Security Directory

Z

ZOO Dvorec

zoodvorec.cz

46

ZOO Dvorec is a private zoological garden located in the South Bohemian region of the Czech Republic, established in 2007. The website serves as a comprehensive portal for visitors, offering detailed information about visiting hours, ticketing, animal exhibits, educational programs for schools, and special experience activities such as guided tours and animal caretaker programs. The business model focuses on visitor engagement, education, and community involvement, supported by an e-shop and animal adoption initiatives. The zoo maintains an active presence on social media platforms including Facebook, YouTube, and Instagram, enhancing outreach and visitor interaction. Technically, the website employs a custom CMS with a technology stack including jQuery 1.11.2, jQuery UI, Flexslider, Fancybox, and integrates Google Tag Manager and Google Analytics for tracking. The site uses HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. However, some outdated JavaScript libraries present potential security risks, and no explicit security headers were detected. The website performance is moderate with basic mobile optimization and accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks published security policies or incident response contacts. The use of older JavaScript libraries and absence of security headers are notable vulnerabilities. No signs of malware, phishing, or exposed sensitive data were found. Privacy compliance is good with accessible privacy and cookie policies. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, ZOO Dvorec's website is well-structured, content-rich, and trustworthy, serving its audience effectively. Strategic improvements in updating technical components and enhancing security headers would strengthen its security posture and resilience against emerging threats.

B

budejcezadarmo

budejcezadarmo.cz

63

Budějce Zadarmo is a local Czech website focused on providing information about free events in České Budějovice, including sports, culture, gastronomy, and activities for children. The platform serves residents and visitors seeking community engagement without cost barriers. It operates as a content aggregator and local news source with additional features such as job listings, photo galleries, and competitions. The website leverages WordPress CMS with popular plugins for SEO, social sharing, and advertising, indicating a moderate level of digital maturity. Privacy and cookie policies are implemented with GDPR compliance, and social media channels support community interaction. Security posture is adequate with HTTPS enabled, but lacks some advanced security headers and explicit vulnerability disclosure mechanisms. Overall, the site presents a trustworthy local community service but would benefit from enhanced transparency in business and security practices.

V

VetAgro Sup

vetagro-sup.fr

55

VetAgro Sup is a French public higher education and research institution specializing in veterinary medicine, agronomy engineering, and public veterinary health inspector training. The institution holds multiple accreditations and offers a range of educational and clinical services, positioning itself as a reputable player in the education and healthcare sectors in France. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to students, researchers, and professionals in related fields. Technically, the site is built on WordPress with modern plugins and frameworks, including Elementor and Bootstrap, and integrates analytics tools such as Google Analytics and Matomo. Security posture is good with HTTPS enforced and use of ReCaptcha, although explicit security headers and published security policies are lacking. Privacy compliance is well addressed with visible cookie consent and privacy policies. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or content blocking.

C

Cirad

cirad.fr

62

Cirad is a prominent French public research organization specializing in agronomic research and international cooperation for sustainable development in tropical and Mediterranean regions. The website reflects a well-established institution with a clear mission, extensive research themes, and active engagement in global projects and partnerships. The digital infrastructure is modern, leveraging eZ Platform CMS, and integrates analytics tools such as Matomo and Google Analytics with privacy-conscious configurations. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is noted but does not detract significantly from the site's legitimacy given its government affiliation and professional presentation. Overall, the site is trustworthy, informative, and well-structured, serving a diverse audience including researchers, students, and institutional partners.

G

GLOBDATA a.s.

globdata.cz

62

GLOBDATA a.s. is a Czech company specializing in ICT services for public transport and municipal services, positioning itself as a leader in this sector within the Czech Republic. The company offers a range of services including contactless mobile payments, SMS services, voice services, and comprehensive ICT support. The website reflects a professional business presence with clear service descriptions and a focus on innovation in payment and ticketing solutions. Technically, the website employs modern analytics and tracking tools such as Google Analytics and Google Tag Manager, and it is mobile-optimized with a responsive design. However, the absence of WHOIS data and lack of explicit privacy and cookie consent mechanisms indicate areas for improvement in transparency and compliance. Security posture is moderate with HTTPS usage implied but no visible security headers detected, and no forms or sensitive data collection points on the homepage reduce immediate risk. Overall, the site is functional and professional but would benefit from enhanced security headers, privacy compliance, and clearer contact information to improve trust and regulatory adherence.

EtIndonesia is a media website focused on delivering news and inspirational content primarily to an Indonesian audience. The site covers a broad range of topics including news, family, mysteries, videos, health, and science. The business operates as a content publisher with a small-sized footprint, founded in 2019 and registered under CV. Rumahweb Indonesia. The website uses WordPress CMS with several tagDiv plugins and integrates Google Analytics and AdSense for analytics and monetization. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, indicating compliance gaps. No explicit contact information or incident response details are published, which may impact trust and user confidence.

Shen Yun Performing Arts is a globally recognized performing arts company specializing in classical Chinese dance and music performances. The company tours extensively, reaching audiences in over 20 countries and 200 cities annually. Their business model centers on ticket sales for live shows that celebrate and revive traditional Chinese culture. The website is professionally designed, mobile-optimized, and rich in content, providing comprehensive information about performances, ticketing, and audience reviews. Technically, the site employs modern web technologies including React, Google Tag Manager, and multiple analytics platforms, ensuring good performance and user experience. Security posture is strong with HTTPS enforcement and security headers, though the absence of public WHOIS data slightly reduces domain trustworthiness. Overall, the site demonstrates a mature digital presence with effective marketing and analytics integration, supporting a reputable cultural enterprise.

D

Dominik Martini

dmartini.cz

58

Dominik Martini operates a specialized e-commerce service business focused on the Shoptet platform, offering custom e-shop modifications, add-ons, and performance improvements. The company holds a certified partnership with Shoptet and maintains a strong reputation supported by over 346 verified customer reviews with perfect ratings. The website is professionally designed, mobile-optimized, and provides clear contact information, reinforcing its credibility in the Czech e-commerce market. Technically, the site employs modern web technologies including jQuery, Slick Carousel, AOS animations, and integrates analytics tools such as Microsoft Clarity and Google Analytics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are absent, representing areas for improvement. Overall, the business demonstrates a mature digital presence with a focus on customer satisfaction and technical excellence.

Astrovíkend is a Czech-based esoteric festival organizer that hosts events focused on spirituality, wellness, and mystery. The website provides detailed information about upcoming festivals in various Czech cities, including event dates, locations, guest speakers, and ticketing options. The business targets individuals interested in esotericism and holistic health, operating primarily as an event organizer with ticket sales and exhibitor registrations as key revenue streams. The site is professionally designed with consistent branding and clear navigation, supporting a niche market position within the Czech Republic.

D

DK Poklad Ostrava

dkpoklad.cz

49

DK Poklad Ostrava is a well-established cultural and social center located in Ostrava-Poruba, Czech Republic, founded in 2004. The organization offers a diverse range of services including cultural performances, congresses, seminars, workshops, cinema, venue rentals, and restaurant services. It targets a broad audience interested in cultural and social events, positioning itself as a key regional player in the hospitality and media sectors. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is good with HTTPS and secure forms, though some security headers could be improved. Privacy compliance is strong, featuring GDPR-compliant policies and cookie consent mechanisms. Overall, the site is trustworthy, well-maintained, and serves its community effectively.

P

PortlandLabs

concretecms.org

72

Concrete CMS is an established open source content management system developed and maintained by PortlandLabs since 2008. It targets web developers and content editors seeking an easy-to-use, flexible CMS platform with built-in features and a strong community backing. The website positions Concrete CMS as a trusted solution used by governments and Fortune 500 companies, emphasizing security, extensibility, and user-friendly editing experiences. The business model revolves around open source software distribution complemented by community engagement and commercial support services. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Vue.js, FontAwesome, and analytics tools such as Matomo and Google Analytics. The CMS itself is Concrete CMS, which is also the product being promoted. The site is mobile optimized, well-structured, and uses responsive design techniques. Performance is moderate with room for improvement in accessibility features. SEO practices are good with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and includes a dedicated security page. Cookie consent mechanisms and a comprehensive privacy policy demonstrate compliance with privacy regulations including GDPR. However, explicit security headers are not detected, and no public vulnerability disclosure or incident response contacts are published. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website is professional, trustworthy, and well-maintained with a high level of content quality and business credibility. The lack of WHOIS data limits domain registration trust analysis, but the site’s branding and external trust signals strongly support legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, improving accessibility, and maintaining transparency in data protection practices.

S

SHOPLINE Limited

shoplineapp.com

66

SHOPLINE Limited operates a global smart commerce platform providing total commerce solutions and customized services to businesses ranging from startups to established global brands. Their offerings support online, social media, and offline sales channels, positioning them as a comprehensive e-commerce enabler. The website reflects a mature business with over 10 years of domain history and consistent branding across multiple localized domains. Technically, the site leverages modern web technologies including AngularJS, Google Tag Manager, and multiple analytics and marketing tools, hosted on AWS infrastructure. While the site is performant and mobile-optimized, some accessibility and SEO improvements could be made. Security posture is solid with HTTPS and domain locks, but lacks DNSSEC and advanced security headers. Privacy compliance is partially met with clear privacy and terms pages but lacks cookie consent mechanisms and explicit security policies. Overall, the site is professional and trustworthy with extensive tracking and marketing integrations.

T

TEKOM CZ spol. s r.o.

netroliferadio.cz

59

Netro Life Radio is a regional FM radio station based in České Budějovice, Czech Republic, operated by TEKOM CZ spol. s r.o. The station focuses on dance and popular music, targeting listeners in the South Bohemia region. It offers both traditional FM broadcasting on 100.8 FM and online streaming services, including high-quality and mobile-optimized streams. The website is professionally designed, featuring clear navigation, multimedia content, and active social media channels. However, the absence of WHOIS data limits transparency about domain ownership and age. Technically, the website leverages modern web technologies including Google Tag Manager, Google Analytics, and a proprietary CMS platform (solidpixels.). The site is mobile-optimized and includes cookie consent mechanisms, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and secure form handling, but lacks visible security headers and explicit privacy policies, indicating room for improvement. Overall, the security posture is moderate with no critical vulnerabilities detected in the visible content. The business credibility is strong due to clear company information and legal disclosures. The absence of WHOIS data and privacy policy slightly reduce trust scores. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and improving accessibility features to strengthen compliance and user trust.

W

Wp Royal

wp-royal.com

57

WP Royal Themes is a small technology company specializing in the development and sale of WordPress themes, targeting bloggers, small businesses, and WordPress users seeking quality, customizable themes. The company emphasizes customer support, providing forums, documentation, and video tutorials to enhance user experience. Their market position is that of a niche WordPress theme provider with a focus on quality and support, leveraging modern WordPress technologies and e-commerce capabilities via WooCommerce. Technically, the website is built on WordPress with a robust tech stack including WooCommerce, Yoast SEO, WPBakery Page Builder, and Slider Revolution. Hosting is provided by Bluehost Inc., and the site uses HTTPS with a good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured data. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. No explicit security or incident response policies are published, and no direct contact emails or phone numbers are provided, which could be improved for better trust and compliance. Cookie consent is implemented, indicating some GDPR compliance efforts. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to minor security hardening and privacy policy transparency. Strategic improvements in these areas would enhance compliance and user trust.

M

Město Říčany

ricany.cz

57

Město Říčany is the official municipal government website for the town of Říčany in the Czech Republic. It serves as a comprehensive portal for citizens and local businesses, providing news updates, cultural event calendars, public service information, official notices, and contact details. The site targets local residents and stakeholders, offering a user-friendly experience with multilingual support and clear navigation. The business model is focused on public administration and community engagement, positioning itself as a trusted local government authority. Technically, the website is built on WordPress with a modern tech stack including jQuery, WPML for multilingual support, and various plugins for GDPR compliance and user interaction. The site demonstrates good performance, mobile optimization, and accessibility features. It integrates Google Analytics and Tag Manager for analytics and marketing purposes, with a clear cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and uses best practices such as cookie consent and DOMPurify for sanitization. However, some minor issues like broken lazy loading images and missing explicit security headers (CSP, X-Frame-Options) were noted. The WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and official branding support its legitimacy. Overall, the site presents a low-risk profile with strong business credibility and good technical implementation. Strategic recommendations include enhancing security headers, fixing image loading errors, and adding a security.txt file for vulnerability disclosure to further strengthen trust and compliance.

F

Fondation Thuram

education-racisme.fr

49

The website education-racisme.fr is a French non-profit educational platform dedicated to combating racism through awareness and scientific knowledge dissemination. It is affiliated with the Fondation Thuram and offers interactive educational resources such as videos, animations, cards, and legal texts. The site targets educators, students, and the general public interested in anti-racism education. Technically, it is built on WordPress with common plugins for SEO and caching, and uses Google Analytics for visitor tracking. The site is secured with HTTPS and includes cookie consent mechanisms, reflecting good privacy compliance. However, WHOIS data is unavailable, likely due to privacy protection, but the website's content and partner affiliations support its legitimacy. Security headers could be improved, and accessibility and mobile optimization are basic but functional.

N

Netinteractive

webpublication.fr

61

Webpublication.fr is a French-based digital content creation company specializing in interactive digital publishing solutions such as catalogs, magazines, annual reports, and sales presentations. Established in 2007, it serves a broad B2B market including agencies and advertisers, positioning itself as a mature player with a solid client base and reputable testimonials. The website is built on WordPress with a modern tech stack including analytics and marketing tools, demonstrating a good level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers could be improved and formal security policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with room for enhanced transparency in security and incident response.

D

Divadlo D21

divadlod21.cz

50

Divadlo D21 is a well-established theatre organization based in Prague, Czech Republic, founded in 2012. It offers theatrical performances, educational projects, and cultural events targeting the general public and schools. The website reflects a professional cultural institution with a clear focus on community engagement and artistic offerings. Technically, the site uses a mix of JavaScript libraries including jQuery, Vue.js, and Google Analytics for tracking, with a responsive design and moderate performance. Security-wise, the site implements GDPR compliance and cookie consent mechanisms but lacks visible HTTP security headers in the provided data, indicating room for improvement in security hardening. Overall, the domain registration and WHOIS data align well with the business profile, supporting legitimacy and trustworthiness.

M

Martina Hoffmann

martinahoffmann.com

58

Martina Hoffmann's website serves as an online gallery and boutique for her fine art, focusing on visionary and psychedelic art styles. The site targets art enthusiasts and collectors, providing information about exhibitions, events, and an online store for purchasing artwork. The business operates as a small-scale artist gallery with a niche market presence. Technically, the website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies including Google Analytics and Facebook Pixel for visitor tracking. The site is mobile-optimized and uses HTTPS, ensuring a secure browsing experience. However, the absence of explicit privacy and cookie policies, as well as missing WHOIS registration data, presents compliance and legitimacy concerns. Security posture is generally good with HTTPS and standard security headers, but improvements are needed in privacy compliance and transparency. Overall, the website is professional and functional but would benefit from enhanced compliance documentation and clearer domain registration information.

D

Dog-Eared Passport

johnhendersontravel.com

50

John Henderson's website 'Dog-Eared Passport' is a personal travel blog focused on travel adventures primarily in Rome, Italy, and other international destinations. The site offers travel stories, guides, and personal experiences targeting travel enthusiasts interested in Italy and global travel. The business model appears to be content publishing with monetization through advertising and affiliate marketing. The website is built on WordPress using the Themify Ultra theme and integrates several third-party tools including Google Analytics, Google Adsense, Mailchimp, and Grow.me. The technical infrastructure is modern but could benefit from enhanced security measures such as DNSSEC and security headers. The security posture is moderate with HTTPS enabled but lacks some best practices. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is accessible, well-structured, and provides good user experience with consistent branding and active social media presence.

K

KBOO

kboo.fm

51

KBOO is a well-established community radio station based in Portland, Oregon, providing alternative media content and community engagement since at least 2002, with roots dating back to 1968. The station operates as a non-profit entity, funded primarily through donations, memberships, underwriting, and volunteer support. Its website serves as a hub for live streaming, program schedules, community involvement, and donation facilitation, targeting local community members and alternative media audiences. Technically, the site runs on Drupal 7 with Bootstrap and jQuery, integrating analytics tools like Google Analytics and Matomo, and includes social media and donation platform integrations. While the site is functional and well-structured with good content quality and navigation, it uses an outdated CMS version, lacks a cookie consent mechanism, and does not enable DNSSEC, which are areas for improvement. Security posture is moderate with HTTPS enforced and some security best practices observed, but could be enhanced by upgrading the CMS, enabling DNSSEC, and implementing stronger security headers. Overall, the website is trustworthy and professional, with clear business legitimacy and community focus.

C

Cream Code Technology Pvt Ltd

creamcode.org

60

Cream Code Technology Pvt Ltd is a Nepal-based small IT services company founded in 2020, delivering innovative IT services and technology solutions globally. Their website showcases their offerings including WordPress themes, WooCommerce addons, and license key management, targeting businesses seeking digital transformation and online presence. The company leverages modern WordPress infrastructure with Elementor and Astra theme, integrating Google Analytics and Tag Manager for marketing insights. The website is professionally designed with good mobile optimization and clear navigation, reflecting a consistent brand image. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and privacy policies are missing. Overall, the site is legitimate and functional but could improve compliance and security transparency.

A

Ayush Valley Foundation

ayushvalley.org

50

Ayush Valley Foundation is a small non-profit organization founded in 2020 in India, dedicated to promoting Ayurveda and wellness through education, research, publications, and events. The website serves as a platform for professionals and scholars to collaborate and share knowledge, with a focus on bilateral exchange of Ayurveda practices globally. Technically, the website uses a modern tech stack including Bootstrap 4, jQuery, and various plugins, hosted likely via GoDaddy. The site is mobile optimized and has good SEO practices but lacks a CMS and advanced accessibility features. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Privacy and cookie policies exist but lack explicit consent mechanisms. No direct company contact emails or phone numbers are published, only a contact form. Overall, the website is professional and trustworthy but could improve security and privacy compliance.

S

Shift4Shop

3dcart.com

72

Shift4Shop is a comprehensive SaaS eCommerce platform offering a turnkey solution for businesses to build and grow online stores. The platform provides a rich set of features including a website builder, product and order management, marketing tools, integrated payment processing with PCI compliance, and fraud protection. It targets a broad audience of eCommerce businesses seeking a premium yet affordable solution. Technically, the website employs modern analytics and marketing technologies such as Google Analytics, Facebook Pixel, and OneTrust for privacy management, and is optimized for mobile and SEO. Security posture is strong with PCI certification and fraud protection, though explicit security headers and public security policies are not evident. The WHOIS data is missing or unavailable, which slightly reduces domain trustworthiness. Overall, the website is professional, secure, and well-positioned in the eCommerce market.

S

Shift4Shop

shift4shop.com

72

Shift4Shop is a well-established SaaS eCommerce platform offering a comprehensive suite of tools for building and managing online stores. The platform targets businesses of various sizes seeking an affordable yet feature-rich solution, positioning itself competitively against other eCommerce providers. Technically, the website employs modern tracking and marketing technologies, integrates with major platforms like PayPal, and demonstrates good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, holds PCI certification, and includes fraud protection, though it lacks explicit security headers and a public security policy. The WHOIS data is missing or privacy protected, which slightly reduces transparency but does not detract significantly from the site's legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a strong contender in the eCommerce software market.

E

Europe Ayurveda

europeayurveda.com

56

Europe Ayurveda operates an e-commerce website specializing in Ayurvedic health and wellness products, including herbal ghee, oils, tablets, and powders. The site also offers Ayurveda and Yoga classes, targeting consumers interested in natural and traditional health remedies. The business appears to be a small retail entity founded around 2014, with a niche market presence in Europe. Technically, the website is built on the OpenCart CMS platform with a custom Megnor theme, utilizing common web technologies such as jQuery and Google Analytics. The site is moderately optimized for mobile devices and provides a functional shopping experience with product listings and customer account features. Security-wise, the website uses HTTPS and has domain transfer protection, but lacks DNSSEC and security headers, and shows PHP notices in the HTML output, indicating backend code issues that could pose risks. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the website is functional and credible but would benefit from improved security practices and privacy compliance.

T

Tomáš Haluza

haluza.cz

43

Tomáš Haluza is a small Czech Republic-based web design and internet application development service provider. The company offers a range of services including web design, logo creation, content management systems, online shops, and hosting partnerships, targeting businesses seeking professional online presence solutions. The website is well-structured, primarily in Czech, and demonstrates a solid technical foundation with PHP backend, Apache server, and integration of Google Analytics for visitor tracking. The presence of a cookie consent banner indicates awareness of GDPR compliance. Security posture is moderate with secure form submission and no visible vulnerabilities, but lacks advanced security headers and incident response information. WHOIS data is missing, which limits domain trust verification, but the website content and business information appear professional and legitimate. Overall, the site scores well in content quality and technical implementation but could improve in security and compliance transparency.

Studio Biorezonance is a small healthcare service provider based in the Czech Republic specializing in holistic and alternative medicine therapies, including biorezonance, massage, and anti-aging programs. The website presents a professional and clear overview of their services targeting adults, children, and pets. Technically, the site uses a traditional tech stack with jQuery and Bootstrap, hosted by a Czech hosting provider. While the site is functional and moderately optimized for mobile, it lacks advanced security headers and privacy compliance features such as privacy and cookie policies. The security posture is moderate with room for improvement in headers and script management. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security configurations would enhance trust and compliance.

D

Divadlo RB s.r.o.

divadlorb.cz

56

Divadlo RB s.r.o. operates the Divadlo Radka Brzobohatého theatre located in the center of Prague, Czech Republic. The company provides live theatrical performances including comedies, musicals, and classic plays, targeting a general audience interested in cultural entertainment. The business model revolves around ticket sales and event hosting, supplemented by a partner cafe service. The website reflects a well-established local cultural venue with a domain age dating back to 2004, indicating a stable presence in the market. Technically, the website is built on WordPress with modern web technologies such as Bootstrap, jQuery, and Font Awesome. It integrates Google Analytics and Tag Manager for visitor tracking and uses Owl Carousel and FancyBox for UI enhancements. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Hosting and domain registration are consistent with the Czech Republic location. From a security perspective, the site enforces HTTPS and uses asynchronous loading for analytics scripts, but lacks important security headers and does not provide visible privacy or cookie policies, which are compliance gaps. No incident response or vulnerability disclosure information is available, and no security.txt file is found. The site does not expose sensitive data or show signs of vulnerabilities in the HTML content. Overall, the website is professional and trustworthy for its intended purpose but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include publishing comprehensive privacy and cookie policies with consent mechanisms, implementing security headers, and providing clear incident response contacts to improve trust and compliance.

K

Kaira

kairaweb.com

65

Kaira is a specialized provider of WordPress themes, WooCommerce plugins, and block tools aimed at creators and developers seeking to build fast, modern websites. Established with a domain registered since 2010 and business activity since 2013, Kaira holds a trusted position in the WordPress ecosystem. The website demonstrates a good level of technical maturity, leveraging WordPress 6.8.3, popular plugins, and integrations such as Google Analytics and MailerLite for marketing and analytics. Hosting is provided by HOSTINGER operations, UAB, a reputable registrar and hosting provider. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security transparency.

P

PMB Services

pmbservices.fr

66

PMB Services is a French company specializing in the development and support of PMB, an open-source library management software designed for libraries, documentation centers, and educational institutions. The company offers a comprehensive suite of services including consulting, installation, hosting, training, and support, serving over 1800 clients with more than 10,000 users. Their market position is solid, supported by a professional website with good content quality and consistent branding. Technically, the website employs a mature technology stack including jQuery, UIkit, Dojo Toolkit, and FontAwesome, alongside analytics tools like Google Analytics and Matomo. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good performance level. Privacy and cookie policies are well implemented, indicating GDPR compliance. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, but the Content-Security-Policy header is empty, representing a potential security weakness. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain www.sigb.net is a concern, suggesting the domain may be unregistered or expired, which could impact trustworthiness. Overall, the website presents a professional and trustworthy front for PMB Services, but the domain registration inconsistency should be addressed to ensure legitimacy and prevent potential security risks. Strategic recommendations include enhancing security headers, verifying domain registration status, and maintaining up-to-date software components.

P

Parola spol. s r.o.

jihlavske-listy.cz

49

Jihlavske-listy.cz is a regional news website operated by Parola spol. s r.o., serving the Vysočina region in the Czech Republic. The site offers a broad range of local news, cultural content, sports updates, and magazines, targeting residents and readers interested in regional affairs. The business model relies on advertising and subscription services, supported by a consistent brand presence and active social media engagement. Technically, the website employs modern web technologies including Bootstrap for responsive design, Google Analytics and Tag Manager for tracking, and CKEditor for content management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility and SEO optimizations could be improved. From a security perspective, the site uses HTTPS and integrates Google reCAPTCHA for form protection, but lacks visible security headers which are recommended for enhanced protection. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, the site presents a professional and trustworthy regional news platform with moderate technical and security maturity. Strategic improvements in security headers, privacy policy presence, and WHOIS transparency would enhance trust and compliance.

P

PhDr. Vladimír Sůva

denik-knihy.cz

55

Deník KNIHY is a Czech media platform focused on providing daily updated information about newly published books, authors, and literary events. It serves as a comprehensive resource for readers, publishers, distributors, and booksellers, offering a catalog of books with direct purchase options and editorial content including interviews and videos. The website is positioned as a key player in the Czech literary market, supporting both domestic and international authors with promotional services. Technically, the site is built on WordPress with common plugins for galleries and polls, integrates Google Analytics and Facebook SDK for tracking, and is hosted under a Czech registrar with appropriate domain age and consistency. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, it lacks formal privacy and cookie policies, which impacts its compliance posture. Security practices are basic with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the site is trustworthy and professional but could improve in privacy compliance and security hardening.

T

Televize Natura s.r.o.

tvnatura.cz

55

TV Natura is a small Czech internet television platform focused on nature, environmental awareness, and community engagement. The website offers live streaming, archived videos, articles, and opportunities for user-generated content. The business operates as a small media entity with a non-profit or community-supported model, recently transitioning to a paid membership platform due to regulatory and financial challenges. Technically, the site uses modern web technologies including HTTPS, Bootstrap, and integrates Google Analytics and Facebook Pixel for tracking. The security posture is moderate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a cookie consent banner and a privacy policy page, but no terms of service or incident response information is found. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact information appear legitimate. Overall, the site provides a good user experience with relevant content for its target audience but would benefit from enhanced security and compliance measures.

D

DnesniObed.cz

dnesniobed.cz

44

DnesniObed.cz is an online platform focused on aggregating daily and lunch menus from restaurants primarily in Prague and its surroundings. It serves as a valuable resource for users seeking up-to-date meal options, restaurant details, and ordering capabilities. The platform also highlights gastronomic events, enhancing its appeal to food enthusiasts. The website demonstrates a solid market position within its niche, catering to a local audience with a medium-sized operational scale. Technically, the website employs a combination of Bootstrap 3.3.7, jQuery, Font Awesome, and lazy loading techniques to deliver a responsive and user-friendly experience. Integration with Google Analytics and Facebook Pixel indicates a moderate level of digital marketing maturity. While the site is mobile-optimized and SEO-friendly, some technical improvements such as updating libraries and enhancing accessibility could be beneficial. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML. However, the absence of security headers and privacy/cookie policies suggests gaps in compliance and security best practices. The lack of WHOIS data reduces domain trustworthiness, although the website content and external references support its legitimacy. Overall, DnesniObed.cz presents a functional and relevant service with room for improvement in privacy compliance and security posture. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

E

Extravíno U Labutě

extravinoulabute.cz

40

Extravíno U Labutě is a small local wine retailer based in Říčany, Czech Republic, offering wine products through a WooCommerce-powered website built on WordPress with the Divi theme. The website targets local wine consumers and operates primarily as a retail business. Technically, the site uses common web technologies including Google Analytics and Tag Manager for tracking, but lacks advanced security headers and visible privacy or cookie policies. The site is mobile optimized and presents a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enabled but missing additional security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data is consistent with the business claims, indicating legitimacy. Strategic improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and compliance.

P

ProfiBeauty s.r.o.

profibeauty.cz

58

ProfiBeauty s.r.o. operates a specialized e-commerce website focused on hair extensions, hair care products, wigs, and related accessories primarily targeting the Czech market. Established in 2009, the company has a stable online presence with a well-structured website offering a variety of products and clear contact information. The site integrates modern web technologies including PrestaShop CMS, Google Analytics, Facebook Pixel, and reCAPTCHA, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and basic security measures implemented, though there is room for improvement in security headers and published policies. Privacy compliance is partial, with cookie consent mechanisms present but no explicit privacy policy found. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

U

UnisSoft s.r.o.

hairsoft.cz

38

HairSoft.cz is a professional website offering a comprehensive beauty salon management software solution developed by UnisSoft s.r.o. The software targets beauty salons, hairdressers, cosmeticians, and wellness providers primarily in the Czech and Slovak markets. The company emphasizes efficiency, modularity, and practical features derived from 25 years of industry experience. The website is well-designed, mobile-optimized, and rich in content including testimonials, detailed feature descriptions, and trial offers. Technically, the site uses Joomla CMS with modern frameworks and integrates marketing and analytics tools such as Google Analytics and Facebook Pixel. Security posture is good with HTTPS and CSRF protections, though some security headers and privacy compliance mechanisms are missing. WHOIS data is unavailable, which slightly reduces trustworthiness but the business information and website professionalism compensate for this. Overall, the site is a credible and valuable resource for its target audience.

U

UnisSoft s.r.o.

unisbook.cz

47

UnisSoft s.r.o. operates the UnisBook platform, a specialized online reservation system tailored for beauty and salon services. The company targets beauty professionals seeking efficient, automated booking solutions with features such as multi-branch management, client communication automation, and integration with payment gateways. The website demonstrates a mature digital presence with a professional design, clear navigation, and multilingual support, indicating a well-developed technical infrastructure based on Joomla CMS and modern web technologies. Security posture is solid with HTTPS and CSRF protections, though some security headers and cookie consent mechanisms could be improved. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall business credibility is supported by detailed policies, partner integrations, and active social media channels. Strategic recommendations include enhancing security headers, implementing cookie consent for GDPR compliance, and improving accessibility features to further strengthen trust and compliance.

F

Frisör Klier správní s.r.o.

klier.cz

62

Frisör Klier správní s.r.o. operates the largest network of hair salons in the Czech Republic, catering to both men and women with professional hairdressing services and premium hair care products. The company maintains a strong market position as a leading retail service provider in the hair care industry, supported by an e-commerce platform for product sales. Their website reflects a professional and consistent brand image, targeting a broad audience seeking quality hair care solutions. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and the Nette Framework, ensuring a robust digital presence with moderate performance and good mobile optimization. Privacy compliance is well addressed with a comprehensive privacy policy and an active cookie consent mechanism, demonstrating adherence to GDPR requirements. However, the absence of WHOIS registration data and visible security headers slightly detracts from the overall trustworthiness. No direct contact phone numbers or physical addresses were found on the homepage, though a professional contact email is provided. Overall, the website is secure, user-friendly, and business credible, with room for improvement in transparency and security hardening.

B

Beauty Store

beauty-store.cz

10

Beauty Store is a Czech Republic based e-commerce platform specializing in beauty products, particularly eyelash extension supplies and related training courses. The website offers a comprehensive catalog of products, including cosmetics, salon equipment, and professional makeup items, targeting beauty professionals and consumers interested in eyelash extensions and beauty care. The business operates primarily online with a focus on retail sales and educational workshops. Technically, the website is built on the Shoptet CMS platform, utilizing common web technologies such as jQuery, Google Analytics, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security-wise, the site enforces HTTPS and uses CSRF tokens in forms, but it relies on an outdated jQuery version and lacks some modern security headers, which could be improved. Privacy compliance is basic, with a cookie consent banner present but no explicit privacy policy detected in the provided content. WHOIS data is not publicly available, indicating privacy protection, which is typical for small e-commerce businesses. Overall, the site appears legitimate and professional with moderate technical maturity and a good security posture, though improvements in privacy and security practices are recommended.

M

MĚSTO TŘEBÍČ

trebiczije.cz

47

The website trebiczije.cz serves as an official informational portal for the city of Třebíč, Czech Republic, targeting citizens, entrepreneurs, and tourists. It provides comprehensive information about living, business opportunities, tourism, and community events, supported by a dedicated incoming team. The site positions itself as a regional hub for local development and engagement, reflecting a medium-sized government entity with a focus on sustainable urban growth and community well-being. Technically, the site employs a modern JavaScript stack including jQuery, Swiper, Fancybox, and integrates analytics tools such as Google Analytics, Microsoft Clarity, and Google Tag Manager. It features responsive design and basic accessibility, with cookie consent mechanisms aligned with GDPR requirements. However, the absence of detected security headers and incomplete WHOIS data indicate areas for improvement in security and domain transparency. From a security perspective, the site benefits from HTTPS encryption and client-side form validation but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The missing WHOIS data raises concerns about domain registration legitimacy, although the website content and contact information strongly suggest it is an official municipal resource. Overall, the website is professionally designed and functional, with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and resolving WHOIS data visibility to improve trust and compliance. These steps will strengthen the site's security posture and business credibility while maintaining its role as a vital community resource.

P

Paris&Co

parisandco.com

10

Paris&Co is a territorial innovation agency serving Paris and its metropolitan area, focused on accelerating impactful projects related to sustainable transitions. The organization targets entrepreneurs, enterprises, institutions, and territories, providing sector-specific expertise and tailored programs to foster innovation. The website is professionally designed using WordPress and Elementor, with good mobile optimization and SEO practices. It integrates marketing and analytics tools such as Google Analytics and HubSpot, and implements a cookie consent mechanism to comply with privacy regulations. However, the absence of a visible privacy policy, terms of service, and explicit contact information limits full compliance and user trust. The lack of WHOIS data for the domain is a notable concern, although the website content and branding strongly indicate legitimacy. Security posture is adequate with HTTPS and no visible vulnerabilities, but could be improved by adding security headers and incident response information.

A

Amicus Therapeutics, Inc.

galafoldhcp.com

10

Galafoldhcp.com is the official healthcare professional website for Galafold® (migalastat), an FDA-approved oral medication for treating adults with Fabry disease and an amenable GLA gene variant. The site is operated by Amicus Therapeutics, Inc., a reputable pharmaceutical company specializing in rare diseases. The website provides comprehensive product information, safety data, prescribing information, patient referral forms, and access to support programs such as AMICUS ASSIST. The target audience is clearly defined as licensed U.S. healthcare professionals, with access gated by an entry confirmation. The site maintains consistent branding and professional content quality, reinforcing its market position as a specialized rare disease treatment provider.

P

pressrelations GmbH

pressrelations.com

49

pressrelations GmbH is a well-established media monitoring and intelligence company founded in 2001, offering AI-supported platforms and consulting services to marketing and PR professionals worldwide. Their flagship product, NewsRadar®, provides cross-media monitoring and analysis, supporting over 1000 clients globally with a team of 250 employees across 12 locations. The company emphasizes a blend of technology and human expertise to deliver comprehensive media insights in real time. Technically, the website is built on TYPO3 CMS and integrates modern analytics and tracking tools such as Google Tag Manager, Hotjar, and social media pixels, with a strong focus on user privacy and consent management. Security posture is good with HTTPS enforced and secure forms, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a strong business credibility despite missing WHOIS data. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure mechanisms to further strengthen trust and security.

A

AIA7

aia7.fr

50

AIA7 is a French online community platform dedicated to members of ENSIACET, including students, alumni, teachers, and recruiters. It offers networking, career services, event management, and news updates to foster engagement within the academic and professional community. The platform supports multiple OAuth login providers and integrates social media for broader connectivity. Technically, the site uses modern web technologies such as Vue.js, Google Analytics, Google Maps API, and Leaflet.js, providing a responsive and user-friendly experience. Security is reasonably well implemented with HTTPS and OAuth authentication, though some security headers could be improved. Privacy compliance is addressed with clear privacy and cookie policies, including GDPR considerations. The absence of WHOIS data reduces domain trust slightly, but the website content and structure indicate a legitimate and professional organization.

S

Septeo

septeo.be

57

Septeo Belgium operates as a specialized technology provider delivering software solutions tailored for legal professionals such as lawyers and notaries. Their offerings focus on simplifying legal practice management through cloud-based, AI-enhanced tools that improve productivity and data security. The website reflects a mature digital presence with modern technologies and compliance with GDPR through clear privacy and cookie policies. Security posture is strong with HTTPS and consent management, though some security headers could be improved. The WHOIS data is restricted, which is common for privacy protection and does not detract from the site's legitimacy given the professional branding and content. Overall, Septeo presents as a credible and established player in the Belgian legal tech market.

M

Mediavine

mediavine.com

73

Mediavine is a well-established digital advertising technology and management company focused on serving content creators and bloggers. The company positions itself as a full-service ad management partner, helping creators build sustainable businesses through advanced advertising technology and management solutions. With a strong market presence as a Top 20 Comscore property and exclusive reach to over 125 million monthly unique visitors, Mediavine offers programmatic advertising and comprehensive support to its clients. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. It employs consent management mechanisms to comply with GDPR and other privacy regulations, and uses Google reCAPTCHA to secure forms. The site is mobile-optimized, fast-loading, and accessible, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and integrates multiple security best practices, including consent-based tracking and form protection. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's legitimacy given the professional business presence and trust indicators. Overall, Mediavine presents a low-risk profile with strong business credibility, technical maturity, and privacy compliance. Strategic recommendations include enhancing security header implementation, publishing incident response and vulnerability disclosure policies, and maintaining vigilant third-party script audits to sustain security and trust.

A

A.U.M. Films and Media

whatthehealthfilm.com

50

What The Health is a documentary film project operated by A.U.M. Films and Media, a US-based non-profit organization focused on health, sustainability, and animal rights. The website serves as a platform to distribute the documentary, offer related merchandise, and provide a meal planner service to support plant-based diets. The site is built on Squarespace, leveraging embedded Vimeo videos and standard e-commerce features. Social media integration and tracking tools like Google Analytics and Facebook Pixel are used for marketing and audience engagement. However, the absence of a privacy policy and cookie consent mechanisms indicates compliance gaps. The WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency but does not necessarily indicate malicious intent given the professional content and social presence. Overall, the website is functional, professionally designed, and moderately secure but would benefit from enhanced privacy compliance and domain registration transparency.