analytics and marketing tools such as Google Tag Manager, Facebook SDK, and Smartlook. The site is mobile-optimized, fast-loading, and SEO-friendly, reflecting a mature digital infrastructure. However, some improvements could be made in explicit security headers and cookie consent mechanisms to enhance compliance and security posture. From a security perspective, the site enforces HTTPS and does not expose sensitive data. While no critical vulnerabilities were detected, the absence of published security policies and incident response contacts suggests room for improvement in transparency and readiness. The lack of WHOIS data reduces domain registration trust but is mitigated by the professional presentation and external trust indicators. Overall, Metrák.cz presents a credible, professional, and functional online service with moderate risk. Strategic enhancements in privacy compliance and security transparency would further strengthen their position and customer confidence.

Assiste is a Brazilian company specializing in fleet maintenance systems and related technical advisory services. Their website presents a professional image with a clear focus on B2B clients needing fleet management and industrial maintenance solutions. The site offers multiple contact channels including a contact form protected by Google reCAPTCHA, email addresses, phone numbers, and a physical address in Piracicaba, Brazil. The company integrates Google Maps for location display and maintains a LinkedIn presence, indicating a moderate digital maturity. Technically, the site uses a mix of modern and legacy technologies including Bootstrap and an older jQuery version, with Google Analytics and Tag Manager for tracking. Security measures include HTTPS and reCAPTCHA, but lack explicit security headers and use of outdated libraries pose some risks. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and professional but could improve in security and privacy transparency.

W

WirtschaftsEntwicklungsGesellschaft Bochum mbH

parken-in-bochum.de

45

The website 'Parken in Bochum' is operated by the WirtschaftsEntwicklungsGesellschaft Bochum mbH and serves as an informational portal for parking facilities and services in the city of Bochum, Germany. It provides real-time parking availability, details on parking lots, parking ticket machines, and smart parking registration. The site targets residents and visitors seeking convenient parking solutions in Bochum. The business model is focused on public service and parking management, positioning itself as a key local resource for transportation-related information. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery, Swiper, Popper.js, and Tippy.js, along with Google Maps API integration for interactive maps. The site is mobile-optimized, accessible, and includes SEO best practices. It employs Matomo analytics with a cookie consent mechanism, reflecting a commitment to privacy compliance. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent. However, it lacks explicit security headers and does not publish a security policy or incident response contact details. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and legitimate, supporting trustworthiness. Overall, the website is professional, trustworthy, and provides valuable services to its audience. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen security posture and user trust.

O

Operátor ICT, a.s.

pidlitacka.cz

60

Operátor ICT, a.s. operates the Lítačka e-shop and smart card system for public transportation in Prague and the Central-Bohemian Region. The website serves as a comprehensive platform for purchasing tickets, ordering smart cards, and accessing travel information. It is well integrated with official city and regional transport authorities, reflecting a strong market position in the regional transportation sector. The target audience includes residents, students, seniors, and tourists who use public transport services. Technically, the website is built on modern frameworks such as Next.js and React, with a backend CMS powered by Strapi, and assets served via Azure CDN. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved and a public security policy is absent. Privacy compliance is generally good with a clear privacy policy and terms of service, but lacks an explicit cookie consent mechanism. Overall, the website is professional, trustworthy, and well-maintained, supporting the business's credibility and operational needs.

P

Pražská integrovaná doprava

pid.cz

59

Pražská integrovaná doprava (PID) operates as the integrated public transportation system for Prague and the Central Bohemia region, providing comprehensive transit information including schedules, fares, route maps, and real-time updates. The website serves as a critical information hub for commuters and travelers, offering tools such as connection search, ticketing information, and news about service changes. The organization maintains a strong market position as a key public transportation provider in the region, supported by a large and well-maintained digital presence. Technically, the website is built on WordPress with modern libraries like Leaflet for mapping and Google reCAPTCHA for security on user forms, reflecting a mature and well-maintained infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is robust, with clear GDPR and cookie policies. Overall, the site is professional, trustworthy, and well-optimized for user experience.

K

krajská správa a údržba silnic středočeského kraje

ksus.cz

45

The website ksus.cz represents the Krajská správa a údržba silnic Středočeského kraje, a governmental entity responsible for road safety and maintenance in the Central Bohemia region of the Czech Republic. Established in 2011, it manages over 8,600 kilometers of secondary and tertiary roads, serving as a critical infrastructure authority. The site targets local residents, road users, and stakeholders requiring information about road conditions, reporting issues, and organizational transparency. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by plugins such as Rank Math SEO and Complianz GDPR for privacy compliance. The site demonstrates moderate performance and good mobile optimization, with structured data enhancing search engine visibility. Security-wise, HTTPS is enforced, and cookie consent mechanisms are implemented, though some security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found in the analyzed content. While privacy and cookie policies are comprehensive and GDPR compliant, the site lacks explicit terms of service, security policies, and incident response contact information. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security posture. The domain registration data aligns well with the entity's public nature and founding date, supporting legitimacy. Overall, ksus.cz is a professionally maintained governmental website with good content quality and privacy compliance. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information to improve trust and security culture.

B

Boxtal

boxtal.com

67

Boxtal is a French-based company specializing in online shipping solutions, offering negotiated transport rates, e-commerce shipping services, and software tools to optimize logistics. The company targets e-commerce merchants and businesses requiring efficient parcel shipping and logistics management. Their platform integrates multiple carriers and provides value-added services such as insurance and multi-carrier parcel pickup. Technically, the website employs modern web technologies including JavaScript and web components, with embedded iframes for shipping quotes. The site is mobile-optimized and well-structured, providing a good user experience. Security-wise, HTTPS is enforced and cookie consent mechanisms are implemented, but explicit security headers and policies are not evident. The WHOIS data for the domain is unavailable, which reduces transparency but the website content and branding indicate a legitimate business. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security posture and business credibility transparency.

S

SWISS ELEMENTIC

swisselementic.com

56

SWISS ELEMENTIC operates an innovative Drive-in Boatwash service in Switzerland, offering boat hull cleaning up to 16 meters in length directly in the water. The company positions itself as a pioneer in the Swiss market with a focus on ecological and efficient boat maintenance, reducing the need for harmful antifouling paints and improving fuel efficiency. Their business model includes direct service offerings with booking and subscription options, targeting boat owners seeking convenient and environmentally friendly cleaning solutions. The website is professionally designed using WordPress with modern page builders and includes multilingual support, social media integration, and a cookie consent mechanism, reflecting a mature digital presence. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and DNSSEC are missing. No privacy policy or terms of service documents were found, which is a compliance gap. Overall, the domain registration is consistent with the business timeline and shows no suspicious patterns, supporting legitimacy.

G

Global-Tickets by TD Entertainment C.V.

global-tickets.com

67

Global-Tickets by TD Entertainment C.V. is a well-established e-commerce platform specializing in the sale of motorsport event tickets and related travel packages, focusing on Formula 1, MotoGP, and DTM events worldwide. With over 25 years of experience and a large customer base exceeding 850,000 satisfied clients, the company holds a strong market position supported by official partnerships with numerous racing circuits and high customer trust ratings on platforms like Trustpilot and Google. The website offers a comprehensive and user-friendly shopping experience, including VIP and group event options, with a focus on secure payment and insured ticket delivery. Technically, the website employs modern web technologies including Bootstrap, jQuery, Owl Carousel, and integrates multiple tracking and marketing tools such as Google Tag Manager, Facebook Pixel, Bing Ads, and Usercentrics for cookie consent management. The site is mobile-optimized and SEO-friendly, providing a professional and accessible user experience. Security practices include HTTPS encryption, secure payment processing, and ticket insurance, although explicit security headers could be improved. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. Business credibility is reinforced by transparent company information, multiple trust indicators, and consistent WHOIS data matching the business claims. Overall, Global-Tickets presents a trustworthy, professional, and secure platform for motorsport ticket sales, with recommendations to enhance security headers and publish dedicated security policies to further strengthen their security posture.

G

Gransy, s.r.o.

mapy.cz

63

Mapy.com is a well-established online mapping portal operated by Gransy, s.r.o., offering detailed global maps with specialized features such as hiking and cycling trails, route planning, and aerial/3D views. The platform targets tourists, outdoor enthusiasts, and general users seeking comprehensive map services. The website demonstrates a mature digital infrastructure leveraging modern JavaScript APIs, asynchronous loading, and integration with Seznam.cz services. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though additional security headers and formal security policies could enhance protection. Privacy and cookie policies are present and GDPR compliant, supporting user trust. Overall, the site is professional, user-friendly, and trustworthy with a strong market position in the transportation and mapping sector.