Security Directory

M

MKC Hořovice

cibulovyjarmark.cz

39

The website cibulovyjarmark.cz serves as the official online presence for the Cibulový jarmark (Onion Fair) event held in Hořovice, Czech Republic. It provides visitors and sellers with essential information including event dates, program details, maps, and contact information. The site is positioned as a local cultural event platform, targeting attendees and vendors interested in the fair. The business model revolves around event organization and promotion, with a small-scale operational footprint and a focus on community engagement. Technically, the website is built on WordPress using Elementor and several plugins such as Smart Slider 3 and Moove GDPR Cookie Compliance. It employs modern web technologies including jQuery and is hosted by hosting-profi.cz. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance characteristics. SEO and metadata are implemented at a basic level, supporting discoverability. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and does not provide explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. The domain registration is recent but consistent with the event's timeline and location, supporting legitimacy. Overall, cibulovyjarmark.cz is a well-structured, trustworthy event website with good privacy compliance and a solid technical foundation. Strategic improvements in security headers, incident response transparency, and expanded contact information could enhance its security posture and user trust further.

Ř

ŘÍHA

naholou.cz

47

The website 'Na holou' represents a small cultural theatre group based in the Czech Republic, active since at least 2005. It offers information about theatrical performances, photo and video galleries, and contact details primarily via email and Facebook. The business model appears to be focused on local cultural entertainment with a niche audience. Technically, the site is built using RapidWeaver CMS with common JavaScript libraries and Google Fonts, but lacks modern security and privacy features. The site uses HTTP URLs without HTTPS enforcement, lacks privacy and cookie policies, and does not implement security headers or secure forms. Overall, the security posture is weak, and privacy compliance is minimal. The domain age and WHOIS data support the legitimacy of the site as a long-standing small cultural entity. Strategic improvements in security, privacy compliance, and HTTPS adoption are recommended to enhance trust and protect visitors.

České výlety is a Czech Republic-focused travel and tourism website providing comprehensive tips for trips, events, and accommodation within the country. The site acts as an informational portal linking to partner travel agencies and accommodation providers, primarily Česká pohoda. The website content is rich in travel-related information but lacks explicit privacy and terms of service documentation. Technically, the site uses older web technologies such as jQuery 1.x and integrates advertising and tracking services including Google Analytics and Adsense. Security posture is moderate with HTTPS implied but no advanced security headers detected. The absence of WHOIS data reduces domain trustworthiness, though the site appears legitimate based on content and partner references. Cookie consent mechanisms are implemented, indicating some level of privacy compliance.

R

Rádio Relax

radio-relax.cz

59

Rádio Relax is a well-established regional radio station in the Czech Republic, founded in 1998. It offers a variety of services including FM radio broadcasting across multiple cities, online streaming, podcasts, and local news coverage. The station targets a general audience within its broadcast regions and operates primarily on advertising revenue. The website is built on WordPress, leveraging common plugins for content management, cookie compliance, and media presentation. The technical infrastructure is modern enough to support a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, though advanced security headers and incident response policies are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

CLASIC CZ s.r.o. is a Czech manufacturing company specializing in industrial furnaces and related devices, with a well-established presence since 1998. Their website showcases a broad portfolio of furnace types and control systems, targeting industrial clients requiring specialized thermal equipment. The company appears to operate primarily in the manufacturing sector within the Czech Republic. Technically, the website is built using Nicepage CMS with standard web technologies such as HTML5, CSS3, JavaScript, and jQuery, and is hosted via a Czech hosting provider. The site is mobile-optimized and presents content clearly, though it lacks advanced SEO and accessibility features. Security posture is basic, with no evident security headers or published security policies, and no HTTPS status was determinable from the provided data. Privacy compliance is minimal, as no privacy or cookie policies are found. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures.

S

SABE, spol. s r.o.

sportovnipohary.cz

47

SABE, spol. s r.o. operates a well-established e-commerce platform specializing in the sale and production of sports trophies, medals, figurines, diplomas, and related accessories. With a business history dating back to 1990, the company positions itself as a leading supplier in the Czech Republic, offering a vast inventory and quick order fulfillment. The website reflects a professional retail operation targeting sports clubs, event organizers, schools, and individuals seeking quality sports awards. Technically, the site employs modern web technologies including jQuery, Google Analytics, Microsoft Clarity, and retargeting pixels from Facebook and Seznam, ensuring effective marketing and user behavior analysis. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism with granular controls, but lacks some advanced security headers and publicly available security policies. The absence of WHOIS registration data limits domain trust assessment, though the website content and business information appear legitimate and professional. Overall, the site demonstrates a solid digital presence with room for improvement in security transparency and domain registration visibility.

E

European Business Enterprise

ebe.cz

10

European Business Enterprise (EBE) is a Czech-based company established in 2002, specializing in cybersecurity, GDPR compliance, software development, project management, and data processing services. The company targets businesses and organizations requiring tailored cybersecurity solutions, compliance audits, and training, positioning itself as a trusted provider with ISO certifications and a comprehensive portfolio. The website reflects a professional and consistent brand image with clear navigation and relevant content in Czech, supported by partner projects focused on cybersecurity education and GDPR guidance. Technically, the website employs modern web technologies including Bootstrap, Google Tag Manager, and Mapbox GL JS, delivering a responsive and moderately performant user experience. Hosting and domain registration data align with the company's Czech origin and long-standing presence. However, some technical improvements are recommended, such as implementing cookie consent mechanisms and security headers to enhance privacy and security compliance. From a security perspective, EBE demonstrates good practices with HTTPS enforcement and ISO certifications, but lacks explicit incident response contacts and vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. The overall security posture is solid but could be strengthened by adopting additional security headers and transparency measures. Overall, EBE presents a trustworthy and professional online presence with a strong focus on cybersecurity and compliance services. Strategic enhancements in privacy compliance and security transparency would further improve their risk profile and user trust.

The website setkanimajitelufirem.cz serves as a professional platform organizing regular meetings for owners and founders of family businesses in the Czech Republic. It provides detailed event information, schedules, and registration forms, targeting a niche audience of family business stakeholders. The site is supported by reputable sponsors and partners, enhancing its credibility within the local business community. Technically, the site is built on WordPress with common plugins such as Contact Form 7 and CleanTalk for anti-spam, and uses Bootstrap for responsive design. The infrastructure is adequate for its purpose, with moderate performance and good mobile optimization. Security posture is acceptable with HTTPS enforced and anti-spam measures in place, though it lacks some advanced security headers and cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, with minor improvements recommended in security and privacy compliance.

Apartmány Ralsko is a small hospitality business based in the Czech Republic offering accommodation in a private apartment complex with facilities for weddings, family events, and corporate training. The website presents a professional and well-structured digital presence built on WordPress with modern plugins such as Revolution Slider and WPBakery Page Builder. The technical infrastructure is adequate for a small business, hosted likely with WEDOS, a Czech hosting provider. Security posture is moderate with HTTPS enabled but lacking important security headers and proper analytics configuration. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is safe and trustworthy but would benefit from enhanced security and compliance measures.

A

Alkom Security, a.s.

alkom.cz

56

Alkom Security, a.s. is a Czech Republic-based company specializing in security and low-voltage systems, operating since 1991. The company positions itself as a market leader offering comprehensive security solutions including installation, remote monitoring, and servicing for residential, commercial, and high-risk clients. Their services also extend to data cabling and mechanical security consulting. The website reflects a mature business with consistent branding and detailed service descriptions, targeting both individual homeowners and institutional clients. Technically, the site is built on WordPress hosted on WordPress.com, utilizing Jetpack for security and analytics. The site is mobile-optimized with good SEO practices but lacks some advanced security headers and explicit cookie consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, though incident response and security policies are not explicitly published. Overall, the site is professional, trustworthy, and compliant with GDPR basics, though improvements in privacy and security transparency are recommended.

The website parkopedia.com is currently inaccessible due to an AWS WAF security verification challenge page that requires human CAPTCHA completion. This blocks access to the actual website content, preventing extraction of business, privacy, or contact information. The domain is registered with GoDaddy.com, LLC since 2007, indicating a mature and legitimate domain. Hosting appears to be on AWS infrastructure with AWS WAF protection in place. Due to the blocked content, no detailed analysis of the website's business model, services, or compliance posture is possible. The security posture is partially observable only in that AWS WAF is used to protect the site from automated access. Overall, the site is legitimate but inaccessible for detailed analysis at this time.

W

WebSite21

website21.cz

54

WebSite21 is a small Czech technology company specializing in custom web development, e-commerce solutions, and mobile application development. With over 15 years of experience, they focus on delivering tailored solutions using PHP frameworks such as Joomla, Nette, and Laravel, as well as C# for mobile apps. Their market position is that of a trusted, experienced provider serving B2B and B2C clients primarily in the Czech Republic. The website demonstrates a high level of professionalism, with comprehensive service offerings, client testimonials, and clear contact information. Technically, the website employs modern web technologies including PHP 8, C#, HTML5, CSS3, UIkit, and jQuery. It is mobile-optimized, fast-loading, and SEO-friendly. The presence of structured data and Google verification tags indicates good digital maturity. Security-wise, the site uses HTTPS with strong SSL configuration and security headers, integrates Google reCAPTCHA on forms, and provides cookie consent mechanisms, reflecting a solid security posture. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy and registration details, which slightly impacts trust. Additionally, no explicit security policy or incident response information is published, which could be improved. Overall, the site is safe, professional, and well-maintained, with minor gaps in transparency and domain registration data. Strategic recommendations include publishing a formal security policy, adding incident response contacts, and considering a vulnerability disclosure program to enhance trust and compliance.

A

AdgravityGroup S.L

neural.one

65

Neural.ONE is a small technology company based in Spain, operated by AdgravityGroup S.L, specializing in AI-powered marketing attribution solutions. Their website presents a professional and consistent brand image focused on delivering real-time marketing insights to optimize campaign ROI. The company targets marketing professionals and businesses seeking advanced attribution analytics. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google reCAPTCHA for bot protection and Google Fonts for typography. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is strong with HTTPS and HSTS enabled, though DNSSEC is not configured. Privacy compliance is basic, with a cookie policy and consent mechanism present but lacking a published privacy policy or terms of service. No direct contact information or incident response details are publicly available, which limits transparency. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

Univerzalni-Pujcka.cz is an informational website operated by Infinea Finance, s.r.o., providing comprehensive consumer information about various types of loans including bank and non-bank loans, quick online loans, and loans without income verification or registry checks. The site serves primarily Czech consumers seeking financial education and loan product comparisons, without directly offering financial products. Technically, the site uses modern JavaScript libraries such as jQuery 3.7.1, Google Analytics for tracking, and Seznam SSP for advertising. It is served over HTTPS with cookie consent mechanisms implemented, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response disclosures. WHOIS data is unavailable, which reduces domain trustworthiness, but the site compensates with clear company information and disclaimers. Overall, the site is professional, content-rich, and user-friendly, targeting general audiences interested in financial products in the Czech Republic.

L

LETECKÉ ZÁŽITKY.CZ - vyhlídkové lety, pilotem na zkoušku, lety balónem, tandemové sekoky padákem a další tipy na originální dárky - Letecké zážitky

leteckezazitky.cz

42

The website www.leteckezazitky.cz is a Czech e-commerce platform specializing in aviation-related experiences such as sightseeing flights, pilot training experiences, balloon flights, parachute jumps, and flight simulators. It targets consumers in the Czech Republic seeking unique aviation gifts and experiences. The site presents a professional and consistent brand image with a good quality of content and user experience. Technically, it employs modern web technologies including Bootstrap, jQuery, and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight. The site is mobile-optimized and uses HTTPS for secure communication. However, the absence of WHOIS data and lack of explicit privacy policy and contact information reduce transparency and trustworthiness. The cookie consent mechanism is implemented, indicating some level of privacy compliance. Overall, the site appears legitimate and well-maintained but would benefit from improved transparency and security disclosures.

P

Pilotní škola AeroPrague.com

aeroprague.com

59

AeroPrague is a specialized flight school based in Prague, Czechia, offering pilot training, aircraft rental, airtaxi, and sightseeing flights primarily targeting individuals interested in aviation across Europe. The website is professionally designed using WordPress and Elementor, integrating modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site employs a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced, bot protection via Cloudflare, and standard security headers in place. However, the absence of WHOIS registration data raises concerns about domain legitimacy, and the lack of explicit privacy policy and terms of service pages indicates room for compliance improvement. Overall, the website presents a trustworthy and professional front for a small transportation business with good technical maturity.

I

International Taekwon-Do Federation

itftkd.org

50

The International Taekwon-Do Federation (ITF) operates a comprehensive online platform serving the global Taekwon-Do community. The website acts as a central hub providing access to official federation information, event details, a dedicated database, live event streaming, and an e-commerce store for official merchandise. The organization positions itself as the supreme authority in ITF Taekwon-Do, targeting practitioners, members, and enthusiasts worldwide. The business model is non-profit and community-focused, emphasizing legacy and authenticity of the martial art founded by Gen. Choi Hong Hi. Technically, the website is built on WordPress using the Twenty Twenty-One theme, enhanced with JavaScript libraries such as jQuery and Owl Carousel for interactive content. The site is hosted likely via GoDaddy, with HTTPS enabled and basic performance and mobile optimization. Accessibility and SEO are implemented at a basic to good level, with internationalization supported through Google Translate integration. From a security perspective, the site benefits from HTTPS and domain locking status but lacks advanced DNS security (DNSSEC) and security headers. There are no visible forms collecting personal data on the main page, and no published security or incident response policies. Privacy compliance is partial, with privacy and cookie policies present but no active cookie consent mechanism. The domain registration is consistent and appropriate for the organization's history, enhancing trustworthiness. Overall, the website is professional, trustworthy, and well-aligned with its mission, though improvements in security headers, privacy compliance, and incident response transparency are recommended to strengthen its security posture and regulatory adherence.

M

Město Milovice

mesto-milovice.cz

48

Město Milovice operates an official municipal website serving residents and visitors with comprehensive local government information, including news, public notices, contacts, and event calendars. The site is positioned as the authoritative source for municipal services in Milovice, Czech Republic, and targets local citizens and stakeholders. The business model is a government service portal focused on transparency and community engagement. Technically, the website uses a modern CMS platform (Vismo), employs HTTPS for secure communications, integrates Google reCAPTCHA for form security, and offers multilingual support via Google Translate. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are missing. From a security perspective, the site maintains a solid posture with encrypted connections and anti-bot measures but lacks explicit incident response contacts and advanced security headers. No vulnerabilities or suspicious content were detected. Privacy compliance is basic but present, with GDPR-related information and cookie policy available. Overall, the website is trustworthy, professional, and well-maintained, with a strong legitimacy score based on domain age and WHOIS data. Strategic improvements could enhance security headers and incident response transparency to further strengthen trust and compliance.

M

Městská část Praha 8

praha8.cz

46

Městská část Praha 8 operates as the official municipal government website for the Prague 8 district in the Czech Republic. It provides residents and visitors with comprehensive information about local government services, news, events, and administrative procedures. The site targets local citizens and stakeholders interested in municipal affairs and public services. The business model is public sector focused, delivering government services and information digitally. The website maintains a consistent brand presence and offers multiple official social media channels to engage with the community. Technically, the website is built on ASP.NET WebForms with Telerik UI components and uses legacy jQuery 1.7.1 alongside modern libraries like Photoswipe. The site is moderately optimized for performance and mobile devices, with good accessibility and SEO practices. However, the use of outdated JavaScript libraries and lack of visible security headers suggest areas for technical improvement. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, indicating awareness of privacy compliance. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data reduces domain trustworthiness, but the official contact information and government affiliation strongly support legitimacy. No explicit security policies or incident response contacts are publicly available. Overall, the website is a well-maintained government portal with good content quality and user experience. Strategic improvements in security headers, updated libraries, and enhanced transparency around security policies would strengthen its security posture and trustworthiness.

O

Obec Psáry

psary.cz

45

The website psary.cz serves as the official online presence for the municipality of Psáry and Dolní Jirčany in the Czech Republic. It provides residents and visitors with comprehensive local government information, including news, events, public notices, waste management, and contact details. The site targets local citizens and community members, offering a centralized platform for municipal services and community engagement. Technically, the website is built on WordPress CMS, utilizing common web technologies such as jQuery and Bootstrap for responsive design and user interface components. It integrates Google reCAPTCHA to protect forms from spam and abuse. The site is hosted likely by Active24, the domain registrar, and employs HTTPS for secure communications. Mobile optimization and SEO practices are adequately implemented, though some accessibility features could be enhanced. From a security perspective, the website demonstrates a moderate security posture with HTTPS enabled and reCAPTCHA integration. However, it lacks explicit security headers and a vulnerability disclosure policy, which are recommended best practices. Privacy compliance is basic, with a privacy policy present but no visible cookie consent mechanism. Contact information is clearly provided, enhancing trust and transparency. Overall, psary.cz is a well-maintained municipal website with good content quality and user experience. Strategic improvements in security headers, privacy compliance, and incident response policies would further strengthen its security posture and regulatory adherence.

M

Město Mníšek pod Brdy

mnisek.cz

40

Mníšek pod Brdy's official municipal website serves as a comprehensive portal for residents and visitors, providing detailed information on local governance, services, cultural events, and community resources. The site is well-structured and targets the local population with relevant municipal content. Technically, the website is built on WordPress using Elementor and several plugins that enhance event management, GDPR compliance, and accessibility. The presence of a cookie consent banner and a detailed privacy policy PDF demonstrates adherence to EU data protection regulations. Security-wise, the site employs HTTPS and uses CAPTCHA services to mitigate automated abuse, though some security headers could be improved. The absence of WHOIS data is likely due to privacy protection, which is reasonable for a municipal entity. Overall, the website is professional, trustworthy, and compliant, with moderate technical performance and good user experience.

O

Obec Nučice

nucice.eu

45

The website nucice.eu serves as the official digital presence of the municipality of Nučice in the Czech Republic. It provides residents and visitors with essential local government information, including official announcements, event calendars, public documents, and contact details. The site targets local citizens and stakeholders interested in municipal affairs and community events. The business model is that of a governmental public service portal, focusing on transparency and community engagement. The website maintains a consistent brand identity aligned with municipal standards and offers good content quality and navigation.

M

Město Sázava

mestosazava.cz

51

Město Sázava operates an official municipal website serving residents and visitors with comprehensive information about local governance, services, cultural events, and public notices. The site is well-structured, featuring news updates, event calendars, waste collection schedules, and contact details, reflecting a mature digital presence for a small government entity. The technical infrastructure leverages common web technologies such as jQuery, Bootstrap, and Swiper.js, ensuring responsive design and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data is a notable gap, potentially impacting domain trustworthiness, but the website's content and branding strongly indicate legitimacy as a municipal portal. Overall, the site balances usability and compliance well, serving its community effectively.

M

Město Zdice

mesto-zdice.cz

9

Město Zdice operates an official municipal website serving the local community of Zdice in the Czech Republic. The site provides comprehensive information about the town, including news, events, municipal services, and contact details. It targets residents, visitors, and local government stakeholders, positioning itself as a trusted source of official information. The website's business model is focused on public service and community engagement, typical for a local government entity. Technically, the website employs a custom CMS with common web technologies such as jQuery, Bootstrap 4.4.1, and other JavaScript libraries. The site is mobile-optimized and features a cookie consent mechanism, indicating some level of digital maturity. However, there is room for improvement in accessibility and performance optimization. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or security policies. No vulnerabilities or exposed sensitive data were detected, but the absence of WHOIS data and security.txt reduces overall trust. The cookie consent banner is a positive privacy compliance indicator, though a dedicated privacy policy page is missing. Overall, the website is functional, professional, and safe for general audiences. The main risk lies in the lack of transparency in domain registration and limited privacy documentation. Strategic improvements in security headers, privacy policies, and WHOIS transparency would enhance trust and compliance.

M

Město Rokycany

rokycany.cz

48

The website rokycany.cz serves as the official digital presence of the city of Rokycany, Czech Republic. It provides comprehensive information about municipal services, local news, cultural and sports events, public notices, and online services for residents and visitors. The site is well-established, with a domain age dating back to 1997, reflecting a mature and stable online presence. The content is primarily in Czech and targets local citizens, businesses, and tourists. The business model is centered on public administration and community engagement, offering transparent access to city governance and services. Technically, the website employs a proprietary CMS (vismo) common among Czech municipalities, leveraging modern web technologies such as HTML5, CSS3, JavaScript, Google reCAPTCHA for form security, and Google Translate for multilingual support. The site is mobile-optimized and features a clear navigation structure, although accessibility features are basic. Performance is moderate, with external dependencies on Google fonts and CDN-hosted libraries. From a security standpoint, the site uses HTTPS and integrates Google reCAPTCHA to protect forms from abuse. However, it lacks explicit security headers and a dedicated security or incident response policy page, which are areas for improvement. Privacy compliance is addressed with a privacy policy and cookie policy, but no active cookie consent mechanism is implemented. Contact information is clearly provided, enhancing trust and transparency. Overall, rokycany.cz is a trustworthy and professional municipal website with good content quality and business credibility. Strategic recommendations include enhancing security headers, implementing cookie consent mechanisms, and publishing detailed security and incident response policies to strengthen compliance and user trust.

G

Ge-Baek Hosin Sool

filipinoma.cz

50

The website www.filipinoma.cz represents a small martial arts school specializing in Filipino martial arts (FMA) training in the Czech Republic. It offers detailed information about its training programs, events, tuition fees, and contact details. The business targets martial arts enthusiasts of all ages, including families, and operates primarily through in-person training sessions and seminars. The site content is well-structured and professionally presented, supporting the school's niche market position. Technically, the website is built on ASP.NET Web Forms with client-side enhancements using jQuery and AOS for animations. It integrates Google Analytics with a consent mechanism that denies ad and analytics storage by default, indicating some privacy awareness. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or security policies. The WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness. No vulnerability disclosures or incident response contacts are provided. Overall, the security posture is moderate but could be improved with better policy disclosures and technical hardening. The overall risk is moderate with no critical issues detected. Strategic improvements in privacy policy publication, security headers, and WHOIS transparency would enhance trust and compliance.

G

Ge-Baek Hosin Sool

gumdo.cz

53

The website www.gumdo.cz represents a small martial arts school specializing in Haidong Gumdo, a Korean sword martial art. The site provides detailed information about the art's history, training schedules, membership fees, and upcoming events. The business targets martial arts enthusiasts primarily in the Czech Republic and operates as a niche educational and training provider. The site is professionally designed with clear navigation and mobile responsiveness, supporting a positive user experience. Technically, it leverages ASP.NET backend, Bootstrap frontend components, and Google Analytics for visitor tracking. Security posture is moderate with HTTPS usage but lacks explicit security headers and privacy policies. Contact information is clearly presented, enhancing business credibility. However, the absence of WHOIS data limits transparency about domain ownership. Overall, the site is functional and trustworthy for its audience but could improve privacy and security disclosures.

H

Hopae sool

hopae.cz

54

Hopae.cz is a website dedicated to the Korean martial art Hopae Sool, providing detailed information about its history, training schedules, events, membership fees, and contact details primarily for the Czech Republic audience. The site targets martial arts enthusiasts and practitioners of all ages, offering training sessions, seminars, and membership management. The business operates as a small martial arts association founded in 2016, with a clear focus on community and education rather than commercial scale operations. Technically, the website employs standard web technologies including JavaScript, Google Analytics, and likely Bootstrap for UI components. The site is mobile responsive with good navigation and content structure, although some accessibility and SEO optimizations could be improved. Performance is moderate, and no CMS or hosting provider details are evident from the content. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy/cookie policies, indicating gaps in compliance and security best practices. No WHOIS data was found, which reduces domain trustworthiness and raises questions about domain registration legitimacy. Contact information is clearly provided, enhancing business credibility. Overall, the site is safe with no adult or malicious content detected. Strategically, the site would benefit from implementing privacy and cookie policies with consent mechanisms, improving security headers, and verifying domain registration details to enhance trust and compliance. These improvements would strengthen the security posture and user trust while maintaining the site's educational and community focus.

W

Webthinx

webthinx.com

63

Webthinx is a technology service provider specializing in web page creation, mobile application development, e-commerce solutions, and custom software tailored to client needs. The company targets businesses and individuals seeking digital transformation and custom development services. The website is built using modern technologies such as React and Next.js, indicating a contemporary technical infrastructure. Google Tag Manager is employed for analytics and tracking, reflecting a moderate level of digital maturity. Security posture is moderate with HTTPS usage implied, but lacks visible security headers and detailed privacy or security policies. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the website presents a professional front but requires improvements in privacy compliance, security best practices, and transparency to enhance trust and credibility.

M

Městský úřad Spálené Poříčí

spaleneporici.cz

50

The website spaleneporici.cz serves as the official digital presence of the municipal office of Spálené Poříčí, a town in the Czech Republic. It provides residents and visitors with comprehensive information about the town, including local news, official documents, event calendars, and tourism-related content. The site targets local citizens, tourists, and stakeholders interested in municipal services and community activities. The business model is government/public service oriented, focusing on transparency and community engagement. The domain is well-established since 2001, reinforcing its credibility and trustworthiness. Technically, the website employs a modern tech stack including HTML5, CSS, JavaScript, and integrates Google services such as Analytics, Tag Manager, reCAPTCHA, and Translate. It uses the vismo CMS platform, which is common for Czech municipal websites. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting and domain registration are consistent with Czech providers, supporting local presence. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The security posture is solid but could be enhanced by adding security headers and formal policies. Overall, the website is a trustworthy, well-maintained municipal portal with good content quality and user experience. It demonstrates compliance with privacy regulations and employs standard security practices. Strategic improvements in transparency around security policies and incident handling would further strengthen its posture.

W

Webthinx s.r.o.

cernovous.cz

46

Ekopark Černovous is a small ecological park and family-run business located in the Brdy hills of the Czech Republic. The business focuses on sustainable living, animal husbandry including chickens and bees, and local ecological responsibility. It offers ecological eggs, honey, and plans for future expansion into other animal products and local produce. The website is professionally designed using WordPress and Oxygen builder, with a clear navigation structure and mobile optimization. Social media presence on Instagram, Facebook, and YouTube supports community engagement. Contact information is clearly provided including phone numbers, email, physical address, and a contact form. However, the site lacks explicit privacy and cookie policies and does not implement a cookie consent mechanism, which impacts GDPR compliance.

H

Hotel Pod Kokšínem

hotelpodkoksinem.cz

58

Hotel Pod Kokšínem is a small hospitality business located in the Czech Republic, specializing in accommodation and services tailored for golf enthusiasts, cyclists, families, and pet owners. The hotel offers unique stay packages, quality restaurant services, and facilities for corporate events, positioning itself as a regional leader in leisure and tourism within the Brdy region. The website reflects a professional and consistent brand image with clear contact channels and multiple awards enhancing its credibility. Technically, the site is built on WordPress with modern plugins and integrations such as Google reCAPTCHA, providing a moderate to good user experience with mobile optimization and SEO considerations. Security posture is adequate with HTTPS and form protections but lacks some HTTP security headers and a cookie consent mechanism, which are recommended for compliance and enhanced security. The absence of WHOIS data for the domain is a notable risk factor, reducing trust in domain legitimacy despite the professional presentation of the website. Overall, the site is safe, family-friendly, and well-structured, serving its target audience effectively.

P

PilsnerGolf Resort Hořehledy

golf-horehledy.cz

54

PilsnerGolf Resort Hořehledy is a small hospitality and sports business located in the Czech Republic, offering a family-friendly 9-hole golf course, hotel accommodation, restaurant services, and golf training programs. The website is professionally designed with good content quality and clear navigation, targeting golf enthusiasts and tourists seeking recreational services. The business maintains partnerships with local golf courses and hospitality providers, enhancing its regional market position. Technically, the website is built on WordPress using the Oxygen Builder framework, incorporating modern web technologies such as jQuery and Google Analytics with IP anonymization. The site is mobile optimized and performs moderately well, although some accessibility features could be improved. Security posture is decent with HTTPS enforced, but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. The absence of WHOIS data limits the ability to fully verify domain legitimacy, which slightly impacts trustworthiness. No critical vulnerabilities or adult content were detected, and the site maintains a safe environment for general audiences. Strategic improvements in privacy compliance and security headers would enhance the overall security and trust profile of the website.

S

Státní úřad inspekce práce

suip.cz

72

The website www.suip.cz is the official portal of the Státní úřad inspekce práce, the Czech Republic's State Labor Inspection Office. It serves as a comprehensive resource for labor inspection, occupational safety, employment relations, and labor law compliance. The site targets employers, employees, and businesses within the Czech Republic, offering services such as online certificate requests, advisory services, and complaint submissions. The portal is well-structured, multilingual, and professionally designed, reflecting its government affiliation and public service mandate. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript libraries including React and jQuery, and integrates Google Analytics for traffic monitoring. The infrastructure supports HTTPS with strong security headers, indicating a good security posture. Accessibility and mobile optimization are well addressed, ensuring a broad user reach. Security-wise, the site demonstrates adherence to best practices with no visible vulnerabilities or exposed sensitive data. However, it lacks a publicly stated vulnerability disclosure policy and incident response contact details, which are recommended for enhanced transparency and security readiness. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR regulations. The absence of WHOIS data is consistent with CZ NIC's privacy policies and does not detract from the site's legitimacy. Strategic recommendations include publishing a vulnerability disclosure policy, incident response contacts, and continuous monitoring of third-party libraries to maintain security integrity.

E

e-masters GmbH & Co. KG

intelligent-modernisieren.de

55

INTELLIGENT MODERNISIEREN is a German brand operated by e-masters GmbH & Co. KG, providing comprehensive information and services related to energy-efficient and smart modernization solutions for residential and commercial buildings. The website serves as a platform connecting users with a large network of qualified specialist companies and reputable manufacturers, offering expert knowledge, product showcases, and interactive planning tools. The company positions itself strongly in the energy sector with a focus on sustainable and modern technologies such as photovoltaics, heat pumps, and smart home systems. Technically, the website is built on TYPO3 CMS, integrates modern consent management via Usercentrics, and uses Google Tag Manager for analytics, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and consent-based tracking, though some security headers and explicit security policies are absent. Overall, the site is professional, GDPR compliant, and trustworthy, with clear contact information and strong branding consistency.

e-masters GmbH & Co. KG operates a specialized community platform serving the electrical and SHK trades in Germany, providing marketing cooperation, discounts, and training opportunities to its members. The website is well-structured, professionally designed, and targets trade professionals with relevant content and offers. Technically, the site is built on TYPO3 CMS, integrates modern tools like Google Tag Manager and Cookiebot for consent management, and employs secure login mechanisms for members. The security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site demonstrates good compliance with GDPR and privacy standards, with clear cookie policies and consent mechanisms. No critical vulnerabilities or suspicious activities were detected, indicating a trustworthy and professional online presence.

A

Ahmling Elektrotechnik

ahmling-elektrotechnik.de

47

Ahmling Elektrotechnik is a small, regional master electrical engineering company based near Itzehoe, Germany. The company specializes in electrical installations for old and new buildings, photovoltaic systems, wallboxes for electric vehicles, smart home solutions, lighting planning, and telecommunications. Their market position is that of a trusted local expert with partnerships and memberships in relevant industry associations, serving residential and commercial clients. The website is professionally designed, well-structured, and optimized for SEO, reflecting a mature digital presence. Technically, the site is built on WordPress with common plugins and libraries, hosted on a reputable German hosting provider. Security posture is good with HTTPS and cookie consent implemented, though security headers are missing and no dedicated security or incident response policies are found. Overall, the website is safe, trustworthy, and compliant with GDPR, with clear contact information and business details.

C

Caspersen Energie & Haustechnik GmbH

elektro-caspersen.de

63

Caspersen Energie & Haustechnik GmbH is a well-established German company specializing in electrical installations, photovoltaic systems, smart home solutions, and safety inspections such as DGUV V3 and E-Check. With over 60 years of experience, the company positions itself as a reliable and innovative service provider for both residential and commercial clients. The website reflects a professional and trustworthy business with clear service offerings and customer engagement features. Technically, the site is built on WordPress using Elementor and optimized with modern SEO and performance tools. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is compliant with GDPR and provides comprehensive contact information, enhancing business credibility.

D

Dieter Moch GmbH

dietermoch.de

45

Dieter Moch GmbH is a regional German company specializing in heating, sanitary, and electrical services, with over 25 years of experience serving the Pinneberg and Hamburg areas. Their business model focuses on installation, maintenance, and renovation services tailored to residential and commercial customers. The website reflects a professional and consistent brand image, providing clear contact information and job opportunities, indicating active operations. Technically, the site is built on WordPress using a commercial theme and common plugins, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit security policies. Overall, the site is trustworthy and compliant with GDPR requirements.

Dieter Krauss GmbH is a small, family-run business specializing in heating, sanitation, ventilation, and renewable energy solutions, operating primarily in Klein Offenseth-Sparrieshoop, Germany. The company offers a broad range of services including bathroom installations, heating systems, ventilation and air conditioning, photovoltaic and solar thermal systems, as well as gas heating services through its Krauss GAS Center. The website reflects a professional and consistent brand image with clear contact information and service descriptions, targeting local residential and commercial customers. Technically, the website is built using Bootstrap and jQuery, providing a responsive and user-friendly experience. However, there is no evidence of advanced CMS or hosting details. The site lacks modern security headers and cookie consent mechanisms, and no analytics or tracking tools are detected, indicating minimal user tracking. Performance is moderate with good mobile optimization but basic accessibility and SEO features. From a security perspective, the site does not show critical vulnerabilities but lacks HTTPS confirmation and security headers, which are recommended for improved protection. The absence of a privacy policy with GDPR compliance details and cookie consent reduces privacy compliance. WHOIS data is missing, raising questions about domain registration legitimacy, although the website content and business information appear trustworthy and professional. Overall, the site is a solid representation of a small regional business with room for improvement in security, privacy compliance, and domain registration transparency.

Enno Makoschey Heizung- und Sanitär GmbH is a small German company specializing in heating and sanitary services, including installation, maintenance, and emergency services. The company positions itself as a reliable local specialist offering a broad range of services such as heating systems, bathroom renovations, solar thermal solutions, and funding consultation. The website reflects a professional business with clear service descriptions and contact information, targeting a general audience in Germany. Technically, the website uses modern JavaScript libraries and the Foundation framework, ensuring good mobile optimization and user experience. Security-wise, the site employs HTTPS and a cookie consent mechanism but lacks visible advanced security headers or explicit incident response policies. Overall, the website is trustworthy and well-maintained, though improvements in security headers and explicit policies could enhance its posture.

A

Artur Baasch GmbH

baasch-steinburg.de

51

Artur Baasch GmbH is a well-established regional Meisterbetrieb specializing in heating systems and bathroom renovation services in the Kreis Steinburg area of Germany. The company has a long history dating back to 1951 and offers a comprehensive range of services including new bathroom construction, 3D bathroom planning, heating installation, modernization, and maintenance. The website reflects a professional business model targeting residential and commercial customers seeking expert advice and quality workmanship. The presence of partner logos from reputable brands enhances trust and market positioning. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms via the Complianz plugin. Google Analytics is used with IP anonymization, reflecting attention to privacy compliance. Hosting appears to be with a German provider, consistent with the business location. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows no privacy protection but lacks detailed registrant information, which is common for small businesses. Overall, the domain and website appear legitimate and consistent with the business claims. The overall risk assessment is low with recommendations to enhance security headers, add incident response information, and consider a vulnerability disclosure policy. The website quality is good with clear navigation, relevant content, and professional design, supporting business credibility and customer trust.

Gosau GbR is a small, specialized master craftsman company based in Oelixdorf, Germany, focusing on heating, ventilation, and sanitary services. The company offers a broad range of modern heating solutions including oil, gas, pellet, biomass, heat pumps, and solar energy systems, complemented by maintenance and customer service. Their market position is that of a trusted local provider emphasizing quality and customer care, supported by certifications such as a Stiftung Warentest award. Technically, the website is built on a modern stack using jQuery, Foundation framework, and various UI libraries, with good mobile optimization and SEO practices. Security posture is moderate with cookie consent implemented but lacking visible advanced security headers. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and social media presence. No critical security issues or content safety concerns were detected.

F

Frisch & Neubert GmbH

frisch-neubert.de

50

Frisch & Neubert GmbH is a well-established German company specializing in modern home technology services, particularly in heating, sanitation, and ventilation. Founded in 1994 and based in Itzehoe, the company serves private and commercial clients with a team of approximately 30 employees. Their website reflects a professional and consistent brand image, showcasing partnerships with reputable manufacturers and offering clear contact channels. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes GDPR-compliant cookie management via Borlabs Cookie. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is accessible, well-structured, and compliant with privacy regulations, supporting a trustworthy online presence.

H

Hans Otte

hans-otte.de

53

Hans Otte is a well-established mid-sized German company specializing in energy-efficient building services including heating, sanitary installations, climate technology, and photovoltaic systems. Founded in 1988, the company serves residential and commercial clients primarily in Schleswig-Holstein and surrounding regions. The website reflects a professional business with clear service offerings, references, and partner affiliations. Technically, the site is built on WordPress with modern plugins for SEO, cookie consent, and user engagement, indicating a mature digital infrastructure. Security posture is good with HTTPS and consent mechanisms in place, though improvements are recommended in security headers and privacy policy publication. Overall, the site is trustworthy and well-positioned in its market niche.

C

Christoph Heide

christoph-heide.de

54

Christoph Heide is a well-established German company specializing in building technology services including sanitation, heating, ventilation, and electrical installations. Founded in 1927, the company serves residential and commercial customers primarily in the Heide/Dithmarschen region. Their website reflects a professional and consistent brand presence, highlighting key services such as heat pumps, bathroom renovations, and photovoltaic systems. The company holds certifications like Vaillant Kompetenzpartner and offers guarantees that enhance customer trust. Technically, the website is built on WordPress with modern plugins and technologies such as Slider Revolution, CookieYes for consent management, and Google Site Kit for analytics. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Hosting appears to be on Microsoft Azure, indicated by specific cookies. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, some security headers are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. Incident response and explicit security policies are not published, which could be enhanced. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements in security headers and incident response transparency would further strengthen their posture.

W

Wilke GmbH & Co. KG

wilke-shk.de

53

Wilke GmbH & Co. KG is a specialized installer and service provider in energy and building technology, focusing on heating, sanitary, ventilation, and solar thermal systems in Schleswig-Holstein and Hamburg, Germany. The company targets both private and commercial customers, offering comprehensive consulting, installation, and maintenance services. Their market position is strengthened by membership in CELSEO, a leading cooperation in the building technology sector. The website is built on TYPO3 CMS, leveraging modern JavaScript modules and third-party widgets for enhanced user experience and marketing. It features good SEO, accessibility, and mobile optimization. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site reflects a professional, trustworthy regional business with a clear digital presence.

H

HEINRICH KRUMME Gesellschaft für Sanitär- und Heizungstechnik mbH

krumme-brunsbuettel.de

49

HEINRICH KRUMME Gesellschaft für Sanitär- und Heizungstechnik mbH is a medium-sized German company specializing in innovative and energy-efficient solutions in building services engineering and plant construction, with over 50 years of experience. The company targets B2B clients requiring heating, cooling, ventilation, sanitation, project management, and maintenance services. The website reflects a professional and consistent brand presence with clear navigation and relevant project references. Technically, the site uses a modern CMS (Contao), integrates common libraries like jQuery and Bootstrap, and employs Google Analytics and Cookiebot for tracking and consent management. Security posture is solid with HTTPS and cookie consent blocking, though additional security headers could enhance protection. Overall, the site is compliant with GDPR and provides clear contact information, supporting business credibility and trust.

D

DIE BAD- & HEIZUNGSGESTALTER

die-badgestalter.de

58

DIE BAD- & HEIZUNGSGESTALTER is a well-established network of over 130 certified specialist companies operating in Germany and Austria, providing comprehensive bathroom and heating renovation services. The brand emphasizes complete project management, individual design, and customer-centric service, evidenced by their Deutscher Servicepreis 2024 award and high customer ratings. Technically, the website is built on TYPO3 CMS, employs Matomo for privacy-respecting analytics, and integrates third-party widgets for customer reviews. The site is well-optimized for mobile and SEO, with clear navigation and professional design. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the website reflects a mature digital presence aligned with business goals and compliance requirements.

W

Wolf-Technik GmbH

wolf-technik.com

42

Wolf-Technik GmbH is a medium-sized German company specializing in the planning, production, installation, and service of heating and cooling technology solutions, including Wärmepumpen and Kälteanlagen. The company has a strong regional presence in northern Germany with over 900 installed heat pump systems and a global distribution network for refrigeration units. Their website reflects a professional business model focused on B2B clients in the energy and industrial sectors. Technically, the website is built on the Weblication CMS platform using standard web technologies like jQuery and JavaScript. While the site has good content quality and navigation, it lacks modern security implementations such as HTTPS and DNSSEC, which impacts its security posture. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but requires security and privacy improvements to meet modern standards.