High-risk security reports

B

BK Instal

bk-instal.cz

38

BK Instal is a small Czech Republic-based company specializing in photovoltaic power plant projects, installations, servicing, and energy savings solutions. The website presents a professional and modern approach to energy solutions, targeting owners and operators of photovoltaic systems and energy-conscious consumers. The company positions itself as a regional energy service provider with a focus on sustainable energy savings. Technically, the website is built on WordPress with Elementor, utilizing modern web technologies including Google Tag Manager and Facebook Pixel for marketing and analytics. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and privacy compliance mechanisms. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the website is functional and professional but would benefit from improved privacy compliance and verified domain registration information.

The website aide-debrouille-informatique.fr is currently inaccessible, returning a 502 Bad Gateway error which prevents content retrieval and analysis. The domain is registered since 2011 with the registrar NUXIT, indicating a potentially established presence. However, the lack of accessible content, metadata, or contact information severely limits the ability to assess the business operations, services, or market positioning. Technically, the site appears to be offline or misconfigured, with no detectable security headers or SSL information. This represents a significant risk for users and reduces trust in the domain. Security posture cannot be properly evaluated due to lack of data, but the absence of HTTPS and security policies is concerning. Overall, the site requires urgent technical remediation to restore availability and enable proper security and compliance assessments.

P

Pépinière d'entreprises PEP'S

pepsmontblanc.fr

46

PEP'S Mont Blanc is a small business incubator located in Passy, France, offering coworking spaces, mentoring, networking, and business support services targeted at entrepreneurs and startups. The website is built on WordPress using modern plugins such as Elementor and Bookly, indicating a moderate level of digital maturity. The site is mobile-optimized and includes structured data for SEO benefits. Security posture is generally good with HTTPS enforced and CSRF protections in booking forms, but lacks security headers and explicit privacy and cookie policies, which are compliance gaps. Overall, the website is professional and trustworthy, but improvements in privacy compliance and security hardening are recommended.

S

Sport-Eli

sporteli.cz

39

Sporteli is a small family-owned business specializing in sailboat rentals and teambuilding events on the Orlík reservoir in the Czech Republic. Established in 1990, the company offers a fleet of 19 fully equipped vessels and professional crew support, targeting corporate clients and recreational sailors. The website is built on WordPress with modern technologies such as Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enabled, but lacks advanced security headers and privacy policies, indicating room for compliance improvements. The absence of WHOIS data raises some concerns about domain legitimacy, though the website content and contact information appear professional and trustworthy. Overall, the site scores well on business credibility and technical implementation but should address privacy and security policy gaps to enhance trust and compliance.

Coworking Příbram z.s. is a small local business providing coworking spaces, meeting rooms, and office rentals in the center of Příbram, Czech Republic. The company targets freelancers, remote workers, and small businesses seeking flexible office solutions with amenities such as fast WiFi, coffee, and 3D printing. Their business model is membership and rental-based with tiered pricing plans and daily access options. The website is professionally designed with clear navigation and relevant content, supporting their market position as a community-focused coworking provider. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and Owl Carousel, with Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, though accessibility and SEO optimizations are basic. No CMS or hosting provider details are evident. Security practices are minimal with no detected security headers or privacy policies, indicating room for improvement in compliance and protection. Security posture is moderate; HTTPS is assumed but no explicit security headers or privacy policies are present. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is consistent with the business claims, showing domain registration in 2021, appropriate for a small startup. Contact information is clear and trustworthy, with no suspicious external links or content detected. Overall, the website is functional and professional but lacks critical privacy and security policies. Strategic improvements in security headers, privacy compliance, and incident response readiness are recommended to enhance trust and regulatory adherence.

C

CNC Obrábění Pavlišen

cncobrabenipavlisen.cz

41

CNC Obrábění Pavlišen is a small Czech manufacturing business specializing in CNC machining, metalworking, and locksmith services. The company offers both serial and custom production of machine parts and tools using modern CNC equipment. Their website presents basic business information, including contact details and product images, targeting local industrial clients. The technical infrastructure is simple, relying on standard HTML and CSS without advanced frameworks or CMS. The site lacks privacy and cookie policies, security headers, and visible HTTPS confirmation, indicating a minimal security posture. No forms or tracking technologies are present, suggesting limited data collection. Overall, the business appears legitimate and consistent with its domain registration data, but the website could improve in security and compliance aspects.

P

Pejšův mlýn spol. s r.o.

pejsuvmlyn.cz

43

Pejšův mlýn spol. s r.o. is a Czech milling company with a rich historical background dating back to the 16th century. The company operates multiple mills including Pejšův mlýn Sedlčany, Mlýn Křesín, and Mlýn Mirotice, producing high-quality flour using traditional methods. The website presents the business as a regional leader in milling with a focus on quality and certification. Technically, the website is built on Angular 14, uses Google Fonts and Google Tag Manager, and is moderately optimized for mobile devices. However, it lacks explicit privacy and cookie policies, and no security headers were detected, indicating room for improvement in security and compliance. The domain registration data is consistent with the business claims, showing a long-standing presence since 2001. Overall, the website is professional and trustworthy but should enhance its privacy compliance and security posture.

P

Paliva Větrovský

palivavetrovsky.cz

33

Paliva Větrovský is a small regional business based in the Czech Republic specializing in the sale and delivery of various types of coal and briquettes, primarily serving the Příbram region. The company emphasizes quality fuel products with guaranteed origin and offers both personal pickup and delivery services. The website is built on WordPress using common plugins and frameworks such as Bootstrap and jQuery, with moderate performance and basic mobile optimization. Security posture is weak due to lack of HTTPS and missing security headers, although some basic protections like copy protection scripts are implemented. Privacy compliance is limited, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy for its business scope but requires significant improvements in security and privacy to meet modern standards.

K

Kovohutě Příbram

kovopb.cz

41

Kovohutě Příbram is a Czech company specializing in the recycling of lead, precious metals, electronic waste, and lithium batteries, alongside manufacturing lead and tin-based products. The company holds a significant regional position in the recycling and manufacturing sectors, serving both businesses and individuals with a broad product and service portfolio. The website is built on WordPress with modern plugins and technologies, offering good content quality and user experience. Security posture is adequate with HTTPS and cookie consent implemented, though improvements are needed in privacy policy publication and security headers. The absence of WHOIS data limits domain trust assessment but does not detract from the professional presentation and business credibility. Strategic recommendations include enhancing privacy compliance and security best practices to strengthen overall trust and compliance.

The website brdonos.cz represents a small-scale, local sports event organizer focused on the annual Brdonoš triathlon and related activities in Podlesí, Czech Republic. It provides event information, registration links, partner acknowledgments, and merchandise sales. The site is built on Joomla CMS with Bootstrap and standard web technologies, hosted by a Czech provider (WEDOS). The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO. Security posture is adequate with HTTPS and CSRF tokens but lacks security headers and cookie consent mechanisms, indicating room for improvement in compliance and security best practices. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

ASK Dipoli is an athletic sports club based in the Czech Republic, founded in 2018, serving approximately 900 members ranging from young children to adults. The club offers professional and hobby training in athletics, running, beach volleyball, weightlifting, and organizes workshops, camps, and competitions. It holds a strong regional position as the second largest club in the Central Bohemian Region. Technically, the website is built on the Weebly platform, utilizing common web technologies such as jQuery and Google Analytics, with embedded widgets for event calendars and social media feeds. The site is moderately optimized for mobile and SEO, with a clear navigation structure and good content relevance. Security posture is basic, lacking visible security headers and privacy compliance mechanisms. WHOIS data is unavailable, limiting domain trust assessment, but the website's active social media presence and detailed content support legitimacy. Overall, the site is functional and professional but would benefit from enhanced security and privacy features.

S

Sportovní zařízení města Příbram

juniorklubpribram.cz

39

Junior Klub Příbram is a local multi-genre cultural club located in Příbram, Czech Republic, offering a variety of events including concerts, lectures, theatre, and children's activities. The club also provides venue rental services for corporate and private events. The website reflects a community-focused business model targeting a broad audience including families and local residents. The site is professionally designed with good content quality and clear navigation, supporting mobile responsiveness and basic accessibility. Technically, the site uses jQuery and custom JavaScript with CSS styling, served over HTTPS with a valid SSL certificate, but lacks advanced security headers and detailed security policies. Privacy compliance is addressed with a cookie consent mechanism and a basic privacy policy page, indicating awareness of GDPR requirements. However, the absence of WHOIS data and explicit company contact emails or phone numbers slightly reduces business credibility. Overall, the site is trustworthy and functional but could improve in security posture and transparency.

5

5M square s.r.o.

novesvetlo.cz

43

5M square s.r.o. operates the website novesvetlo.cz, specializing in the sale of healthy and biodynamic lighting products including full-spectrum LED strips, blue light blocking glasses, and lighting solutions designed to support healthy sleep. The company targets customers seeking lighting solutions with positive health impacts, positioning itself as a niche e-commerce provider in the Czech Republic's energy-related retail sector. The website is professionally designed with clear navigation and good content relevance, supporting a positive user experience. Technically, the site uses established JavaScript libraries such as jQuery and Flexslider, hosted likely with WEDOS, and implements cookie consent mechanisms, though lacks advanced security headers and explicit incident response information. Security posture is moderate with no critical vulnerabilities detected but could be improved with enhanced HTTP security headers and documented security policies. Overall, the domain registration data aligns well with the business, indicating legitimacy and trustworthiness. Strategic recommendations include improving security headers, publishing security policies, and enhancing analytics and marketing transparency.

B

Bc. Jiří Trnka

musicgate.cz

44

MUSICGATE.cz is a Czech Republic-based media portal specializing in music-related content including news, event invitations, press releases, photo and video reports, interviews, and reviews. Founded in 2016 and operated by Bc. Jiří Trnka, the site targets music enthusiasts primarily within the Czech Republic. The business model revolves around content publishing supported by advertising partnerships and sponsored banners. The portal maintains a consistent brand presence and offers a comprehensive range of music-related services, positioning itself as a niche leader in the Czech music media space. Technically, the website employs a custom CMS with a technology stack including jQuery, jQuery UI, Google Fonts, and standard web technologies. Hosting is linked to the registrar REG-GRANSY and nameserver svethostingu.eu. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Advertising is managed primarily through the Sklik network, with transparent ad placements and cookie consent mechanisms in place. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers such as CSP or HSTS. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, the site lacks a formal security policy or vulnerability disclosure mechanism. Overall, the security posture is adequate but could be improved with additional headers and incident response documentation. The overall risk assessment is low, with no signs of malicious content or blocking mechanisms. The site is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic recommendations include enhancing security headers, implementing a security.txt file, and formalizing incident response policies to further strengthen the security posture and user trust.

E-solutions, s.r.o. is a Czech-based technology company specializing in custom internet projects including web development, internet applications, mobile apps, and price monitoring services. With over 21 years of market presence and a solid client base, the company positions itself as a professional and experienced service provider in the Czech Republic. The website reflects a modern and professional digital presence with good design and user experience, supporting both Czech and English languages. Technically, the site uses modern JavaScript libraries, Google Analytics, Tag Manager, and Google Maps API, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers and formal privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the detailed contact information and business presentation support legitimacy. Overall, the website is a reliable representation of a small technology service company with room for improvement in privacy and security transparency.

ALARIS Czech Republic s.r.o. is a Czech company specializing in manufacturing and retailing high-quality shading systems including bioclimatic pergolas, screen roller blinds, aluminum sunshades, and carports. The company positions itself as a modern, design-focused brand serving residential and commercial customers seeking aesthetic and functional outdoor shading solutions. The website content is well-structured, professionally designed, and provides detailed product information and company background. Technically, the website uses modern web technologies including JavaScript, CSS, and a chatbot widget, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of security headers and explicit incident response information suggests room for improvement. The lack of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional appearance and business information presented. Overall, the website is safe, compliant with GDPR, and trustworthy for general users.

A

ATONdesign s.r.o.

atondesign.cz

45

ATONdesign s.r.o. is a Czech Republic based professional design studio specializing in graphic design, interior design, and exhibition stand construction. With over 25 years of experience, the company positions itself as a trusted partner for businesses seeking to enhance their brand and physical spaces through creative design solutions. The website reflects a well-structured and professional digital presence, leveraging WordPress CMS and modern web technologies to deliver a responsive and user-friendly experience. Security measures such as HTTPS and Google reCAPTCHA are implemented, though some improvements in security headers and privacy compliance are recommended. Overall, the website and business appear legitimate and credible, though the absence of WHOIS data and privacy policies slightly reduce trust levels.

O

OVISION CZ a.s.

ovision.cz

46

OVISION CZ a.s. is a Czech-based company specializing in comprehensive document services, including reprography, postal operations, digitalization, and outsourcing of printing environments. Established in 2014, the company has grown through multiple acquisitions and operates several subsidiaries under the OVISION GROUP brand. Their target audience primarily consists of businesses seeking efficient document management and outsourcing solutions. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on Joomla CMS with UIkit framework and uses modern JavaScript libraries, providing a moderate performance and good mobile optimization. However, there are gaps in privacy compliance and security best practices, such as the absence of privacy and cookie policies and missing security headers. No WAF or blocking mechanisms were detected, and the domain registration aligns well with the company's business claims, indicating legitimacy.

M

Městský úřad Votice

mesto-votice.cz

45

The website www.mesto-votice.cz serves as the official online portal for the town of Votice, Czech Republic. It provides residents and visitors with municipal information, news, public services, event calendars, and contact details. The site is clearly targeted at local citizens and stakeholders interested in town governance and community activities. The business model is that of a government municipal service portal, focusing on transparency and public communication. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript. It integrates Google services like Maps and Translate to enhance user experience and accessibility. The site demonstrates good mobile optimization and accessibility features, with a clear navigation structure and consistent branding. From a security perspective, the site uses HTTPS, which is a fundamental security measure. However, it lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and enhanced security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data is a concern for domain legitimacy but does not directly impact the website's operational security. Overall, the website is a well-maintained municipal portal with good content quality and user experience. Strategic improvements in security headers, privacy compliance mechanisms, and domain registration transparency would enhance trust and security posture significantly.

T

ThePrime.cz

theprime.cz

48

ThePrime.cz is a specialized subscription-based news portal focused on the Czech and Slovak real estate markets, operated by journalist Robert McLean. It provides market news, investment insights, event information, and multimedia content targeting real estate professionals and investors in the region. The business model centers on subscription revenue and content delivery through a WordPress-based platform. Technically, the website employs a modern WordPress CMS with various plugins for analytics, payment processing, and content management. The site is moderately optimized for performance and mobile devices, with good SEO practices and structured data implementation. Security posture is adequate with HTTPS and cookie consent mechanisms, but could benefit from enhanced security headers and published security policies. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the website's regional focus and business age. Overall, the site presents a professional and trustworthy presence in its niche market.

F

FestivalyVina

festivalyvina.cz

41

FestivalyVina operates the largest wine festival tour in the Czech Republic, organizing and promoting multiple wine-related events across various cities. The website serves as an official portal providing event calendars, galleries, and information about wine producers, targeting wine enthusiasts and the general Czech public interested in wine culture. Technically, the site uses established JavaScript libraries such as jQuery and Swiper.js, integrates Google Analytics for visitor tracking, and loads resources over HTTPS, indicating a modern but moderately optimized infrastructure. Security posture is adequate but could be improved by implementing security headers and publishing privacy and cookie policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and partner affiliations suggest a legitimate business. Overall, the site is professional, content-rich, and well-branded but requires enhancements in privacy compliance and security transparency.

M

Mittelstand-Digital Zentrum Zukunftskultur

digitalzentrum-zukunftskultur.de

42

Mittelstand-Digital Zentrum Zukunftskultur is a German organization dedicated to supporting small and medium-sized enterprises (SMEs) in their digital transformation journey, focusing on building future-proof corporate cultures. The center offers a variety of services including workshops, events, practical examples, and media resources, all aimed at fostering digital responsibility, sustainability, and the adoption of artificial intelligence technologies. It operates as part of the nationwide Mittelstand-Digital network and is funded by the German Federal Ministry for Economic Affairs and Energy (BMWK), positioning it as a trusted partner for SMEs in Germany. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, hosted on Hetzner servers. SEO is well-implemented with Yoast SEO Premium, and the site is mobile-optimized with good performance. Analytics are handled via Matomo with privacy-respecting configurations such as DoNotTrack and disabled cookies, reflecting a strong commitment to user privacy. From a security perspective, the site enforces HTTPS and employs anti-spam measures on forms, but lacks visible security headers and formal security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy, though cookie consent mechanisms are absent. Overall, the website presents a professional, trustworthy, and content-rich platform for its target audience of German SMEs. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security and vulnerability disclosure policies to further strengthen trust and compliance.

G

Ghoda s.r.o.

ghoda.cz

42

Ghoda s.r.o. operates a specialized e-commerce platform focused on horse cosmetics, repellents, and feed supplements, primarily serving the Czech Republic market. The company positions itself as a trusted partner for equine care products, offering a curated selection of reputable brands and supporting a partner reseller program. The website demonstrates a solid digital presence with clear business information, active social media links, and customer engagement through newsletters and articles. Technically, the website employs modern web technologies including Bootstrap 5, jQuery, and Google Tag Manager, ensuring responsive design and moderate performance. The presence of cookie consent mechanisms and privacy policies indicates compliance with GDPR requirements. However, the absence of WHOIS data limits transparency regarding domain registration details. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and a published security policy or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Advertising and tracking are managed with user consent, balancing marketing needs with privacy. Overall, the website is professional, trustworthy, and well-structured, though improvements in domain transparency and security header implementation are recommended to enhance trust and compliance.

H

Hobby Horse by Andy

hobbyhorsebyandy.cz

47

Hobby Horse by Andy is a Czech Republic based e-commerce business specializing in accessories and apparel for the niche sport of Hobby Horsing. The website offers a variety of products including bridles, hoodies, and t-shirts tailored for hobby horse riders. The business is small and recently founded in 2023, targeting hobby horsing enthusiasts primarily in the Czech market. The site is built on WordPress with WooCommerce, leveraging modern plugins and themes to provide a functional and visually appealing shopping experience. Social media integration with Facebook and Instagram supports community engagement. From a technical perspective, the website is well-structured, mobile optimized, and uses HTTPS, but lacks some advanced security headers and explicit security policies. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page in Czech. No contact emails or phone numbers are explicitly provided on the homepage, which could impact customer trust. Overall, the website demonstrates a good balance of content quality, technical implementation, and privacy compliance, suitable for a small niche e-commerce business.

K

Klub Sportowy Adamus Equestrian

adamusequestrian.pl

39

Adamus Equestrian is a Polish sports club specializing in show jumping, represented by top Polish riders and founded by Bartosz Adamus, a successful businessman and active competitor. The website is professionally designed using WordPress and the Divi theme, showcasing stallions, riders, transport services, and partnerships with strategic sponsors. The technical infrastructure is modern and well-maintained, hosted by cyber_Folks S.A., with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements are recommended in DNSSEC implementation and security headers. Privacy compliance is partially met with a GDPR privacy policy available but lacking a cookie consent mechanism. Overall, the website presents a credible and trustworthy business presence in the equestrian sports niche.

P

Petra Nollová

fyzooterapie.cz

43

Petra Nollová operates a specialized physiotherapy and management service for horses and dogs, focusing on manual therapy, rehabilitation, and training. The business targets horse owners, riders, and those involved in equine sports, offering personalized care and management solutions. The website positions the business as a small, professional service provider within the Czech Republic, founded recently in 2023. Technically, the site is built on WordPress using the Enfold theme and Yoast SEO plugin, hosted by a Czech hosting provider. The site is mobile-optimized and provides clear navigation and professional content. Security posture is adequate with HTTPS enabled and secure form handling, but lacks security headers and privacy compliance elements such as privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security practices.

The website www.mikrop.cz is currently inaccessible due to a critical PHP fatal error related to memory exhaustion, preventing any content from loading. The absence of WHOIS data further complicates verification of domain ownership and legitimacy. No metadata, contact information, or business details are available for analysis. The technical infrastructure appears to be misconfigured or poorly maintained, with no evidence of HTTPS or security headers, indicating a weak security posture. Overall, the site is non-functional and lacks any visible trust or compliance indicators.

Rekomal - Malíři pokojů is a small, local service provider specializing in interior painting, renovations, and related construction services primarily in the Ostrava region of the Czech Republic. The company offers a range of services including painting, plasterboard installation, facade repairs, and home insulation. The website is built on WordPress using popular plugins such as Elementor and Yoast SEO, indicating a moderate level of digital maturity. The site is well-structured and provides clear information about services and references, but lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is basic with no advanced headers or incident response contacts visible. Overall, the website is accessible, professional, and serves its target audience effectively but would benefit from enhanced security and privacy compliance measures.

Úklidy Morava is a small, local cleaning services company based in Moravská Ostrava, Czech Republic, offering household, office, and communal area cleaning services primarily in the Moravian region. The company emphasizes professional and precise cleaning work with a long-standing presence since 1995, supported by a domain registered in 2013. The website presents clear business information and contact details but lacks formal privacy and cookie policies, which are important for compliance and user trust. Technically, the site uses older JavaScript libraries and lacks visible advanced security headers, indicating room for improvement in security posture. Overall, the site is functional and professional but would benefit from modernization and enhanced compliance measures.

M

Malíři Morava

maliri-morava.cz

43

Malíři Morava is a small, established painting and renovation service provider operating primarily in the Morava region of the Czech Republic. The company offers a range of services including interior painting, facade coatings, drywall installation, bathroom renovations, and masonry work. The website is built on WordPress with a modern design and includes customer testimonials and clear contact information, supporting its credibility and local market presence. Technical infrastructure leverages common WordPress plugins and libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is partial, with cookie consent mechanisms present but no privacy or terms of service pages found. Overall, the website is professional and trustworthy for its business domain but could improve in compliance and security best practices.

M

Moonseven

moonseven.fr

48

Moonseven is a small Paris-based digital agency specializing in WordPress development, SEO training, content marketing, and digital strategy consulting. The company targets businesses and professionals seeking tailored WordPress and SEO solutions. Their market position is niche with a focus on quality and client engagement, supported by a portfolio including notable clients such as Disneyland Paris and Bouygues. Technically, the website is built on WordPress with common plugins like Yoast SEO and uses Google Analytics for tracking. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit privacy/cookie policies. WHOIS data is missing, which impacts domain legitimacy assessment. Overall, the website is functional and professional but would benefit from enhanced compliance and security measures.

U

UFISC

ufisc.org

41

UFISC is a French non-profit organization dedicated to supporting cultural structures and promoting social economy within the arts and culture sector. The website serves as an information hub offering news, webinars, and resources primarily targeting cultural professionals and associations. The organization has an established presence since 2007, reflected in the domain age and consistent content updates. Technically, the site is built on Joomla CMS with standard web technologies including jQuery and Select2, and integrates Google Analytics and Twitter widgets for analytics and social engagement. Security posture is moderate with HTTPS enabled and domain protections in place, but lacks DNSSEC and security headers, and does not publicly disclose privacy or cookie policies, which are compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, content-rich, and safe for general audiences.

D

Online procvičování DRILL & SKILL

drillandskill.com

40

The website 'Online procvičování DRILL & SKILL' is an educational platform primarily targeting Czech-speaking students and teachers. It offers ready-made and customizable drills across various subjects including math, chemistry, natural sciences, and geography. The platform aims to save schools money on paper and teachers time by providing efficient online practice tools. The market position is niche, focusing on educational institutions in the Czech Republic with a small-scale operation. Technically, the website uses standard web technologies such as HTML5, CSS, JavaScript with jQuery and Shadowbox.js for video content. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. There is no detected CMS or hosting provider information. The site is functional with a login form but lacks modern security headers and visible HTTPS confirmation. From a security perspective, the site shows basic security hygiene with POST method login forms but lacks critical security headers like Content-Security-Policy and anti-CSRF protections. No privacy or cookie policies are present, indicating poor privacy compliance. The WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness despite the professional and safe content. Overall, the website is a functional educational tool with moderate technical quality but significant gaps in security, privacy compliance, and domain registration transparency. Strategic improvements in security posture, privacy policies, and domain legitimacy verification are recommended to enhance trust and compliance.

Č

Česká lingvistická olympiáda

lingol.cz

43

The website www.lingol.cz represents the Česká lingvistická olympiáda, a Czech national educational competition focused on linguistics for high school students. It is co-organized by faculties of Charles University and supported by the Ministry of Education and Palacký University. The site provides information about the competition, its structure, and participation details, targeting students and educators interested in linguistic problem-solving. The business model is non-profit and educational, with a small organizational size and a clear focus on academic collaboration. Technically, the website uses standard web technologies including jQuery, Highcharts, and DataTables for interactive content presentation. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features and modern frameworks. No CMS or hosting provider details are evident. The site is well-branded and professionally designed with consistent navigation and clear content structure. From a security perspective, the site lacks visible security headers and published privacy or cookie policies, which impacts compliance and trust. The WHOIS data is missing, which reduces transparency and trustworthiness, although the site’s academic affiliations mitigate some concerns. No WAF or blocking mechanisms were detected, and no vulnerabilities or exposed sensitive data were found in the provided content. Overall, the website is a credible educational resource with good content quality and business credibility but requires improvements in security posture, privacy compliance, and transparency to enhance trust and compliance with modern standards.

K Faktor is a certified testing laboratory specializing in measuring physical risk factors in both occupational and non-occupational environments within the Czech Republic. The company offers a range of accredited services including lighting intensity measurement, noise and vibration analysis, dust measurement, microclimate condition assessments, and energy audits. Their market position is supported by official accreditation and a clear focus on safety and compliance with government regulations. The website reflects a small but professional business targeting clients who require certified environmental and workplace safety measurements. Technically, the website is built using modern web technologies such as Bootstrap 5.1.3, ensuring responsive design and good user experience across devices. Hosting is managed via websupport.cz, a known Czech hosting provider. The site is moderately performant with good SEO practices but lacks advanced accessibility features. No CMS or analytics tools are detected, indicating a simple but effective technical infrastructure. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable scripts. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user confidence.

É

Éclaireuses & Éclaireurs de France

eedf.fr

44

Éclaireuses & Éclaireurs de France (EEDF) is a French non-profit scouting association promoting secular scouting and youth development. The organization offers educational programs, camps, and volunteer opportunities aimed at children and young adults. The website is professionally designed, mobile-optimized, and provides comprehensive information about the association's mission, age groups, and activities. It is well integrated with social media and uses modern web technologies including WordPress and WooCommerce for content and e-commerce functionalities. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts domain trustworthiness. Overall, the site is trustworthy, informative, and serves its target audience effectively.

C

COSF Basket

cosf.fr

42

COSF Basket is a local basketball club based in Saint-Fons, France, providing community sports activities and information about team rosters, match schedules, and club history. The website serves primarily local players, fans, and community members interested in basketball. The business model is centered around sports club operations and community engagement, with a focus on the 2025/26 season. Technically, the website is built using modern Angular framework with Material Design components and Google Maps integration, hosted by OVH. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enabled and domain registration protections, but lacks security headers and formal privacy or cookie policies. No forms or analytics scripts were detected, indicating minimal data collection and tracking. Overall, the site is safe, trustworthy, and serves its intended audience well, though it would benefit from enhanced privacy compliance and security best practices.

V

Vyšší odborná škola, Střední průmyslová škola a Střední odborná škola, Varnsdorf, příspěvková organizace

skolavdf.cz

47

The website represents Vyšší odborná škola, Střední průmyslová škola a Střední odborná škola, Varnsdorf, a public educational institution in the Czech Republic offering secondary and higher vocational education. It targets students and prospective students with detailed program offerings, events, and student services. The institution maintains a professional online presence with clear branding and comprehensive content relevant to its educational mission. Technically, the website is built with standard web technologies (HTML5, CSS3, JavaScript) and is well-optimized for mobile devices. It uses HTTPS with a good SSL configuration and includes privacy-first cookie consent mechanisms without marketing or tracking cookies, reflecting a strong commitment to user privacy. The site lacks some advanced security headers but follows good security practices overall. Security posture is solid with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data limits domain trust verification, but the presence of official contact information, certifications (ISO 9001), and GDPR compliance indicate a legitimate and trustworthy institution. No signs of malicious or adult content were found, making the site safe for general audiences. Overall, the website scores well on content quality, technical implementation, security, privacy compliance, and business credibility. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure information to further strengthen trust and security.

S

SŠ, ZŠ a MŠ pro zdravotně znevýhodněné, Brno, Kamenomlýnská 2

kamenomlynska.cz

49

The website www.kamenomlynska.cz represents a specialized educational institution in Brno, Czech Republic, serving children and students with various disabilities and special needs. It offers secondary, primary, special primary, and kindergarten education along with additional support services such as a special pedagogical center, student care, and methodical support courses. The institution targets a niche audience requiring tailored educational approaches. Technically, the website employs modern web technologies including jQuery, Nette Framework, Flatpickr, Slick slider, and Google reCAPTCHA v3, ensuring a functional and interactive user experience. The site is well-structured, mobile-optimized, and includes SEO and accessibility considerations. Security posture is strong with HTTPS enforced and anti-bot measures in place, though some security headers are not detected and WHOIS data is unavailable, which slightly impacts trust. Privacy compliance is well addressed with a clear cookie consent mechanism and GDPR policy. Overall, the site is professional, trustworthy, and safe for general audiences.

G

Gymnázium Zlín - Lesní čtvrť

gymzl.cz

47

Gymnázium Zlín - Lesní čtvrť is a Czech secondary educational institution providing general and language-focused education with a strong emphasis on international cooperation and language certifications. The website reflects a well-established school with active Erasmus+ participation and multiple language programs. Technically, the site uses common web technologies such as jQuery, bxSlider, and Google Analytics, with a custom or unknown CMS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The absence of WHOIS data reduces domain trust slightly but does not detract from the legitimacy of the institution. Overall, the website is professional, secure, and compliant with GDPR, serving its educational audience effectively.

G

Gymnázium Teplice

gymtce.cz

48

Gymnázium Teplice is a secondary grammar school based in the Czech Republic, providing comprehensive secondary education with a focus on preparing students for higher education. The institution actively participates in European educational programs such as Erasmus+ and offers Cambridge Exam preparation, positioning itself as a reputable educational provider in the Ústecký kraj region. The website reflects a medium-sized educational institution with consistent branding and a good level of content quality. Technically, the website employs common JavaScript libraries including jQuery, jQuery UI, Hammer.js, and integrates Facebook SDK for social media functionality. The site is built on the eSchool.cz CMS platform, with moderate performance and basic mobile optimization. SEO and accessibility features are present but could be enhanced for better compliance and user experience. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating room for improvement in security best practices and privacy compliance. The absence of WHOIS data raises minor concerns about domain registration transparency, though the active content and partner affiliations support the site's legitimacy. Overall, the website is professional and trustworthy for its educational purpose but would benefit from enhanced privacy disclosures, security headers, and improved mobile and accessibility features to strengthen its digital maturity and compliance posture.

S

Střední škola řemesel, Šumperk

skolasumperk.cz

45

Střední škola řemesel, Šumperk is an educational institution specializing in vocational and technical education in the Czech Republic. The school offers a wide range of study programs including apprenticeship, maturitní (graduation) and extension courses, focusing on crafts and technical trades. It maintains strong partnerships with local and regional companies, providing practical training and opportunities for students. The website reflects a well-structured and professionally maintained digital presence, supporting prospective students and stakeholders with comprehensive information and resources. Technically, the site employs modern web technologies such as jQuery, Nette Framework, Flatpickr, and integrates Google services including reCAPTCHA and Tag Manager, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS and form protections, though improvements in security headers and explicit incident response policies are recommended. Overall, the site is compliant with GDPR and cookie regulations, providing clear privacy and cookie policies with consent mechanisms. The domain WHOIS data is unavailable, which slightly impacts trust but the website content and external references strongly indicate legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date third-party libraries to further strengthen security and compliance.

G

Gymnázium Třebíč

gtr.cz

36

Gymnázium Třebíč is a Czech educational institution providing secondary education through 8-year and 4-year gymnasium programs, including a specialized sports preparation track. The school emphasizes meaningful curriculum, critical thinking, personal development, and offers a variety of extracurricular activities including international exchanges and Erasmus+ accreditation. The website is professionally designed using WordPress CMS and integrates common web technologies such as jQuery and Google Tag Manager. It is mobile-optimized and provides clear navigation and relevant content for students and prospective applicants. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts trust but the website content and contact information appear legitimate and consistent with an educational institution.

S

Střední uměleckoprůmyslová škola sklářská Valašské Meziříčí

sklarskaskola.cz

28

Střední uměleckoprůmyslová škola sklářská Valašské Meziříčí is a specialized secondary educational institution focused on glass art, design, and related artistic crafts. The school offers various study programs including glass design, applied painting, industrial design, and artistic crafts, targeting students interested in these creative fields. The website reflects a professional and consistent brand presence with clear navigation and relevant content for prospective students and parents. Technically, the site uses modern web technologies such as jQuery, Google Fonts, and Lottie animations, providing a visually engaging experience, though mobile optimization and accessibility could be improved. Security-wise, the site uses HTTPS and Google Analytics but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the website content and contact information appear trustworthy. Strategic improvements in security headers, privacy compliance, and domain registration verification are recommended.

S

Střední škola technická

kourilkova8.cz

45

Střední škola technická is a Czech technical secondary school located in Přerov, offering a variety of technical and vocational education programs. The website reflects a well-established educational institution with a focus on practical and theoretical training in fields such as mechatronics, automechanics, optics, and more. The school maintains partnerships with notable companies, enhancing student opportunities for internships and employment. Technically, the website is built on WordPress with modern plugins and technologies, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, security headers, and CAPTCHA integration, although formal security and incident response policies are not published. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy page. Overall, the site is professional, trustworthy, and serves its educational audience effectively.

G

Gymnázium Kadaň

gymka.cz

45

Gymnázium Kadaň is a well-established secondary educational institution in the Czech Republic offering comprehensive study programs including eight-year and four-year tracks, language exam preparation, and extracurricular activities. The website reflects a professional and modern digital presence built on WordPress with various plugins enhancing user experience and content delivery. Privacy and cookie policies are clearly presented with an active consent mechanism, demonstrating compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no evident vulnerabilities in the site content. The site is trustworthy and targets students, parents, and the educational community effectively.

V

Vyšší odborná škola zdravotnická a Střední zdravotnická škola, Praha 4, 5. května 51

zdravotnickaskola5kvetna.cz

45

The website represents Vyšší odborná škola zdravotnická a Střední zdravotnická škola, a healthcare-focused educational institution based in Prague, Czech Republic. It offers secondary and higher vocational education in healthcare disciplines, targeting students and prospective students interested in healthcare careers. The site is well-structured with clear navigation and relevant content, supporting its educational mission. Technically, the website employs modern JavaScript libraries such as jQuery, Flatpickr, Tippy.js, and Slick carousel, alongside the Nette Framework for backend and AJAX functionalities. The site is mobile-optimized, accessible, and uses HTTPS with Google reCAPTCHA for form security, indicating a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and uses secure form validation and CAPTCHA to mitigate automated abuse. However, it lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected, suggesting a generally secure posture. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. The absence of WHOIS data limits domain legitimacy verification, but the website's content and structure support its authenticity as an educational institution. Strategic recommendations include enhancing security headers, publishing detailed security policies, and maintaining up-to-date third-party libraries.

S

Střední škola letecké a výpočetní techniky Odolena Voda

sslvt.cz

44

Střední škola letecké a výpočetní techniky Odolena Voda is a specialized secondary educational institution in the Czech Republic focusing on aviation mechanics and information technology. The school aims to preserve and develop Czech aviation traditions within the EU framework and offers programs compliant with European Part 147 legislation. It maintains strong partnerships with key aviation industry players such as Aero Vodochody and Czech Airlines Technics, enhancing its market position and practical training capabilities. The website reflects a professional educational institution targeting prospective students and stakeholders in the aviation and IT sectors. Technically, the website employs modern web technologies including jQuery, Nette Framework, Flatpickr, and Slick carousel, with integrations for Google reCAPTCHA and Cookiebot for security and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. However, some security headers are not explicitly set, and there is no visible published security policy or incident response information. From a security perspective, the site uses HTTPS and has implemented anti-bot measures and cookie consent management, indicating a good baseline security posture. The absence of WHOIS data limits domain trust assessment, but the presence of industry partnerships and compliance indicators supports legitimacy. No critical vulnerabilities or suspicious content were detected. Overall, the website is a credible and professional representation of an educational institution with a solid technical foundation and good privacy practices. Strategic improvements in security headers and transparency around security policies would enhance trust and compliance further.

M

Mezinárodní Montessori škola Olomouc, z.ú.

montessoriolomouc.cz

49

Mezinárodní Montessori škola Olomouc, z.ú. is a small, specialized educational institution based in the Czech Republic, offering Montessori preschool and primary education with bilingual English-Czech instruction. The school is accredited by the Association Montessori Internationale and the Czech Ministry of Education, positioning it as a reputable niche player in the local education sector. The website provides comprehensive information about its educational philosophy, programs, and contact details, targeting parents seeking quality Montessori education for children aged 1.5 to 15 years. Technically, the site is built on WordPress with common plugins and integrates Google Analytics and Tag Manager for tracking. It is mobile-optimized and SEO-friendly with good content quality and navigation. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal security policies. The domain is aged appropriately but currently expired, which poses a risk to continuity. Overall, the site is trustworthy and professional but would benefit from improved security practices and domain renewal.