Security Directory

O

Obec Červená Voda

cervenavoda.cz

44

Obec Červená Voda operates as the official municipal government website for the town of Červená Voda in the Czech Republic. It provides residents and visitors with essential information about local government services, community news, tourism, and events. The website serves as a central hub for municipal communication and public service announcements, positioning itself as a trusted local government resource. The business model is focused on public service rather than commercial activity, targeting local citizens and tourists. Technically, the website employs a custom CMS with a modern JavaScript stack including jQuery, Swiper.js, and various UI libraries. It integrates Google Analytics and Facebook SDK for analytics and social media engagement. The site is mobile optimized and uses HTTPS with a valid SSL certificate, ensuring secure data transmission. However, there is room for improvement in security headers and privacy compliance features. From a security perspective, the site demonstrates a moderate security posture with HTTPS enabled and no visible sensitive data exposure. The absence of security headers and explicit privacy and cookie policies are notable gaps. No vulnerabilities or suspicious activities were detected in the content. The WHOIS data is unavailable due to privacy protection, which is common for Czech domains and does not detract from the site's legitimacy. Overall, the website is a well-maintained municipal portal with good content quality and user experience. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing incident response contacts to improve trust and compliance. These steps will strengthen the site's security posture and align it better with GDPR and other regulatory requirements.

C

Costa Coffee

costa-coffee.cz

64

Costa Coffee Czech Republic operates a retail and hospitality business focused on coffee sales, loyalty programs, and e-commerce. The website presents a professional and consistent brand image with clear navigation and relevant content for coffee consumers in the Czech market. The business is positioned as a large retail and hospitality entity under the parent company LAGARDERE Travel Retail, a.s., indicating a strong market presence. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by common plugins such as Contact Form 7 and GTranslate for multilingual support. The site uses Google Tag Manager and Google Analytics for tracking, and it is mobile-optimized with good SEO practices. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data reduces domain registration transparency, which slightly impacts trustworthiness. Overall, the website is safe, professional, and compliant with GDPR, but could improve security posture and transparency regarding domain registration and incident response. Strategic recommendations include adding security headers, publishing security policies, and improving WHOIS data visibility.

P

PENZION EMA

jeseniky-ema.cz

55

Penzion Ema is a small hospitality business located in the Jeseníky mountains of the Czech Republic, offering accommodation services primarily targeting tourists interested in skiing, hiking, and cycling. The website presents a clear business description and contact information, positioning itself as a local lodging option with proximity to the Ski areál Kouty. Technically, the site is built on the Webnode platform, hosted via AWS Cloudfront CDN, and uses modern web technologies including HTTPS and Google Tag Manager for analytics. However, the site lacks comprehensive privacy and cookie policies, and no WHOIS registration data is available, which impacts trust and transparency. Security posture is moderate with HTTPS enabled but missing important security headers. Overall, the site is functional and user-friendly but would benefit from enhanced compliance and security measures.

J

Jidlonadovolenou.cz | Hotová jídla na cesty či dovolenou

jidlonadovolenou.cz

53

The website jidlonadovolenou.cz operates as an e-commerce platform specializing in healthy, ready-made meals designed for outdoor activities, travel, and busy lifestyles. The business emphasizes quality, regional sourcing of ingredients, and gluten-free, preservative-free products. It targets Czech-speaking consumers seeking convenient and nutritious food options. The site is built on the Eshop-rychle.cz platform and integrates multiple analytics and marketing tools, reflecting a moderate level of digital maturity. The design is professional, mobile-optimized, and user-friendly, supporting a positive user experience. Security posture is adequate with HTTPS enforcement, secure forms, and cookie consent mechanisms, though some security headers and explicit policies are missing. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact information suggest a legitimate small retail business. Overall, the site presents a trustworthy and professional front with room for security and transparency improvements.

B

BUSHCRAFTshop.cz

bushcraftshop.cz

54

BUSHCRAFTshop.cz is a Czech Republic-based e-commerce retailer specializing in bushcraft, survival, and outdoor equipment. The website offers a wide range of products including knives, tools, outdoor clothing, backpacks, and cooking accessories tailored for outdoor enthusiasts and survival hobbyists. The business targets a niche market with a focus on quality and practical gear for life in nature. Technically, the website is built on the Shoptet e-commerce platform and integrates multiple modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, Hotjar, and Facebook SDK. The site uses HTTPS and implements cookie consent mechanisms, reflecting a moderate level of digital maturity and privacy awareness. Security posture is generally good with secure forms and no exposed sensitive data, though some security headers are not explicitly confirmed. The absence of WHOIS data limits domain trust assessment, but the website content and technical setup suggest a legitimate and professional operation. Privacy policies and terms of service are not clearly found, indicating room for compliance improvement.

S

Schrothovy léčebné lázně s.r.o.

lazne-lipova.cz

45

Schrothovy léčebné lázně s.r.o. operates a traditional spa and rehabilitation center located in Dolní Lipová, Czech Republic, with a history spanning over 180 years. The company specializes in therapeutic treatments for non-infectious skin diseases, metabolic disorders, and respiratory illnesses, leveraging natural climatic conditions and unique herbal blends. Their business model includes spa treatments, accommodation, dining services, and retail of gift vouchers, targeting health-conscious tourists and patients seeking specialized care. The website reflects a well-structured and professional online presence with clear navigation and relevant content tailored to their audience. Technically, the website employs a mature technology stack including jQuery, Bootstrap, and Google Tag Manager, hosted on a CMS platform called inPage. The site is mobile-optimized and incorporates modern web standards, although some improvements in accessibility and security headers could be made. Performance is moderate, with a good balance between content richness and loading speed. From a security perspective, the site enforces HTTPS and provides cookie consent mechanisms compliant with GDPR. However, it lacks certain HTTP security headers and does not publish incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the business information and website content suggest legitimacy. Overall, the website scores well in content quality, privacy compliance, and security posture, with minor technical and trust-related gaps. Strategic recommendations include enhancing HTTP security headers, publishing security policies, and improving WHOIS transparency to bolster trust and compliance.

H

Hotel Červenohorské sedlo

hotelchs.cz

56

Hotel Červenohorské sedlo is a well-established mountain hotel located in the Jeseníky mountains of the Czech Republic, offering accommodation, wellness, gastronomy, and ski resort access. The website presents a professional and content-rich digital presence with clear navigation and multilingual support. The technical infrastructure includes modern analytics and marketing tools, with a cookie consent mechanism ensuring privacy compliance. Security posture is generally good with HTTPS and no exposed sensitive data, though security headers and explicit security policies are absent. The lack of WHOIS data reduces domain trustworthiness but does not detract from the apparent legitimacy of the business. Overall, the website is suitable for its hospitality audience and demonstrates a mature digital footprint.

A

AŽD Praha s.r.o.

azdfanshop.cz

42

AŽD Praha s.r.o. operates an e-commerce platform specializing in fan merchandise related to railways, targeting enthusiasts and customers seeking themed gifts and accessories. The website presents a professional and consistent brand image with a clear focus on railway-related products including clothing, books, and accessories. The business operates primarily in the Czech Republic and serves a niche market segment. Technically, the website is built on WordPress with WooCommerce and uses modern JavaScript libraries and analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is adequate with HTTPS enabled and secure forms, though some security headers are not explicitly detected and no incident response or security policy information is provided. Privacy and cookie policies are present and GDPR compliant, but no explicit cookie consent mechanism is observed. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, reducing overall trustworthiness. Overall, the website is functional, professional, and secure enough for its business purpose but would benefit from enhanced security headers, explicit cookie consent, and verified domain registration information.

A

AŽD Praha s.r.o.

oparenskyexpres.cz

50

AŽD Praha s.r.o. operates the Oparenský expres T4, a regional rail line in the Czech Republic, focusing on transportation services integrated with tourism promotion. The company is a significant Czech supplier and manufacturer of security, telecommunication, information, and automation technologies for rail and road transport. The website provides comprehensive information about the rail line, trip tips, news, and integrated ticketing via the DÚKapka mobile app. Technically, the website uses modern web technologies including Google Tag Manager and reCAPTCHA, with a custom CMS backend. Security measures include HTTPS enforcement and spam protection on forms, though explicit security headers are not detected. Privacy and cookie policies are present with a consent mechanism, indicating GDPR compliance. However, the absence of WHOIS data reduces transparency and trust slightly. Overall, the website is professional, user-friendly, and trustworthy, serving its target audience effectively.

A

AŽD Praha s.r.o.

azdvlaky.cz

49

AŽD Praha s.r.o. operates the website azdvlaky.cz, providing information and services related to railway transportation in the Czech Republic. The company is a leading Czech supplier and manufacturer of control and security systems for transportation, focusing on railway and road transport technologies. The website offers schedules, trip tips, news, and contact options, targeting Czech transportation users and tourists interested in regional rail lines. Technically, the site uses modern web technologies including Google reCAPTCHA for form protection, Google Tag Manager for analytics, and is built on the Nette Framework. The site is mobile-optimized with good SEO and accessibility basics. Security posture is strong with HTTPS and CAPTCHA protections, but lacks some advanced security headers and explicit security policies. WHOIS data is missing, which limits domain trust verification, but the website content and contact information appear professional and consistent with a legitimate business. Overall, the site is well-maintained, user-friendly, and compliant with privacy regulations including GDPR.

U

Universitätsklinikum Brandenburg an der Havel

klinikum-brandenburg.de

64

Universitätsklinikum Brandenburg an der Havel is a major university hospital in Germany providing specialized healthcare services, medical education, and research. It serves a large patient base annually with over 2,000 employees and operates several subsidiaries including a clinic service center and outpatient health center. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Bootstrap, jQuery, and Usercentrics for consent management. It maintains GDPR compliance with clear privacy and cookie policies. Security posture is good with HTTPS enforced and consent-based tracking, though some security headers could be improved. No critical vulnerabilities or suspicious WHOIS data were found, supporting the legitimacy of the domain and business. Overall, the site reflects a trustworthy and professional healthcare institution with strong digital maturity.

V

Vodien Internet Solutions Pte Ltd

vodien.com

62

Vodien Internet Solutions Pte Ltd is a prominent web hosting and domain registration service provider based in Singapore, serving over 35,000 companies and 210,000 users across Asia. The company offers a broad range of hosting solutions including web hosting, VPS, dedicated servers, email hosting, and online marketing services, supported by 24/7 customer support. Their market position is strong within the regional technology sector, focusing on reliable, high-performance hosting with a customer-centric approach. Technically, the website demonstrates a mature digital infrastructure utilizing modern JavaScript frameworks, extensive analytics and tracking tools such as Google Tag Manager, FullStory, Hotjar, and WebEngage, and a robust cookie consent mechanism compliant with GDPR. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a high level of digital maturity. From a security perspective, the site enforces HTTPS, implements key security headers, and uses consent management tools. However, there is no publicly available dedicated security policy or incident response contact information, which could be improved to enhance transparency and trust. The absence of WHOIS domain registration data is a notable gap, potentially indicating privacy protection or recent registration, which slightly reduces domain trustworthiness. Overall, Vodien presents a professional, trustworthy online presence with comprehensive service offerings and strong technical implementation. Strategic improvements in security transparency and domain registration disclosure would further strengthen their security posture and business credibility.

S

StarDream Cruises

dreamcruiseline.com

57

StarDream Cruises operates a luxury cruise vacation website offering family, Caribbean, and Mediterranean cruises. The website is professionally designed using modern web technologies including Angular framework and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel. The hosting infrastructure appears to be on Amazon AWS DNS services. However, the website lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. No explicit contact information or forms were found in the analyzed HTML content, limiting direct communication channels. The domain WHOIS data raises concerns due to a creation date set in the future, which may indicate data errors or potential registration irregularities. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Overall, the website is functional and visually appealing but requires improvements in privacy compliance, transparency, and domain legitimacy verification.

E

Entdecken Sie Singapur

visitsingapore.com

68

The website www.visitsingapore.com/de_de/ serves as the official tourism portal for Singapore, targeting German-speaking tourists and travelers. It provides comprehensive travel information, event details, and business event resources, positioning itself as a key digital asset for Singapore's tourism promotion. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, it leverages modern web technologies including Adobe Experience Manager, Google Tag Manager, and OneTrust for cookie consent, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and standard best practices, although explicit security headers could be further confirmed. Privacy compliance is well addressed with visible cookie consent and privacy policy in German, aligned with GDPR requirements. The absence of WHOIS data is notable but likely due to registry or query limitations rather than privacy protection or malicious intent. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government-affiliated tourism entity.

A

AGRI-TECH, s.r.o.

pouzitatechnika.cz

37

AGRI-TECH, s.r.o. operates the website pouzitatechnika.cz as a center for used agricultural machinery in the Czech Republic, serving as the exclusive importer of CLAAS and Väderstad brands. The company targets farmers and agricultural businesses, offering a portfolio of verified used and demonstration machinery. The website is professionally designed with good navigation and content relevance, supporting a medium-sized business model focused on retail and distribution within the agricultural manufacturing sector. Technically, the site uses common web technologies such as jQuery and Google Analytics, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers and published security policies are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and business presence appear legitimate and trustworthy. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in security and privacy compliance.

C

CLAAS

claas.com

72

CLAAS is a leading global manufacturer specializing in agricultural machinery including tractors, combine harvesters, forage harvesters, telehandlers, and balers. The company targets farmers, agricultural businesses, and machinery dealers primarily in Germany and internationally. The website reflects a mature digital presence with a modern Angular-based infrastructure, integration of consent management via Usercentrics, and analytics through Google Tag Manager. The site is well-optimized for performance, mobile responsiveness, and accessibility. Security posture is strong with HTTPS enforcement and Content Security Policy, though additional headers could enhance protection. Privacy compliance is robust, with clear GDPR adherence and cookie consent mechanisms. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy and professionalism of the site. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and maintaining up-to-date compliance practices.

D

DRAGON DESIGN

dragondesign.cz

73

DRAGON DESIGN is a Czech digital agency specializing in the creation of modern websites and e-shops, hosting, and long-term website management. Founded in 2022 and based in Olomouc, the company positions itself as a reliable partner for businesses seeking comprehensive online solutions including SEO and technical support. The website reflects a professional and client-focused approach with clear service offerings and strong trust signals such as client testimonials and detailed policies. Technically, the site is built on WordPress using the GeneratePress theme and integrates modern tools like Google Tag Manager and CookieYes for analytics and consent management. Security posture is solid with HTTPS and Cloudflare DNS, though some security headers and explicit incident response policies are absent. Overall, the website demonstrates a mature digital presence suitable for a small technology service provider.

Rybo.cz is a personal fishing blog and podcast operated by Jakub Hladký, targeting the Czech fishing community and members of the Czech Fishing Union. The website offers fishing-related content including blog posts, audio interviews with fishing personalities, and monitoring of fishing product discounts. The business model is content-driven with monetization through advertising and user support. The site is well-branded and maintains a consistent presence across social media platforms. Technically, the site is built on WordPress with modern SEO practices, Google Tag Manager, and Adsense integration. It is mobile-optimized and accessible with good performance metrics. Security posture is solid with HTTPS and security headers, though it lacks a published security policy or incident response information. Privacy compliance is good with GDPR-aligned cookie consent and privacy policy. The absence of WHOIS data reduces domain trust slightly but does not detract from the professionalism of the site content and business information.

S

SeaTime s.r.o.

seatime.cz

63

SeaTime s.r.o. operates as a maritime academy and educational portal based in the Czech Republic, targeting both novice and experienced sailors. The company offers a range of services including captain licenses, theoretical courses, sailing lectures, sport and conditioning cruises, and an e-commerce platform for sailing equipment and literature. Their market position is that of a specialized educational provider within the sailing and yachting sector, supported by a professional website with active content and social media presence. Technically, the website is built on WordPress with modern SEO and tracking tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data reduces domain trust but does not detract from the professional appearance and business credibility of the site. Overall, SeaTime presents a trustworthy and well-structured digital presence in the maritime education niche.

C

Coworking CB, z.s.

cowocb.cz

52

Cowo CB is a small, locally focused coworking space and event venue based in České Budějovice, Czech Republic. It positions itself as the first coworking space in the city, targeting freelancers, remote workers, and small businesses needing flexible office or event space. The website is professionally designed, content-rich, and provides clear contact information and business details, supporting a trustworthy user experience. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good SEO and mobile optimization. Security posture is solid with HTTPS and secure forms, though it lacks some security headers and a cookie consent mechanism, which are recommended for compliance and enhanced protection. WHOIS data is unavailable, which slightly reduces domain trust but does not detract from the visible legitimacy of the business. Overall, the site demonstrates a mature digital presence suitable for its business model.

A

Avelana CZ s.r.o.

avelana.cz

67

Avelana CZ s.r.o. is a small Czech company specializing in the design and realization of gardens, parks, and landscape projects primarily in South Bohemia, Central Bohemia, and Prague. With over 15 years of experience, the company offers a comprehensive range of services including garden design, park establishment, green roofs, swimming ponds, and tree care. The website reflects a professional and consistent brand image with clear contact and legal information, targeting general consumers and businesses seeking landscaping services. Technically, the website is built on WordPress using the Brilo theme and incorporates modern tools such as Yoast SEO, Google Tag Manager, and Google Analytics. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers and incident response details are missing. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, but the website content and structured data strongly support the business's authenticity. No security vulnerabilities or suspicious content were detected. Overall, the site presents a trustworthy and professional digital presence for a small landscaping business. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to improve security posture and compliance.

B

Brilo Team s.r.o.

brilo.team

51

Brilo Team s.r.o. is a Czech Republic based digital agency specializing in web development, e-commerce, marketing, and branding services. The company positions itself as a regional leader helping businesses succeed online with a focus on long-term value and client satisfaction. Their website is professionally designed, mobile optimized, and rich with client references and service descriptions, indicating a mature digital presence. Technically, the site uses modern JavaScript frameworks, Google Tag Manager, Facebook Pixel, and other marketing tools, reflecting a well-integrated digital marketing infrastructure. Security posture is strong with HTTPS enforced and standard security headers present, though explicit cookie consent and terms of service pages are missing. WHOIS data is unavailable due to privacy or query failure, but the website content and contact details support legitimacy. Overall, the site is trustworthy, professional, and well-positioned in its market segment.

V

VDL Bus & Coach bv

vdlbuscoach.com

68

VDL Bus & Coach bv is a large Dutch company specializing in the manufacturing and supply of buses and coaches, with a strong focus on sustainable and innovative transport solutions including electric buses. The company operates under the parent company VDL Groep and targets public transport operators and travel companies across Europe. Their business model includes sales of new and used vehicles, parts, maintenance, training, and financing services. The website reflects a professional and consistent brand image with comprehensive content and multiple language support. Technically, the website is built on Wenetic CMS and employs modern analytics tools such as Google Analytics and Google Tag Manager. It is mobile-optimized with good SEO practices and a moderate performance profile. Security posture is strong with HTTPS enforced and secure forms, though the absence of security headers and cookie consent mechanisms are areas for improvement. The WHOIS data is unavailable, which slightly reduces domain trustworthiness; however, the website's professional presentation, clear business information, and social media presence support legitimacy. No security vulnerabilities or suspicious content were detected. Privacy compliance is good with a clear privacy policy, but cookie consent is missing. Overall, the website is a credible and professional digital presence for VDL Bus & Coach, with recommendations to enhance security headers, privacy compliance, and publish incident response information to further strengthen trust and compliance.

O

ONE SYSTEM

onesystem.cz

56

ONE SYSTEM is a Czech Republic-based company specializing in transportation safety and monitoring systems, primarily serving public transport operators and vehicle fleet managers. Their offerings include camera systems for monitoring passenger boarding and alighting, vehicle interiors, and external surroundings, as well as fleet management solutions. The company emphasizes safety, operational efficiency, and modular system design tailored to client needs. The website reflects a professional small business with a clear focus on transportation safety technology.

M

MOBILBOARD s.r.o.

mobilboard.cz

45

MOBILBOARD s.r.o. operates as the largest provider of mobile advertising on public transport vehicles across the Czech Republic and Slovakia. Their services encompass exterior and interior advertising on buses, trolleybuses, trams, metro, and long-distance transport, including digital formats such as LCD monitors and Wi-Fi advertising. The company targets advertisers and marketing agencies seeking impactful outdoor advertising solutions with regional and nationwide reach. Technically, the website is built on WordPress with modern SEO and tracking tools, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and consent mechanisms, though improvements in security headers are recommended. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the professional presentation and comprehensive policies support business credibility. Overall, the website is well-structured, content-rich, and trustworthy for its intended audience.

M

Miteral

miteral.cz

42

Miteral is a Czech Republic-based company specializing in professional automotive service equipment, including autoservis and pneuservis tools and machinery. Operating since 1990, it serves a B2B market across the Czech Republic, offering a broad product range through a dedicated e-shop and direct sales. The website reflects a mature business with a clear market position as a trusted supplier of automotive workshop equipment. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, providing a responsive and user-friendly experience. Privacy compliance is addressed with cookie consent and a basic GDPR-aligned privacy policy. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is moderate with standard best practices but lacks advanced security headers and explicit security policies. Overall, the website is professional and trustworthy but would benefit from improved domain registration transparency and enhanced security measures.

M

Mikroelektronika s.r.o.

mikroelektronika.com

9

Mikroelektronika s.r.o. is a Czech-based company specializing in automated fare collection and ticketing systems for public transport, as well as custom electronics manufacturing. The company has a strong market presence with deployments in over 110 cities worldwide, including 23 capital cities, primarily in Europe and South America. Their business model focuses on B2B services targeting public transport operators and industrial clients. The website is professionally designed, well-structured, and provides clear contact information and GDPR-compliant privacy and cookie policies. Technically, the site uses modern JavaScript libraries and Google services for analytics and security (reCAPTCHA). Security posture is good with HTTPS and consent mechanisms, but lacks explicit security policies and security headers. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the website is trustworthy and professional, but domain registration should be verified for full legitimacy.

K

KHMC

khmc.cz

40

KHMC s.r.o. is a Czech manufacturer specializing in the production and custom conversion of minibuses, luxury buses, and special vehicles since 1995. The company operates primarily in the transportation sector, serving customers seeking tailored bus solutions. Their website reflects a mature digital presence built on WordPress and WooCommerce, featuring modern technologies such as Google Analytics, Google Tag Manager, and reCAPTCHA for security. The site is well-structured, mobile-optimized, and includes comprehensive contact information and GDPR-compliant privacy and cookie policies. However, the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Overall, KHMC demonstrates a solid market position with professional branding and a clear business model focused on vehicle manufacturing and after-sales services.

A

ARRIVA na Slovensku

arriva.sk

43

ARRIVA na Slovensku operates as a regional public transportation provider specializing in bus services and bikesharing across multiple Slovak cities including Bratislava, Nitra, Michalovce, Nové Zámky, and Trnava. The company has an established market presence since 2006, supported by a domain age consistent with its business history. The website is built on WordPress with modern SEO and analytics tools, indicating a moderate level of digital maturity. The technical infrastructure includes HTTPS with DNSSEC enabled, hosted by websupport.sk, ensuring a secure and reliable user experience. However, the site lacks visible privacy and cookie policies, incident response information, and explicit contact details, which are critical for compliance and user trust. Overall, the security posture is good but could be improved by adding comprehensive privacy and security documentation. Strategic recommendations include implementing GDPR-compliant privacy and cookie policies, publishing security and incident response policies, and enhancing accessibility and contact transparency to strengthen user trust and compliance.

C

Crasman Oy

crasman.cloud

73

Crasman Oy is a Finnish digital services company specializing in digital service design, development, and digital marketing. Positioned as a strategic partner for companies investing in future growth, Crasman operates multiple offices across Finland, including Helsinki, Joensuu, and Tampere. Their website reflects a mature digital presence with comprehensive service offerings and a clear focus on B2B clients. The company leverages modern marketing and analytics technologies such as HubSpot, Google Analytics 4, and Piwik PRO, indicating a strong digital infrastructure and data-driven approach. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are not publicly disclosed. Overall, Crasman presents as a trustworthy and professional entity with a well-structured online presence.

C

Crasman Oy

crasman.fi

72

Crasman Oy is a Finnish technology company specializing in digital service design, digital business strategy, and digital marketing services. Positioned as a strategic partner for companies investing in future growth, Crasman operates multiple offices across Finland, including Helsinki, Joensuu, and Tampere. The company leverages modern digital platforms and marketing tools to deliver comprehensive digital growth solutions to its B2B clientele. Technically, the website is built on the HubSpot CMS platform, integrating advanced analytics tools such as Google Analytics 4, Piwik PRO, and Hotjar, alongside marketing automation and chat support services. The site demonstrates good performance, mobile optimization, and accessibility, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS with strong SSL configuration and employs standard security headers. It features a GDPR-compliant cookie consent mechanism with granular user controls. However, it lacks a dedicated security policy or incident response information, which are recommended for enhanced transparency and preparedness. Overall, Crasman Oy presents a professional, trustworthy online presence with strong business credibility and compliance posture. Strategic improvements in security policy publication and incident response readiness would further strengthen its security posture and stakeholder confidence.

K

KANTINSLOT

pelhrimak.cz

61

KANTINSLOT operates as an online slot gambling platform or affiliate service primarily targeting the Indonesian market. The website promotes slot games with QRIS deposit payment options and emphasizes trust and fairplay. The business appears small-sized, founded in 2015, and leverages the Envato Market platform for its digital presence. The company maintains a moderate market position with customer reviews and social media presence as trust signals. Technically, the site uses modern JavaScript libraries, Google Tag Manager, Datadog for analytics, and Cookiebot for consent management. Hosting and DNS are managed via GMO Internet and AWS DNS servers. Security posture is moderate with HTTPS enabled and CSRF protections, but lacks DNSSEC and advanced security headers. Privacy compliance is basic with a privacy policy and cookie consent but no detailed GDPR compliance or incident response information. Overall, the site is functional but could improve security and privacy transparency.

Medizinische Hochschule Brandenburg Theodor Fontane (MHB) is a state-recognized non-profit university founded in 2014, specializing in medical, psychological, and dental education. It fills a regional gap in Brandenburg, Germany, offering practice-oriented and research-based courses with strong affiliations to multiple university hospitals. The website reflects a professional and accessible digital presence with comprehensive content targeting prospective students and healthcare professionals. Technically, the site uses Contao CMS, integrates Google Tag Manager and Analytics, and provides good mobile and accessibility features. Security posture is solid with HTTPS and secure forms, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is trustworthy and credible with room for improvement in privacy and security transparency.

T

Trefal s.r.o.

trefal.cz

58

Trefal s.r.o. is a Czech Republic-based manufacturing company specializing in industrial washing machines, custom stainless steel products, and sheet metal part production cooperation. The company targets industrial and manufacturing clients, offering modular and custom solutions with a focus on quality and technological innovation. Their website reflects a professional presence with clear product categories and service offerings, supported by social media engagement on Facebook and LinkedIn. Technically, the website is built on Joomla CMS using the YOOtheme framework and Uikit CSS, incorporating modern web technologies and responsive design. It employs several third-party scripts for analytics and marketing, including Google Tag Manager, Facebook Pixel, LinkedIn Insight, and Cookiebot for cookie consent management. The site supports secure login with WebAuthn, enhancing authentication security. From a security perspective, the site enforces HTTPS and uses secure login mechanisms but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is partially addressed with a cookie consent banner, but no dedicated privacy policy or terms of service pages were found. WHOIS data is missing, which slightly reduces domain trustworthiness. Overall, the website is well-structured, professional, and secure for its business purpose, though improvements in privacy documentation and security headers are recommended to enhance compliance and trust.

A

AŽD Praha s.r.o.

svestkovadraha.cz

49

The website svestkovadraha.cz represents AŽD Praha s.r.o., a significant Czech company specializing in railway and road transportation technologies, including telecommunication and automation. The site serves as an information and service portal for the Švestková dráha U10 railway line, offering trip planning, ticket purchasing, and tourism promotion. It positions itself as an important regional transportation provider with a focus on customer service and integrated ticketing systems. The presence of multiple related railway lines and fan shop links indicates a well-established ecosystem around the company’s transport services. Technically, the website employs modern web technologies such as Google Tag Manager, Google reCAPTCHA for form security, and custom JavaScript for user interaction. The site is mobile-optimized with good navigation and content structure, although accessibility features could be improved. The use of HTTPS and cookie consent mechanisms reflects a commitment to security and privacy compliance, although explicit security headers are not evident in the HTML content. From a security perspective, the site demonstrates good practices including HTTPS enforcement and spam protection on forms. However, the absence of visible security headers and lack of published incident response or vulnerability disclosure policies suggest areas for enhancement. The WHOIS data is unavailable, which slightly reduces trustworthiness, but the website’s professional presentation and consistent contact information mitigate concerns. Overall, the site is a well-maintained, professional platform supporting a medium-sized transportation business with a strong regional presence. Strategic improvements in security headers, accessibility, and transparency around security policies would further strengthen its posture.

Jesenické návraty is a regional tourism promotion website focused on the Jeseníky region in the Czech Republic. It serves as a platform to showcase local partners, tourist attractions, and routes, targeting tourists and visitors interested in outdoor and cultural experiences in the region. The website features multiple partner logos and external links to local businesses, hotels, and tourism organizations, indicating a collaborative business model centered on regional tourism promotion. Technically, the website uses modern frontend technologies such as Bootstrap 4.1.3, FontAwesome, and Google Analytics for tracking. It is hosted with Active24, a known Czech hosting provider, and uses HTTPS to secure communications. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, it lacks some advanced SEO and accessibility features and does not implement security headers or privacy and cookie policies. From a security perspective, the website has a basic but adequate posture with HTTPS enabled and no visible exposed sensitive data. The absence of security headers and lack of privacy and cookie policies indicate areas for improvement. No forms or direct contact information were found, limiting data collection risks but also reducing user engagement options. The site does not appear to be blocked or protected by a WAF, allowing full content access. Overall, Jesenické návraty is a legitimate and consistent regional tourism website with moderate technical maturity and some compliance gaps, particularly in privacy and security best practices. Strategic improvements in privacy policy implementation, security headers, and contact information transparency would enhance trust and compliance.

H

HRADECKÁ KULTURNÍ A VZDĚLÁVACÍ SPOLEČNOST s.r.o.

adalbertinum.cz

53

HRADECKÁ KULTURNÍ A VZDĚLÁVACÍ SPOLEČNOST s.r.o. operates as a regional cultural and educational organization in Hradec Králové, Czech Republic. The website serves as a comprehensive platform for cultural events, educational courses, venue rentals, and ticket sales, targeting the general public including families and youth. Supported by local government entities, it holds a stable market position as a trusted regional service provider. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google Analytics, ensuring a good user experience with mobile responsiveness and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern for domain transparency but does not detract from the professional presentation and trust signals on the site. Overall, the site is well-maintained, GDPR compliant, and provides valuable cultural services to its community.

S

SFÉRA, a.s.

sfera.sk

62

SFÉRA, a.s. is a Slovak-based company specializing in proprietary IT platforms and software solutions for the energy, rail transport, and industrial sectors. Their flagship platforms, XMtrade® and XMatik®, support energy trading, distribution, rail vehicle monitoring, and asset management, positioning them as a key regional player in these industries. The website reflects a professional and business-focused approach with clear service offerings and a target audience of energy companies, transport operators, and industrial enterprises. Technically, the website employs modern web technologies including AngularJS, Google Tag Manager, and reCAPTCHA, with a CMS based on Umbraco. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS, implements reCAPTCHA on forms, and includes GDPR-compliant privacy and cookie policies. However, it lacks explicit security policies and incident response contacts, and could improve by adding security headers and terms of service. Overall, the domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

S

Slovenské centrum digitálnych inovácií (SCDI)

scdi.tech

47

Slovenské centrum digitálnych inovácií (SCDI) is a Slovak organization dedicated to supporting small and medium enterprises in their digital transformation journey. The website presents SCDI as a key national player in digital innovation, offering a broad catalog of services including Industry 4.0 consulting, AI, cybersecurity, and workforce adaptation. The organization benefits from EU funding and is part of the European Digital Innovation Hubs network, enhancing its credibility and reach. The site targets Slovak SMEs, providing free services under specific EU schemes and detailed service pricing for others. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager with privacy-conscious configurations. Security posture is strong with HTTPS and security headers, though no explicit security policy or incident response information is published. Privacy compliance is well addressed with a comprehensive privacy and cookie policy and consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, serving as a credible digital innovation hub for its target audience.

B

bot.media, s. r. o.

covid.chat

60

The covid.chat website is a Slovak-language informational platform focused on providing accurate and up-to-date information about the coronavirus (COVID-19) pandemic. Operated by bot.media, s. r. o., it offers a chatbot for self-diagnostics, prevention tips, myth debunking, and structured data feeds for embedding on other websites. The platform targets the general Slovak public seeking reliable COVID-19 information and is positioned as a niche healthcare information service supported by a technology company. Technically, the site uses modern web technologies including Bootstrap and jQuery, integrates Google Analytics and Adsense for tracking and monetization, and implements cookie consent mechanisms aligned with GDPR requirements. The website is mobile-optimized with good design and navigation, providing a professional user experience. Security-wise, the site enforces HTTPS and has no visible vulnerabilities or exposed sensitive data, though it lacks some advanced security headers and formal security policies. WHOIS data is limited due to TLD restrictions and privacy protection but shows recent updates indicating active domain management. Overall, the site is trustworthy, compliant, and serves its informational purpose effectively.

T

Transport.sk

transport.sk

10

Transport.sk is a well-established Slovak online magazine specializing in transportation, logistics, storage, and automotive news. Founded in 2005, it holds a leading market position in its niche, offering news articles, vehicle tests, and industry reports to professionals and enthusiasts. The website employs a modern WordPress CMS with SEO optimization and integrates tracking tools such as Google Analytics and Facebook Pixel. Security posture is solid with HTTPS and DNSSEC enabled, though privacy and cookie policies are absent, representing compliance gaps. The domain's WHOIS data is consistent and trustworthy, supporting the site's legitimacy.

P

Pegani

pegani.dk

72

Pegani is a Danish entertainment company specializing in magic, juggling, and balloon art performances. The website targets a general audience interested in family-friendly entertainment services. The business operates as a small local service provider with a consistent brand presence and a well-structured website. Technically, the site uses modern web technologies including UIkit, Google Tag Manager, Facebook Pixel, and Cloudflare for hosting and security. The cookie consent mechanism is comprehensive and GDPR compliant, reflecting a good privacy posture. Security practices include HTTPS enforcement and use of Cloudflare, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, secure, and compliant with privacy regulations, though it lacks explicit contact information and terms of service.

L

Lind & Risør A/S

lr-hus.dk

54

Lind & Risør A/S is a Danish architectural and construction firm specializing in architect-designed homes, new builds, and real estate sales. Established since 1980, the company targets private home buyers and property developers in Denmark, offering comprehensive services including exhibition houses and building plots. The website reflects a professional business with consistent branding and good content quality. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for privacy compliance. It integrates Google Tag Manager and uses common libraries like jQuery and Swiper.js. The site is mobile optimized and performs moderately well, with good SEO practices in place. From a security perspective, the site uses HTTPS and employs Cookiebot for consent management, but lacks advanced security headers and DNSSEC. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear cookie consent mechanism, though no explicit privacy policy or terms of service pages were found in the provided content. Overall, the website is trustworthy and professional, with a solid business foundation and adequate technical infrastructure. Strategic improvements in security headers, explicit privacy policies, and incident response information would enhance the security posture and compliance maturity.

C

Cotonshoppen.dk

cotonshoppen.dk

56

Cotonshoppen.dk is a well-established Danish e-commerce retailer specializing in dog accessories and supplies, operating since 2007. The website offers a wide range of products including grooming tools, toys, food, and training equipment, targeting dog owners primarily in Denmark. The business demonstrates strong trust indicators such as E-mærket certification and integration with Trustpilot for customer reviews. Technically, the site employs a custom e-commerce platform with modern JavaScript libraries and multiple marketing and analytics integrations, including Google Analytics 4, Klaviyo, and Microsoft Clarity. The website is mobile optimized and provides a good user experience with clear navigation and professional design.

AutoMester.dk represents Denmark's largest network of automotive workshops, with nearly 400 service centers nationwide. The company focuses on providing local car servicing and repair through a trusted network of skilled mechanics. The website reflects a mature business with a long domain history dating back to 1997, indicating established market presence and credibility. The business model centers on connecting car owners with local workshops, emphasizing convenience and quality service.

E

ENMON APP s.r.o.

enmon.app

55

ENMON APP s.r.o. operates the website enmon.app, providing a comprehensive suite of tools for energy consumption measurement, monitoring, and management. The company targets businesses and organizations primarily in Slovakia and across Europe, offering a unique concept with extensive supplier integrations and data analytics capabilities. The website reflects a professional B2B SaaS model focused on energy management solutions. Technically, the site is built on WordPress with modern SEO and analytics tools, including Yoast SEO and Google Tag Manager. The site is mobile-optimized and performs moderately well, with a consistent and professional design. Security-wise, the company demonstrates a strong posture by employing HTTPS and referencing ISO 27001 certification for data security. However, the site lacks publicly accessible privacy and cookie policies, as well as incident response contacts, which are areas for improvement. Overall, the domain registration aligns well with the business identity, supporting the legitimacy and trustworthiness of the site.

S

SAPI - Slovenská asociácia fotovoltického priemyslu a OZE

sapiconference.sk

42

SAPI - Slovenská asociácia fotovoltického priemyslu a OZE operates a professional website focused on organizing the annual SAPI Energy Conference and related events in Slovakia. The organization targets energy professionals and stakeholders interested in renewable energy and sustainable energy solutions. The website demonstrates a mature digital presence with a good technical stack including jQuery, bxSlider, and integration with Google Analytics and social media platforms. The content is well-structured, professionally presented, and includes testimonials and references that enhance trust and credibility. Security posture is adequate with HTTPS enforced and secure form handling, though improvements are recommended in security headers and incident response transparency. Privacy compliance is partially addressed with GDPR documentation but lacks cookie consent mechanisms. Overall, the website is trustworthy, well-maintained, and serves its business purpose effectively.

E

EASTLOG

eastlog.cz

51

EASTLOG is a well-established logistics and transport congress based in the Czech Republic, organized by ATOZ Group. It serves as a major industry event attracting hundreds of logistics professionals annually, offering conference programs, networking, and partner engagement. The website reflects a professional and consistent brand presence with a strong partner ecosystem. Technically, the site is built on WordPress with modern plugins and tracking technologies, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and GDPR compliance, though explicit security headers and incident response information are lacking. WHOIS data is privacy protected, which is typical for such event organizations. Overall, the site is trustworthy and well-maintained, supporting the business's market position effectively.

V

Verlag Dashöfer

du.cz

47

The website www.du.cz is a professional Czech online portal operated by Verlag Dashöfer, providing a comprehensive knowledge library and educational resources focused on taxes, accounting, law, labor, and payroll for professionals such as accountants, tax advisors, and economists. The platform offers subscription-based access to legal texts, commentaries, practical examples, and online seminars, positioning itself as a leading resource in the Czech Republic for financial and legal professionals. Technically, the site employs modern web technologies including Bootstrap 4, jQuery, and Font Awesome, with integrated analytics and advertising tools such as Google Tag Manager and Microsoft Clarity. Security posture is good with HTTPS enforced and use of reCAPTCHA on forms, though some security headers could be improved. Privacy compliance is basic, lacking explicit privacy and cookie policies in the analyzed content. The absence of WHOIS data limits domain legitimacy verification, but the professional presentation and consistent branding support a credible business identity.