Security Directory

L

Lagardère Travel Retail

lagardere-tr.cz

67

Lagardère Travel Retail Czech Republic operates as a major player in the travel retail sector, managing hundreds of retail outlets across airports, train stations, and metro stations. The company is part of the global Lagardère group, which is a recognized leader in travel retail worldwide. Their business model focuses on providing tailored retail and dining experiences to travelers, covering segments such as Travel Essentials, Duty Free & Fashion, and Foodservice. The website reflects a professional corporate presence with consistent branding and multilingual support for international visitors. Technically, the website is built on Drupal CMS and leverages modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for UI and cookie consent management. The site is mobile optimized and includes privacy-conscious analytics via Matomo. The cookie consent mechanism is robust, supporting GDPR compliance with high privacy settings. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. However, explicit security headers are not visible in the provided data, and no dedicated security or incident response pages are found. The WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and linkage to the parent Lagardère group support its legitimacy. Overall, the website presents a secure, privacy-aware, and professional digital presence suitable for a large multinational retail operator. Recommendations include enhancing security headers, publishing incident response contacts, and adding terms of service to improve transparency and compliance.

C

Centrum pre umelú inteligenciu (CUI)

slovak.ai

46

AIslovakIA is a Slovak national platform dedicated to the development and promotion of artificial intelligence. It operates as a neutral, independent, and non-profit entity, connecting academia, industry, government, and international institutions to foster AI excellence in Slovakia. The platform is managed by the Center for Artificial Intelligence (CUI) and has founding members including the American Chamber of Commerce in Slovakia, IT Association of Slovakia, and the Slovak University of Technology in Bratislava. The website provides information about AI dialogue, infrastructure, education, and think tank activities, targeting professionals and stakeholders in the AI ecosystem. Technically, the website is built on WordPress with Elementor, using modern web technologies such as Bootstrap and jQuery. It is hosted likely by WebSupport, a Slovak hosting provider, and is optimized for mobile devices with good SEO practices. However, some technical improvements could be made, such as enabling DNSSEC and adding security headers to enhance security posture. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers. The Google Analytics plugin is installed but not configured, indicating minimal user tracking currently. No privacy or cookie policies are present, which is a compliance gap under GDPR. Contact information is clearly provided, including an email and physical address, enhancing business credibility. Overall, the website is professional, trustworthy, and serves its purpose as a national AI platform. The main risks relate to privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and properly configuring analytics to balance data collection with user privacy.

L

Lokni

lokni.cz

41

LOKNI s.r.o. is a Czech company dedicated to providing sustainable filtered water solutions primarily targeting schools, municipalities, households, and companies. Their business model includes subscription services and direct sales of reusable bottles, positioning them as a key player in the Czech sustainable water market. The website is professionally designed, well-branded, and rich in content, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and integrates Google analytics with consent management, indicating good digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data reduces trust slightly but does not detract significantly from the overall legitimacy given the professional web presence and clear business information. Strategic recommendations include enhancing security headers, verifying domain registration details, and continuing to maintain strong privacy compliance.

E

ESTERHÁZY GALANTA s.r.o.

esterhazygalanta.sk

44

Esterházy Galanta operates as a hospitality business located in a historic neo-Gothic chateau in Slovakia, offering restaurant, café, and wine bar services alongside event hosting and souvenir sales. The business leverages its cultural heritage and local history to attract tourists and local visitors, positioning itself as a unique venue with a strong local identity. The website reflects this with rich content, customer testimonials, and clear service offerings. Technically, the site is built on the MODX CMS platform, uses modern web technologies such as jQuery and Owl Carousel, and is mobile optimized with good SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and professional, with room for security enhancements and formal policy disclosures.

B

Beset s.r.o.

beset.sk

50

Beset s.r.o. is a Slovak-based IT company with over 30 years of experience specializing in system integration, custom software development, and information security solutions. The company targets business and enterprise clients primarily in Central and Eastern Europe, offering a broad range of services including cybersecurity incident response and digital transformation. Their market position is solidified by long-term presence and participation in EU and Slovak government co-financed research projects. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is strong with HTTPS enforced, ISO 27001 certification, and a dedicated Cyber Incident Response Team, although some improvements in security headers and incident contact channels are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, with room for enhancement in transparency and accessibility.

A

AŽD Praha s.r.o.

oparenskyexpres.cz

50

AŽD Praha s.r.o. operates the Oparenský expres T4, a regional rail line in the Czech Republic, focusing on transportation services integrated with tourism promotion. The company is a significant Czech supplier and manufacturer of security, telecommunication, information, and automation technologies for rail and road transport. The website provides comprehensive information about the rail line, trip tips, news, and integrated ticketing via the DÚKapka mobile app. Technically, the website uses modern web technologies including Google Tag Manager and reCAPTCHA, with a custom CMS backend. Security measures include HTTPS enforcement and spam protection on forms, though explicit security headers are not detected. Privacy and cookie policies are present with a consent mechanism, indicating GDPR compliance. However, the absence of WHOIS data reduces transparency and trust slightly. Overall, the website is professional, user-friendly, and trustworthy, serving its target audience effectively.

M

Miteral

miteral.cz

42

Miteral is a Czech Republic-based company specializing in professional automotive service equipment, including autoservis and pneuservis tools and machinery. Operating since 1990, it serves a B2B market across the Czech Republic, offering a broad product range through a dedicated e-shop and direct sales. The website reflects a mature business with a clear market position as a trusted supplier of automotive workshop equipment. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, providing a responsive and user-friendly experience. Privacy compliance is addressed with cookie consent and a basic GDPR-aligned privacy policy. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is moderate with standard best practices but lacks advanced security headers and explicit security policies. Overall, the website is professional and trustworthy but would benefit from improved domain registration transparency and enhanced security measures.

Š

Špacírek s dětmi

spacireksdetmi.cz

44

Špacírek s dětmi is a Czech family travel blog established in 2018, focusing on providing curated travel tips and outing guides for families with children. The website offers detailed articles, photo galleries, and trip maps primarily covering regions in the Czech Republic and some international destinations. The blog targets parents seeking ready-made travel ideas without the need to extensively plan or search. Technically, the site is built on WordPress with common plugins such as Yoast SEO and Photo Gallery, hosted by Wedos. It uses modern web technologies including jQuery, Google Fonts, and FontAwesome, and integrates Google Analytics for visitor tracking. Security posture is moderate with HTTPS implied but lacks visible security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is accessible, well-structured, and content-rich, but could improve in privacy and security practices.

H

HRADECKÁ KULTURNÍ A VZDĚLÁVACÍ SPOLEČNOST s.r.o.

adalbertinum.cz

53

HRADECKÁ KULTURNÍ A VZDĚLÁVACÍ SPOLEČNOST s.r.o. operates as a regional cultural and educational organization in Hradec Králové, Czech Republic. The website serves as a comprehensive platform for cultural events, educational courses, venue rentals, and ticket sales, targeting the general public including families and youth. Supported by local government entities, it holds a stable market position as a trusted regional service provider. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google Analytics, ensuring a good user experience with mobile responsiveness and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern for domain transparency but does not detract from the professional presentation and trust signals on the site. Overall, the site is well-maintained, GDPR compliant, and provides valuable cultural services to its community.

J

just4web.cz s.r.o.

just4web.cz

50

just4web.cz s.r.o. is a Czech Republic-based small business specializing in web development and online marketing services, operating since 2009. The company positions itself as a reliable partner for businesses seeking quality websites and effective digital marketing to grow their online presence. Their website showcases a professional portfolio, client references, and clear contact information, indicating a mature business model focused on service delivery to small and medium enterprises. Technically, the website employs a variety of JavaScript libraries including jQuery, Owl Carousel, and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. However, the absence of explicit security headers and incomplete WHOIS data suggest areas for improvement in infrastructure transparency and security hardening. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks visible security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected, but updating libraries and adding security headers would enhance the security posture. The missing WHOIS data reduces domain trustworthiness, though the website content and business information appear legitimate. Overall, just4web.cz s.r.o. presents a professional and trustworthy online presence with room for technical and security enhancements. Strategic focus on improving security headers, verifying domain registration, and publishing security policies will strengthen their risk profile and client trust.

W

Walmag Magnetics s.r.o.

walmag.cz

58

Walmag Magnetics s.r.o. is a Czech manufacturer specializing in magnetic clamps and lifting magnets with a long-standing tradition dating back to the 1960s. The company operates independently since 2011 and serves a broad international market spanning 60 countries. Their product portfolio includes certified lifting magnets, magnetic clamps, demagnetizers, and comprehensive service offerings including warranty and post-warranty repairs and training. The website reflects a professional and well-established business with clear branding and extensive customer testimonials, reinforcing their market position. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various analytics and tracking tools such as Google Tag Manager, Matomo, Microsoft Clarity, and Smartlook. The site is mobile-optimized, SEO-friendly, and integrates multiple languages and an e-commerce platform. However, security headers are not evident in the provided data, and an audit is recommended to enhance security posture. Security-wise, the site uses HTTPS and implements Google reCAPTCHA on forms, indicating a baseline security awareness. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, with active consent mechanisms. The absence of WHOIS data limits domain trust verification, but the website content and business information strongly support legitimacy. Overall, Walmag Magnetics presents a low-risk profile with a solid business foundation and good digital maturity. Strategic recommendations include enhancing HTTP security headers, continuous monitoring of third-party scripts, and improving accessibility compliance to further strengthen their security and compliance posture.

K

KOVOPLAST, výrobní družstvo

kovoplastvd.cz

46

KOVOPLAST, výrobní družstvo is a Czech manufacturing cooperative specializing in the production of high-quality plastic and metal components primarily for the automotive, construction, consumer, healthcare, electrical, and engineering industries. With a 30-year tradition, the company emphasizes employing persons with changed work ability, reflecting a socially responsible business model. Their key services include serial production of plastic and metal parts, tool making, and assembly of products according to customer specifications. The company holds the IATF 16949 certification, indicating adherence to automotive quality standards. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, Google reCAPTCHA v3, and Google Maps API. The site is mobile-optimized with good SEO practices and uses HTTPS for secure communication. However, some security best practices such as security headers are missing, and privacy and cookie policies are not explicitly found, indicating room for improvement in compliance and security posture. Security-wise, the site uses HTTPS and reCAPTCHA to protect forms, but lacks visible security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces transparency and trustworthiness, although the website content and certifications support legitimacy. Overall, the website is professional and trustworthy from a business perspective but would benefit from enhanced privacy disclosures, security headers, and verified domain registration information to improve compliance and trust.

P

PlasticPortal

plasticportal.sk

29

PlasticPortal.sk is a well-established online portal founded in 2009, serving the plastics and rubber industry in Slovakia and the Czech Republic. It provides a comprehensive platform featuring industry news, company directories, job listings, events, and educational content. The portal positions itself as the largest online resource in its sector within the region, supported by a mature domain and consistent business information. Technically, the site leverages modern web technologies including Laravel Livewire, Google Analytics, and responsive design elements to deliver a good user experience across devices. Security-wise, the site employs HTTPS and DNSSEC, and includes a cookie consent mechanism, but lacks explicit security policies, incident response contacts, and security headers, which are areas for improvement. Overall, the website is professional, content-rich, and trustworthy, with moderate tracking and basic privacy compliance.

P

PlasticPortal

plasticportal.cz

31

PlasticPortal.cz is a well-established online portal serving the plastics and rubber industry in the Czech Republic and Slovakia. Founded in 2009, it provides a comprehensive platform featuring industry news, company directories, classified ads, polymer price listings, event calendars, and educational videos. The portal targets industry professionals and companies, positioning itself as the largest online resource in its sector within the region. The business operates under ICOSA s.r.o., with a clear presence and consistent branding across its Czech, Slovak, and European domains. Technically, the website employs modern web technologies including Laravel Livewire, Owl Carousel, Google Analytics, and Google Tag Manager. It is mobile-optimized with good SEO practices and uses HTTPS with a CSRF token for security. However, some security headers are not explicitly detected, and there is no visible security policy or incident response information published. Privacy compliance is partially addressed with a cookie consent banner, but explicit privacy and terms of service pages are missing. The security posture is solid with HTTPS and CSRF protections, but could be improved by adding security headers and formal policies. The WHOIS data aligns well with the website's business claims, showing a consistent and legitimate registration since 2009. No signs of malicious activity or adult content were found, and the site maintains a professional and trustworthy appearance. Overall, PlasticPortal.cz is a credible and valuable resource for its industry niche, with room for improvement in privacy and security transparency. Strategic enhancements in these areas would strengthen user trust and compliance with evolving regulations.

C

Certifikačný a inšpekčný orgán SR, s.r.o.

ciosr.sk

44

Certifikačný a inšpekčný orgán SR, s.r.o. is an established Slovakian company specializing in certification and inspection services related to technical equipment safety, personnel certification, and management system certification. Founded in 2012, it holds multiple accreditations and operates as an authorized legal entity with partnerships with national regulators. The website reflects a professional service provider targeting businesses and professionals requiring compliance and safety certifications in Slovakia. Technically, the site is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and Tag Manager with user opt-out capabilities. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms, though additional HTTP security headers and formal security policies could enhance protection. Overall, the site is trustworthy, well-branded, and provides clear information about its certifications and services.

I

InsightCommodity

insightcommodity.com

69

InsightCommodity operates a specialized marketplace platform focused on providing data-driven solutions for energy and commodity markets. Powered by EEX and associated with Deutsche Börse Group, it offers a broad range of services including analytics tools, clearing services, weather and renewables data, and procurement solutions. The platform connects over 35 providers and vendors, targeting energy market professionals and commodity traders. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site is built on Magento 2 with modern JavaScript libraries such as RequireJS and jQuery, and includes GDPR-compliant cookie consent mechanisms. Hosting and domain registration are handled by reputable providers, ensuring a stable infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and secure form handling, though improvements are recommended such as enabling DNSSEC and adding advanced security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear policies and consent mechanisms. Overall, InsightCommodity presents a trustworthy and professional platform with a strong market position in the energy data sector. Strategic recommendations include enhancing DNS security, publishing incident response contacts, and improving security headers to further strengthen trust and compliance.

European Commodity Clearing AG (ECC) is a central clearing house specializing in energy and commodity products, operating as part of the EEX Group. The company provides critical services including counterparty risk management, physical and financial settlement of transactions, and collateral management. ECC serves multiple exchanges within the EEX Group and partner exchanges, positioning itself as a key player in the European and international commodity markets. The website reflects a professional and comprehensive presentation of their services, governance, and regulatory compliance, targeting commodity market participants and financial entities. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Bootstrap, Owl Carousel, and others to deliver a responsive and user-friendly experience. The site includes cookie consent mechanisms and integrates Etracker for analytics, demonstrating a moderate level of user tracking balanced with privacy compliance. The site is well-structured with clear navigation and good SEO practices. From a security perspective, ECC demonstrates strong adherence to best practices, including HTTPS enforcement and ISO 27001 certification. However, there is room for improvement in implementing HTTP security headers and publishing explicit incident response or vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, indicating a trustworthy online presence. Overall, ECC's website is a secure, professional, and informative platform that effectively supports its business objectives and compliance requirements.

S

Spirituální konzultace a Energetické léčení - Lubosh Novak

spiritualnikonzultace.cz

45

The website 'Spirituální konzultace a Energetické léčení - Lubosh Novak' offers specialized spiritual consultation and energy healing services primarily targeting individuals seeking deep inner transformation. The business operates in a niche wellness and spiritual sector within the Czech Republic, providing a range of services including individual consultations, group sessions, family constellation work, and energetic cleansing of spaces. The site presents a professional image with clear service descriptions and accessible contact options, including email, phone, and a secure contact form with CAPTCHA protection. Technically, the website is built on WordPress using modern plugins such as Yoast SEO, WPBakery Page Builder, and Complianz GDPR for compliance. It employs Google Analytics for visitor tracking and uses HTTPS to secure communications. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. However, some security headers are missing, and no explicit security policy or vulnerability disclosure mechanisms are present. From a security perspective, the site demonstrates a reasonable posture with HTTPS enforcement and cookie consent mechanisms. The contact form includes CAPTCHA to mitigate spam. The absence of WHOIS data for the domain is a notable concern, limiting the ability to fully verify domain legitimacy and ownership. No critical vulnerabilities or malicious content were detected in the analysis. Overall, the website is a credible and professional platform for spiritual and energy healing services, though improvements in domain transparency and security header implementation are recommended to enhance trust and security posture.

F

FK Šternberk

fksternberk.cz

54

FK Šternberk is a local football club based in the Czech Republic, providing football training and match information for various age groups including youth and adult teams. The website serves as an information hub for club activities, match schedules, results, and team details. It targets football players, fans, and the local community, emphasizing youth development and community engagement. The business model is that of a non-profit sports club with a focus on football education and events. Technically, the website is built on WordPress with a modern plugin ecosystem including WPBakery Page Builder, WP Club Manager, and booking plugins. It uses Google Analytics for tracking with an opt-out mechanism. The site is mobile optimized and has good SEO practices, but performance is moderate. No hosting provider details were found. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and formal privacy and cookie policies, which are compliance gaps. The absence of WHOIS data reduces domain trust assessment, but the website content and social media presence support legitimacy. Overall, the site is safe for general audiences with no adult or explicit content. Strategically, the club should improve privacy compliance, implement security headers, and maintain regular updates to plugins and themes. Adding a security.txt file and formal incident response contacts would enhance security posture and trust.

B

Belinus Art

belinusart.cz

10

Belinus Art is a small retail and service business based in the Czech Republic specializing in flooring, carpets, doors, terraces, and stairs, primarily serving the Olomouc region. The company emphasizes over 20 years of experience and offers expert consultation, installation, and interior design services. Their website is built on WordPress with modern plugins for SEO, analytics, and GDPR compliance, reflecting a moderate to good level of digital maturity. The site is well-structured, mobile-optimized, and includes clear contact information and social media presence, enhancing business credibility. From a security perspective, the website enforces HTTPS and uses Google reCAPTCHA for form protection. It includes a cookie consent mechanism compliant with GDPR. However, some security headers are missing or not explicitly detected, suggesting room for improvement in security hardening. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data limits domain trust verification, but the website content and social media presence support legitimacy. Overall, the website presents a professional and trustworthy digital front for Belinus Art, with good content quality and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen trust and compliance.

Š

Šťastné finance

stastnefinance.cz

41

Šťastné finance is a Czech Republic based small financial advisory company founded in 2018, offering personalized financial services including investments, insurance, mortgages, and loans. The company positions itself as a client-focused intermediary providing access to both public and exclusive investment opportunities. The website is built on WordPress with modern plugins and frameworks, delivering a professional and user-friendly experience with good mobile optimization and SEO. Security posture is solid with HTTPS and secure forms, but lacks explicit security headers and formal privacy and cookie policies, indicating room for compliance improvement. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website is trustworthy and well-structured but should enhance privacy compliance and security best practices to strengthen user trust and regulatory adherence.

S

Správa nemovitostí Olomouc, a.s.

sno.cz

54

Správa nemovitostí Olomouc, a.s. is a property management company based in Olomouc, Czech Republic, specializing in managing private houses, repairs, maintenance, non-residential premises, and hotel-type accommodations. The company targets property owners and tenants within the Olomouc region, offering rental services and long-term housing solutions. The website reflects a professional local business with consistent branding and clear contact information. Technically, the site is built on WordPress using WPBakery Page Builder and Yoast SEO, with modern frontend libraries such as Owl Carousel and Isotope enhancing user experience. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal privacy or cookie policies, indicating compliance gaps. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is reasonable for this business type. Overall, the website is trustworthy, safe, and professionally maintained, though improvements in privacy compliance and security headers are recommended.

Č

Českomoravská Bezpečnostní Agentura spol. s r.o.

cmba.cz

45

Českomoravská Bezpečnostní Agentura spol. s r.o. (ČMBA) is a Czech-based small business specializing in professional security (ostraha) and cleaning (úklid) services for both companies and households. The company emphasizes personalized service, employee well-being, and regional coverage primarily in Moravia and surrounding areas. Their website reflects a professional image with clear service offerings and client references, positioning them as a trusted regional service provider. Technically, the website is built on WordPress with common plugins such as WPBakery and Yoast SEO, supported by Google Analytics for visitor tracking. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is adequate with HTTPS enforced and opt-out mechanisms for analytics, but lacks advanced security headers and explicit incident response contacts. Privacy compliance is partial, with a company policy page present but no explicit cookie consent or GDPR details. Overall, the site is trustworthy and functional with room for security and compliance improvements.

Z

Zväz elektrotechnického priemyslu Slovenskej republiky

spolupracuj.me

60

The website spolupracuj.me is an online cooperation portal operated by the Zväz elektrotechnického priemyslu Slovenskej republiky, targeting Slovak companies and research institutions primarily in manufacturing, trade, and innovation sectors. It facilitates business collaboration by offering a platform to share offers, requests, and company profiles, supported by AI-enhanced search capabilities. The platform is positioned as a niche industry-specific cooperation hub with a medium-sized user base and a clear focus on fostering partnerships and innovation. Technically, the site employs modern web technologies including Google Fonts, FontAwesome, Owl Carousel, and Google Tag Manager for analytics and advertising. It is hosted on Websupport.sk and demonstrates good mobile optimization and SEO practices. The site uses HTTPS with a good SSL configuration but lacks some advanced security headers and DNSSEC. From a security perspective, the site enforces HTTPS and secure login forms but does not publish explicit security policies or incident response contacts. DNSSEC is not enabled, and no security.txt file is found. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The domain registration is consistent with the business entity, enhancing trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, suitable for its business purpose. Strategic improvements in DNS security, security headers, and incident response transparency would further strengthen its security posture.

The Green Wheels Project website represents a European Union funded educational initiative focused on enhancing quality and innovation in education related to sustainable transportation. The project is managed or associated with the Centre for Modern Education, a small-sized organization based in the Czech Republic. The website provides project results, news, partner information, and educational resources targeting educational institutions and EU stakeholders. Technically, the site uses a standard web technology stack including jQuery, Bootstrap, and Google Analytics, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacking advanced security headers and visible privacy or cookie policies. The site is accessible without WAF or blocking mechanisms and shows moderate user tracking via Google Analytics. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

N

Naša bylinkáreň

nasa-bylinkaren.sk

43

Naša bylinkáreň is a Slovak-based small business specializing in the production and sale of custom herbal teas, tinctures, Bach flower essences, biomineral salts, and natural wellness products. The company positions itself as a family-oriented, handcrafted herbal retailer with a focus on holistic health and natural remedies. Their market presence is niche but well-established locally, supported by a professional e-commerce website built on the OpenCart platform. The website features good content quality, clear navigation, and mobile optimization, targeting general consumers interested in natural health products. Technically, the site uses a modern tech stack including jQuery, Bootstrap, and popular carousel libraries, hosted on a Slovak hosting provider with DNSSEC enabled and HTTPS enforced, indicating a secure infrastructure. However, some security best practices like HTTP security headers are missing. Privacy compliance is well addressed with GDPR cookie consent mechanisms and a privacy policy page. Overall, the website demonstrates a solid security posture for a small retailer, with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, enhancing trustworthiness. Strategic recommendations include enhancing security headers, adding explicit security policies, and continuous monitoring for vulnerabilities to maintain and improve security posture.

T

Torty Katulienka - Cukrárska akadémia

tortykatulienka.sk

45

Torty Katulienka is a Slovakian cake academy specializing in baking and decorating courses, targeting both beginners and professionals. The business is led by Katarína Tokovicsová, an experienced artistic cake maker with international training and awards. The website presents a professional image with clear course offerings, instructor credentials, and contact information, positioning itself as a leading cake academy in Slovakia. Technically, the site uses a modern tech stack including OpenCart CMS, Bootstrap, jQuery, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers are missing and privacy policy is not found, indicating room for compliance improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

E

Estreházy Galanta s.r.o.

2family.eu

45

The website 2family.eu is a professionally designed platform promoting cultural and historical tourism centered on the Esterházy and Forgách noble families' heritage in Slovakia and Hungary. It targets tourists and history enthusiasts by offering an interactive mobile application, information about unique historical sites, and accommodation recommendations. The business operates in the hospitality and real estate sectors with a niche focus on regional cultural tourism. The company behind the site is Estreházy Galanta s.r.o., a small Slovak entity. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Swiper, and other UI libraries, hosted by WebSupport s.r.o., a Slovak hosting provider. The site is mobile-optimized with good navigation and content quality, though SEO and accessibility features are basic. No CMS is explicitly detected. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and formal security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; a GDPR page exists but no cookie consent mechanism is implemented. Contact information is clearly provided, enhancing business credibility. Overall, the site is safe, trustworthy, and well-suited for its target audience. Recommendations include implementing cookie consent, adding security headers, and publishing security and incident response policies to improve compliance and security posture.

B

BharatBenz

bharatbenz.com

66

BharatBenz is a prominent heavy vehicle manufacturer in India, operating as a division of Daimler Truck AG. The company specializes in producing commercial vehicles including trucks and buses tailored for Indian roads, emphasizing safety, reliability, and cost efficiency. The website reflects a mature digital presence with comprehensive product information, customer testimonials, and service offerings. Technically, the site employs modern analytics and tracking tools such as Google Analytics, Heap, Microsoft Clarity, and Hotjar, alongside standard JavaScript libraries like jQuery. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and use of sanitization libraries, though explicit security headers and policies could be improved. Privacy and cookie policies are present with consent mechanisms, indicating compliance with data protection norms. WHOIS data is missing, which is a concern, but the overall trust signals and corporate affiliation mitigate this risk. No adult or questionable content is present, making the site safe for general audiences.

G

G U A R D 7, v.o.s.

guard7.cz

53

G U A R D 7, v.o.s. is a Czech Republic based small business specializing in occupational safety (BOZP), fire protection, and e-learning services. The company offers a broad range of services including consulting, outsourcing, technical equipment, audits, software development, and documentation processing. Their market position is that of a reputable regional service provider supported by expert staff and efficient management systems. The website is built on WordPress with modern plugins and technologies, providing a good user experience and mobile optimization. Security measures include HTTPS, Google reCAPTCHA, and a GDPR-compliant cookie consent mechanism. However, the absence of WHOIS data limits domain trust verification. Overall, the site is professional and trustworthy with moderate tracking and advertising tools.

T

THEMEHALL

themehall.com

43

Themehall is a small technology business specializing in the development and sale of free and premium responsive WordPress themes. Established in 2010, the company has built a niche market presence by focusing on clean, accessible, and modern theme designs powered by the Omega WordPress Theme Framework. Their target audience primarily consists of WordPress website owners and developers seeking reliable and user-friendly themes. The website demonstrates a professional design with good content quality and clear navigation, supporting a positive user experience.

H

Home Design s.r.o.

homedesign.sk

44

Home Design s.r.o. is a Slovak creative studio specializing in advertising, graphic design, large-format printing, web development, and brand identity services. With over 18 years of experience, the company targets businesses seeking professional marketing and digital solutions. Their service portfolio includes web and e-shop creation, PPC campaigns, copywriting, video production, and promotional products. The website demonstrates a professional and consistent brand presence with clear contact information and client references. Technically, the site uses modern frameworks such as Bootstrap and MODX CMS, integrates Google Analytics and Tag Manager, and is mobile optimized. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site is credible and well-positioned in its market niche.

Základní škola a Mateřská škola Černovice is a small local educational institution in the Czech Republic providing primary and nursery education with a focus on eco-school principles. The website serves as an information portal for parents and the community, offering details about school activities, schedules, and contact information. The institution positions itself as a partner to children and parents, emphasizing respect for individuality and responsibility. Technically, the website uses a modern but somewhat dated tech stack including jQuery and Google Tag Manager, with Matomo analytics for privacy-conscious tracking. Security posture is good with HTTPS and reCAPTCHA implemented, though some security headers and policies are missing. The WHOIS data is unavailable, which limits domain legitimacy verification, but the website content and contact details appear authentic and professional. Overall, the site is well-structured, accessible, and compliant with GDPR requirements through cookie consent and privacy policy presence.

M

MĚSTSKÉ DIVADLO A KINO OSTROV spol. s r.o.

mdko.cz

47

MĚSTSKÉ DIVADLO A KINO OSTROV spol. s r.o. operates a cultural venue in Havlíčkův Brod, Czech Republic, providing theater performances, cinema screenings, and event rental services. The website mdko.cz serves as a portal for event information, ticket sales, and community engagement, targeting local residents and visitors interested in cultural activities. The business model is centered on ticket revenue and venue services, positioning itself as a regional cultural hub since its domain registration in 2018. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, hosted likely via Czech providers consistent with the domain registration data. The site is mobile-optimized, SEO-friendly, and includes a GDPR-compliant cookie consent mechanism. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site uses HTTPS with excellent SSL configuration and employs Google reCAPTCHA to protect forms. However, no explicit security headers were detected, and no published security or incident response policies were found. The site demonstrates good privacy compliance with clear privacy and cookie policies. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Recommendations include enhancing security posture by adding security headers and publishing a security policy to improve transparency and incident readiness.

T

Technické služby Havlíčkův Brod

tshb.cz

50

Technické služby Havlíčkův Brod is a municipal contributory organization serving the citizens of Havlíčkův Brod, Czech Republic. The organization provides a broad range of public services including municipal public transport, waste management, city cleaning, maintenance of recreational and sports facilities, and care for urban greenery and forests. The website reflects a local government service provider with a focus on community support and public utility management. The business model is centered on public service delivery with a medium-sized operational scale and a clear target audience of local residents and visitors. From a technical perspective, the website employs modern web technologies such as Bootstrap, jQuery, FontAwesome, and Owl Carousel, and is built on the CPedit CMS platform. It demonstrates good mobile optimization, accessibility, and SEO practices. The site uses HTTPS with an excellent SSL configuration and integrates Google Analytics and Google Tag Manager for analytics, alongside Google reCAPTCHA for form security. Cookie consent mechanisms are implemented in compliance with GDPR requirements. Security posture is generally strong with HTTPS enforcement and use of CAPTCHA; however, the absence of visible security headers, a published security policy, and incident response contact details are notable gaps. The lack of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration transparency. No critical vulnerabilities or malicious content were detected. Overall, the website is professional, trustworthy, and well-structured, serving its public service purpose effectively. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to improve trust and compliance.

The website www.mspelhrimov.cz represents a collective of five kindergartens in Pelhřimov, Czech Republic, operating under a single legal entity managed by a director. It serves as an official municipal educational portal providing parents and guardians with detailed information about each kindergarten, including contact details, activities, and news updates. The site targets local families seeking preschool education services. Technically, the website employs legacy JavaScript libraries such as jQuery 1.9.1 and integrates Google Translate for multilingual support. The design is consistent and mobile-optimized, though accessibility features are basic. Security posture is moderate with HTTPS usage but lacks advanced security headers and updated libraries. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data is unavailable, which reduces domain trust from a registration standpoint but does not negate the legitimacy suggested by municipal affiliation and content. Overall, the site is functional and trustworthy for its educational purpose but requires improvements in security and compliance.

P

Pelhřimovská sportovní s.r.o.

sportpe.cz

46

Pelhřimovská sportovní s.r.o. operates a website dedicated to sports facilities in Pelhřimov, Czech Republic, including a swimming pool, sports hall, winter stadium, outdoor fields, and minigolf. The site serves local residents and visitors by providing information, news, and booking options for these facilities. The business is positioned as a local community sports operator with a focus on accessibility and user engagement. Technically, the website employs modern JavaScript libraries, Google reCAPTCHA for spam protection, and Google Tag Manager for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and features a cookie consent mechanism and privacy policy, supporting GDPR compliance. Security posture is good with HTTPS enforced and secure form handling, though security headers and explicit security policies are absent. The lack of WHOIS data is a concern for domain legitimacy, but the website content and contact information appear professional and trustworthy. Overall, the site is functional, user-friendly, and secure for its purpose, with room for improvement in security transparency and domain registration clarity.

A

Accura s.r.o

accura.io

54

Accura s.r.o is a specialized cybersecurity consulting firm founded in 2016, focused on protecting critical infrastructure and industrial control systems (ICS/OT) from advanced cyber threats. Their market position is that of a niche expert providing comprehensive OT and IT cybersecurity services, incident response, and training primarily targeting industrial enterprises, government organizations, and multinational corporations in sectors such as energy and manufacturing. The company emphasizes reliable operations and cross-sector expertise to safeguard business-critical assets. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and various UI libraries, delivering a responsive and professional user experience. Hosting and domain registration are managed via NameCheap with privacy protection enabled. The site shows good SEO practices but lacks some advanced security headers and DNSSEC, indicating moderate digital maturity. From a security posture perspective, the site uses HTTPS and domain transfer protection but lacks visible security policies, privacy and cookie policies, and incident response contact details. No vulnerabilities or exposed sensitive data were detected, but improvements in security headers and privacy compliance are recommended to enhance trust and regulatory adherence. Overall, the website is professional and trustworthy with a solid business foundation but would benefit from enhanced privacy disclosures, security best practices, and transparency to improve compliance and user confidence.

G

GC Rieber Fortuna AS

gcrieber-fortuna.no

53

GC Rieber Fortuna AS is a family-owned industrial investment company based in Norway, focusing on sustainable and profitable business opportunities. The company actively invests in early-stage companies through its GROWIT fund and in mature growth companies through SCALEIT, emphasizing active ownership and flexible ownership structures. The website reflects a professional corporate presence with clear communication of its investment focus and business philosophy. Technically, the site is built on WordPress with modern plugins and SEO optimizations, providing a good user experience with mobile responsiveness and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies could be improved. Overall, the domain and website present a trustworthy and credible business entity with no signs of malicious activity or content blocking.

P

Pankas A/S

pankas.com

55

Pankas A/S is a well-established European group specializing in the production, refurbishment, and maintenance of roads, with a focus on asphalt and related technologies. The company operates multiple subsidiaries across Denmark, Germany, Poland, and other European countries, positioning itself as a key player in the road infrastructure sector. Their website reflects a professional and business-oriented approach, targeting organizations involved in road construction and maintenance. Technically, the website employs modern analytics and cookie consent tools, ensuring moderate digital maturity and compliance with basic privacy standards. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy and professionally maintained, supporting the company's market position effectively.

P

PlasticPortal

plasticportal.eu

46

PlasticPortal.eu is a well-established online portal serving the plastics and rubber industry primarily in the Czech Republic and Slovakia. It offers a comprehensive range of services including industry news, articles, company directories, classified ads, polymer price listings, event calendars, and video content. The portal positions itself as the largest online source of plastics industry information in its target region, catering to professionals and companies within the sector. The business model revolves around providing valuable industry information and advertising opportunities to its audience. Technically, the website employs modern web technologies such as Google Analytics, Google Tag Manager, Owl Carousel, and Livewire (a Laravel framework component), indicating a mature and maintainable infrastructure. The site is hosted via a registrar named Webglobe, a.s., and uses HTTPS with appropriate CSRF protections. The design is responsive and optimized for mobile devices, with good SEO practices evident through meta tags and structured data. From a security perspective, the site enforces HTTPS and includes CSRF tokens for form submissions. However, it lacks advanced security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, PlasticPortal.eu demonstrates a solid business presence with good technical implementation and moderate security posture. To enhance trust and compliance, it should publish comprehensive privacy and security policies and implement additional security headers. The site is safe for general audiences and does not contain any adult or questionable content.

U

UNIFER alfa a.s.

unifer.cz

45

UNIFER alfa a.s. is a Czech-based design and digital agency established in 2012, offering a broad range of services including web and digital marketing, design and video production, marketing and advertising, and strategic planning and consulting. The company targets businesses seeking professional digital and creative solutions and maintains a strong market position supported by a portfolio of reputable clients and references. Their website reflects a high level of professionalism, with excellent content quality, clear navigation, and mobile optimization. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools, demonstrating digital maturity. Security posture is strong with HTTPS enforcement, reCAPTCHA integration, and cookie consent management, though explicit security headers could be further verified and enhanced. Overall, the website and business exhibit high credibility and compliance with GDPR, with clear contact information and transparent cookie policies.

A

Asociace poskytovatelů energetických služeb (APES) ČR

apes.cz

56

APES (Asociace poskytovatelů energetických služeb) is a Czech association founded in 2010 that represents and promotes energy service providers focused on guaranteed energy savings. The association includes 35 key companies in the energy services sector and is recognized for its expertise and European awards. The website provides information about the association's mission, activities, and members, targeting energy service providers and public institutions in the Czech Republic and Europe. Technically, the website uses jQuery 1.9.1, Owl Carousel, and Google Analytics, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS assumed and a cookie consent mechanism implemented, but lacks explicit security headers and uses an outdated jQuery version, which could pose risks. WHOIS data is unavailable, limiting domain trust verification, but the website content and contact information appear professional and legitimate. Overall, the site scores well in content quality and business credibility but should improve privacy compliance and security practices.

E

EPEX SPOT

epexspot.com

73

EPEX SPOT is a leading European power exchange operating under the umbrella of the EEX Group. The company provides a comprehensive suite of electricity trading products including day-ahead, intraday, capacity, and guarantees of origin auctions across multiple European countries. Their website reflects a mature digital presence with professional design, clear navigation, and extensive market data offerings targeted at energy market participants such as producers, retailers, and system operators. Technically, the site is built on Drupal CMS and leverages modern web technologies including Google Tag Manager for analytics and marketing. Security posture is strong with HTTPS enforced and secure form handling, though the absence of explicit security headers and a public security policy suggests room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is missing, which is unusual for a business of this scale and may warrant further verification. Overall, the website is trustworthy, professional, and well-optimized for its audience.

B

BSS Commerce

bsscommerce.com

74

BSS Commerce is a global full-service eCommerce agency specializing in Magento and Shopify platforms, offering a wide range of development services and extensions/apps. The company has a strong market position with over 10 years of experience, 100,000+ customers, and multiple official platform partnerships and certifications. Their website reflects a mature digital infrastructure with modern technologies, comprehensive analytics, and good privacy compliance. Security posture is solid with HTTPS and domain locking, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

A

Autoplachty Gejza Vajda s.r.o.

autoplachtyvajda.sk

44

Autoplachty Gejza Vajda s.r.o. is a Slovak company established in 1992 specializing in manufacturing autoplachty (truck tarpaulins), large-format digital printing, and rental of storage halls. The company serves customers primarily in Slovakia and Europe, offering tailored products with a focus on quality and innovation. Their website reflects a professional business with clear service offerings and contact information. Technically, the site uses modern web technologies including PHP, JavaScript, and CookieYes for cookie consent, and is built on the MODX CMS platform. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and formal security policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible online presence. Overall, the site demonstrates a solid digital maturity for a small manufacturing business.

G

G U A R D 7, v.o.s.

safetybook.cz

44

SafetyBook, operated by G U A R D 7, v.o.s., is a Czech-based online resource specializing in occupational safety and health (BOZP), fire protection, and related legislative information. The website offers documentation templates, best practices, and forms to support compliance and safety management for employers and safety professionals. It also links to an associated e-shop for safety products, positioning itself as a niche provider in the Czech safety market. The content is well-structured, regularly updated, and targeted primarily at Czech-speaking safety practitioners and organizations. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and popular plugins such as Contact Form 7 and Mailchimp integration. The site is mobile responsive and performs moderately well, with good SEO and accessibility basics. However, there is room for improvement in security headers and privacy compliance documentation. From a security perspective, the site uses HTTPS and common security plugins but lacks explicit security headers and formal policies such as privacy, cookie, and incident response disclosures. No WHOIS data is available for the domain, which raises some concerns about domain registration transparency, although the website content and branding appear legitimate and professional. Overall, the website presents a moderate risk profile with good content quality and technical implementation but needs to enhance privacy compliance and security posture to improve trust and regulatory adherence.

A

Automa – časopis pro automatizační techniku, s. r. o.

automa.cz

48

Automa.cz is the online presence of Automa – časopis pro automatizační techniku, s. r. o., a specialized Czech magazine focused on automation technology and industrial control. Established in 2000, it serves professionals and companies in the automation sector by providing industry news, technical articles, market overviews, and event calendars. The website features a professional design with clear navigation and a consistent brand identity, supported by active social media channels. Technically, the site is built on ASP.NET with common JavaScript libraries and integrates Google Tag Manager for analytics and marketing. Security posture is moderate with HTTPS enabled but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-established but would benefit from enhanced privacy and security transparency.

M

Město Havlíčkův Brod

muhb.cz

52

The website www.muhb.cz serves as the official online presence for the city of Havlíčkův Brod, Czech Republic. It provides comprehensive information about city governance, public services, news updates, and tourist information. The site targets residents, local businesses, tourists, and public officials, offering a broad range of municipal services and resources. The business model is government/public service with a medium-sized municipal scope and a historical foundation dating back to the 13th century. Technically, the site employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and Google Analytics, built on the CPedit CMS platform. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though security headers are not detected, indicating room for improvement. From a security perspective, the site demonstrates good practices such as cookie consent management and secure form handling but lacks visible security headers and an incident response contact. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and official branding strongly support legitimacy. Overall, the site is a well-maintained municipal portal with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing incident response information, and improving domain registration transparency to strengthen trust and compliance.