Security Directory

A

Awin AG

awin1.com

74

Awin AG operates a global affiliate marketing platform that connects advertisers, publishers, and agencies to drive online business growth. The company is positioned as a large player in the affiliate marketing industry with a broad customer base and a strong parent company, Axel Springer Group. Their platform offers scalable solutions tailored to different business needs, supported by a modern technical infrastructure including advanced analytics and marketing automation tools. The website demonstrates high digital maturity with excellent design, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site reflects a professional and trustworthy business with a solid market presence.

K

Karlovarská Korunní, s.r.o.

korunni.cz

51

Karlovarská Korunní, s.r.o. is a Czech company specializing in the production and sale of flavored mineral waters enriched with vitamins and minerals. The company positions itself as a provider of healthy, functional beverages with low sugar content and no artificial additives, targeting health-conscious consumers. The website reflects a well-established brand with consistent messaging and a focus on product benefits. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, integrating standard analytics and marketing tools like Google Analytics and Facebook Pixel. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Overall, the domain's WHOIS data is consistent with the business claims, indicating a legitimate and trustworthy entity.

P

Pivovary CZ Group a.s.

pivovarygroup.cz

61

Pivovary CZ Group a.s. is a Czech brewery group established in 2023, operating multiple well-known beer brands such as Holba, Zubr, and Litovel. The company focuses on beer production, brand marketing, and e-commerce sales, positioning itself as a significant player in the Czech brewing industry. The website reflects a professional and modern digital presence with active news, events, and media sections targeting beer consumers, media, and partners. Technically, the site uses modern JavaScript frameworks (Vue.js), Google Tag Manager for analytics and marketing, and is hosted behind Cloudflare DNS, ensuring good performance and security. The site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism, although explicit security headers and detailed security policies are not present. Contact information is clearly provided, though phone numbers are absent. Overall, the website demonstrates a mature digital infrastructure with room for improvement in security transparency and compliance documentation.

J

J&T INVESTIČNÍ SPOLEČNOST, a.s.

jtarchinvestments.cz

47

J&T ARCH INVESTMENTS is a Czech-based qualified investor fund managed under the supervision of the Czech National Bank. The fund focuses on co-investing alongside the founding families of J&T and leading Czech-Slovak business figures, targeting sectors such as energy, banking, e-commerce, media, real estate, hospitality, and professional sports. The website is built on a modern Nuxt.js framework, providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS and security headers properly implemented, though privacy and cookie policies are absent, which is a compliance gap. WHOIS data is missing, which slightly reduces domain trustworthiness but the business content and partner references support legitimacy. Overall, the site is professional and trustworthy for its target audience of qualified investors.

K

Košík.cz

kosik.cz

62

Košík.cz is a prominent Czech online grocery retailer offering a wide range of food products with bulk discounts, free delivery on large orders, and loyalty programs. The website targets Czech consumers looking for convenient online grocery shopping solutions. The business model focuses on e-commerce retail with promotional incentives to attract and retain customers. The company appears to hold a strong market position within the Czech Republic's online grocery sector. Technically, the website leverages modern frontend technologies such as Vue.js and integrates Google Tag Manager for analytics and marketing purposes. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with a clean and professional design that supports a positive user experience. From a security perspective, the site enforces HTTPS and includes several important security headers, indicating a good baseline security posture. However, the absence of visible privacy and cookie policies, incident response information, and vulnerability disclosure mechanisms suggests areas for improvement in compliance and transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional, but the lack of WHOIS data and privacy-related disclosures slightly reduce the confidence level. Strategic recommendations include publishing comprehensive privacy and cookie policies, establishing a vulnerability disclosure process, and enhancing accessibility and security transparency to strengthen user trust and compliance.

B

bluesign technologies ag

bluesignguide.com

44

The website bluesignguide.com serves as a public database for bluesign® APPROVED textile articles, focusing on sustainable fabrics and trims manufactured with minimal environmental and social impact. It is positioned as a niche service supporting manufacturers, brands, and consumers interested in sustainable textile products. The site is branded consistently with bluesign technologies ag, a Swiss company known for its bluesign® certification. However, the domain WHOIS data is missing or indicates no registration, which raises concerns about domain legitimacy and requires further verification. Technically, the site uses modern Vue.js and Vuetify frameworks, providing a good user experience with moderate performance and mobile optimization. Security posture is moderate but lacks visible security headers and contact information, which are areas for improvement. Privacy compliance is supported by a comprehensive privacy policy and legal note, but no cookie consent mechanism is present. Overall, the site is professional and trustworthy in content but needs to address domain registration transparency and enhance security and privacy features.

S

STACHEMA CZ s.r.o.

lignofix.cz

62

STACHEMA CZ s.r.o. operates a professional e-commerce website specializing in building chemicals such as paints, adhesives, plasters, and penetrations targeted primarily at professional users in the construction sector within the Czech Republic. The website offers a broad product catalog with detailed product listings, pricing, and stock availability, supporting a B2B and B2C business model. The company appears to hold a solid regional market position as a supplier of construction chemicals. Technically, the website employs modern JavaScript frameworks including Vue.js and React, integrates Google Tag Manager for analytics, and uses asynchronous form APIs to enhance user experience. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Security posture is good with HTTPS enforced and secure form handling, but lacks explicit security policies and incident response information. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust signals but is common for commercial entities. Overall, the website is professional, secure, and trustworthy with room for improvement in privacy transparency and security disclosures.

S

Svaz obchodu a cestovního ruchu ČR

socr.cz

50

Svaz obchodu a cestovního ruchu ČR (SOCR) is a well-established non-profit association founded in 1997, representing businesses in retail, hospitality, and tourism sectors within the Czech Republic. The organization provides advocacy, information dissemination, event organization, and support services to its members. The website reflects a professional and consistent brand presence with clear navigation and relevant content focused on industry news and events. Technically, the site is built using modern JavaScript frameworks (Vue.js) and integrates Google Analytics and Tag Manager for user tracking. While the site is mobile-optimized and performs moderately well, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is adequate with HTTPS usage but could be improved by adding security headers and incident response contact information. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

N

NevDama CZ

nev-dama.cz

57

Nev-Dama.cz is a Czech travel agency specializing in ski and summer holiday packages, targeting families, seniors, and groups primarily in the Czech Republic and surrounding countries. The website offers a comprehensive catalog of winter and summer destinations, including ski resorts, wellness stays, and bus transportation tours. The business model focuses on online bookings and seasonal promotions, positioning itself as a regional leader in winter holiday travel. Technically, the site employs modern JavaScript frameworks (Vue.js), integrates Google Analytics and Tag Manager for marketing and analytics, and uses Usercentrics for GDPR-compliant consent management. Security measures include HTTPS enforcement, reCAPTCHA for bot protection, and standard security headers, though no explicit security policy or incident response contacts are published. The absence of WHOIS data reduces transparency but does not detract from the professional presentation and trust signals on the site. Overall, the site is well-structured, mobile-optimized, and compliant with privacy regulations, making it a reliable platform for holiday bookings.

helloCash is a technology company offering a free online cash register solution tailored for the Spanish market. The service emphasizes compliance with local legislation and ease of use, targeting small and medium businesses that require a simple, legal way to create receipts. The website positions itself as a popular and trusted tool with thousands of uses and has received the Constantinus Award, indicating recognition in its field. Technically, the website is built using modern frameworks such as Vue.js and Vuetify, with integrations for marketing and analytics tools like Google Tag Manager, Facebook Pixel, and Intercom. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is generally good with HTTPS enabled and no exposed sensitive data, but lacks some security headers and explicit privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance transparency and security hardening.

helloCash is a technology company providing a free online cash register solution primarily targeting small and medium businesses in Austria. The website presents a professional and consistent brand image, highlighting ease of use and flexibility as key selling points. The company has received recognition such as the Constantinus Award, indicating a reputable market presence. Technically, the website leverages modern frontend frameworks like Vue.js and Vuetify, and integrates marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Intercom. Hosting is provided via Amazon AWS, suggesting reliable infrastructure. Security posture is moderate; HTTPS is used, but no explicit security headers or published security policies were detected. Privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the website is safe, professional, and functional but would benefit from enhanced privacy and security disclosures.

M

Medirex

medirex.sk

63

Medirex is a Slovak healthcare company specializing in comprehensive laboratory diagnostics, offering fast and precise laboratory tests to patients and healthcare professionals. The website reflects a mature digital presence with a focus on user experience, clear navigation, and mobile optimization. The technical infrastructure leverages modern JavaScript frameworks, CDN hosting, and integrates privacy and security features such as cookie consent and reCAPTCHA. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not published. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, supporting Medirex's position as a reputable healthcare diagnostics provider in Slovakia.

M

Messe Düsseldorf GmbH

drupa.com

55

drupa, organized by Messe Düsseldorf GmbH, is the world's leading trade fair for printing technologies, focusing on innovations in print media, packaging, sustainability, and digitalization. The website serves as a comprehensive platform for exhibitors, visitors, and industry professionals to access event information, register, and engage with the printing community. The company holds a strong market position as a premier event organizer in the media sector, targeting a global audience of printing industry stakeholders. Technically, the website employs modern web technologies including Vue.js, jQuery, and various tracking and analytics tools such as Matomo and Leadlab, integrated with a consent management platform to ensure privacy compliance. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses several security best practices, although some HTTP security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie consent mechanisms are comprehensive and GDPR-compliant, supporting user trust and regulatory adherence. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for drupa and Messe Düsseldorf, with minor areas for security enhancement. The lack of WHOIS data is noted but does not detract significantly from the site's legitimacy given the strong brand and operational indicators.

S

STACHEMA CZ s.r.o.

stachema.cz

63

STACHEMA CZ s.r.o. is a well-established Czech company specializing in the supply of construction chemicals and technological solutions for professional builders. With a market presence since 1998 and over 650 sales points across the Czech Republic, it holds a leading position in its sector. The website reflects a professional B2B and B2C e-commerce model, supported by a modern technical infrastructure including Vue.js and React frameworks, and integrated analytics via Google Tag Manager. The company is part of the DEK group, enhancing its market credibility. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the website is trustworthy, well-branded, and compliant with GDPR requirements.

W

Wizz Air

wizzair.com

74

Wizz Air is a prominent ultra-low-cost European airline offering affordable flights, accommodation, and car rental services. The website reflects a strong market position as Europe's fastest-growing low-cost carrier, targeting budget-conscious travelers across multiple European countries. The digital platform is modern, mobile-optimized, and supports multiple languages, enhancing accessibility and user experience. Technically, the site employs contemporary frameworks such as Vue.js and integrates performance monitoring tools like New Relic, ensuring robust infrastructure and fast loading times. Security posture is solid with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly disclosed. Privacy and cookie policies are comprehensive and GDPR compliant, supporting regulatory adherence. Overall, the site demonstrates high professionalism and trustworthiness, though the absence of WHOIS data slightly reduces transparency.

E

Exim

eximtours.cz

54

EXIM tours is a well-established Czech travel agency specializing in worldwide package tours, last minute deals, and specialized travel services for families, couples, and seniors. The company operates under the DER Touristik group, positioning itself as a leading player in the Czech travel market. The website reflects a mature digital presence with modern technologies such as Vue.js, Google Tag Manager, and Usercentrics for privacy compliance. Security measures include HTTPS enforcement and bot protection via Google reCAPTCHA, although explicit security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. The absence of WHOIS data due to privacy protection is typical for such businesses and does not detract from the site's legitimacy. Overall, EXIM tours demonstrates a professional and trustworthy online presence suitable for its market segment.

B

Birne by Direct

birne.com

68

Birne by Direct operates a flexible car leasing and rental service primarily targeting customers in the Czech Republic. The business model emphasizes ease of use with clear monthly fees, no mileage limits, and flexible return options. The website is built on the Shopify platform, leveraging modern web technologies and integrates multiple analytics and marketing tools such as Google Analytics, Hotjar, HubSpot, and Visual Website Optimizer. The site demonstrates good digital maturity with cookie consent mechanisms and GDPR compliance evident through a comprehensive privacy policy in Czech. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, although explicit security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for its target market.

helloCash operates as a provider of free online cash register software primarily targeting small and medium businesses in Austria and the Czech Republic. Established in 2016, the company positions itself as a compliant and easy-to-use solution for legal receipt issuance, supported by recognition such as the Constantinus Award. The website reflects a professional and consistent brand image with clear business focus and relevant service offerings. Technically, the site leverages modern JavaScript frameworks like Vue.js and Vuetify, hosted on Amazon AWS infrastructure, and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, though the absence of security headers and formal privacy/cookie policies indicates room for improvement. Overall, the website is trustworthy and well-positioned but should enhance compliance and security transparency to strengthen user trust and regulatory adherence.

E

EURO REAL - BOHEMIA s.r.o.

euroreal.cz

57

EURO REAL - BOHEMIA s.r.o. is a Czech Republic based real estate agency specializing in property sales and purchases, primarily residential. The company has an established online presence since 2002, indicating a stable market position. Their website offers comprehensive services including property listings, client testimonials, and multiple contact channels, targeting individuals and families seeking real estate solutions. Technically, the website employs modern JavaScript frameworks such as Vue.js and jQuery, integrates Google Analytics and Tag Manager for tracking, and uses Leaflet.js for map functionalities. The site is hosted on cesky-hosting.eu and demonstrates good mobile optimization and user experience. Security-wise, the site enforces HTTPS, uses Google reCAPTCHA on forms, and provides detailed cookie consent management, reflecting a strong privacy posture. However, explicit security policies and incident response information are absent, and security headers are not explicitly detected. Overall, the website is professional, trustworthy, and compliant with GDPR, with room for improvement in security transparency and technical headers.

I

ICT UNION

ictunie.cz

55

ICT UNION is a professional association representing companies in the electronic communications sector in the Czech Republic. Founded in 2010, it serves as a platform to promote the adoption of modern information technologies among businesses and government bodies, fostering a knowledge-based society. The association offers membership services, organizes working groups on specialized ICT topics, and hosts events to educate and connect industry stakeholders. The website reflects a medium-sized organization with a solid market position and a clear focus on telecommunications and technology sectors. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, with responsive design and moderate performance. Security posture is good with HTTPS enabled and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the domain registration and website content are consistent and trustworthy, with active social media presence and partnerships enhancing credibility.

B

bainry

bainry.com

55

Bainry is a Slovak-based technology service provider specializing in web development, e-commerce solutions, applications, and software development. The company targets businesses and individuals in Slovakia seeking modern, affordable digital solutions. Their market position is that of a regional small-sized service provider with a focus on quality and competitive pricing. The website demonstrates a professional design with clear navigation and a comprehensive listing of services and client projects. Technically, the site leverages modern technologies such as Vue.js, Node.js, PostgreSQL, and Tailwind CSS, hosted on Linux VPS infrastructure provided by hostcreators.sk. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and standard security headers present; however, DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the domain registration is legitimate and consistent with the business age and location. The site is safe for general audiences with no adult or questionable content detected.

Z

Zaslat s.r.o.

zaslat.sk

63

Zaslat s.r.o. operates an online parcel shipping platform primarily serving Slovakia and international markets. The company offers a convenient service allowing customers to compare prices and book courier shipments from home, partnering with multiple carriers such as FedEx, GLS, and others. The platform is well-established with over 26,800 customers and nearly 98,000 reviews, indicating strong market presence and customer trust. Technically, the website leverages modern frameworks like Nuxt.js and Vue.js, integrates Google and Facebook APIs for authentication and analytics, and employs security measures such as HTTPS and reCAPTCHA. However, the absence of explicit privacy and terms of service policies suggests room for improvement in compliance documentation. Overall, the site is professional, user-friendly, and secure, but could enhance transparency and security posture by publishing dedicated policies and incident response information.

Z

Zaslat s.r.o.

zaslat.cz

64

Zaslat s.r.o. operates an online platform that enables customers to compare parcel shipping prices and arrange courier pickups for domestic and international deliveries. The company targets both individual consumers and businesses, offering a convenient alternative to traditional postal services with significant cost savings. With a strong market presence in the Czech Republic and partnerships extending internationally, Zaslat has established itself as a trusted logistics intermediary since its founding in 2014. The website demonstrates a mature digital infrastructure leveraging modern web frameworks and third-party integrations to provide a seamless user experience. Security measures such as HTTPS and Google reCAPTCHA are implemented, though explicit privacy and security policies are not clearly presented. Overall, the business exhibits a solid reputation supported by extensive customer reviews and active social media engagement.

P

PRODUCTOS CODINA S.A.

codina.es

46

PRODUCTOS CODINA S.A. is a Spanish manufacturer specializing in detergents and liquid cleaning products for both domestic and professional markets. Their product portfolio includes detergents, softeners, stain removers, disinfectants, degreasers, floor cleaners, and dishwashing products under brands such as LA OCA, CODI, and CODINA. The company targets both household consumers and professional cleaning sectors, maintaining a medium-sized business presence with distribution through supermarket chains and an online store. Technically, the website is built on the Umbraco CMS platform, leveraging modern web technologies including jQuery, Bootstrap, Vue.js, and Google Tag Manager. The site is mobile-optimized with good SEO practices and includes interactive elements such as a contact form protected by Google reCAPTCHA. Performance is moderate with room for improvement in accessibility and security headers. From a security standpoint, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. The contact form uses reCAPTCHA to mitigate spam. However, no explicit security headers were detected, and no dedicated security or incident response policies are published. WHOIS data is unavailable due to registry restrictions, but the website content and structure indicate a legitimate and professional operation. Overall, the website demonstrates a solid business and technical foundation with good privacy compliance and user experience. Strategic improvements in security headers and transparency around security policies would enhance trust and resilience. The lack of WHOIS data is a limitation but does not currently detract significantly from the site's credibility.

Y

YOOtheme

yootheme.com

58

YOOtheme is a well-established company specializing in premium WordPress themes, Joomla templates, and a powerful page builder called YOOtheme Pro. With over 150,000 customers, it holds a strong market position in the web development tools sector, offering a suite of products including plugins and extensions to enhance website functionality. The company targets web developers, designers, and businesses seeking professional and responsive website solutions. Technically, the website leverages modern frameworks such as Vue.js and UIkit, hosted on Bunny.net CDN infrastructure, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is mostly addressed with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-structured, with room for improvement in security headers and explicit incident response disclosures.

Z

Zaslat s.r.o.

chytrybalik.cz

59

ChytrýBalík, operated by Zaslat s.r.o., is an established parcel shipping service focused on providing fast and reliable parcel delivery across the Czech Republic and Europe. The platform enables users to order parcel shipments online, arrange home pick-up, and track deliveries, targeting both individual and business customers. The website is professionally designed with clear navigation and relevant content, supporting a positive user experience and trustworthiness. Technically, the site leverages modern web technologies including Vue.js, Google reCAPTCHA v3 for bot protection, and Google Tag Manager for analytics. Hosting is via a CDN provider ensuring moderate performance and good mobile optimization. However, some technical improvements are recommended such as adding security headers and cookie consent mechanisms to enhance compliance and security posture. Security-wise, the site enforces HTTPS and uses anti-bot measures, but lacks visible security headers and explicit incident response or vulnerability disclosure information. The absence of WHOIS data reduces domain trust, though the presence of clear company contact details and policies mitigates some concerns. Overall, the security posture is moderate with room for improvement. The overall risk is moderate; the business appears legitimate and professional but should address WHOIS transparency, privacy compliance, and security best practices to strengthen trust and reduce potential vulnerabilities.

Martin Šimko operates as a freelance fullstack web developer based in Slovakia, offering services including website creation, custom web applications, and accessibility compliance primarily for public sector clients. The business is small, independent, and has been established since 2012, with a focus on long-term client relationships and quality service delivery. The website reflects a professional and consistent brand image with clear contact details but lacks formal privacy and cookie policies, which are important for compliance and trust. Technically, the website employs a modern technology stack including PHP frameworks (Yii 2, Laravel, Symfony), JavaScript libraries (Vue.js, Alpine.js), and OctoberCMS as the preferred CMS. Hosting is provided by Websupport, indicated by the domain's nameservers. The site is mobile optimized, accessible, and uses HTTPS with DNSSEC enabled, reflecting a good digital maturity level. However, there is room for improvement in SEO and performance optimization. From a security perspective, the site benefits from HTTPS and DNSSEC but lacks visible security headers and formal security policies. No vulnerability disclosure or incident response information is provided, which could be a risk for handling security incidents. No tracking or analytics scripts were detected, indicating minimal user tracking and a privacy-conscious approach, though the absence of privacy and cookie policies is a compliance gap. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, security policy transparency, and additional security hardening measures to improve its security posture and regulatory adherence.

M

Moravio s.r.o.

moravio.com

68

Moravio s.r.o. is an established international software development agency specializing in custom software, AI, data analytics, and digital transformation services. With over 14 years in the market and more than 120 projects completed, Moravio serves a broad audience from startups to Fortune 500 companies. Their service portfolio includes software development, AI software, product development, technical due diligence, and software support, positioning them as a comprehensive digital solutions provider. The company is headquartered in Ostrava, Czech Republic, and demonstrates strong market presence through client testimonials, awards, and official memberships. Technically, the website leverages modern technologies such as React, Next.js, Node.js, TypeScript, and various AI frameworks including ChatGPT and LangChain. The site is built on Webflow CMS, hosted on Webflow's platform, and integrates advanced analytics and marketing tools like Google Tag Manager and LinkedIn Insight. The website is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs security headers, integrates Google reCAPTCHA, and follows best practices for secure forms and data handling. However, explicit security policies and incident response information are not publicly available, indicating room for improvement in transparency and preparedness. The WHOIS data is unavailable, likely due to privacy protection, which is common for businesses of this nature but introduces minor uncertainty regarding domain registration details. Overall, Moravio presents a professional, trustworthy, and technically sound online presence with strong business credibility. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and enhancing accessibility features to further strengthen their security posture and compliance standing.

N

NetArt Group

test2speed.com

59

The website test2speed.com offers a free online tool to check website loading speeds and promotes a paid service called Monitoring WWW for server reliability and regular speed testing. The business is operated by NetArt Group, a technology-focused company based in Finland, with domain registration consistent with the business identity. The site is well-structured, uses modern web technologies such as Vue.js, and integrates Google Tag Manager and reCAPTCHA for analytics and bot protection. The cookie consent mechanism is comprehensive and GDPR compliant, though no explicit privacy or security policies beyond the cookie consent are found. Security posture is good with HTTPS enabled but could be improved by enabling DNSSEC and adding security headers. No contact emails or phone numbers are provided on the site, which may impact user trust and support accessibility.

A

ALLWIN Informatika Kft.

allwin.hu

59

ALLWIN Informatika Kft. is a Hungarian-based custom software development company with over 13 years of experience specializing in .NET technologies, cloud services, and enterprise web portals. The company holds reputable certifications such as Microsoft Gold Partner and Sitecore Silver Partner, positioning itself as a trusted technology partner for medium-sized businesses across various sectors including energy, healthcare, finance, and e-commerce. Their service portfolio includes IT consultancy, cloud solutions on Azure, CMS development with Sitecore and Umbraco, and e-commerce platforms like nopCommerce. Technically, the website reflects a mature digital infrastructure utilizing modern frameworks such as Angular, React, Vue.js, and Xamarin, supported by cloud-native technologies like Docker and Kubernetes on Azure. The site is well-optimized for mobile and accessibility, with good SEO practices and fast performance. Marketing and analytics tools are extensively used, including Google Analytics, Hotjar, LinkedIn Insight, and Facebook Pixel, all managed with a clear cookie consent mechanism. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements standard security headers. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Overall, ALLWIN Informatika Kft. presents a professional and credible online presence with strong technical and business foundations. Strategic enhancements in security transparency and incident response readiness would further strengthen their risk posture and client trust.

A

AUTOSPOL PLUS spol. s r.o.

autospolplus.cz

57

AUTOSPOL PLUS spol. s r.o. operates as an authorized Škoda Auto dealer in the Czech Republic, providing new and used vehicle sales, authorized servicing, financing, insurance, and accessories. The website is professionally designed with consistent Škoda branding and targets both individual consumers and corporate clients interested in Škoda vehicles and related services. The business model focuses on automotive retail and aftersales services, leveraging Škoda's brand and product portfolio. Technically, the site uses modern web technologies including Kentico CMS, Vue.js, and integrates analytics and marketing tools such as Google Tag Manager and Hotjar. The site is mobile-optimized and accessible, with good SEO practices. Security posture is strong with HTTPS enforced and security headers present, though explicit privacy and cookie policies are not found, which is a compliance gap. WHOIS data is unavailable, limiting domain trust assessment, but the site content and branding strongly indicate legitimacy. Overall, the site is functional, professional, and secure but would benefit from enhanced privacy compliance and clearer contact information.

B

Blendea

blendea.cz

65

Blendea.cz is a Czech e-commerce website specializing in premium natural dietary supplements and functional foods aimed at supporting overall health, energy, and vitality. The site targets health-conscious consumers in the Czech Republic and offers a broad range of products categorized by health goals and product types. The business model is retail-focused, leveraging an online platform to reach its audience. The website presents a professional and consistent brand image with good content quality and clear navigation.

M

Městská knihovna Poděbrady

knihovna-pdy.cz

57

Městská knihovna Poděbrady is a municipal public library serving the community of Poděbrady, Czech Republic. The website provides comprehensive information about library services including book lending, e-books, audiobooks, events, and community engagement activities. It targets a broad audience including children, seniors, and local residents, positioning itself as a key educational and cultural institution in the region. The business model is non-profit and focused on public service and education. Technically, the website is built on the Vismo CMS platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and Vue.js. It integrates Google services including reCAPTCHA v3 for form security, Google Translate for multilingual support, and Google Tag Manager for analytics. The site is mobile-optimized, accessible, and performs moderately well, with good SEO and navigation clarity. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the content. Privacy and cookie policies are present and indicate GDPR compliance, with a consent mechanism implemented. Overall, the website is trustworthy, professional, and safe for general audiences. The main limitation is the absence of WHOIS data, which restricts domain registration transparency and trust analysis. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to improve security posture and trustworthiness.

A

ABF a.s.

pvaexpo.cz

62

PVA Expo Praha, operated by ABF a.s., is a prominent exhibition center in Prague offering modern facilities for a wide range of events including fairs, conferences, and festivals. The website showcases upcoming events, rental services, and partner collaborations, positioning itself as a key player in the Czech exhibition market. The digital infrastructure is built on a modern tech stack including Yii framework, Vue.js, and various JavaScript libraries, providing a responsive and user-friendly experience. Security measures such as HTTPS, CSRF protection, and cookie consent mechanisms are implemented, though some advanced security headers and policies are absent. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

Č

Česká komora architektů

ceskacenazaarchitekturu.cz

44

The website ceskacenazaarchitekturu.cz serves as the official portal for the Czech Architecture Award 2025, organized by the Czech Chamber of Architects. It showcases the best architectural realizations built in the Czech Republic over the last five years, providing information about the competition, timelines, nominees, and public voting. The site targets architects, industry professionals, and the general public interested in architecture within the Czech Republic. The business model is non-profit and focused on promoting architectural excellence and public engagement through exhibitions and awards. Technically, the website is built using modern JavaScript frameworks such as Vue.js and Nuxt.js, hosted on DigitalOcean, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Performance is moderate, with preloading of scripts and responsive design elements. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no explicit security headers were detected, and there is a lack of visible privacy and cookie policies, which are important for GDPR compliance. No vulnerability disclosures or incident response contacts are provided, indicating room for improvement in security transparency and user trust. Overall, the website is professional and trustworthy, with consistent branding and relevant content. The domain registration data aligns well with the business purpose and history, supporting legitimacy. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, enhancing accessibility, and publishing vulnerability disclosure and incident response information to strengthen security posture and compliance.

P

PKF APOGEO Group

pkfapogeo.cz

50

PKF APOGEO Group is a professional consulting and auditing firm based in the Czech Republic, affiliated with the global PKF network that spans over 530 offices worldwide. The company offers comprehensive consulting services targeting businesses seeking expert financial and advisory support. Their market position is strengthened by their membership in PKF Global, providing international reach and credibility. The website reflects a professional image with good design and clear navigation, suitable for their target business audience. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, and integrates multiple analytics and tracking tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS and multiple security headers implemented, though the absence of visible privacy and cookie policies suggests room for improvement in compliance. The WHOIS data is privacy-protected, which is common for professional firms but slightly reduces transparency. Overall, the website is trustworthy and professional, with moderate to good scores across content, technical, and security dimensions.

D

Dentsu Česká republika

dentsu.cz

56

Dentsu Česká republika is a local branch of the global Dentsu Group, providing integrated marketing and communication services to brands in the Czech Republic. The company positions itself as a partner for meaningful progress, leveraging the One Dentsu philosophy to offer collaborative and innovative solutions. The website reflects a professional marketing agency with a clear focus on brand growth and customer engagement. Technically, the website is built on modern JavaScript frameworks such as Vue.js and Nuxt.js, with optimized fonts via Typekit. The site is moderately performant and mobile-optimized, though accessibility and SEO optimizations are basic. The technical infrastructure indicates a contemporary digital presence but lacks some advanced security and privacy features. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security or privacy policies. No vulnerability disclosures or incident response contacts are published, which could be improved. The absence of privacy and cookie policies suggests incomplete GDPR compliance. Overall, the security posture is moderate but could benefit from enhancements. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, publishing incident response information, and improving contact transparency to strengthen trust and compliance.

M

Městská knihovna Poděbrady

knihovnapodebrady.cz

56

Městská knihovna Poděbrady is a municipal library serving the Poděbrady region in the Czech Republic. It provides a range of services including book lending, e-books, audiobooks, community events, and educational programs targeting a broad audience including seniors, children, and local residents. The website reflects a well-structured public service institution with clear contact information and active community engagement through events and newsletters. Technically, the site uses modern web technologies such as Vue.js, Mustache.js, Google reCAPTCHA v3, and Google Tag Manager, indicating a moderate level of digital maturity. The presence of GDPR-compliant cookie consent and privacy policies shows attention to privacy regulations. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though the absence of HTTP security headers and a formal security policy are areas for improvement. The lack of WHOIS data is unusual and reduces domain trustworthiness, but the website content and structure suggest a legitimate public institution. Overall, the site is professional, accessible, and trustworthy with recommendations to enhance security transparency and domain registration visibility.

T

Technické služby města Poděbrady s.r.o.

tsmp.cz

54

Technické služby města Poděbrady s.r.o. is a municipal service company established in 2005, providing essential public maintenance services such as waste management, public lighting upkeep, and city cleaning for the city of Poděbrady in the Czech Republic. The company targets local residents and municipal stakeholders, positioning itself as a key local service provider. The website reflects this focus with clear descriptions of services and contact information. Technically, the website employs modern JavaScript libraries including Vue.js and Mustache.js, integrates Google reCAPTCHA v3 for spam protection, and offers multilingual support via Google Translate. The site is hosted securely with HTTPS and shows good mobile optimization and accessibility features. Security posture is solid with encrypted connections and spam protection, though it lacks explicit security headers and a formal security policy. Privacy compliance is basic with a privacy and cookie policy present but no active cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the company's municipal service mission.

E

ERF Medien e.V.

bibleserver.com

64

ERF Bibleserver is a non-profit Christian media service operated by ERF Medien e.V., providing a comprehensive digital platform for Bible study with over 45 international Bible translations, study tools, and an AI chatbot assistant. The website is well-positioned in the religious media sector, leveraging partnerships with major Bible societies such as Biblica and Crossway to offer authoritative content. Technically, the site employs modern frameworks like Vue.js and Vuetify, ensuring a responsive and accessible user experience. Privacy and cookie consent mechanisms are robust and GDPR compliant, reflecting a mature approach to user data protection. Security posture is strong with HTTPS enforced and no evident vulnerabilities, although some security headers could be improved. Overall, the site presents a professional, trustworthy, and user-friendly platform for its target audience.

Ε

Εθνική Μετεωρολογική Υπηρεσία

emy.gr

62

The website emy.gr is the official online presence of the Hellenic National Meteorological Service, providing comprehensive weather forecasts, climate data, and meteorological warnings for Greece. It serves as a critical public service platform targeting the general population, maritime and aviation sectors, and researchers. The site is well-branded and consistent with its government affiliation, offering extensive location-based weather information and forecasts. Technically, the site employs modern frameworks such as Nuxt.js and Vue.js, with mapping via Leaflet, and integrates Google Analytics and Tag Manager for user tracking. The SSL configuration is excellent, ensuring secure communications. However, the site lacks visible privacy and cookie policies, consent mechanisms, and explicit contact information, which are important for compliance and user trust. Security headers are not detected, indicating room for improvement in security hardening. Overall, the site is professional and trustworthy but could enhance privacy compliance and security posture.

M

Meteorologisk institutt

met.no

67

Meteorologisk institutt is the official Norwegian Meteorological Institute providing comprehensive weather forecasts, climate data, and meteorological services primarily for Norway. It serves a broad audience including the general public, government agencies, emergency services, and researchers. The website is well-structured, professionally designed, and offers extensive content in Norwegian with some English support. The institute operates as a government entity, emphasizing public safety and open data policies. Technically, the website uses modern JavaScript frameworks including Vue.js and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a clear cookie consent mechanism. However, explicit security headers and detailed security policies are not publicly visible, indicating room for improvement in security transparency. Security posture is solid with HTTPS usage and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data reduces domain trust slightly, but the official branding, contact information, and government affiliation strongly support legitimacy. No signs of malicious content or adult material were found, making the site safe for general audiences. Overall, the website demonstrates a mature digital presence with good content quality and privacy compliance. Strategic improvements in security policy publication and WHOIS transparency could further enhance trust and compliance.

K

Knihovna Jiřího Mahena v Brně

kjm.cz

50

The website kjm.cz represents the official online presence of Knihovna Jiřího Mahena v Brně, a public library serving the Brno region in the Czech Republic. The site provides access to library services including book lending, event information, and branch locations, targeting the general public and library users. The business model is government-funded public service, positioning the library as a regional cultural and educational institution. The website's content is relevant and professionally presented, with consistent branding and a clear focus on library services. Technically, the site is built using modern web technologies such as Vue.js and Nuxt.js, styled with Tailwind CSS, and integrates Google Maps API for location services. The site is mobile-optimized and offers a good user experience with clear navigation. Performance is moderate, and SEO and accessibility features are basic but present. The site uses HTTPS, ensuring encrypted communication. From a security perspective, the site demonstrates a good posture with HTTPS enabled and no visible sensitive data exposure. However, it lacks important security headers such as Content-Security-Policy and HSTS, which could enhance protection against common web attacks. No vulnerabilities or exposed sensitive information were detected. Privacy compliance is partial; a cookie consent mechanism is present, but no explicit privacy policy or terms of service were found in the provided content. Overall, the site is trustworthy and safe for general audiences, with no adult or questionable content. The absence of WHOIS data and registrant information reduces the domain trustworthiness score, but the website content and presentation support legitimacy. Strategic recommendations include adding comprehensive privacy and security policies, implementing security headers, and improving WHOIS transparency to enhance trust and compliance.

D

Direct auto

direct-auto.cz

78

Direct auto is a medium-sized authorized car dealership operating in the Czech Republic, specializing in new and used vehicles from brands such as Škoda, Volkswagen, Fiat, and Mazda. The company maintains multiple locations and offers authorized servicing with online appointment booking, positioning itself as a trusted regional automotive provider. Technically, the website leverages the Shopify platform with modern JavaScript frameworks including React and Vue.js, and integrates various analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Visual Website Optimizer. The site demonstrates good privacy compliance with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security and incident response policies are not publicly available. The absence of WHOIS data reduces domain trust somewhat, but the overall digital maturity and business presence indicate a legitimate and professional operation.

D

Dobrovolný svazek obcí Šlapanicko

dsoslapanicko.cz

55

Dobrovolný svazek obcí Šlapanicko is a voluntary association of 27 municipalities in the Czech Republic focused on regional cooperation and public infrastructure projects, particularly cycling path development and waste management. The organization operates as a non-profit entity serving local communities with transparent contact information and EU co-financed projects, positioning itself as a trusted regional government partner. The website is built on the Vismo CMS platform, utilizing modern JavaScript libraries including Vue.js and Mustache.js, and integrates Google services such as reCAPTCHA v3 and Translate for enhanced user experience and security. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its target audience. Security posture is solid with HTTPS enforced and spam protection on forms, though formal security policies and incident response contacts are absent. Privacy compliance is basic with cookie policy present but lacking explicit consent mechanisms. Overall, the domain registration is consistent with the business age and purpose, indicating a legitimate and trustworthy online presence.

W

WEBHOUSE s.r.o.

vismo.cz

44

WEBHOUSE s.r.o. is a well-established Czech company specializing in providing web solutions and editorial systems primarily for public administration entities such as cities and municipalities. With a history dating back to 1997 and managing over 2,000 websites including more than 30% of Czech towns, the company holds a strong market position as a leading supplier in its sector. Their flagship product, the vismo 6 editorial system, emphasizes ease of use, modern technology, and compliance with current legislation. The website reflects a professional and consistent brand image targeting government clients. Technically, the website employs a modern JavaScript stack including Vue.js and Mustache.js, integrates advanced analytics and tracking tools such as Google Analytics, Facebook Pixel, and Smartlook, and enforces HTTPS with Google reCAPTCHA v3 for security. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers could be improved. Cookie consent mechanisms are implemented in compliance with GDPR. From a security perspective, the site demonstrates good practices with encrypted connections and user consent for tracking, but lacks explicit published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data confirms the domain's legitimacy and long-term presence, consistent with the company's claims. Overall, the website presents a trustworthy, professional, and secure digital presence suitable for its government-focused audience, with room for enhancement in security policy transparency and header configurations.

W

WEBHOUSE s.r.o.

webhouse.cz

52

WEBHOUSE s.r.o. is a well-established Czech company specializing in the development and maintenance of websites and related digital services primarily for public administration, including municipalities and cities. Founded in 1997, the company holds a strong market position serving over 2,000 websites and more than 30% of Czech towns. Their offerings include responsive and accessible web design, custom graphic solutions, and mobile applications, supported by their proprietary Vismo CMS platform. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript frameworks including Vue.js and Mustache.js, and integrates advanced analytics and tracking tools like Google Analytics, Facebook Pixel, and Smartlook. The site is mobile-optimized and demonstrates good accessibility compliance. Security measures include HTTPS enforcement, reCAPTCHA integration, and cookie consent mechanisms, although explicit security headers and a formal security policy are not evident. From a security perspective, the site maintains a solid posture with no visible vulnerabilities or exposed sensitive data. However, improvements could be made by publishing a dedicated security policy, incident response contacts, and implementing additional security headers. Privacy compliance is well addressed through comprehensive privacy and cookie policies with GDPR-aligned consent mechanisms. Contact information is complete and transparent, enhancing business credibility. Overall, WEBHOUSE s.r.o. presents a trustworthy and professional digital presence aligned with its business focus. The website is secure, compliant, and user-friendly, supporting the company’s leadership in the Czech public sector web services market.

W

WEBHOUSE s.r.o.

obce.cz

53

WEBHOUSE s.r.o. is a well-established Czech company specializing in providing web solutions and related services primarily for municipalities and public administration. With a market presence since 1997 and managing over 2,000 websites including services for more than 30% of Czech towns, the company holds a strong position in its niche. Their offering includes a mobile application 'Města a obce' that delivers municipal information directly to citizens' smartphones, emphasizing ease of use, GDPR compliance, and no user data collection. The website reflects a professional and consistent brand image with clear contact channels and social media engagement.

Č

ČEZ Distribuce

cezdistribuce.cz

59

ČEZ Distribuce is a major electricity distribution company in the Czech Republic, serving over 3.7 million households and businesses. It operates as a distributor rather than a supplier, focusing on reliable and safe electricity distribution. The company provides a wide range of services including new connections, meter readings, outage reporting, and support for electricity producers such as photovoltaic systems. The website reflects a mature digital presence with modern technologies like Next.js and Vue.js, offering user-friendly portals and mobile applications for customer convenience. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response information are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

R

Revived Soldiers Ukraine

rsukraine.org

57

Revived Soldiers Ukraine is a small non-profit organization dedicated to providing aid to wounded Ukrainian soldiers. The organization operates primarily through donations and awareness campaigns, positioning itself as a trusted charity with a clear mission. The website reflects a professional and consistent brand image, with clear calls to action for donations and informative content about their work. The target audience is the general public interested in supporting humanitarian efforts related to the Ukraine crisis. Technically, the website is built using modern web technologies including Vue.js and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, Microsoft Clarity, and HubSpot. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. However, there is room for improvement in accessibility and privacy compliance, particularly regarding cookie consent mechanisms. From a security perspective, the site enforces HTTPS and does not expose sensitive data in its HTML content. While no explicit security policies or incident response contacts are provided, the overall security posture is solid with no visible vulnerabilities. The lack of WHOIS data limits domain registration trust verification, but the presence of trust indicators such as Guidestar certification and IRS 501(c)(3) status supports legitimacy. Overall, the website presents a low-risk profile with strong business credibility and a good technical foundation. Strategic recommendations include implementing a cookie consent banner, adding terms of service and security policy pages, and enhancing accessibility features to improve compliance and user trust.