Security Directory

Obec Máslovice operates an official municipal website serving the local community of Máslovice, Czech Republic. The site provides comprehensive information about local services, events, municipal office activities, and public notices. It targets residents and visitors interested in community engagement and local governance. The website is built on WordPress, utilizing common web technologies such as jQuery and Google Analytics with IP anonymization to respect user privacy. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is generally good with HTTPS enforced, though the absence of security headers and cookie consent mechanisms suggests room for improvement. The lack of WHOIS data reduces domain registration transparency but does not detract from the site's apparent legitimacy as a government entity.

C

Colloredo-Mannsfeld spol. s r.o.

lesyzbiroh.cz

56

Colloredo-Mannsfeld spol. s r.o. is a medium-sized forestry and fishery management company based in the Czech Republic, with a long historical background linked to aristocratic roots. The company manages extensive forest areas and fishponds, focusing on sustainable forestry practices and nature conservation. Their website provides detailed information about their services, history, and ongoing projects, targeting a general audience interested in forestry and environmental stewardship. Technically, the website is built on WordPress using popular plugins like Yoast SEO and WPBakery Page Builder, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal policies. Overall, the site is professional and trustworthy but could improve privacy compliance and explicit contact information.

M

Minimalizace šikany

minimalizacesikany.cz

43

Minimalizace šikany is an educational program website focused on helping schools reduce the frequency and severity of bullying incidents. The site targets schools and educational institutions primarily in the Czech Republic. The business model appears to be service-oriented, providing programs and support for bullying prevention. The website uses WordPress with the Divi theme and includes SEO optimizations but lacks configured analytics and privacy compliance features. Technically, the site is moderately optimized for performance and mobile responsiveness but could improve accessibility and security headers. Security posture is basic with no evident vulnerabilities but lacks important security headers and privacy policies. Overall, the risk is moderate due to missing WHOIS data and privacy compliance gaps. Strategic recommendations include adding privacy and cookie policies, configuring analytics properly, improving security headers, and providing clear contact information to enhance trust and compliance.

E

Effet Webservice

effet.info

48

Effet Webservice is a small Austrian technology company specializing in server administration, TYPO3 CMS, WordPress, ownCloud/Nextcloud hosting, SEO, and web marketing services. The company targets businesses and organizations seeking professional web hosting and digital marketing solutions. Their market position is that of a niche specialist with a focus on TYPO3 CMS and managed hosting services. The website is professionally designed, consistent in branding, and provides clear contact information including a physical address and phone number. Technically, the website is built on TYPO3 CMS with Bootstrap and jQuery frameworks, delivering a moderate performance and good mobile optimization. The site uses HTTPS and includes proper meta tags for SEO but lacks advanced security headers and accessibility features. No analytics or tracking scripts were detected, indicating a privacy-conscious approach but also a lack of privacy policy and cookie consent mechanisms. From a security perspective, the site benefits from HTTPS and absence of cookies but lacks security headers and formal security policies. The WHOIS data is privacy protected, which is justified for this business type, and no suspicious domain registration patterns were found. Overall, the security posture is moderate with room for improvement in policy transparency and header implementation. The overall risk is low given the professional nature of the site and absence of vulnerabilities, but the company should enhance privacy compliance and security best practices to strengthen trust and regulatory adherence.

G

Grow

grow.me

54

Grow is a technology-driven platform focused on enabling readers to curate and save content from their favorite creators for free. The platform emphasizes ease of use with a single login for content bookmarking and subscription, targeting content consumers who value efficient content management. Affiliated with Mediavine, Grow benefits from established market presence and resources. Technically, the website is built on WordPress with modern JavaScript libraries and integrates advanced consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and consent-based tracking, though there is room for improvement in security headers and explicit security policies. Overall, the site is professional, privacy-conscious, and trustworthy, with no signs of malicious activity or content safety concerns.

H

hockeydata GmbH

hockeydata.net

56

hockeydata GmbH is a specialized Austrian company providing software solutions and professional services focused on sports statistics, association management, and live graphics for sports broadcasts. The company holds a leading position in Austria's sports software market, serving clubs, leagues, broadcasters, and fans with tailored products and services. Their offerings include sport statistics software, multimedia display systems, and operational support for sports events and TV productions. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website is built on WordPress with modern plugins and libraries such as WPBakery Page Builder, jQuery, and Google APIs. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is solid with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. The WHOIS data is unavailable or indicates the domain may not be registered under the queried name, which raises concerns about domain legitimacy. However, the website content and business presence suggest an operational and credible entity. No signs of WAF or content blocking were detected, allowing full content analysis. Overall, hockeydata GmbH presents a trustworthy and professional online presence with room for improvement in privacy compliance and security policy transparency. Verification of domain registration is recommended to strengthen trust and legitimacy.

L

Leonardo Demartino

demartino.ar

52

Leonardo Demartino's website serves as a professional portfolio highlighting his expertise as a lead developer in software, game development, and multimedia applications. The site showcases a variety of projects across multiple platforms including iOS, Android, Steam, and consoles, positioning him as a niche player in the indie game and multimedia software market. The business model is primarily personal branding and project promotion, targeting developers, gamers, and potential collaborators. Technically, the website employs a modern and responsive design using Bootstrap, jQuery, and Google Fonts, ensuring good mobile optimization and user experience. The site is well-structured with clear navigation and professional content presentation. However, no CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for compliance and user trust. No forms or analytics scripts reduce the attack surface and tracking footprint, but the absence of incident response or vulnerability disclosure information indicates room for improvement in security maturity. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its risk posture and user confidence.

O

OpenPandora GmbH

dragonbox.de

62

DragonBox Shop, operated by OpenPandora GmbH, is a specialized e-commerce retailer based in Germany focusing on retro gaming products, accessories, and mini-PCs. The company targets retro gaming enthusiasts and technology hobbyists, offering a curated selection of products including game controllers, adapters, and repair services. The website demonstrates a consistent brand presence with clear business information and trust signals such as Trusted Shops certification and GDPR-compliant privacy and cookie policies. Technically, the site is built on the PrestaShop 1.7 platform, leveraging modern web technologies including jQuery, Matomo Analytics, and layered sliders for enhanced user experience. The site is mobile-optimized and provides good SEO and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with a well-structured navigation system supporting a positive user experience. From a security perspective, the website enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policy documentation and incident response contact details. Security headers are not fully evident, suggesting room for improvement in hardening the site against common web threats. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, DragonBox Shop presents a trustworthy and professional online presence with a solid privacy compliance posture and a niche market focus. Strategic enhancements in security policies and technical security headers would further strengthen its security posture and customer trust.

A

Atari®

atari.com

74

Atari.com is the official e-commerce website for Atari®, a well-known brand in the gaming industry. The site offers classic and modern gaming consoles, cartridges, merchandise, and collectibles, targeting gamers and collectors worldwide. The website leverages the Shopify platform, integrating multiple third-party services for reviews, marketing, and product customization, reflecting a mature digital infrastructure. The site is professionally designed with good content relevance and user experience, supporting its position as a large, established brand in the gaming and entertainment sector. Security posture is solid with HTTPS enforced and form protection via hCaptcha, though there is room for improvement in explicit security headers and published security policies. Privacy compliance is basic, lacking visible privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and business credible, with a strong domain history and consistent WHOIS data.

C

Cyberworx Technologies Pvt Ltd

cyberworx.in

46

Cyberworx Technologies Pvt Ltd is a well-established digital agency based in Delhi NCR, India, specializing in website design, development, ecommerce solutions, mobile app development, SEO, and digital brand development. The company positions itself as a top-tier service provider with a strong portfolio and client base, supported by a high aggregate rating and extensive service offerings. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Microsoft Clarity, and Materialize CSS, ensuring a responsive and user-friendly experience. However, there is room for improvement in security posture, particularly in implementing security headers and formal privacy and cookie policies. Overall, the website is professional, content-rich, and trustworthy, with clear contact information and social media presence.

D

Dalkia

dalkiasolutions.com

55

Dalkia Solutions is a large energy efficiency solutions provider offering a comprehensive range of services including chiller services, combined heat and power, digital services, intelligent load management, LED lighting and controls, operations and maintenance, refrigeration, retail energy, smart infrastructure solutions, solar plus storage, and strategic energy management. The company targets commercial and industrial clients nationwide and is part of the EDF Group, a well-known energy conglomerate. The website demonstrates a professional and consistent brand presence with detailed service descriptions and active social media engagement. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and OwlCarousel, and integrates Google Tag Manager for analytics. The site is mobile optimized with good SEO practices, though accessibility features are basic. Performance is moderate, with no critical errors detected. From a security perspective, the site uses HTTPS with CSRF tokens in forms, but lacks important security headers and a cookie consent mechanism. No explicit incident response or vulnerability disclosure policies are published, which could be improved to enhance trust and compliance. The absence of WHOIS data is a concern but the website content and branding align with a legitimate business. Overall, the site is professional and trustworthy but would benefit from enhanced security headers, explicit contact information, and improved privacy compliance mechanisms to strengthen its security posture and user trust.

openscienceASAP is an educational and community-focused platform dedicated to promoting open science practices. The website provides resources, research, education, and social engagement opportunities for researchers and advocates of open science. The platform operates as a small-scale non-profit or community resource hub with a niche focus on open science within the education sector. Technically, the website is built on WordPress with standard web technologies including PHP and JavaScript, and uses external resources such as Google Fonts and Fontello icons. The hosting and domain registration are stable and consistent with the website's age and purpose. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and security headers. Privacy and cookie policies are absent, indicating compliance gaps. No contact information or incident response details are provided, limiting transparency. Overall, the website is functional but basic in content and technical sophistication.

#

#to chce odvahu

tochceodvahu.cz

10

The website tochceodvahu.cz represents a recently launched non-profit mental health awareness campaign named '#to chce odvahu', initiated in 2025. It is a collaborative effort involving the Office of the President of the Czech Republic, Nadační fond Flaminia, and Nevypusť duši. The campaign provides resources such as crisis helpline information, ambassador stories, and a help directory aimed at supporting mental health, particularly targeting youth and adults. The site is professionally designed with consistent branding and clear navigation, reflecting a high level of digital maturity for a small non-profit initiative. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with integration of Font Awesome icons and Google/Fontshare fonts. It embeds YouTube videos for richer content delivery and uses the Umami analytics platform for minimal user tracking. Hosting is provided by WEDOS, a reputable Czech hosting provider. The site is mobile-optimized and SEO-friendly, though accessibility features could be enhanced. From a security perspective, the site uses HTTPS as indicated by canonical URLs, but lacks visible security headers and formal privacy or cookie policies, which are important for GDPR compliance and user trust. No forms collecting personal data are present on the main page, reducing immediate data protection risks. The WHOIS data shows a consistent and transparent domain registration aligned with the campaign's launch timeline, supporting legitimacy. Overall, the website is a trustworthy and well-executed campaign platform with excellent content quality and business credibility. However, it should improve privacy compliance and security best practices to enhance user trust and regulatory adherence.

T

TJ Spartak Hořovice, z.s.

plavanihorovice.cz

47

TJ Spartak Hořovice is a local Czech sports club specializing in swimming and modern pentathlon. The website serves as an information hub for club members and the local community, providing event calendars, news updates, photo galleries, and training schedules. The club operates as a non-profit entity, focusing on youth and amateur sports activities in the Hořovice region. The site is well maintained with consistent branding and relevant content for its target audience. Technically, the website is built on Joomla CMS with supporting frameworks such as Bootstrap and UIkit, leveraging jQuery and Google Fonts for enhanced user experience. The site is mobile optimized and includes a cookie consent mechanism, reflecting a moderate level of digital maturity. Performance is moderate with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS but lacks several important security headers like Content-Security-Policy and HSTS, which could enhance protection against common web threats. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a cookie consent banner present but no explicit privacy policy or terms of service pages found. Overall, the website presents a moderate risk profile with good business credibility but could benefit from improved security practices and enhanced privacy documentation. Strategic recommendations include implementing security headers, publishing a comprehensive privacy policy, and maintaining up-to-date software to mitigate potential risks.

H

HMS Stavby

hms-stavby.cz

37

HMS Stavby is a small construction company based in the Czech Republic, operating since 2012. The website presents basic information about the business and its services, targeting a general audience interested in building and construction. The site is built on WordPress using the Divi theme, with standard web technologies such as jQuery and Google Fonts. The hosting provider is WEDOS, consistent with the Czech location. The website has basic mobile optimization and moderate performance but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but no security headers detected and an expired domain status which poses a risk. Privacy compliance is minimal with no privacy policy or terms of service found, though a cookie consent mechanism is implemented. Overall, the site is functional but lacks comprehensive security and compliance measures.

A

AutoTužil

autotuzil.cz

54

AutoTužil is a small automotive service provider based in the Czech Republic offering a wide range of vehicle repair and maintenance services including nonstop auto repair, air conditioning servicing, diagnostics, and sale of auto accessories. The website is professionally designed with clear navigation and good mobile optimization, targeting vehicle owners in the local region. The business appears well-established with a founding year of 2004 indicated in the footer, although domain registration details are unavailable, which introduces some uncertainty about domain legitimacy. Technically, the site uses modern frontend libraries such as Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for user tracking. Security posture is moderate with HTTPS enabled but lacking security headers and a privacy policy, which are recommended for compliance and trust. Overall, the website is functional and trustworthy for its business purpose but would benefit from improved transparency and security practices.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-kampagne-2019.de

42

The website 'bkk-kampagne-2019.de' represents a health awareness campaign by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., focusing on promoting healthy sleep habits. It provides educational content, tips, and resources related to sleep health, targeting the general German-speaking public. The campaign is positioned as a niche, non-profit initiative within the healthcare sector, with a clear and consistent branding approach. The website content is well-structured, professionally designed, and offers multilingual support (German and English). Technically, the site is built on WordPress, leveraging caching and minification plugins to optimize performance. It uses HTTPS with a good SSL configuration, but lacks some security headers and cookie consent mechanisms, which are recommended for enhanced compliance and security. No forms or data collection mechanisms are visible on the homepage, reducing privacy risks. Contact information is clearly provided, including a verified organizational email and physical address in Berlin. No suspicious or malicious indicators were found, and the domain appears legitimate and appropriate for the campaign's history and purpose.

C

Cesta z krize, z.ú.

linkapsychickepomoci.cz

48

The website linkapsychickepomoci.cz represents a non-profit organization named Cesta z krize, z.ú., providing free, anonymous, and 24/7 psychological crisis support services primarily to adults in the Czech Republic. The service offers telephone and chat support to individuals facing acute psychological distress or crisis situations. The organization is government co-financed and partners with other NGOs, positioning itself as a trusted social service provider in the mental health support sector. Technically, the website employs modern web technologies including Google Tag Manager, Cookiebot for cookie consent management, and Smartsupp for live chat functionality. The site is hosted by Active24 and demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO and metadata are present but could be enhanced for better discoverability. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a privacy policy and terms of service pages, as well as no security.txt file, indicates areas for compliance and security improvement. Overall, the website is safe, professional, and trustworthy, with a clear focus on mental health crisis support. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and improving accessibility compliance to strengthen user trust and regulatory adherence.

C

Cesta z krize, z.ú.

linkaztracenedite.cz

49

The website 'Linka pro rodinu a školu' is a Czech non-profit social service platform operated by 'Cesta z krize, z.ú.' focused on supporting families, children, and adults in crisis situations, particularly related to missing children and school or family problems. It offers telephone crisis intervention, online chat support, and professional counseling, positioning itself as a trusted and officially recognized service with backing from national and European institutions. The site targets a broad audience including families, educators, and the general public. Technically, the website employs modern web technologies such as Google Tag Manager and Cookiebot for consent management, with a moderate performance profile and good mobile optimization. Hosting is provided by Active24, consistent with the domain registration data. The site implements a comprehensive cookie consent mechanism with granular user controls, reflecting a good level of privacy compliance, although explicit privacy policy and terms of service pages are not clearly found in the provided content. From a security perspective, the site uses HTTPS (implied by external scripts loaded via HTTPS), but no explicit security headers or advanced security policies are evident in the HTML content. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is transparent and consistent with the organization's profile, indicating a legitimate and stable domain registration. Overall, the website demonstrates a solid risk posture with good privacy compliance and business credibility. Recommendations include enhancing security headers, publishing explicit security and incident response policies, and improving accessibility features to further strengthen the site's security and compliance posture.

G

Grizzly Ads

grizzlyads.com

57

Grizzly Ads is a technology startup offering an ad booking and management platform targeted at creative businesses and content creators. The platform is currently in beta, focusing on enabling creators to sell ad slots directly to sponsors with unlimited bookings and direct payments. The website reflects this early stage with clear but limited content and a focus on onboarding beta users. Technically, the site is built on the Bubble.io platform, leveraging modern JavaScript libraries and cloud hosting via AWS Cloudfront CDN. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The technical infrastructure is adequate for a startup but could benefit from enhanced security configurations. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and important security headers. There are no visible incident response or security policies, and cookie consent mechanisms are absent. Analytics usage is minimal, relying on plausible.io, which is privacy-focused. Overall, the security posture is moderate but requires improvements to meet best practices. The overall risk is moderate given the startup nature and limited exposure. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent and privacy enhancements, and publishing incident response contacts to improve trust and compliance.

S

Startup Tech Valley

startuptechvalley.org

59

Startup Tech Valley is a small event organization focused on fostering the startup ecosystem in the Capital Region of the United States. They organize premier startup events featuring pitches, networking, and community engagement, targeting entrepreneurs, investors, and business leaders. The website is professionally designed using Squarespace, with good mobile optimization and moderate performance. Social media presence is strong, supporting community outreach and event promotion. Security posture is good with HTTPS and HSTS enabled, and Google reCAPTCHA implemented to protect forms. However, the absence of privacy and cookie policies, lack of explicit contact information, and missing WHOIS data reduce overall trust and privacy compliance. The domain's legitimacy is partially uncertain due to unavailable WHOIS records, though the website content and external event registration links suggest a legitimate business. Strategic improvements in privacy compliance, security headers, and transparency would enhance trust and compliance.

The website www.vojujezd-brdy.cz serves as an informational portal focused on tourism, hiking, cycling, and local history related to the former military area Brdy in the Czech Republic. It targets tourists and outdoor enthusiasts seeking less crowded natural areas. The site provides detailed descriptions of trails, accommodation options, and local services, monetized primarily through Google Adsense advertising. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, Google Fonts, and integrates Google Analytics and a consent management platform to comply with privacy regulations. The website is accessible without WAF or security challenges, but lacks explicit privacy and terms of service pages, and does not provide direct contact information, which limits user trust and compliance transparency. Security posture is moderate with HTTPS enabled but missing security headers. WHOIS data is unavailable, which reduces domain trustworthiness. Overall, the site is functional and relevant for its niche audience but could improve in privacy transparency, security best practices, and contact availability.

B

Berounský Region

berounskyregion.cz

56

Berounský Region is a regional media portal focused on culture and social life in the Beroun area of the Czech Republic. It provides news, event invitations, calendars, videos, and features on regional personalities, targeting residents and visitors interested in local cultural activities. The website is built on WordPress with common plugins and integrates Google Analytics for user tracking. It is mobile-optimized and regularly updated with relevant content. Security posture is moderate with HTTPS enabled but lacks some security headers and formal privacy/cookie policies. WHOIS data is unavailable, which slightly reduces trust but the active social media presence and content quality support legitimacy. Overall, the site serves as a valuable regional cultural information source with room for improvement in privacy compliance and security practices.

B

Bezplatná právní poradna online zdarma pro všechny

bezplatnapravniporadna.cz

47

Bezplatná právní poradna online zdarma pro všechny is a Czech Republic-based free legal advice website offering extensive legal content authored by legal professionals. The site targets the general public seeking legal guidance without charge, positioning itself as a comprehensive resource for various legal topics including family law, civil law, labor law, and more. The business model revolves around providing free legal information and advice, supported by advertising revenue from Google Adsense and Czech Sklik networks. The website demonstrates consistent branding and good content quality with a professional and user-friendly design.

H

Hotel zámek Berchtold

zamekberchtold.cz

59

Hotel zámek Berchtold is a hospitality business located in the Czech Republic offering a range of services including corporate events, teambuilding, weddings, family vacations, wellness, sports, and restaurant facilities. The website presents a professional and consistent brand image with clear navigation and relevant content targeting corporate clients, families, and tourists. The business is small-sized and has been established since 2006, supported by a domain registration consistent with its history. Technically, the website is built on WordPress hosted on WordPress.com, leveraging Jetpack and other standard plugins. It uses HTTPS with good SSL configuration and includes integrations such as Facebook SDK and Google Translate. Performance and mobile optimization are moderate to good, though accessibility features could be improved. From a security perspective, the site benefits from WordPress.com hosting security but lacks explicit security policies, vulnerability disclosure, and advanced security headers. Privacy compliance is partial, with a cookie consent mechanism present but no dedicated privacy policy or terms of service pages. Contact information is comprehensive and trustworthy. Overall, the website is safe, professional, and credible with minor gaps in privacy and security documentation. Strategic improvements in privacy policy publication, security headers, and incident response information would enhance trust and compliance.

M

MZ.cz

pruvodkarlaiv.cz

53

MZ.cz is a Czech-language content portal offering a wide range of informational articles, guides, and reviews across sectors such as finance, career, parenting, psychology, relationships, health, travel, shopping, and lifestyle. The website targets the general Czech-speaking public seeking practical advice and knowledge. Technically, the site is built on WordPress CMS, leveraging popular plugins like Yoast SEO and integrating Google services for analytics and advertising. The site demonstrates good digital maturity with responsive design, structured data, and SEO optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve transparency and security practices.

N

National Heritage Institute

zamek-mnisek.cz

44

The website represents the official web presence of Mníšek pod Brdy Castle, managed by the National Heritage Institute of the Czech Republic. It provides detailed visitor information, including tours, events, opening hours, and contact details, targeting tourists and heritage enthusiasts. The site is well-positioned as a government-operated cultural heritage site with a medium-sized operational scope and a history dating back to 2007. Technically, the site uses modern JavaScript libraries, Google Tag Manager for analytics, and integrates map services from Mapy.cz, delivering a moderate performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Privacy compliance is basic but present, with clear privacy and cookie policies linked from the site. Overall, the site is trustworthy, professional, and safe for general audiences, with no adult or questionable content detected.

C

Centrum LOCIKA, z. ú.

detstvibeznasili.cz

57

Centrum LOCIKA operates the website detstvibeznasili.cz, a Czech non-profit platform dedicated to providing direct support to children and families affected by domestic violence. The site offers chat support, educational resources, and awareness campaigns targeting children, teenagers, parents, and school professionals. It holds a strong market position within the Czech Republic's child protection sector, leveraging professional content and consistent branding to build trust. Technically, the website is built on the Webflow CMS platform, utilizing modern web technologies such as jQuery, Google Fonts, and slick carousel for UI components. It integrates Google Analytics and TikTok Pixel for analytics and marketing purposes, with a cookie consent mechanism ensuring user privacy compliance. The site is mobile-optimized, fast-loading, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent banners, but lacks advanced security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with GDPR-aligned policies accessible. The absence of WHOIS data due to privacy protection is justified given the sensitive nature of the organization's work. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, privacy practices, and vulnerability disclosure would further enhance its security posture and user trust.

E

EDUin, o. p. s.

podporujuvzdelavani.cz

43

EDUin is a Czech non-profit organization dedicated to supporting and informing about education through various projects including audits, newsletters, podcasts, and networking for school founders. The website serves as a donation and information portal, targeting parents, educators, and stakeholders in the education sector. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses SEO best practices. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is adequate with a privacy policy and cookie consent mechanism in place. Overall, the site is professional, trustworthy, and well-aligned with its mission.

C

Centrum LOCIKA

centrumlocika.cz

10

Centrum LOCIKA is a Czech non-profit organization dedicated to helping children and families live free from domestic violence. The organization provides a range of services including crisis support, legal information, preventive education, and operates a children's advocacy center. It collaborates with government ministries and foundations, positioning itself as a trusted entity in child protection and family support within the Czech Republic. The website reflects a professional and well-structured digital presence, utilizing modern web technologies and offering multilingual support (Czech and English). Privacy and cookie compliance are well implemented, enhancing user trust. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, though the website content and partnerships strongly support its authenticity. Security posture is generally good with HTTPS and cookie consent mechanisms, but could be improved by adding explicit HTTP security headers and incident response information. Overall, the site is safe, accessible, and provides valuable resources to its target audience.

SKAV is an educational organization hosting a permanent conference focused on education, aiming to help individuals develop their potential and find their place in society. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies. The domain is long-established since 2000, consistent with the organization's history. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Society for All (SOFA) is a Czech non-profit organization dedicated to supporting vulnerable populations, particularly children, through education, mental health initiatives, and expert partnerships. The website presents a professional and content-rich platform focused on advocacy, training, and online counseling services. The organization targets educators, social workers, parents, and professionals involved in child welfare and education within the Czech Republic. Technically, the website uses modern web standards including Bootstrap and Google Fonts, offering good mobile responsiveness and user experience. However, there is a lack of visible privacy and cookie policies, and no direct contact emails or phone numbers are provided, relying mainly on an online contact form. Security posture is moderate with HTTPS implied but missing explicit security headers and vulnerability disclosure mechanisms. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security practices.

W

wellbeingveskole.cz

wellbeingveskole.cz

35

The website wellbeingveskole.cz is focused on promoting wellbeing in schools within the Czech Republic. It aims to create environments where all participants feel good, build supportive relationships, and fully develop their potential. The site appears to serve educators, students, and school communities with educational and advocacy content. Technically, the site is built on WordPress using the Divi theme and several plugins including Rank Math SEO and Supreme Modules Pro. The site is moderately optimized for performance and mobile devices, with good SEO metadata and structured data implementation. Security-wise, HTTPS is enabled, but there is a lack of advanced security headers and no visible privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data limits domain trust analysis, but the website content and design appear professional and safe. Overall, the site is functional and informative but would benefit from improved privacy compliance and security practices.

T

TodaysWeb Ltda.

todaysweb.com

50

TodaysWeb Ltda. is a small technology company specializing in website development and digital marketing services, targeting business clients seeking to increase their online presence and success. The company emphasizes results and has a history dating back to 1999 through its founder, Jim Westergren, with notable media coverage enhancing its credibility. The website is professionally designed with consistent branding and clear navigation, supporting its market position as an established player in the web development sector. Technically, the site uses standard web technologies including HTML5, CSS3, Google Fonts, and JavaScript, hosted on the N.nu platform. While performance and mobile optimization are moderate, SEO practices appear well implemented. Security posture is average with HTTPS implied but lacking explicit security headers and formal privacy or cookie policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the site provides clear contact information and trust signals such as client testimonials and media references. Overall, the site is functional and business-focused but would benefit from enhanced security and compliance measures.

P

Partnerství 2030

partnerstvi2030.cz

39

Partnerství pro vzdělávání 2030+ is a Czech non-profit partnership focused on improving children's learning outcomes and reducing educational inequalities within the Czech Republic. The organization collaborates with multiple partners, including educational institutions, governmental bodies, and expert organizations, to coordinate efforts in education and wellbeing. The website serves as an information hub, providing updates, resources, and access to working groups and consultations. Technically, the site is built on WordPress using the Divi theme, with modern web technologies such as WebP images and Google Fonts, and integrates Google Analytics for user tracking. Security posture is solid with HTTPS enforced and GDPR cookie consent implemented, though explicit security headers and detailed privacy policies are not detected. Overall, the site presents a professional and trustworthy image aligned with its educational mission.

H

HLR-UTBILDNING

hlrutbildning.net

41

HLR-UTBILDNING is a Swedish company specializing in heart and lung resuscitation (HLR) and first aid training services. They offer various training packages including heart starter leasing and maintenance, targeting workplaces and organizations to improve emergency preparedness and safety. The company claims to be nationally active with a foundation year of 2005 and holds certification from Hjärt-Lungfonden, enhancing their credibility in the healthcare training sector. The website is professionally designed using WordPress and Elementor, with good SEO practices but lacks visible privacy and cookie policies. Contact information is clearly provided, supporting business credibility. However, the absence of WHOIS registration data raises concerns about domain legitimacy.

M

Modifinder AB

modifinder.se

52

Modifinder AB operates as a specialized SEO agency based in Malmö, Sweden, focusing on search engine optimization services for local businesses. The website demonstrates a professional approach with a clear business focus on SEO consulting and strategy. The technical infrastructure is built on WordPress with Elementor and related plugins, indicating a modern and flexible digital presence. However, the absence of WHOIS data for the domain www.modifinder.se raises concerns about domain registration legitimacy and transparency. Security posture is limited by the lack of visible security headers and privacy policies, which are critical for compliance and trust. Overall, the website is functional and well-designed but requires improvements in security and compliance documentation to enhance trustworthiness and regulatory adherence.

A

Altes Kino

alteskino.li

46

Altes Kino is a small local cinema based in Vaduz, Liechtenstein, offering film screenings, event hosting, cinema rental, and an online shop. The website provides a program of films with ticket purchasing options and supports German and English languages. The business targets local cinema-goers and cultural audiences, positioning itself as a community-focused entertainment venue. Technically, the site is built on WordPress with WooCommerce and Tickera plugins, indicating a mature e-commerce and ticketing infrastructure. The site is mobile optimized and has good SEO practices but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and formal security policies are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy with room for improvement in security and privacy transparency.

S

Safe Swiss Cloud

safeswisscloud.ch

68

Safe Swiss Cloud is a Swiss-based cloud computing and managed IT services provider specializing in sovereign, secure, and compliant cloud infrastructure. Their offerings include Private AI solutions, managed IT operations, security services, and cloud computing platforms based on VMware, Openstack, and Kubernetes. The company targets enterprises and multinational organizations in sectors such as banking, finance, healthcare, software, and manufacturing. They emphasize security certifications like ISO 27001/17/18 and renewable energy usage certified by TÜV. The website is professionally designed, well-structured, and optimized for SEO and mobile use, reflecting a mature digital presence. Security posture is strong with HTTPS, domain transfer protection, and certifications, though some security headers and cookie consent mechanisms could be improved. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Slov Elektro, s.r.o. is a Slovak-based small retail company specializing in the online sale of electrical installation materials, LED lighting, switches, frames, and sockets. The company targets both consumers and professionals within Slovakia, offering a broad product range with expert advice and customer support. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience and trustworthiness. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Fonts, and integrates Google Analytics and Google Tag Manager for marketing and analytics purposes. Security measures include HTTPS enforcement and Google reCAPTCHA for form protection, although some security headers are missing and could be improved. Privacy compliance is addressed with clear privacy and cookie policies and a consent mechanism. WHOIS data confirms the legitimacy and consistency of the domain registration with the business information presented on the site. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, suitable for its market niche.

M

Michal Diviš Architekti, s.r.o.

mda.sk

9

Michal Diviš Architekti, s.r.o. is a Slovakian architectural firm established in 2005, specializing in architectural design services including residential, commercial, and public projects. The company maintains a professional website showcasing a portfolio of projects and competition wins, targeting clients seeking architectural services primarily in Slovakia. The website is built using modern technologies such as React and Gatsby, providing a good user experience with clear navigation and mobile optimization. However, the site lacks published privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with no detected security headers or incident response contacts, and SSL configuration details are not provided. Contact information including emails, phone numbers, and physical addresses are clearly presented, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from improved privacy and security compliance measures.

S

seamtex

seamtex.at

72

seamtex is a specialized manufacturer and service provider of professional protective clothing, focusing on firefighter and heat protection garments. The company targets professional emergency services and emphasizes quality and certification in its products. The website is built on WordPress using Elementor and WooCommerce, indicating a modern and flexible technical infrastructure. The site includes multilingual support via TranslatePress and cookie consent management with Real Cookie Banner Pro, reflecting digital maturity and privacy awareness. Security posture is good with HTTPS enforced and some security best practices observed, though there is room for improvement in explicit security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's market position as a niche manufacturer in Austria.

E

European School Education Platform Support

esep-support.eu

57

The European School Education Platform Support website serves as an official support portal for the European School Education Platform, targeting school teachers and education professionals across Europe. It offers a comprehensive set of guides, knowledgebase articles, and release announcements to assist users in navigating and utilizing the platform effectively. The site is multilingual, supporting a wide range of European languages, enhancing accessibility for its diverse audience. The business model focuses on providing informational and support services rather than direct commercial transactions. Technically, the website is built on the DeskPRO helpdesk platform, leveraging modern web technologies including FontAwesome, Google Fonts, and polyfills for broad browser compatibility. The hosting provider is OVH SAS, a reputable European hosting company. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The technical infrastructure is solid but could benefit from additional security headers and enhanced privacy compliance features. From a security perspective, the site enforces HTTPS and uses secure login forms, indicating a baseline security posture. However, it lacks explicit security headers such as Content Security Policy and HSTS, and does not provide publicly accessible security policies or vulnerability disclosure mechanisms. No direct contact emails or phone numbers are provided, limiting direct communication channels. There are no signs of tracking or advertising scripts, which supports user privacy but also indicates limited analytics usage. Overall, the website is trustworthy and professional, serving its educational support purpose well. The main risks relate to the absence of privacy and cookie policies, lack of explicit security headers, and missing incident response information. Addressing these gaps would enhance compliance and security posture, further strengthening user trust and regulatory alignment.

T

TJ Sokol Nespeky

sokolnespeky.cz

56

TJ Sokol Nespeky operates as a local amateur football club in the Czech Republic, providing community sports engagement through multiple football teams across various age groups. The website serves as a hub for match reports, schedules, league standings, and club news, targeting local players, fans, and community members. The club's market position is that of a small, community-focused sports organization competing in regional leagues. Technically, the website is built on WordPress with the SportsPress Pro plugin, leveraging common web technologies such as jQuery and Google Fonts. The site is moderately optimized for mobile and performance, with basic SEO and accessibility features. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response contacts. The absence of WHOIS data limits domain trust assessment, but the website content and structure indicate a legitimate local sports club. Overall, the site is functional, informative, and safe for general audiences.

B

Banskobystrický samosprávny kraj

bbsk.sk

59

Banskobystrický samosprávny kraj operates as the regional government authority for the Banská Bystrica region in Slovakia, providing a comprehensive online portal with information and services for citizens, businesses, and organizations. The website offers detailed sections on social services, healthcare, culture, education, transportation, environmental planning, and regional projects, positioning itself as a key informational and service hub for the region. The site targets a broad audience including residents, entrepreneurs, and public institutions within the region. Technically, the website employs modern web technologies including October CMS, Bootstrap framework, service workers for PWA capabilities, and integrates third-party services such as Google Fonts and Facebook SDK. Hosting appears to leverage Azure services for chatbot functionality. The site is mobile-optimized, accessible, and SEO-friendly, with a consistent and professional design. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. The WHOIS data confirms the domain's legitimacy and consistent registration with the official government entity. Overall, the website demonstrates a strong digital presence with good content quality, technical implementation, and privacy compliance, suitable for a government institution. Strategic enhancements in security transparency and incident response readiness would further strengthen its posture.

T

treibsAND Lübeck

treibsand.net

44

treibsAND Lübeck is a well-established cultural and music collective based in Lübeck, Germany, operating since 2000. The organization focuses on hosting non-commercial music events, concerts, and parties with an emphasis on affordability and community engagement. Their website provides detailed event listings and promotes a diverse range of musical genres and cultural activities, targeting local music enthusiasts and alternative culture supporters. The business model is community-oriented and non-commercial, positioning treibsAND as a key local venue in the hospitality and media sectors.

L

Leinen Los! e.V.

guestritz14.de

49

Güstritz 14 is a small-scale collective living and working community based in Germany, operating under the association 'Leinen Los! e.V.'. The project focuses on sustainable living, cooperative work, cultural events, and solidarity-based agriculture. The website is built on the One.com Web Editor platform and hosted by One.com, featuring a moderate technical infrastructure with basic SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and formal privacy policies. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a trustworthy and community-oriented project with room for improvement in privacy and security practices.

myvasco.com is a small, specialized internet marketing agency led by Regina Kainz, offering services such as SEO, social media management, Google Ads, and Facebook marketing. The company targets clients seeking effective online communication and marketing strategies, leveraging workshops and consulting to simplify internet marketing. The website is built on WordPress with Elementor and includes modern privacy and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with HTTPS and security headers in place, though the absence of a published security policy and incident response contacts suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, warranting further verification. Overall, the site is professional, well-structured, and compliant with GDPR, serving a German-speaking audience effectively.

G

GR Holding GmbH

gr-holding.de

61

GR Holding GmbH is a German holding company specializing in healthcare and digital solutions, managing six subsidiaries that provide emergency medical services, personnel management, training, and software development. The company emphasizes a leadership philosophy centered on motivation, culture, and administrative efficiency. Their website reflects a professional and consistent brand image, targeting healthcare professionals and partner organizations primarily in Baden-Württemberg. Technically, the site is built on WordPress with a modern theme and plugins, offering good mobile optimization and GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and incident response disclosures. Overall, the website is trustworthy and well-maintained, with clear contact information and subsidiary links.

L

Liftago

liftago.cz

69

Liftago is a transportation service provider operating primarily in the Czech Republic, offering taxi rides and courier deliveries through a digital platform accessible via app and website. The company positions itself as a regional leader in on-demand transportation services, serving 15 cities with a focus on convenience and quick ordering. The website reflects a modern digital infrastructure built on Webflow, integrating Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, Liftago demonstrates a mature digital presence with good privacy compliance and user experience, supporting its business credibility in the transportation sector.