Security Directory

H

Health Resources and Services Administration

hrsa.gov

11

The Health Resources and Services Administration (HRSA) is a U.S. government agency under the Department of Health and Human Services focused on improving access to health care for underserved and vulnerable populations. The website provides comprehensive information on HRSA's programs including scholarships, loan repayment, health centers, maternal and child health, HIV/AIDS care, and telehealth services. It targets healthcare professionals, grant applicants, and the general public seeking health services. The site is well-branded, professionally designed, and highly accessible, reflecting its role as a federal agency.

Nákupní kartářka.cz is a Czech Republic based online platform specializing in prepaid credit packages for tarot card readings and psychic consultations via telephone. The website targets adults interested in esoteric and psychic services, offering a variety of credit packages to access live card readers. The business operates a niche e-commerce model focused on telephonic psychic services, positioning itself as a specialized service provider within the Czech market. Technically, the site is built on the Yii framework with Bootstrap and jQuery, integrating Google Analytics for user tracking. The site is mobile responsive and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and CSRF protections in place, but lacks advanced security headers and a cookie consent mechanism, which are recommended for GDPR compliance. WHOIS data is transparent and consistent with the business profile, indicating legitimacy and domain age appropriate for the business history. Overall, the website is functional and professional but could improve privacy compliance and security practices to enhance trust and regulatory adherence.

E

E-commerce + Print on Demand

tpop.com

67

TPOP is a French-based e-commerce platform specializing in print-on-demand services with a strong emphasis on eco-responsibility and local European production. The platform enables entrepreneurs and small to medium-sized businesses to quickly create online stores without upfront inventory costs, integrating seamlessly with popular platforms like Shopify, Etsy, and WooCommerce. The website demonstrates a high level of digital maturity with modern technologies, multilingual support, and a user-friendly design optimized for mobile devices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The domain WHOIS data is unavailable, which slightly impacts trust but is mitigated by strong external trust signals such as customer testimonials and social media presence. Overall, TPOP presents a professional, trustworthy, and well-structured online presence suitable for its target market.

L

Les-Tilleuls.coop

vulcain.rocks

58

Vulcain.rocks is a technology-focused website promoting the Vulcain protocol, which leverages HTTP/2 features such as preload hints, Early Hints, and Server Push to create fast, client-driven REST APIs. The site is supported by Les-Tilleuls.coop, which offers professional services including web development, training, and consulting around this technology. The website targets developers and API providers seeking to optimize API performance and usability. Technically, the site is built with modern frameworks including Next.js and Material-UI, and integrates Google Analytics and Tag Manager for user tracking. The design is professional, mobile-optimized, and accessible, providing a good user experience. Security-wise, the site uses HTTPS and does not expose sensitive data, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the domain appears legitimate though WHOIS data is privacy protected and incomplete.

H

Hotel Za Vodou

hotelzavodou.cz

58

Hotel Za Vodou is a small family-run hospitality business located in Dvůr Králové nad Labem, Czech Republic. The website presents a comprehensive overview of their services including accommodation, restaurant offerings, conference facilities, and family-friendly amenities such as outdoor pools and playgrounds. The business targets families, corporate clients, and tourists seeking a quiet and comfortable stay near the local Safari park. The website is professionally designed with good navigation and mobile optimization, supporting multiple languages and integrating social media for customer engagement. From a technical perspective, the site uses common web technologies including Google Analytics and Facebook SDK for tracking and marketing purposes. The presence of a cookie consent banner indicates awareness of GDPR compliance, although explicit privacy and security policies are limited. No forms collecting personal data are visible on the homepage, reducing immediate privacy risks. The website performance is moderate with good mobile responsiveness and basic accessibility features. Security posture is moderate but could be improved. The site lacks visible security headers and explicit security policies. The WHOIS data for the domain is unavailable, which reduces trust signals and raises questions about domain registration transparency. However, the website content and contact information appear legitimate and consistent with a small local hospitality business. Overall, the website is functional and professional but would benefit from enhanced security measures, clearer privacy documentation, and improved domain registration transparency to increase trustworthiness and compliance.

A

Alechko Studio Ltd

asdesigning.com

9

AS Templates operates as a specialized marketplace offering premium Joomla!, WordPress, and HTML templates to web designers and businesses seeking professional website themes. The platform boasts a large active community and a significant volume of downloads and purchases, positioning itself as a reputable player in the web design template market. Their business model focuses on providing both free and premium templates with quick-start installation packages, catering to a broad audience from individual designers to enterprises. Technically, the website employs a classic web stack including Bootstrap for responsive design, jQuery for scripting, and integrates Google Analytics and Google Tag Manager for user behavior tracking. The site is mobile-optimized with good navigation and SEO practices, though the use of an outdated jQuery version presents a potential security risk. The absence of a cookie consent mechanism indicates partial privacy compliance. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies. No sensitive data exposure was detected, but the outdated JavaScript library and missing WHOIS data reduce trustworthiness. The WHOIS information is incomplete, which raises concerns about domain registration legitimacy despite the professional presentation of the site. Overall, the website is functional, professional, and serves its business purpose well but would benefit from technical and security improvements, including updating libraries, enhancing privacy compliance, and clarifying domain registration details to strengthen trust and security posture.

A

Alechko Studio Ltd

astemplates.com

47

AS Templates operates as an online marketplace specializing in Joomla!, WordPress, and HTML templates and themes. The company, Alechko Studio Ltd, claims a history dating back to 2010 and serves a large community of web designers and developers seeking professional and free templates. The platform offers a wide range of products, including premium and free items, with support and documentation to facilitate user adoption. The business model centers on digital product sales and subscription-based template clubs, positioning itself as a significant player in the template marketplace industry. Technically, the website employs a Bootstrap-based responsive design with jQuery and integrates Google Analytics and Google Tag Manager for user tracking and analytics. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. The absence of visible CMS identification suggests a custom or static site approach. While HTTPS is implied, security headers are not evident, and cookie consent mechanisms are lacking, indicating room for improvement in privacy compliance. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data. However, the failure to retrieve WHOIS data for the domain raises concerns about domain registration legitimacy or privacy protection. The lack of explicit contact information and incident response channels further limits the security posture. Overall, the site maintains a moderate security level but would benefit from enhanced transparency and compliance measures. The overall risk assessment is moderate, with the primary concern being the domain registration inconsistency. Strategic recommendations include implementing comprehensive security headers, establishing cookie consent for GDPR compliance, providing clear contact and incident response information, and regularly updating technical components. These steps will enhance trust, security, and regulatory adherence, supporting the platform's continued growth and reputation.

L

LMS

lms-la.com

57

LMS (Loyalty Marketing Services) is a Mexico-based company specializing in the design and implementation of loyalty programs and related services such as contact centers, omnichannel communication, e-learning, OCR, AI, and gamification. The company serves a broad range of industries including retail, banking, pharmaceuticals, automotive, and food and beverage, with a client portfolio featuring major brands like Coca-Cola and Banamex. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Google Analytics, and reCAPTCHA for security. However, the WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy. The site includes a comprehensive privacy policy but lacks a cookie consent mechanism and explicit security headers. Overall, LMS presents a credible business with strong market positioning but should address WHOIS transparency and enhance privacy compliance.

M

miniOrange

miniorange.com

76

miniOrange is a technology company specializing in identity and access management (IAM) solutions, offering a comprehensive suite of products including Single Sign-On (SSO), Multi-Factor Authentication (MFA), User Lifecycle Management (ULM), Privileged Access Management (PAM), and Cloud Access Security Broker (CASB). The company targets enterprises and IT professionals seeking secure and unified access management across cloud, web, and legacy applications. Their market position is solidified by a broad product portfolio and extensive integrations with popular platforms such as WordPress, Atlassian, Shopify, and more. Technically, the website demonstrates a mature digital infrastructure utilizing modern technologies such as jQuery, Google Tag Manager, Microsoft Clarity, and Cloudflare services. The site is well-optimized for mobile devices, features good SEO practices, and implements a comprehensive cookie consent mechanism compliant with GDPR. The use of structured data (JSON-LD) enhances search engine understanding and visibility. From a security perspective, the website enforces HTTPS, employs Google reCAPTCHA for bot mitigation, and uses Cloudflare Bot Management cookies. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present and should be implemented to strengthen security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and content-rich, providing a positive user experience. The main concern lies in the absence of publicly available WHOIS domain registration data, which affects domain legitimacy verification. Despite this, the business presence, SSL configuration, and operational indicators suggest a legitimate and established entity.

N

Neowin

neowin.net

73

Neowin is a well-established technology news and review website that provides timely updates, software reviews, beta releases, and community support for technology enthusiasts and professionals. The site maintains a consistent brand presence with active social media channels and a comprehensive content offering targeting a broad tech-savvy audience. Technically, the website employs modern web technologies including Google Analytics, Facebook SDK, and various advertising and affiliate marketing tools, ensuring a robust digital infrastructure. Security-wise, the site enforces HTTPS and implements a Content Security Policy, though additional headers could enhance protection. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration transparency. Overall, Neowin presents a professional, secure, and user-friendly platform with moderate risk due to domain registration opacity.

T

Timac Agro Nederland BV

timac-agro.nl

59

Timac Agro Nederland BV is a specialized company operating in the agricultural sector, focusing on plant nutrition and animal hygiene and nutrition products. The company is positioned as a specialist within the Dutch agricultural market and is a subsidiary of Groupe Roullier. Their website reflects a professional and consistent brand presence, targeting agricultural professionals and businesses in the Netherlands. The business model is primarily B2B, offering specialized products and expert advice to the agricultural industry. Technically, the website is built on WordPress CMS with modern plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution. It integrates marketing automation tools like SharpSpring and uses Google Analytics for visitor tracking. The site is moderately performant, mobile-optimized, and SEO-friendly, with basic accessibility features. From a security perspective, the website enforces HTTPS and implements GDPR-compliant cookie consent mechanisms. While some security headers are not explicitly detected, no critical vulnerabilities or exposed sensitive data were found. The domain registration data is consistent with the business claims, showing a domain age appropriate for the company's history and no use of privacy protection, which supports legitimacy. Overall, the website demonstrates a good security posture, solid privacy compliance, and credible business information. Recommendations include enhancing security headers, enabling DNSSEC, and publishing a formal security policy to further strengthen trust and compliance.

D

DK Akord Ostrava

dk-akord.cz

48

DK Akord Ostrava is a cultural and community center located in Ostrava-Zábřeh, Czech Republic, offering a wide range of cultural events including concerts, theater performances, and educational courses. The organization serves the general public interested in cultural and educational activities and operates a venue rental service, restaurant, and ticket sales platform. The website reflects a medium-sized regional cultural hub with consistent branding and good content quality. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Yandex Metrika, and Facebook Pixel. The site is mobile-optimized and SEO-friendly, providing a good user experience.

S

Společnost TINT

tint.cz

48

Společnost TINT is a Czech-based technology company specializing in the design and installation of low-voltage systems, IT hardware sales, IT services, security systems, and telecommunications. Established since 1995, the company has a strong market presence supported by multiple partnerships with major technology vendors such as ESET, HP, Microsoft, and Dell. Their website reflects a professional B2B service model targeting enterprise and business customers in the Czech Republic. Technically, the website is built on WordPress with common plugins and integrates Google Analytics for user tracking with privacy-conscious settings like IP anonymization and opt-out options. Security posture is moderate with HTTPS enforced but lacks advanced security headers and published security policies. No privacy or cookie policies were found, indicating compliance gaps with GDPR and related regulations. Contact information is primarily a phone number prominently displayed, with no public email addresses or social media links found. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

A

Apinae Design

apinae.cz

55

Apinae Design is a Czech Republic-based e-commerce retailer specializing in Italian and Danish designer furniture. The website offers a wide range of stylish and functional furniture products including sofas, chairs, tables, beds, and accessories, targeting consumers seeking quality and unique design. The business operates primarily online, leveraging the Shoptet e-commerce platform to deliver a professional shopping experience. The site is well-structured with clear navigation and product categorization, supporting a positive user experience. Technical infrastructure includes modern web technologies such as jQuery, Google Tag Manager, and Google Analytics, integrated with cookie consent mechanisms to comply with GDPR regulations. Security posture is strong with HTTPS enforcement and standard security headers, though there is room for improvement with advanced headers like CSP and SRI. The absence of WHOIS data for the domain reduces trust signals related to domain legitimacy, but the website's professional presentation and comprehensive policies suggest a legitimate business. Overall, the site demonstrates good digital maturity and security hygiene appropriate for a small retail business.

M

Miska náramky

naramkymiska.cz

56

Náramky Miska is a Czech Republic based small e-commerce retailer specializing in handcrafted bracelets and gift jewelry. The website offers a variety of products including cord, bead, silver, gold, and steel bracelets, with a focus on symbolic and personalized designs. The business targets consumers looking for meaningful and quality jewelry gifts. Technically, the website is built on the Shoptet CMS platform and uses a range of modern web technologies and tracking tools such as Google Analytics, Facebook SDK, and Microsoft Clarity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent implemented, though some improvements could be made by updating outdated libraries and adding explicit security headers. WHOIS data is not publicly available, likely due to privacy protection, which is common for small e-commerce businesses. Overall, the website appears legitimate and trustworthy with moderate risk and good compliance with privacy regulations.

X

Tréninkové pomůcky na hokej + testy a recenze | x-trenink.cz

x-trenink.cz

54

The website x-trenink.cz operates as a specialized Czech e-commerce platform focused on selling hockey training equipment and accessories. It offers a wide range of products including hockey goals, training boards, pucks, balls, player equipment, NHL merchandise, and clothing. The site targets hockey players and enthusiasts primarily in the Czech Republic, positioning itself as a niche retailer with tested and reviewed products. The business model is retail e-commerce with a focus on quality and customer trust through product testing and detailed descriptions. Technically, the website is built on the Shoptet e-commerce platform, utilizing common web technologies such as jQuery, Google Analytics, Google Tag Manager, and Facebook SDK. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. Security is well implemented with HTTPS, CSRF protection on forms, and a cookie consent mechanism, though it lacks some advanced security headers and published privacy or terms of service pages. From a security perspective, the site shows a good baseline posture but could improve by adding security headers and formalizing privacy and incident response policies. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and operation appear professional and trustworthy. User tracking is moderate, with standard analytics and advertising pixels in use. Overall, the website presents a professional and trustworthy front for its niche market, but it should address privacy policy publication and domain registration transparency to enhance trust and compliance. Security improvements and formal policies would further strengthen its posture.

C

Chlupáči.cz

chlupaci.cz

52

Chlupaci.cz is a Czech Republic-based small e-commerce business specializing in natural pet care products, including antiparasitic treatments, pet food, and treats. The company emphasizes natural ingredients and local Czech production, targeting pet owners who seek healthy and chemical-free options for their dogs and cats, including elderly and sick pets. The website is professionally designed with clear navigation and consistent branding, reflecting a niche market position with a strong focus on quality and customer trust. The business model is primarily retail e-commerce, supported by content such as a magazine and informational pages.

Sylviene is a Czech Republic based e-commerce retailer specializing in jewelry for women, men, and children. The website offers a broad range of jewelry products including rings, necklaces, bracelets, earrings, and personalized items. It positions itself as a trusted online jewelry store with customer-friendly policies such as daily shipping before noon and a 90-day return period. The site is built on the Shoptet platform, integrating modern web technologies and marketing tools such as Google Analytics, Facebook SDK, and Google Tag Manager. The presence of cookie consent and privacy policies indicates compliance with GDPR regulations. Security posture is solid with HTTPS enforced and secure login forms, though explicit security policies and incident response information are not publicly disclosed. The absence of WHOIS registration data is a notable gap, slightly impacting trustworthiness, but the overall professional presentation and business information support legitimacy. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving transparency around security policies.

I

iocel.sk

iocel.sk

58

iocel.sk is a Slovak-based e-commerce retailer specializing in silver, surgical steel, and costume jewelry. The website offers a wide range of products including earrings, necklaces, bracelets, rings, and personalized jewelry items. The business targets general consumers interested in stylish and affordable jewelry with added services such as gift packaging and express delivery. The site is well-positioned in the Slovak market with a professional online presence and clear customer support channels. Technically, the website leverages the Shoptet e-commerce platform, integrates modern analytics and marketing tools, and maintains good performance and mobile optimization. Security posture is strong with HTTPS, cookie consent, and secure form handling, although a dedicated security policy and incident response contacts are not published. Overall, the website is trustworthy, compliant with GDPR, and safe for general audiences.

M

MAJYA CZ

majya.cz

52

Majya.cz is a Czech-based online retailer specializing in silver jewelry, targeting primarily women and gift buyers. The website offers a broad range of jewelry products including rings, earrings, necklaces, and thematic collections, supported by a loyalty program and customer support channels. The business operates on the Shoptet e-commerce platform, leveraging modern web technologies and multiple tracking and marketing tools to optimize user experience and sales. The website is professionally designed with good navigation, mobile optimization, and SEO practices. Security posture is strong with HTTPS enforcement and security headers, though the absence of a published security policy and incident response information indicates room for improvement. The lack of WHOIS data reduces transparency and slightly impacts trustworthiness, but the overall digital presence and business credibility remain solid.

S

SYNLAB

eshop-synlab.cz

58

SYNLAB e-shop is an online platform offering a wide range of laboratory diagnostic tests for self-paying customers, operated by SYNLAB, a leading European provider of laboratory diagnostics. The website targets individual consumers seeking convenient access to health testing services. The platform is built on the Shoptet e-commerce system and integrates multiple analytics and marketing tools with a strong emphasis on user privacy and GDPR compliance. The site features comprehensive product listings, clear navigation, and professional branding, supporting a positive user experience. Security posture is good with HTTPS and CSRF protections, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for commercial sites. Overall, the website demonstrates a mature digital presence with good compliance and security practices.

B

Babalác

babalac.sk

58

Babalác is a Slovak e-commerce retailer specializing in high-quality children's toys including Montessori, wooden toys, and magnetic building sets. The website targets parents and caregivers seeking educational and safe toys for young children. It maintains a niche market position with a focus on quality and customer satisfaction, supported by product reviews and bestseller indicators. The business model is primarily online retail with additional content such as a blog to engage customers. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries and integrations with Google Analytics, Facebook Pixel, Hotjar, and other marketing tools. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate with CDN usage and asynchronous script loading. Security posture is strong with HTTPS enforced, standard security headers, CSRF protection on forms, and no exposed sensitive data. Cookie consent mechanisms comply with GDPR, and privacy policies are comprehensive and accessible. However, the site lacks a dedicated security policy or incident response contact information, which could enhance trust and compliance. Overall, the website presents a low-risk profile with good business credibility and technical maturity. Strategic recommendations include publishing a security policy, establishing incident response contacts, enhancing accessibility, and maintaining up-to-date third-party libraries to mitigate potential vulnerabilities.

P

PlenkyLevně.cz

plenkylevne.cz

58

PlenkyLevně.cz is a Czech Republic-based e-commerce retailer specializing in baby diapers, particularly the Dada brand, along with related baby care products such as wet wipes and monthly diaper packs. The website targets parents and caregivers seeking affordable and convenient baby care solutions. The business operates a niche online retail model with a clear focus on product variety by size and type, supported by a professional and user-friendly website. The site demonstrates compliance with GDPR and includes standard e-commerce features such as customer support contacts and cookie consent mechanisms. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern JavaScript libraries, Google Analytics, Facebook SDK, and other marketing and tracking tools. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and CSRF protections on forms, but could benefit from additional HTTP security headers. Overall, the website presents a trustworthy and professional online retail presence with no signs of blocking or WAF interference. The lack of WHOIS data due to privacy protection is common and does not detract from the site's legitimacy. Strategic recommendations include improving security headers and accessibility compliance to further strengthen the site's security and user experience.

H

Haky

haky.sk

50

Haky is a Slovak-based e-commerce retailer specializing in packaging materials and office supplies. The website offers a broad catalog of products including boxes, films, tapes, bags, envelopes, and labels, targeting businesses and individuals in Slovakia and the Czech Republic. The company emphasizes fast shipping and custom production services, positioning itself as a convenient one-stop shop for packaging needs. Technically, the website is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook SDK, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates a professional and trustworthy online presence with moderate tracking and advertising integrations.

Š

Šperky Olivie.cz

olivie.cz

56

Olivie.cz is a Czech-based e-commerce retailer specializing in silver and gold jewelry, offering a wide range of products including rings, earrings, bracelets, necklaces, and pendants. The website targets general consumers interested in quality jewelry for various occasions, supported by a loyalty program and affiliate marketing. The company maintains a professional online presence with clear contact information and comprehensive privacy and cookie policies, indicating compliance with GDPR regulations. Technically, the site is built on the Shoptet platform, leveraging modern analytics and marketing tools such as Google Analytics, Facebook SDK, TikTok Pixel, and Klaviyo, reflecting a mature digital marketing strategy. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. The lack of WHOIS data reduces domain trustworthiness slightly, but the overall business and technical indicators suggest a legitimate and professionally managed online retailer.

T

TicketingBox

ticketingbox.com

67

TicketingBox operates a professional, turnkey theater ticketing platform designed to boost ticket sales, simplify audience management, and maximize revenue for theaters and venues. The website demonstrates a solid market position with notable clients such as Shen Yun, showcasing its capability to handle large-scale events across multiple theaters annually. The platform offers comprehensive services including marketing tools, custom branding, reporting, and secure ticketing technology. Technically, the website is built on a modern WordPress CMS with Elementor and integrates Google Analytics and AdSense for tracking and monetization. The site is mobile-optimized and SEO-friendly, providing a good user experience. However, the absence of privacy and cookie policies and missing WHOIS registration data raise concerns about compliance and domain legitimacy. Security posture is moderate with HTTPS enabled but lacks explicit security headers and published security policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and domain registration transparency.

R

Region-Tour.cz, s.r.o.

region-jizerskehory.cz

54

Region-Jizerskehory.cz is a regional tourism information website focused on the Jizerské hory and Liberecko areas in the Czech Republic. It provides comprehensive tourist information including accommodation options, tips for trips, active leisure activities, and photo galleries. The site targets tourists and visitors interested in exploring this region, offering a curated selection of hotels, pensions, chalets, and apartments. The business model centers on providing tourism-related content and accommodation listings, positioning itself as a key regional tourism resource. The website is operated by Region-Tour.cz, s.r.o., a small hospitality sector entity.

R

Orlické hory - ubytování | výlety | zážitky v Orlických horách

region-orlickehory.cz

58

The website www.region-orlickehory.cz serves as a regional tourism portal focused on the Orlické hory mountain area in the Czech Republic. It provides visitors with comprehensive tourist information, accommodation options, and tips for outdoor activities such as hiking, cycling, and skiing. The site facilitates online accommodation reservations, targeting tourists and visitors interested in this region. The business model centers on tourism promotion and accommodation booking services, positioning itself within the hospitality industry. The content is primarily in Czech and is well structured for its audience, though no explicit business registration or contact details are provided in the accessible content. Technically, the website is built on the Webnode CMS platform and employs a variety of third-party scripts including Google Analytics, Google Tag Manager, SumoMe, ShareThis, and Mailchimp for marketing and analytics purposes. The site uses Amazon CloudFront as a CDN for static assets. Performance is moderate with basic mobile optimization and accessibility features. SEO is adequately addressed with proper meta tags and keywords. From a security perspective, the site lacks visible security headers and does not present privacy or cookie policies, which are critical for GDPR compliance and user trust. The WHOIS lookup failed to retrieve domain registration details, which raises concerns about domain legitimacy and transparency. No WAF or blocking mechanisms were detected, and the site content is accessible without restrictions. The absence of contact information and security policies limits the site's trustworthiness from a security and compliance standpoint. Overall, the website is functional and relevant for its tourism purpose but requires improvements in security posture, privacy compliance, and transparency to enhance trust and meet regulatory standards.

R

Region Krkonoše – Ubytování | Výlety | Zážitky

region-krkonose.cz

51

The website www.region-krkonose.cz serves as a regional tourism information portal focused on the Krkonoše National Park area in the Czech Republic. It provides visitors with essential information for planning trips, including accommodation options, excursions, active leisure activities, and local experiences. The site targets tourists and visitors interested in exploring the Krkonoše region, positioning itself as a local resource for travel planning and leisure activities. Technically, the website is built on the Webnode CMS platform and utilizes various third-party services such as Google Analytics, Google Tag Manager, SumoMe, and Mailchimp for analytics and marketing purposes. The site is delivered via AWS Cloudfront CDN, ensuring moderate performance and availability. Security-wise, the website employs HTTPS with IP anonymization in Google Analytics, but lacks important security headers and formal privacy or cookie policies, which are critical for compliance and user trust. The absence of WHOIS registrant data suggests privacy protection or non-public registration, which is common for small regional sites but reduces transparency. Overall, the site is functional and provides relevant content for its audience but would benefit from enhanced security practices and privacy compliance to improve trust and regulatory adherence.

R

Region-Tour.cz, s.r.o.

region-ceskesvycarsko.cz

53

Region-ceskesvycarsko.cz is a tourism information portal dedicated to the České Švýcarsko region in the Czech Republic. It provides comprehensive details on accommodation options, tourist attractions, activities, and travel tips, targeting tourists and visitors interested in exploring this natural and cultural region. The site is operated by Region-Tour.cz, s.r.o., a small hospitality-focused business with a regional market position. Technically, the website is built on the Webnode CMS platform, leveraging modern JavaScript libraries and third-party services such as Google Analytics, Mailchimp, and Sumo for marketing and analytics. The site is served over HTTPS with Cloudfront CDN, ensuring secure and performant content delivery. However, the absence of WHOIS data and lack of privacy and terms of service pages indicate gaps in transparency and compliance. Security posture is moderate with HTTPS and cookie consent implemented but lacking security headers and incident response information. Overall, the website is functional, content-rich, and safe for general audiences but would benefit from enhanced security and compliance measures.

P

Panter spol. s r. o.

sennheiser.cz

52

Panter spol. s r. o. operates as the authorized distributor and reseller of Sennheiser audio products in the Czech Republic and Slovakia. The website serves as a commercial platform showcasing a broad range of audio equipment including headphones, microphones, conference systems, and accessories. The company targets both consumer and professional markets, positioning itself as a trusted local leader with a strong partnership ecosystem. The business model focuses on direct sales, authorized servicing, and support for audio technology products.

I

IRIS Interactive

iris-interactive.fr

56

IRIS Interactive is a French digital communication agency specializing in creating websites, mobile applications, and print media, with a particular focus on the tourism sector. They offer a proprietary WordPress plugin tailored for institutional tourism actors, positioning themselves as a niche player in the digital agency market. The website is professionally designed, content-rich, and targets institutional clients and agencies seeking digital communication solutions. Technically, the site is built on WordPress with modern libraries and tools such as Google Analytics, reCAPTCHA, and Axeptio for cookie consent, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear cookie and privacy policies and GDPR consent mechanisms. Overall, the business presents a trustworthy and professional online presence, though WHOIS data is unavailable likely due to privacy protection, which is justified for this business type.

B

Bandzone.cz

bandzone.cz

50

Bandzone.cz is a well-established Czech online community platform dedicated to music bands, DJs, MCs, and their fans. Founded in 2005, it hosts profiles for over 35,000 groups and 180,000 fans, offering music streaming, downloads, concert listings, videos, and promotional services. The platform integrates ticket sales via SMS Ticket and promotes music education partners, positioning itself as the largest Czech music community online. Technically, the site uses a custom CMS with a mix of legacy and modern technologies including jQuery, Firebase, Google Analytics, and Facebook Pixel. While the site is functional and professionally designed, it uses an outdated jQuery version which poses security risks. Security posture is moderate with HTTPS enabled and basic privacy compliance via cookie consent, but lacks explicit security headers and published security policies. Overall, the website is credible and trustworthy for its audience but would benefit from technical and security updates.

D

DialOnce

dial-once.com

66

DialOnce is a French technology company specializing in AI-powered omnichannel customer service agents designed to automate and enhance client interactions across multiple sectors including banking, insurance, transport, and public services. The company positions itself as a leader in the French market with over 10 years of expertise and a strong portfolio of enterprise clients. Their solutions include omnichannel AI agents, visual IVR (SVI Visuel), and augmented advisor tools integrated with CRM and CCaaS platforms. Technically, the website demonstrates a mature digital infrastructure leveraging modern web technologies such as Cloudinary for media, HubSpot for marketing and analytics, and Cookiebot for consent management. The site is well-optimized for mobile and SEO, with fast performance and good accessibility. Security posture is strong with HTTPS, reCAPTCHA Enterprise, and cookie consent, though explicit security policies and incident response contacts are not published. The domain is recently registered with privacy protection, consistent with a professional tech company. Overall, DialOnce presents a credible, professional, and trustworthy digital presence with strong business and technical foundations.

K

KASPER KOVO s.r.o.

kasperkovo.cz

67

KASPER KOVO s.r.o. is a Czech Republic-based manufacturing company specializing in sheet metal processing and production of pressure vessels with over 30 years of experience. The company offers comprehensive metalworking services including design, sampling, and production of components and assembled machines, serving a global customer base. The website reflects a professional and modern digital presence built on the Solidpixels CMS platform, integrating multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel. Security posture is solid with HTTPS enabled and cookie consent implemented, though the absence of security headers and privacy policy pages indicates room for improvement. WHOIS data is unavailable, which slightly impacts domain trustworthiness, but the business information and online presence suggest legitimacy. Overall, the site is well-structured, mobile-optimized, and provides clear business information and social media links, supporting a medium-sized manufacturing enterprise within the KASPER GROUP.

P

Parola spol. s r.o.

sportovecjihlavska.cz

47

The website www.sportovecjihlavska.cz serves as a regional media platform focused on the annual Sportovec Jihlavska sports awards and related local sports news. Operated by Parola spol. s r.o., it targets residents and sports enthusiasts in the Jihlava district, providing event coverage, voting mechanisms, and advertising opportunities. The business model revolves around media content and community engagement with advertising revenue streams. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, reCAPTCHA, and CKEditor, ensuring a functional and moderately optimized user experience. Security posture is adequate with HTTPS enforced and use of CAPTCHA, but lacks some security headers and explicit privacy policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, but the visible business information and partnerships support legitimacy. Overall, the site is professional, content-rich, and trustworthy for its audience, though it would benefit from enhanced compliance and security practices.

P

Parola spol. s r.o.

vas-politik.cz

49

Parola spol. s r.o. operates the regional news website 'Jihlavské listy' focused on political and local news for the Vysočina region in the Czech Republic. The site offers news articles, political commentary, advertising services, and subscription options, targeting local residents and politically engaged audiences. The business model relies on advertising revenue and local subscriptions, positioning itself as a key regional media outlet since its founding in 2007. Technically, the website employs modern web technologies including Bootstrap, Google Analytics, Google Tag Manager, and CKEditor, providing a responsive and user-friendly experience. Security measures include HTTPS, Google reCAPTCHA, and secure login forms, though some security headers are missing. Privacy compliance is basic with cookie consent implemented but no explicit privacy or terms of service pages found. The domain WHOIS data is unavailable, limiting trust analysis, but the presence of company contact details and consistent branding supports legitimacy. Overall, the website is functional, moderately secure, and professionally maintained with room for improvement in privacy and security practices.

L

Librairie Quae

quae.com

71

Librairie Quae operates as a specialized online bookstore focused on scientific literature, offering a broad catalog of printed and digital books, including open access ebooks through its partner platform Quae-open. The website demonstrates a professional e-commerce infrastructure with modern technologies such as jQuery, Google Analytics, Matomo, and Owl Carousel, and is built likely on a Ruby on Rails framework. The site is well-structured with clear navigation and a responsive design, targeting scientists, professionals, and the general public interested in science. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is adequate with HTTPS and CSRF protections, but lacks advanced security headers and explicit policies such as privacy and terms of service. Cookie consent is implemented, indicating some privacy compliance efforts. Overall, the site is functional and trustworthy in content but requires improvements in transparency and security documentation.

V

Vooter

vooter.co

59

Vooter is a French digital platform specializing in voting, polling, and community consultation services aimed at organizations, local authorities, enterprises, and event organizers. The platform facilitates co-construction and inclusive participation through interactive digital tools, live voting, and instant communication. The website is built on WordPress using the Divi theme, incorporating standard SEO and analytics tools such as Yoast SEO and Google Analytics. Hosting and data storage are located in France, supporting GDPR compliance. Security measures include HTTPS and reCAPTCHA, though some security headers are not explicitly visible. The site lacks explicit privacy policy and terms of service pages, which are recommended for compliance and trust. Overall, the platform presents a professional and trustworthy digital service with a clear market niche in government and community engagement.

K

Kamea Meah Films

kameameahfilms.org

67

Kamea Meah Films is a French media entity specializing in the production and distribution of impactful documentary films. Founded in 2014, the organization focuses on socially and environmentally relevant topics, offering services such as commissioned film production, video on demand, and educational outreach. The website reflects a niche market position with a clear mission to engage citizens, elected officials, and organizations in meaningful storytelling. Technically, the site is built on WordPress using the Divi theme, integrating modern web technologies and analytics tools, hosted by Gandi SAS. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the website is trustworthy and professionally maintained but would benefit from improved privacy disclosures and security hardening.

C

Chiesi

actionoverwords.org

68

ActionOverWords.org is a professionally designed website operated by Chiesi, a healthcare company focused on addressing the climate crisis as a health crisis. The site highlights Chiesi's commitment to sustainability, carbon emission reduction, and patient health through innovative inhaler technologies and transparent reporting. The website targets healthcare professionals, patients, and environmental stakeholders, positioning Chiesi as a leader in climate-conscious healthcare solutions. Technically, the site is built on WordPress with Elementor and employs modern web technologies, including multilingual support and GDPR-compliant cookie management. Security posture is solid with HTTPS and privacy mechanisms, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

FLUKEATELIER.CZ is a small creative portfolio website representing the work of Štěpán Stránský, focusing on graphic design, photography, and illustration services. The site serves primarily as a showcase and contact point for potential clients interested in creative collaborations. The business appears to be a personal or small studio brand with a modest market presence in the Czech Republic. Technically, the website is built on WordPress with common plugins and uses Google Analytics for visitor tracking. The site is moderately optimized for mobile and SEO but lacks advanced security headers and privacy policies, which are important for compliance and trust. Security posture is basic with HTTPS enabled but missing several recommended headers. The absence of WHOIS data reduces domain trustworthiness, although the website content and social media presence support legitimacy. Overall, the site is functional but could benefit from enhanced security and privacy compliance measures.

B

BROKER VISION s.r.o.

pojistenata.cz

9

POJIŠTĚŇATA.cz is a Czech Republic-based insurance brokerage specializing in health insurance for domestic pets, primarily dogs. The company operates under BROKER VISION s.r.o., providing tailored insurance products with flexible options such as choice of veterinarian and travel insurance for pets. The website demonstrates a solid market position within the niche pet insurance sector, leveraging partnerships with established insurers like Generali Česká pojišťovna and Česká podnikatelská pojišťovna. The business targets pet owners seeking comprehensive health coverage for their animals, emphasizing ease of claims and customer service.

Les Artisans Déménageurs is a French-based moving service platform operating under the parent company Bemove. It offers a comprehensive network of over 300 professional moving partners across France and Europe, providing users with tools such as moving volume calculators, detailed guides, and a streamlined process to request and compare moving quotes. The website is well-positioned as a leading service in the transportation sector, targeting individuals and businesses planning moves within France and internationally. The business model focuses on lead generation and connecting customers with certified professional movers.

R

Recreation.gov

recreation.gov

69

Recreation.gov is a U.S. government-operated platform providing centralized trip-planning and reservation services for federal recreation sites across the country. It serves as a one-stop shop for camping, cabins, RV rentals, permits, passes, and tours, supporting 14 federal agencies and thousands of recreation locations. The platform is managed by a dedicated government team with technical support from Booz Allen Hamilton, funded primarily through reservation fees rather than Congressional appropriations. The website is well-designed, mobile-optimized, and rich in content, targeting outdoor enthusiasts and the general public interested in federal lands visitation. Technically, the site employs modern web technologies including React and Mapbox GL JS, integrates Google Tag Manager and analytics services, and demonstrates good performance and accessibility. While HTTPS is enforced and bot mitigation strategies are described, explicit security headers are not visible in the HTML content, and no cookie consent mechanism was detected, indicating areas for improvement in security and privacy compliance. The security posture is strong overall, with no evident vulnerabilities or exposed sensitive data. The presence of a responsible disclosure page and contact mechanisms for security issues further supports a mature security culture. However, incomplete WHOIS data and missing registrar and registrant details reduce trust somewhat, though the government affiliation and operational maturity mitigate concerns. Overall, Recreation.gov presents a trustworthy, professional, and user-friendly service with a solid security foundation. Strategic recommendations include adding explicit security headers, implementing a visible cookie consent banner, and publishing a security.txt file to enhance transparency and compliance.

KENTAUR Saddlery s.r.o. is a Czech Republic-based manufacturer specializing in high-quality equestrian products, including a wide range of saddles and accessories. Established in 1998, the company targets equestrian enthusiasts and riders, offering products proudly made in Czechia. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its niche market. Social media presence on Facebook and Instagram supports community engagement and brand visibility. Technically, the website employs standard web technologies such as HTML5, CSS3, and JavaScript, with integration of Google Analytics and Google Tag Manager for user tracking and analytics. The site appears mobile-optimized with moderate performance and basic accessibility features. However, no CMS or advanced frameworks are detected, suggesting a custom or lightweight implementation. From a security perspective, the site uses HTTPS (implied by the domain), but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No forms or data collection mechanisms are present on the homepage, reducing immediate risk exposure. The WHOIS data confirms a long-standing domain registration consistent with the business location and claims, enhancing trustworthiness. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance, enhanced security headers, and explicit policies to strengthen its security posture and regulatory adherence.

H

Höveler Czech

hoeveler-czech.cz

59

Höveler Czech operates as the official Czech and Slovak representative for Höveler, a German manufacturer specializing in premium horse feed and nutritional supplements. The website offers a comprehensive e-commerce platform featuring various product lines tailored for horse nutrition, including specialized feeds for metabolic issues. The business targets horse owners and equestrian professionals within the Czech Republic and Slovakia, positioning itself as a trusted regional distributor with a focus on quality and customer support. Technically, the website is built on the Shoptet e-commerce platform, utilizing a combination of jQuery, Bootstrap, and other modern web technologies. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes, all managed with user consent mechanisms. The site is mobile-optimized, accessible, and demonstrates good SEO practices, although some legacy libraries like an older jQuery version are in use. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and implements cookie consent banners, reflecting a good security posture. However, explicit security headers and a published security policy or incident response information are absent, representing areas for improvement. The lack of WHOIS data limits domain trust assessment, but the website content and contact information appear professional and legitimate. Overall, Höveler Czech presents a well-structured, trustworthy e-commerce presence with solid privacy compliance and marketing transparency. Strategic enhancements in security documentation and technology updates would further strengthen its security posture and business credibility.

E

Equimane

equimane.cz

54

Equimane is a Czech Republic-based e-commerce business specializing in equestrian clothing and accessories, particularly focusing on riding leggings with grip and functional shirts. The website is professionally designed, mobile-optimized, and provides a clear navigation structure tailored to its niche audience of equestrian enthusiasts. The business operates primarily through an online retail model using the Shoptet platform, targeting a small but specialized market segment. Technical infrastructure includes modern JavaScript libraries, Google Analytics, Facebook SDK, and chat integrations, reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. The absence of public WHOIS data suggests privacy protection, which is common for small businesses. Overall, the site is trustworthy, safe, and compliant with GDPR requirements, though it lacks some advanced security and incident response disclosures.

Tech Quest Africa is a newly established Nigerian company specializing in software development and digital skills training. The company positions itself as a strategic partner for businesses seeking custom software solutions and individuals aiming to acquire in-demand tech skills. Their offerings include a training academy, business process automation, and custom software development services. The website demonstrates a modern technical infrastructure using JavaScript frameworks and integrates Google Analytics for user insights. While the site is well-designed and mobile-optimized, it lacks some advanced security headers and cookie consent mechanisms, which are important for compliance and user trust. The domain registration is consistent with the business profile, enhancing credibility. Overall, the company shows promise but should enhance its security and privacy posture to align with best practices.

S

Simplon

simplon.co

65

Simplon is a French educational organization specializing in accessible tech training from beginner to advanced levels, including development, cybersecurity, data, and digital skills. The website demonstrates a strong market position with partnerships from major tech companies like IBM, Meta, and Microsoft, and offers a wide range of training services including alternance and personalized career support. Technically, the site is built on Webflow with modern web technologies, providing good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and reCAPTCHA usage, though explicit security policies and headers could be improved. Privacy compliance is lacking due to missing privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.