Security Directory

G

Golf UK s.r.o.

golfuk.cz

48

Golf UK s.r.o. operates a specialized e-commerce platform focused on golf equipment and accessories, serving primarily the Czech market. Established in 2007, the company offers a wide range of products including golf clubs, balls, bags, shoes, and apparel, catering to golf enthusiasts and players. The website demonstrates a consistent brand presence with clear navigation and a professional design, supporting a positive user experience. Technically, the site leverages the 4SHOP e-commerce platform, integrates modern JavaScript libraries such as jQuery 3.6.0, and employs Google Tag Manager and Analytics for tracking and marketing purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of explicit security headers and limited privacy policy details suggest room for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and stability. Strategic recommendations include enhancing security headers, expanding privacy and security policies, and conducting regular security audits to strengthen compliance and trust.

B

Brightstar Lottery

brightstarlottery.com

65

Brightstar Lottery presents itself as a global leader in lottery technology and services, offering integrated retail and digital lottery solutions, game creation, and operational expertise. The website is professionally designed with modern technologies and provides rich content targeting lottery operators and industry stakeholders worldwide. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Technically, the site uses a mature tech stack including jQuery, FontAwesome, and Bootstrap, with analytics tools like Plausible and Hotjar for user insights. Security posture is moderate with HTTPS implied but lacking explicit security headers and formal privacy or cookie policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

Scientific Games is a leading global technology provider specializing in lottery and gaming solutions. With over 50 years of experience, the company offers a broad portfolio of products including central gaming systems, self-service terminals, and innovative lottery scratch games. Their website reflects a mature enterprise with a strong market position and a focus on customer service excellence, as evidenced by recent awards. The digital infrastructure leverages modern web technologies and includes comprehensive privacy and cookie consent mechanisms, indicating a commitment to regulatory compliance. However, the absence of publicly accessible WHOIS data and security policy details suggests areas for improvement in transparency and security communication. Overall, the website is professional, well-designed, and targets lottery operators and gaming industry stakeholders worldwide.

C

Criss Cross by Triad

crisscross.sk

53

Criss Cross by Triad is a Slovak media team operating within the creative agency TRIAD, specializing in media planning, buying, and campaign optimization with a strong creative integration. The company targets Slovak businesses seeking innovative and effective media solutions, leveraging a multi-channel approach including online, radio, TV, OOH, and influencer marketing. Their market position is strong locally, supported by award-winning campaigns and a reputation for creativity and efficiency. Technically, the website employs modern frameworks such as Bootstrap 5, jQuery, and AOS, hosted on Websupport with DNSSEC and HTTPS enabled, reflecting a mature digital infrastructure. Security posture is solid with encrypted connections and cookie consent mechanisms, though additional security headers and formal policies could enhance protection. Overall, the site is professional, well-branded, and compliant with GDPR through linkage to the parent company's privacy policy. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and accessible online presence.

T

TRIAD Advertising

meettriad.com

61

TRIAD Advertising is a Slovak-based creative agency founded in 2023, specializing in brand strategy, campaign ideation and execution, purpose-driven projects, and creative tech activations. The agency serves a diverse clientele including global brands and small businesses, positioning itself as an ingenious and honest partner that blends creativity with technology. Their portfolio demonstrates strong market presence with over 200 internationally recognized campaigns and a broad range of services tailored to maximize client budgets and impact. Technically, the website employs modern web technologies including jQuery and custom JavaScript, uses Google Fonts, and is hosted on a Slovak hosting provider. The site is well-optimized for mobile devices and SEO, with a professional design and clear navigation. However, some improvements could be made in accessibility and security headers implementation. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy. No cookie consent mechanism is present, which may affect GDPR compliance. No explicit security or incident response policies are published. The WHOIS data is consistent with the business claims, indicating a legitimate and trustworthy domain. Overall, the website is professional, secure, and credible with minor gaps in privacy compliance and security best practices. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security policies to enhance trust and compliance.

S

Svaz výrobců skla a bižuterie

krehkakrasa.cz

44

The website www.krehkakrasa.cz represents the annual event 'Křehká Krása', a sales exhibition focused on Czech glass and bijouterie products held in Jablonec nad Nisou. The event is organized by the Svaz výrobců skla a bižuterie and enjoys partnerships with local government and cultural institutions, positioning it as a reputable regional event attracting over 10,000 visitors. The site provides detailed event information, schedules, exhibitor lists, and contact details, targeting a general audience including families and enthusiasts of Czech craftsmanship. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Fancybox, and Slick Carousel, with Google Fonts for typography. The site is mobile-optimized and well-structured for SEO, though no CMS or hosting provider details are evident. Performance is moderate with good navigation and content relevance. However, no analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain is a concern, limiting the ability to verify domain legitimacy and age. Contact information is clearly provided, but no incident response or security policy information is available. Overall, the security posture is basic and could be improved with standard best practices. The overall risk assessment suggests the site is legitimate and safe for general users but would benefit from enhanced transparency and security measures. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, verifying domain registration details, and adding incident response contacts to improve trust and compliance.

K

KDPW_CCP S.A.

kdpwccp.pl

52

KDPW_CCP S.A. operates as a central counterparty clearing house in Poland, providing clearing, risk management, collateral management, and reporting services primarily for organized and non-organized financial and commodity markets. The website presents a professional and comprehensive overview of its services, targeting financial market participants and counterparties. The company holds a significant market position within Poland's financial infrastructure, supported by regulatory compliance and transparent communication. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Swiper.js, with integration of Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and offers good navigation and content relevance, although accessibility features could be improved. The SSL configuration is excellent, ensuring secure communications. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some HTTP security headers and does not publish explicit incident response or vulnerability disclosure policies, which are recommended for enhanced security posture. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the website is trustworthy and professional, though the absence of WHOIS data limits domain trust verification. Strategic improvements in security headers and incident response transparency would further strengthen its security and compliance stance.

M

MEDIA HOME BRNO

meho.cz

58

MEDIA HOME BRNO is a small Czech Republic based web and graphic design studio established in 2015. The company offers a range of services including web design, UX/UI design, branding, copywriting, SEO, and social media management, targeting businesses and individuals seeking professional digital presence. The website is professionally designed with good content quality and clear navigation, optimized for mobile devices. Technically, the site uses modern web technologies including jQuery, Swiper.js, Google Fonts, and integrates Google Analytics with a compliant cookie consent mechanism. Security posture is solid with HTTPS enforced and cookie consent properly managed, though security headers and formal security policies are absent. Contact information is clearly provided, enhancing business credibility. No privacy policy or terms of service pages were found, which is a compliance gap. Overall, the site is safe, trustworthy, and well-positioned for its market niche.

А

АО "Центральный депозитарий ценных бумаг"

kacd.kz

62

АО "Центральный депозитарий ценных бумаг" operates as the national central securities depository in Kazakhstan, providing accounting and custody services for government, municipal, and non-government securities. The website is primarily in Russian and targets financial market participants within Kazakhstan. The business is relatively new, founded in 2022, and the domain registration aligns with this timeline. The company appears to be an essential entity within the finance sector, focusing on securities depository services.

K

Krajowy Depozyt Papierów Wartościowych S.A.

kdpw.pl

54

Krajowy Depozyt Papierów Wartościowych S.A. (KDPW) operates as Poland's central securities depository, providing essential services such as securities registration, transaction reporting, and code assignment (LEI, ISIN, CFI, FISN). The company targets financial market participants including issuers, direct participants, pension funds, and other financial institutions. KDPW holds a key market position as a national financial infrastructure entity, offering a broad portfolio of services including innovative blockchain-based IT solutions and compensation systems. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the website employs modern JavaScript libraries such as jQuery, Bootstrap, and Swiper.js, alongside Google Analytics and Tag Manager for analytics. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. Overall, the security posture is robust, with no critical vulnerabilities detected. The absence of WHOIS data is typical for .pl domains and does not detract from the site's legitimacy, which is supported by consistent branding, clear business information, and a professional online presence. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility features to further strengthen compliance and trust.

K

Kino Světozor

kinosvetozor.cz

62

Kino Světozor is a well-established art-house cinema located in Prague, Czechia, operating since 2004. It offers a curated program of contemporary cinema, including art-house films, mainstream quality movies, festivals, and live broadcasts. The website reflects a professional and consistent brand image targeting cinema enthusiasts and cultural event attendees. Technically, the site uses modern JavaScript libraries such as jQuery and integrates Google Tag Manager and YouTube APIs for enhanced user experience and analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and formal security policies. Contact information is clearly provided, supporting business credibility. Overall, the site is content-rich, user-friendly, and trustworthy, with room for improvement in privacy and security disclosures.

M

Mulcol International

mulcol.com

74

Mulcol International is a specialized manufacturer of innovative passive fire stopping products, targeting construction professionals and fire safety specialists. The company appears to be a small-sized manufacturer established in 2015, with a focused niche in fire protection solutions. Their website presents a professional and consistent brand image with good content quality and clear navigation. Technically, the website uses modern libraries such as jQuery, Bootstrap, and Swiper.js, and is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. The site is mobile optimized and includes SEO best practices, although accessibility features are basic. Security-wise, the website enforces HTTPS and uses clientTransferProhibited domain status, but lacks DNSSEC and some recommended HTTP security headers. Cookie consent is managed via Cookiebot with a clear consent mechanism, but no explicit privacy policy or terms of service documents were found in the provided content. Overall, the website is trustworthy and safe for general audiences, with moderate user tracking primarily through Google Analytics and Cookiebot. Strategic improvements include publishing comprehensive privacy and security policies, enabling DNSSEC, and enhancing HTTP security headers to strengthen the security posture.

Y

YIT Slovakia

yit.sk

76

YIT Slovakia is a Finnish real estate development company operating in Bratislava, specializing in modern residential apartments and office spaces. The website presents a professional image with comprehensive content describing their services and market focus. The technical infrastructure includes modern web technologies such as EPiServer CMS, jQuery, and integration with multiple analytics and marketing platforms including Google Tag Manager, Microsoft Application Insights, and Cookiebot for GDPR compliance. Security posture is strong with HTTPS enforced and appropriate security headers, although explicit security and incident response policies are not published. The website employs a detailed cookie consent mechanism with granular user controls, reflecting good privacy compliance. Overall, the site is well-structured, mobile-optimized, and trustworthy, targeting local Slovakian customers and businesses.

J

Jan Holata

kurzy-etikety.cz

58

Kurzy Etikety, led by Jan Holata, is a Czech-based educational service specializing in social and business etiquette training. The website offers a variety of courses including business etiquette, dining etiquette, dress code guidance, and etiquette for children. The business targets individuals and companies seeking to improve their social conduct and professional presentation. The site is well-branded and provides clear contact information and social media integration, positioning itself as a niche provider in the etiquette education sector within the Czech Republic. Technically, the website employs modern web technologies such as jQuery, Font Awesome, and Google Fonts, supported by a proprietary SPACIR STUDIO framework. The site is mobile-optimized with interactive features like slideshows and responsive navigation menus. However, there is room for improvement in accessibility and performance optimization. Security-wise, HTTPS is implied but no security headers were detected in the provided data, and no advanced security policies or incident response information is available. The absence of WHOIS data is a notable concern, limiting the ability to verify domain legitimacy and registration details. Privacy and cookie policies are missing, which impacts compliance with GDPR and other privacy regulations. Overall, the website presents a professional front with good business credibility but requires enhancements in security posture and privacy compliance to strengthen trust and regulatory adherence.

M

MOJE Bydlení

moje-bydleni.com

41

MOJE Bydlení is a Czech online lifestyle and home magazine offering content focused on interior design, garden, architecture, and related topics. The website targets a general Czech-speaking audience interested in home improvement and lifestyle trends. It operates on a WordPress platform with a professional theme and several plugins enhancing user experience and content presentation. The site is well-structured, mobile-optimized, and regularly updated with fresh content. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy policies. The absence of WHOIS data raises concerns about domain registration legitimacy, though the active website presence suggests operational status. Overall, the site is functional and professional but would benefit from improved compliance and security practices.

T

TRIAD Advertising

triad.sk

57

TRIAD Advertising is a well-established creative agency based in Slovakia, founded in 2004. The company positions itself as an innovative and award-winning agency specializing in creative advertising, employer branding, AI-powered campaign generation, and metaverse projects. Their market presence is supported by multiple national and international awards, including Slovak and Czech agency of the year titles and Grand Prix awards. The website reflects a professional and consistent brand image targeting brands and organizations seeking creative marketing solutions. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript with jQuery, and self-hosted Matomo analytics, hosted by websupport.sk with DNSSEC enabled and HTTPS enforced. Security posture is good with no visible vulnerabilities, but lacks explicit security headers and privacy compliance documentation. Overall, the site is professional, secure, and trustworthy but would benefit from adding privacy, cookie, and terms of service policies, as well as clear contact information and incident response details.

Pivovarská restaurace, rodinný pivovar Berounský medvěd is a small family-owned brewery and restaurant located in Beroun, Czech Republic. The business revives a historical brewing tradition dating back to 1295 and offers a range of services including traditional beer brewing, a restaurant, cultural events, and bike rentals. The website is professionally designed using WordPress and includes rich content in Czech, targeting local visitors and tourists interested in authentic Czech beer and cultural experiences. Technical infrastructure includes common JavaScript libraries such as jQuery and Owl Carousel, with a cookie consent mechanism ensuring GDPR compliance. However, WHOIS data for the domain is missing, raising concerns about domain registration legitimacy. The website lacks explicit security headers and terms of service pages, which could be improved to enhance security posture and compliance. Overall, the site is accessible, well-structured, and trustworthy from a content perspective but requires attention to domain legitimacy and security best practices.

B

BiznesOferty.pl

biznesoferty.pl

60

BiznesOferty.pl is an established Polish online platform specializing in business classified ads, focusing on B2B offers, cooperation, investments, and commercial real estate. Operating since 2003, it serves as a marketplace for entrepreneurs and businesses to connect, trade, and collaborate. The website offers a broad range of services including wholesale goods, machine sales, and investment opportunities, targeting primarily the Polish market. Technically, the site employs modern JavaScript libraries such as jQuery and integrates Google Analytics and Tag Manager for user tracking and analytics. The site is accessible, mobile-optimized, and uses HTTPS, indicating a baseline of technical maturity. However, the absence of WHOIS data and lack of explicit security headers slightly diminish its security posture. Privacy and cookie policies are present with consent mechanisms, reflecting basic GDPR compliance. Overall, the site presents a professional business platform with moderate trustworthiness but would benefit from enhanced transparency and security practices.

K

KRÁSNÝ - zdravotnická technika s.r.o.

szo.cz

55

KRÁSNÝ - zdravotnická technika s.r.o. is a Czech healthcare company specializing in medical devices, disinfection products, and related services. Founded in 1998, it serves healthcare institutions such as hospitals, clinics, and social care organizations primarily in the Czech Republic and Slovakia. The company holds important certifications including ISO 13485 and ISO 9001, and is registered with the Czech State Institute for Drug Control (SÚKL). Their business model focuses on B2B e-commerce and servicing medical equipment. The website reflects a professional and trustworthy presence with comprehensive product catalogs, contact information, and regulatory compliance documentation. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and FontAwesome, managed via a UNIWEB CMS platform. It is mobile-optimized and includes SEO best practices. Google Tag Manager is implemented for analytics and tracking, with a cookie consent mechanism that complies with GDPR requirements. However, some security headers are missing, and no explicit incident response or vulnerability disclosure information is provided. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a concern that slightly reduces the trust score, as it prevents verification of domain registration legitimacy. Overall, the site is safe, professional, and well-maintained, but would benefit from enhanced transparency in security policies and domain registration details. Strategic recommendations include adding security headers, publishing incident response contacts and vulnerability disclosure policies, and verifying domain WHOIS data to improve trust and compliance posture.

C

Czech DPO Office s.r.o.

czechdpooffice.eu

62

Czech DPO Office s.r.o. is a specialized Czech company providing expert GDPR compliance and Data Protection Officer (DPO) services to both public and private sector clients. Founded in 2018, the company focuses on delivering comprehensive GDPR consulting, legal services, and eLearning training to help organizations meet EU data protection regulations efficiently. Their business model centers on leveraging modern software technologies to minimize operational burdens on clients while ensuring compliance. The website reflects a professional and consistent brand presence targeting organizations requiring GDPR expertise within the Czech Republic. Technically, the website is built on a modern WordPress platform using well-known plugins such as LearnDash for eLearning, Complianz for GDPR cookie management, and WPBakery for page building. The site is mobile-optimized with good SEO and accessibility features, though some improvements in security headers and accessibility could be made. Performance is moderate, with a clean and structured design that supports user navigation and engagement. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies or incident response information suggests room for improvement in transparency and preparedness. The domain WHOIS data is privacy protected by EURid, which is typical for EU domains and justified given the nature of the business. Overall, Czech DPO Office s.r.o. presents a trustworthy and professional online presence with a solid foundation in GDPR compliance services. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and maintaining up-to-date software to mitigate risks. These steps will strengthen their security posture and client trust in a highly regulated data protection environment.

M

Mesto Nitra

nitra.sk

49

The website nitra.sk serves as the official digital presence of the city of Nitra, Slovakia. It provides comprehensive information about municipal governance, public services, cultural events, urban planning, and social programs. The site targets residents, visitors, and local businesses, offering a broad range of services and resources relevant to city life. The business model is that of a public sector municipal service provider, positioning itself as the authoritative source for city-related information and services. Technically, the website is built on WordPress 6.0.11 with modern plugins such as Yoast SEO and Kadence Blocks, ensuring good SEO and content management capabilities. The site uses HTTPS with strong security headers and integrates Google Analytics for minimal user tracking. Mobile optimization and accessibility are well addressed, providing a positive user experience across devices. From a security perspective, the site demonstrates a solid posture with HTTPS enforcement, security headers, and no visible vulnerabilities or exposed sensitive data. However, it lacks a publicly available security policy and vulnerability disclosure program, which are recommended for transparency and incident readiness. Privacy compliance is strong, with GDPR-aligned privacy and cookie policies and a designated Data Protection Officer contact. Overall, the website is trustworthy, professional, and well-maintained, reflecting the credibility expected from a government entity. Strategic recommendations include publishing a formal security policy, establishing a vulnerability disclosure channel, and enhancing incident response transparency to further strengthen security and trust.

T

Twigsee s.r.o

twigsee.com

70

Twigsee s.r.o operates a SaaS platform focused on kindergarten and childcare management, providing a comprehensive application that facilitates communication between kindergartens, teachers, and parents. The company has established a strong market presence in the Czech Republic with over 250,000 users and multiple partner organizations. Their platform offers key services such as attendance tracking, digital registries, meal and fee management, GDPR compliance tools, and multimedia sharing, targeting educational institutions and families. Technically, the website is built on WordPress with modern JavaScript libraries like jQuery and Slick Carousel, and it leverages Cloudflare for SSL and CDN services. The site is well-optimized for mobile devices and includes integrations for Google Tag Manager, indicating a mature digital infrastructure. The presence of app store links for Android, iOS, and Huawei platforms further demonstrates a multi-channel approach. From a security perspective, Twigsee employs HTTPS with strong Cloudflare SSL encryption and implements cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not clearly visible in the HTML, the overall security posture is solid with no evident vulnerabilities or exposed sensitive data. However, the absence of WHOIS registration details reduces transparency and slightly impacts trustworthiness. Overall, Twigsee presents a professional, secure, and user-friendly platform with strong business credibility in the education sector. Strategic improvements in domain transparency and security header implementation would further enhance their security and compliance standing.

A

aSc EduPage

edupage.org

72

EduPage is a globally recognized cloud-based school management system integrated with advanced scheduling software. It serves a large user base across 173 countries and 150,000 schools, offering a comprehensive suite of features including timetable creation, mobile applications, substitution management, attendance tracking, payments, and e-learning tools. The platform targets educational institutions, teachers, students, and parents, providing a SaaS model that enhances school administrative efficiency and communication. Technically, EduPage employs a modern web stack with jQuery libraries, Google Fonts, and Material Icons, hosted on cloud infrastructure. The website demonstrates good mobile optimization and user experience, with clear navigation and professional design. SEO and accessibility are adequately addressed, though some advanced security headers and policies are not explicitly visible. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism without advertising or tracking cookies, indicating a privacy-conscious approach. However, the absence of visible security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in transparency and security maturity. Overall, EduPage presents a trustworthy and professional online presence with strong business credibility in the education sector. The lack of WHOIS data due to a malformed response limits domain registration insights, but the platform's global footprint and detailed service offerings support its legitimacy. Strategic enhancements in security documentation and contact transparency would further strengthen its posture.

I

Inveo.cz s.r.o.

inveo.cz

62

Inveo.cz s.r.o. is a Czech-based technology company specializing in e-commerce and advanced application development, offering services in .NET and PHP development alongside marketing solutions. The company positions itself as an expert in the Czech e-commerce market, serving businesses seeking to grow or start their digital presence. Their key services include software development, marketing strategy, and an e-commerce platform called Entilos. The website reflects a professional and consistent brand image with strong client references and case studies, indicating a solid market presence. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager, Google Analytics, Facebook Pixel, and a consent management platform, demonstrating digital maturity and compliance with privacy regulations. The site is mobile-optimized and well-structured, though some security headers are missing, which could be improved. The use of Google reCAPTCHA v3 on forms enhances security against automated abuse. From a security perspective, the site uses HTTPS with good SSL configuration and employs privacy and cookie policies aligned with GDPR. However, the absence of WHOIS data limits domain trust assessment. No critical vulnerabilities or exposed sensitive data were detected. The company provides clear contact information and a named Data Protection Officer, supporting compliance and trust. Overall, Inveo.cz presents a trustworthy and professional online presence with a strong focus on e-commerce and software development services. Strategic improvements in security headers and publishing a security policy would further enhance their security posture and compliance standing.

A

Avax-Models

avax-models.cz

49

Avax-Models is a Czech Republic based e-commerce retailer specializing in plastic model kits and related hobby supplies. Established since 2009, the company targets model hobbyists and enthusiasts with a broad catalog of products including aircraft, vehicles, figures, and accessories. The website is professionally designed with clear navigation and a focus on user experience, supporting multiple languages and providing comprehensive product information. Technically, the site uses modern JavaScript libraries such as jQuery and is hosted on a regional provider consistent with its market. Security posture is adequate with HTTPS and cookie consent mechanisms implemented, though it lacks advanced security headers and explicit security policies. The domain is currently expired, which poses a risk to business continuity and trust. Contact information including phone and email is clearly presented, and social media presence is established on Facebook and Instagram. Overall, the site demonstrates good privacy compliance and business credibility for a small retail operation.

L

LATAM Cargo

latamcargo.com

69

LATAM Cargo operates as a major air cargo service provider primarily serving Latin America with international and domestic freight transportation solutions. The website offers comprehensive information about shipment preparation, product portfolios, e-services such as tracking and booking, and customer support, targeting businesses and individuals requiring air freight logistics. The digital infrastructure employs modern web technologies including Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and some security headers implemented, though improvements in Content Security Policy and incident response transparency are recommended. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data is unavailable, which raises some concerns about domain registration legitimacy but does not detract from the professional presentation and branding consistent with LATAM Airlines Group. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security disclosures.

B

Bidfood

mujbidfood.cz

51

The website www.mujbidfood.cz is a professional wholesale online market operated under the Bidfood brand, targeting gastronomy and retail sectors primarily in the Czech Republic. It offers a broad assortment of frozen, chilled, dry foods, and non-food products. The platform supports multiple languages and provides registered users access to pricing and detailed product and recipe information. The business model is B2B e-commerce with a focus on wholesale distribution. The site demonstrates consistent branding and a good level of content quality and user experience. Technically, the website uses modern web technologies including jQuery, Bootstrap, and slick carousel for UI components. It is mobile optimized and provides a cookie consent mechanism compliant with GDPR. However, no explicit CMS or hosting provider information is available. Performance is moderate with good SEO and basic accessibility features. From a security perspective, HTTPS is enforced, and login forms use standard security attributes. However, no security headers were detected in the provided data, and there is no visible security policy or incident response information. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, although the website content and external links suggest a legitimate business. No critical vulnerabilities or exposed sensitive data were found. Overall, the website presents a trustworthy and professional wholesale e-commerce platform with room for improvement in security transparency and contact information visibility. The lack of WHOIS data reduces the trust score and should be addressed to enhance domain legitimacy assurance.

Bid Corporation Limited (Bidcorp) is a large international foodservice group listed on the Johannesburg Stock Exchange (JSE). The company operates across five continents, providing frozen and chilled food products and related services to the catering and hospitality sectors. Their business model emphasizes autonomous regional operations with local branding, supported by value-add processing, efficient warehousing, and a market-leading ecommerce platform. The website reflects a professional corporate presence with comprehensive investor relations and ESG reporting. Technically, the site uses modern JavaScript libraries, Google Analytics, and Cookiebot for consent management, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

K

K&T s.r.o.

benatki.com

46

Benatki.com is an e-commerce fashion retailer based in Slovakia, operated by K&T s.r.o. The company offers classic and timeless fashion apparel made from natural materials, targeting a general audience primarily in Slovakia. The website is professionally designed with clear navigation, mobile optimization, and integrated marketing tools such as Google Analytics, Facebook Pixel, and Mailchimp. The business maintains a transparent online presence with comprehensive privacy and cookie policies compliant with GDPR. The domain is registered since 2020, consistent with the company's founding and market presence. Technically, the site uses modern JavaScript libraries, Webflow CSS, and OctoberCMS as the content management system, hosted likely by Websupport.sk. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, but could be improved by enabling DNSSEC and adding security headers. No critical vulnerabilities or malicious content were detected, and the site maintains good trust indicators including social media presence and clear contact information.

G

GASTRO-TIPY.SK

gastro-tipy.sk

62

Gastro-tipy.sk is a Slovak culinary content website offering a wide range of recipes, cooking tips, and gastronomic articles targeted at Slovak-speaking home cooks and food enthusiasts. The website is built on a modern Laravel 10 framework with integration of Google Analytics and a custom analytics service. It features a cookie consent mechanism and uses HTTPS for secure communication. The site provides rich content with good design quality and clear navigation, optimized for mobile devices. However, it lacks explicit contact information and detailed security or incident response policies. The WHOIS data is privacy protected, which is common and justified for this type of small content publishing website. Overall, the website is safe, professional, and trustworthy for its audience.

D

DPD

dpd.com

72

DPD is a leading international parcel delivery company operating as part of the Geopost group, with a strong presence in over 50 countries and a workforce of 57,000 delivery experts. The company offers parcel delivery services through multiple brands including DPD, Chronopost, SEUR, BRT, Speedy, and Jadlog, serving both business and consumer markets. Their website reflects a mature digital presence with comprehensive service information, interactive tools such as depot finders and shipping cost calculators, and multi-country support.

B

BayWa r.e.

baywa-re.cz

62

BayWa r.e. operates a professional B2B wholesale distribution platform specializing in photovoltaic components and solar energy products, targeting businesses and professionals in the renewable energy sector primarily in the Czech Republic. The website presents a comprehensive catalog of solar panels, inverters, battery storage solutions, mounting systems, and related accessories, supported by technical support and training services. The site is well-structured and professionally designed, reflecting a mature digital presence aligned with industry standards. Technically, the website leverages modern JavaScript libraries including jQuery, Findologic for search, Microsoft Clarity and Google Tag Manager for analytics, and is built on the OXID eShop Enterprise Edition platform. The presence of a service worker indicates progressive web app capabilities. The site is mobile optimized and demonstrates good SEO practices, although accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, indicating GDPR awareness. However, the absence of explicit security headers such as CSP and HSTS and the lack of a visible privacy policy or terms of service page represent areas for improvement. No WHOIS data was retrievable from the CZ NIC registry, which reduces domain trustworthiness and warrants further verification. Overall, the website is a credible and professional platform for solar energy component distribution with moderate technical maturity and a generally good security posture. Strategic enhancements in privacy disclosures, security headers, and domain registration transparency would strengthen trust and compliance.

V

Vitální senior

vitalnisenior.cz

59

Vitální senior is a Czech-language online media platform focused on providing lifestyle content tailored for seniors, covering health, finance, housing, travel, and legal advice. The website operates on WordPress CMS and leverages common plugins for SEO, forms, and cookie consent. It monetizes primarily through advertising networks such as Google AdSense and Seznam SSP, and engages users via newsletter subscriptions. The content is well-structured, relevant, and updated regularly, targeting older adults in the Czech Republic. Technically, the site uses modern web technologies including HTTPS, Google Analytics, Facebook Pixel, and reCAPTCHA for form security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and some best practices, but lacks explicit security headers and incident response contacts. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service. Overall, the domain registration data is consistent and supports legitimacy. No WAF or blocking mechanisms interfere with access, and content is safe for general audiences.

Z

ZOO Dvůr Králové a. s.

safaripark.cz

48

Safari Park Dvůr Králové is a well-established zoological park in the Czech Republic specializing in African wildlife conservation and visitor engagement. The website provides comprehensive information about animal exhibits, visitor planning, educational programs, and conservation projects. It also offers accommodation services and an online shop, indicating a diversified business model focused on tourism and conservation funding. The site targets families, tourists, and educational groups, positioning itself as a key regional attraction with reputable partnerships. Technically, the website uses a modern tech stack including jQuery, Google Analytics, Facebook SDK, and a custom CMS (Toolkit). The site is mobile-optimized with good navigation and content quality. However, some technical improvements are possible, especially in security headers and performance optimization. From a security perspective, the site uses HTTPS and has a cookie consent mechanism, indicating GDPR awareness. However, it lacks explicit privacy policies, security headers, and incident response contacts, which are areas for improvement. No WAF or blocking mechanisms were detected, and the WHOIS data is consistent and trustworthy. Overall, the website is professional and trustworthy with moderate security posture and privacy compliance. Strategic improvements in security policies and transparency would enhance its risk profile and user trust.

S

Safari Park Resort

safariparkresort.cz

44

Safari Park Resort is a hospitality business located in Dvůr Králové nad Labem, Czech Republic, offering hotel accommodation, safari camping, dining, and experiential programs. The website presents a professional and consistent brand image targeting tourists interested in safari and zoo experiences. The business is small-sized, founded in 2015, and maintains a good market position regionally with partnerships for booking and certification. Technically, the website uses modern JavaScript libraries, analytics tools, and a cookie consent mechanism, but lacks explicit privacy and terms of service pages. Security posture is moderate with HTTPS implied but missing explicit security headers and policies. Contact information is clearly provided with multiple phone numbers and emails, enhancing business credibility.

V

vybrat-eshop.cz

vybrat-eshop.cz

10

Vybrat-eshop.cz is a Czech e-commerce comparison platform providing users with tools to search, compare, and review various e-shop systems and templates. It positions itself as the largest overview of e-commerce solutions in the Czech market, targeting entrepreneurs and businesses seeking to establish or improve their online stores. The website offers user-generated reviews, ratings, and news articles relevant to e-commerce trends and technologies. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Analytics, and integrates advertising through reputable networks such as Seznam SSP and Sklik. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks advanced security headers and explicit incident response policies. The absence of WHOIS data for the domain is a notable anomaly, slightly reducing trust, but the active and professional nature of the site supports its legitimacy. Overall, the site demonstrates a solid digital presence with room for security and compliance enhancements.

Z

ZOO Dvůr Králové a. s.

zoodvurkralove.cz

48

Safari Park Dvůr Králové is a well-established zoological park in the Czech Republic, specializing in African wildlife conservation and visitor engagement through educational and experiential offerings. The website reflects a medium-sized non-profit organization with a strong local and tourist audience focus. The digital infrastructure employs modern JavaScript libraries and analytics tools, with a CMS platform tailored for content management. While the site is accessible and professionally designed, it lacks explicit privacy and terms of service documentation, which are critical for compliance and trust. Security posture is adequate with HTTPS and cookie consent but could be improved with additional security headers and incident response information. Overall, the site demonstrates good business credibility and user experience but should enhance privacy and security transparency.

C

CorCo Systems a.s.

corrency.cz

59

Corrency.cz is a Czech Republic-based platform operated by CorCo Systems a.s. that focuses on revitalizing local economies through municipal projects supporting residents, children, seniors, and cultural activities. The platform collaborates with government bodies and financial institutions, positioning itself as a niche solution for regional economic development. The website demonstrates a good level of digital maturity with modern technologies such as Google Analytics, Microsoft Clarity, and Bootstrap frameworks, alongside a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and nonce usage, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data limits domain trust verification, but the presence of credible partnerships and testimonials supports legitimacy. Overall, the site is professional, user-friendly, and trustworthy with moderate technical performance and good privacy compliance.

S

Sencito

chytrejsiobec.cz

49

Sencito is a technology company specializing in smart IoT solutions for municipalities, offering a range of sensors, modules, and a mobile application to enable smarter community management. Their market position is focused on small to medium municipalities primarily in the Czech Republic and surrounding regions, providing affordable and easy-to-deploy IoT infrastructure. The website is professionally designed, multilingual, and provides detailed information about their products and services, targeting both municipal authorities and citizens. Technically, the website uses modern JavaScript libraries such as jQuery, Blueimp Gallery, Owl Carousel, and AOS for animations, alongside Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized and includes cookie consent mechanisms, indicating a moderate level of digital maturity. However, no CMS or hosting provider details were identified. From a security perspective, the site enforces HTTPS and uses encrypted connections. Cookie consent and spam protection on forms are implemented. However, no explicit security headers were detected, and there is no published security policy or incident response information, which are areas for improvement. The absence of WHOIS data reduces transparency but does not indicate malicious intent. Overall, the website presents a trustworthy and professional front for a niche IoT technology provider, with moderate security posture and good privacy compliance. Strategic improvements in security policy transparency and technical security headers would enhance trust and compliance.

4

4Shop.cz - Zbyněk Velecký

4shop.cz

51

4Shop.cz is a well-established Czech e-commerce platform provider offering customizable and scalable online store solutions since 2004. The company targets small to medium-sized businesses seeking professional e-shop creation, rental, and marketing services. Their platform includes AI-powered features, extensive modules, and integrations with popular payment gateways and marketplaces. Technically, the website uses modern JavaScript libraries like jQuery and integrates third-party marketing and analytics tools with proper cookie consent mechanisms. The site is mobile-optimized and SEO-friendly, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent, though explicit security policies and incident response contacts are not published. Overall, the platform demonstrates high business credibility and technical maturity with room for improvement in formal security disclosures.

M

Ministerstvo průmyslu a obchodu ČR

mpo-efekt.cz

47

The website efekt.gov.cz represents the official state program EFEKT managed by the Ministry of Industry and Trade of the Czech Republic. It focuses on promoting energy savings, increasing energy efficiency, and supporting the use of renewable energy sources through subsidy programs, consultancy, and information dissemination. The site targets government entities, energy specialists, and the general public interested in energy efficiency initiatives. The business model is that of a government program providing authoritative resources and support in the energy sector within the Czech Republic. Technically, the website uses a modern but simple technology stack including jQuery, Normalize.css, and Lytebox for UI components, and Matomo for privacy-conscious analytics. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. The website performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS as expected for a government domain, but no explicit security headers were detected in the provided data. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is good with clear privacy and cookie policies available, although no active cookie consent mechanism is present. Contact information is limited to an official email address. WHOIS data is unavailable due to CZ NIC policies for gov.cz domains, but the domain's legitimacy is supported by consistent branding and official links. Overall, the website is trustworthy, professional, and serves its purpose well. Recommendations include enhancing security headers, implementing a cookie consent mechanism, and publishing terms of service and vulnerability disclosure information to improve transparency and compliance.

P

Palomino Inc.

palominosys.com

59

Palomino Inc. is a Canadian technology company founded in 2001, specializing in cloud solutions, business intelligence, data automation, and compliant cloud services tailored for growing businesses. The company positions itself as a trusted partner for medium to large enterprises seeking scalable and secure cloud infrastructure and data management platforms. Their proprietary WebPal platform underpins a suite of services including cloud hosting, digital marketing analytics, project management, content management, and custom application development. The website demonstrates a mature digital presence with professional design, clear navigation, and comprehensive service descriptions supported by client case studies. Technically, the site employs modern web technologies such as jQuery, Google reCAPTCHA v3, and Swiper.js, hosted on their own Palomino hosting infrastructure. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though improvements are recommended in security headers and explicit security policies. Privacy compliance is evidenced by a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. Overall, the website reflects a credible and professional business with a strong market position in the technology sector.

AXIOM TECH s.r.o. is a well-established Czech company specializing in digital transformation solutions for the engineering and manufacturing sectors. With 30 years of experience, they provide a comprehensive portfolio of Siemens and CGTech software products, including PLM Teamcenter, NX CAD/CAM, Solid Edge, Tecnomatix, and Vericut. Their services include training, consulting, technical audits, and custom application development, targeting engineering firms and manufacturing companies seeking to optimize production and design processes. The company maintains a strong market position as a Siemens Solution Partner Gold Expert and demonstrates a professional online presence with detailed content and customer testimonials. Technically, the website employs modern web technologies such as jQuery, Tiny Slider, Google Fonts, and Google Analytics, with good mobile optimization and accessibility. The site uses HTTPS with a valid SSL certificate, though it lacks some recommended security headers. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Contact information is transparent and easily accessible, enhancing business credibility. From a security perspective, the site shows good practices like HTTPS enforcement and no visible sensitive data exposure. However, the absence of security headers and a vulnerability disclosure policy are areas for improvement. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the company's evident legitimacy and partnerships. Overall, the website is professional, secure, and compliant, serving its target audience effectively.

S

Sony Corporation

sony.net

69

Sony Corporation is a globally recognized multinational conglomerate specializing in technology, entertainment, and media products and services. The official website serves as a comprehensive portal for showcasing Sony Group's diverse business segments including consumer electronics, entertainment content, and technology services. The site targets a broad audience including consumers, business partners, investors, and job seekers. Sony holds a strong market position as a leader in innovation and entertainment worldwide. Technically, the website employs a modern technology stack including jQuery, Swiper.js for UI components, Google Tag Manager for analytics, and OneTrust for privacy consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. The use of HTTPS and security headers indicates a strong security posture. From a security perspective, Sony's website shows adherence to best practices with enforced HTTPS, content security policies, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. The presence of ISO 27001 certification further underscores Sony's commitment to information security. Overall, the website is trustworthy, professionally maintained, and aligns well with Sony's corporate identity. The lack of WHOIS data is typical for Japanese domains and does not detract from the site's legitimacy. Strategic recommendations include ongoing security audits, monitoring third-party scripts, and ensuring all forms have adequate protections to maintain security and compliance.

B

Bundesministerium der Finanzen

bundesfinanzministerium.de

63

The Bundesfinanzministerium website serves as the official digital presence of the German Federal Ministry of Finance, providing comprehensive information on finance, taxation, public budget, and economic policy. It targets a broad audience including citizens, businesses, media, and policymakers. The site offers key services such as tax information, public finance data, customs details, and various online calculators and publications. The ministry holds a strong market position as the federal authority responsible for financial governance in Germany. Technically, the website is built on a government-specific CMS (Government Site Builder) and employs modern JavaScript libraries including jQuery and RequireJS. It integrates Matomo analytics with a strict consent mechanism ensuring GDPR compliance and user privacy. The site demonstrates good performance, mobile optimization, and excellent accessibility features including sign language and plain language options. From a security perspective, the site enforces HTTPS, anonymizes IP addresses in analytics, and respects user consent for tracking. While explicit security policies and incident response contacts are not published, the site follows best practices for privacy and data protection. No vulnerabilities or suspicious elements were detected in the content or WHOIS data, which aligns with the official government entity. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable source of official financial information for Germany.

Sony Group Corporation is a globally recognized multinational conglomerate specializing in consumer electronics, entertainment, gaming, music, imaging, and financial services. The company maintains a strong market position with diversified business units including Sony Interactive Entertainment, Sony Music, and Sony Pictures. The website reflects a mature digital presence with comprehensive corporate information, product details, and investor relations content targeting consumers, business partners, and investors worldwide. Technically, the site employs modern web technologies such as jQuery, Google Tag Manager, Adobe Launch, and OneTrust for consent management, ensuring a robust and compliant user experience. Security posture is strong with HTTPS enforcement, multiple security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the domain and website demonstrate high legitimacy and trustworthiness consistent with Sony's corporate stature.

S

San Diego State University

sdsu.edu

65

San Diego State University (SDSU) is a large, well-established public research university founded in 1897, serving a diverse student body with over 202 degree programs and extensive student organizations. The website reflects a mature digital presence with consistent branding, comprehensive academic and campus life information, and active engagement through multiple official social media channels. Technically, the site employs modern JavaScript libraries, analytics tools, and a CMS platform (OmniUpdate), delivering a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are not publicly documented. Privacy compliance is partial, with a comprehensive digital privacy statement but lacking a cookie consent mechanism. WHOIS data for the domain is unavailable, likely due to querying the subdomain 'www.sdsu.edu' or .edu WHOIS restrictions, but the website content and external references strongly support legitimacy. Overall, SDSU's website is professional, trustworthy, and well-maintained, serving its educational mission effectively.

N

nexum Magyarország Kft.

karrierportal.hu

62

Karrier Portál, operated by nexum Magyarország Kft., is a well-established Hungarian recruitment software provider with a history dating back to 2002. The company offers a comprehensive online recruitment platform targeting HR professionals and recruiters, emphasizing fast deployment and continuous development. The website reflects a professional B2B SaaS business model with a consistent brand presence and a clear focus on recruitment technology solutions. Technically, the site uses modern JavaScript libraries and Google Analytics for tracking, with a responsive design optimized for mobile devices. However, it lacks some advanced security headers and formal privacy documentation. Security posture is moderate with HTTPS implied but no explicit security policies or incident response information published. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

MVM NUKA Nukleáris Karbantartó Zrt. is a Hungarian company specializing in nuclear maintenance services as part of the larger MVM Group, a key player in the energy sector. The company provides high-quality electrical, control technology, and mechanical maintenance services primarily for the MVM Paksi Atomerőmű Zrt. and affiliated group companies. The website reflects a professional corporate presence with clear contact information and compliance with GDPR through comprehensive privacy and cookie policies. The site is primarily in Hungarian and targets industry stakeholders and partners within the energy sector. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome, and Google Charts, built on the Sitecore CMS platform. The site is mobile optimized with moderate performance and basic accessibility features. Analytics are implemented via Google Analytics with a cookie consent mechanism ensuring user privacy compliance. No blocking or WAF challenges were detected, allowing full content access. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent mechanisms. However, it lacks explicit published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were found in the HTML content. The domain registration details align well with the business profile, indicating a legitimate and trustworthy entity. Overall, the website demonstrates a solid business credibility and technical maturity with room for improvement in security transparency and accessibility. The risk level is low, with recommendations to enhance security policy visibility and incident response readiness to further strengthen trust and compliance.