Security Directory

S

Srdce na dlani, nadační fond

srdcenadlani.cz

48

Srdce na dlani is a Czech non-profit foundation dedicated to supporting children from children's homes through motivational programs, assistance for independent living, and educational activities. The organization has a clear mission and a network of partners, with a website that reflects its charitable focus and community engagement. The site provides contact information and showcases partner logos, indicating established relationships within the sector. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics for tracking, along with jQuery and Lightbox for UI enhancements. The site is mobile-optimized and features good navigation and content structure, although some accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and does not expose sensitive data, but lacks visible security headers and explicit privacy or cookie policies. The absence of WHOIS data limits domain legitimacy verification, which slightly reduces trustworthiness. No incident response or security policy information is published, which could be improved to enhance transparency and compliance. Overall, the website is professional and trustworthy for its non-profit purpose, but would benefit from enhanced privacy compliance documentation, improved security headers, and verified domain registration information to strengthen its security posture and business credibility.

G

Gimmick log ｜ jQueryやWordPressの情報を中心に紹介しています

gimmicklog.com

54

Gimmick log is a Japanese language technical blog established in 2019, focusing on web development topics such as jQuery, WordPress, JavaScript, web design, and marketing tools. The site targets web developers, designers, and marketers seeking practical tutorials and tips. It operates primarily as a content publishing platform monetized through advertising. Technically, the site is built on WordPress CMS, uses modern JavaScript libraries like jQuery, and integrates Google Analytics, Google Tag Manager, Microsoft Clarity, and Google Adsense for analytics and monetization. The site is hosted likely by GMO Internet Group, consistent with the domain registrar information. Security-wise, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and important security headers, and no privacy or cookie policies are published, indicating compliance gaps. No contact information or incident response details are provided, limiting transparency. Overall, the site is functional, moderately secure, and professionally presented but would benefit from enhanced privacy compliance and security hardening.

1

1001coques

1001coques.fr

46

1001coques is a French e-commerce retailer specializing in mobile phone cases and accessories, offering a large catalog of over 100,000 references. The website targets consumers owning mobile phones and tablets, providing a variety of products including personalized cases and gift cards. The platform is built on PrestaShop and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The site is professionally designed with good mobile optimization and clear navigation. Security measures include HTTPS and standard security headers, but there is no publicly available security policy or incident response information. WHOIS data is unavailable, which raises some concerns about domain transparency, though the site appears legitimate and operational.

Clef en Ligne is a well-established French e-commerce company specializing in the sale of keys, key duplication, mechanical and electronic cylinders, and home security products. With approximately 40 years of experience, it holds a strong market position as a trusted provider of original and patented keys, offering a wide range of products and expert customer service. The website is professionally designed, user-friendly, and optimized for mobile devices, providing comprehensive product information, guides, and FAQs to assist customers. The company emphasizes secure transactions and rapid delivery, leveraging modern e-commerce technologies including PrestaShop, Google Analytics, Facebook Pixel, and Sendinblue for marketing and analytics.

S

Save The Deco

savethedeco.com

60

Save The Deco operates a French e-commerce website specializing in trendy party decorations and accessories for events such as weddings, birthdays, baptisms, and baby showers. The site targets consumers planning celebrations and offers a wide range of products including personalized items. The company maintains an active social media presence and uses modern e-commerce technologies, primarily PrestaShop, to deliver its services. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Technical infrastructure includes Google Analytics and Tag Manager for tracking and marketing purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or data retrieval issues, which slightly impacts trustworthiness. Overall, the site appears legitimate and professionally managed but would benefit from enhanced transparency and security practices.

A

AiVision, s.r.o.

paper.cz

47

Paper.cz is a Czech Republic-based e-commerce retailer specializing in paper goods, gift wrapping, party supplies, stationery, and related products. The company operates both online and through multiple physical retail locations in Czech cities such as Třinec, Nový Jičín, Prostějov, Havířov, Frýdek-Místek, and Jablunkov. The website offers a broad product range including creative materials, decorations, seasonal goods, and school supplies, targeting general consumers and event organizers. The business model focuses on direct online sales complemented by physical stores, positioning Paper.cz as a significant distributor in its market segment.

N

Nejlevnejsi-Barvy-Laky.cz

nejlevnejsi-barvy-laky.cz

50

Nejlevnejsi-Barvy-Laky.cz is a Czech Republic based e-commerce retailer specializing in paints, varnishes, and related products for interior and exterior use. The company offers a wide range of products including wall paints, facade paints, wood and metal coatings, and painting tools. They also provide color mixing and tinting services and painting work in the Prague area. The business positions itself as the largest online seller of paints and varnishes in the Czech market, targeting both general consumers and professional painters. The website is professionally designed with good navigation and mobile optimization, supported by a mature digital marketing infrastructure including Google Analytics, Facebook Pixel, and affiliate tracking. Contact information and business details are transparent and consistent with WHOIS data, enhancing trustworthiness.

S

Somfy

somfy.nl

69

Somfy is a well-established company specializing in smart home solutions, including electric window decoration, sun protection, and smart home security. The company operates both B2C and B2B channels, supported by a dealer network and an online shop. Their market position is strong, backed by decades of experience and a global parent company, Somfy Group. The website reflects a mature digital presence with comprehensive product information, support resources, and multimedia content tailored for consumers and professionals alike. Technically, the site employs a custom CMS with modern JavaScript libraries, integrates multiple marketing and analytics tools, and maintains good performance and accessibility standards. Security posture is solid with HTTPS, security headers, and consent management, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable platform for customers and partners.

S

Somfy

somfy.be

67

Somfy is a well-established company specializing in smart home solutions, including electric window decorations, sun protection, smart home security, and automation products. The company operates primarily in Belgium with a strong market presence and a comprehensive product portfolio targeting both consumers and professionals. Their website reflects a mature digital infrastructure with a professional design, clear navigation, and extensive content supporting their business model. Technically, the site uses modern JavaScript libraries and integrates multiple third-party marketing and analytics tools, indicating a high level of digital maturity. Security-wise, the website enforces HTTPS and implements cookie consent mechanisms, though it lacks visible security headers which could be improved. The WHOIS data is privacy protected, which is common for enterprises of this size, and no suspicious patterns were detected. Overall, the site is trustworthy, compliant with GDPR, and professionally managed.

A

American Liver Foundation

liverlifewalk.org

56

The American Liver Foundation's Liver Life Walk website serves as a central hub for organizing and promoting their signature fundraising events across multiple US states. The site effectively communicates the mission to raise awareness and funds for liver disease, targeting patients, families, and supporters. The business model is that of a large non-profit organization with a strong national presence and multiple regional events. Technically, the website is built on WordPress using Elementor and Yoast SEO, integrating modern payment and analytics services. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS and secure payment integrations, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is partially met with a privacy policy present but lacking a cookie consent mechanism. Overall, the domain registration data supports the legitimacy and longevity of the organization. Strategic recommendations include enhancing security headers, implementing cookie consent, and continuous monitoring of third-party scripts.

G

Gordon Research Conferences

grc.org

60

Gordon Research Conferences (GRC) is a well-established non-profit organization that organizes international scientific conferences and seminars focused on frontier research in biological, chemical, physical, and engineering sciences. The website serves as a comprehensive portal for conference information, applications, and community engagement, targeting scientists and researchers globally. The organization maintains a strong market position as a reputable forum for scientific discourse and networking. Technically, the website is built on ASP.NET WebForms with modern JavaScript libraries such as jQuery, Slick Carousel, and Swiper for UI enhancements. It integrates Google Analytics and Tag Manager for tracking and uses Google reCAPTCHA v3 and Olark Live Chat for security and support. The site is mobile-optimized with good SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, it lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. The presence of a phishing alert indicates proactive security awareness. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is justified given the organization's nature. Overall, the website is professional, content-rich, and trustworthy, with minor improvements recommended in security headers and privacy compliance mechanisms to further enhance user trust and regulatory adherence.

A

Amicus Therapeutics, Inc.

galafold.com

62

Galafold.com is the official patient website for Galafold, an FDA-approved oral therapy for adults with Fabry disease. The site is operated by Amicus Therapeutics, Inc., a medium-sized healthcare company based in the United States. The website provides comprehensive patient education, treatment information, support programs, and resources tailored to patients and healthcare professionals. It maintains a strong market position in the niche pharmaceutical sector focused on rare diseases. Technically, the site employs modern web technologies including Bootstrap, jQuery, and various analytics and marketing tools, ensuring good performance, mobile optimization, and accessibility compliance. Security posture is solid with HTTPS, privacy policies, cookie consent, and data protection officer contact information, though improvements could be made by enabling DNSSEC and security headers. Overall, the website is professional, trustworthy, and compliant with relevant regulations, supporting patient engagement and education effectively.

N

National Organization for Rare Disorders

rarediseases.org

66

The National Organization for Rare Disorders (NORD) is a well-established non-profit organization dedicated to supporting education, elevating care, advancing research, and driving policy for rare diseases. Founded in 1998, NORD serves a broad audience including patients, caregivers, healthcare professionals, researchers, and policymakers. The organization holds a leading position in the rare disease advocacy space in the United States, offering key services such as education, advocacy, research support, and policy influence. Their website reflects a professional and consistent brand image, with excellent content quality and clear navigation tailored to their target audience. Technically, the website is built on WordPress and leverages a modern technology stack including Gravity Forms, Cloudflare CDN, Google Analytics, Google Tag Manager, Facebook Pixel, and Hotjar. The site is optimized for performance, mobile responsiveness, accessibility, and SEO, indicating a mature digital infrastructure. Hosting and DNS services are provided via reputable providers, ensuring reliability and speed. From a security perspective, the website enforces HTTPS, employs domain status protections, and uses Cloudflare for DNS and CDN services. A comprehensive cookie consent mechanism is implemented, supporting GDPR compliance. However, DNSSEC is not enabled, and no explicit security or incident response policies are published on the site. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website demonstrates a strong security posture and privacy compliance aligned with its non-profit healthcare mission. Recommendations include enabling DNSSEC, publishing security policies and incident response contacts, and considering a security.txt file to facilitate vulnerability disclosures. These steps would further enhance trust and security maturity.

C

Centene Corporation

envolvehealth.com

72

Envolve Health operates as a subsidiary brand under Centene Corporation, focusing on providing comprehensive dental and vision healthcare services across the United States. The website positions Envolve as a provider committed to whole-person health and relationship-building for improved health outcomes. The digital presence is built on Adobe Experience Manager, leveraging modern analytics and marketing technologies such as Google Analytics, Adobe Analytics, Facebook Pixel, and Securiti.ai for cookie consent management. The site is accessible, mobile-optimized, and professionally designed, though it lacks explicit privacy and terms of service pages. Security posture is solid with HTTPS and cookie consent but could be improved with additional security headers and published policies. WHOIS data is unavailable, which slightly reduces trust but the strong brand association with Centene Corporation mitigates this risk.

P

Prostě běž!

prostebez.cz

55

Prostě běž! is a Czech e-commerce website specializing in running-related products, training plans, and community content. It targets running enthusiasts and beginners, offering apparel, accessories, books, and nutritional supplements. The site integrates content marketing through blogs and podcasts to engage its audience. Technically, the site uses the Shoptet CMS platform with common web technologies including jQuery, Google Analytics, and Facebook SDK. It employs HTTPS and basic security measures such as CSRF tokens and cookie consent mechanisms. However, the use of an outdated jQuery version poses a security risk. The absence of a visible privacy policy and WHOIS registrant data reduces trustworthiness but the site appears operational and professional. Overall, the website demonstrates a moderate level of digital maturity with room for security and compliance improvements.

V

VIF

vifsports.cz

58

VIF is a Czech-based sports eyewear brand founded in 2020, offering a range of sport-specific glasses and accessories primarily through an e-commerce platform. The company supports professional sports initiatives such as a women's cycling team and a youth sports incubator, positioning itself as a leader in the Czech sports retail market. Technically, the website is built on the Shoptet platform, leveraging modern tracking and marketing technologies with a good level of privacy compliance and security best practices. The absence of WHOIS data limits domain trust assessment but the website content and business presence appear professional and credible. Security posture is strong with HTTPS and security headers, though no explicit security or incident response policies are published. Overall, the site provides a good user experience with clear navigation, responsive design, and comprehensive cookie consent mechanisms.

G

GlaxoSmithKline plc

stiefel.com

66

GlaxoSmithKline plc (GSK) is a leading global healthcare company specializing in pharmaceuticals, vaccines, and consumer healthcare products. The company maintains a strong market position with a comprehensive portfolio targeting healthcare professionals, investors, and consumers worldwide. Their website reflects a mature digital presence with excellent content quality, clear navigation, and consistent branding aligned with their corporate identity. Technically, the site leverages modern frameworks such as Nuxt.js and Vue.js, ensuring fast performance and mobile optimization. Security posture is robust, with HTTPS enforcement, security headers, and published security policies including incident response and vulnerability disclosure programs. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website demonstrates high professionalism and trustworthiness, supporting GSK's reputation as a major healthcare enterprise.

Q

QUARTIS, s.r.o.

batavan.cz

47

Batavan.cz is a Czech cosmetics brand with over 20 years of history, operated by QUARTIS, s.r.o. The company specializes in manufacturing and retailing cosmetic products including foot care, body care, anti-cellulite, and spa products. The website is professionally designed using WordPress with WooCommerce and Elementor, supporting multiple languages and providing a smooth user experience. The business targets general consumers interested in wellness and beauty products within the Czech Republic. The site includes comprehensive privacy and cookie policies, with a consent mechanism compliant with GDPR. Contact information and company registration details are clearly presented, enhancing trust and credibility. Technically, the site uses modern web technologies and integrates Google Analytics and Facebook SDK for marketing and analytics purposes. Security posture is good with HTTPS enforced, though some security headers could be improved. No signs of blocking or WAF interference were detected, and the domain registration data aligns well with the business claims, supporting legitimacy.

P

PROFI-PEDIKURA.cz

profi-pedikura.cz

58

PROFI-PEDIKURA.cz is a specialized Czech e-commerce retailer and wholesaler founded in 2008, focusing on professional and home pedicure and manicure equipment, tools, and supplies. The company represents over 30 global brands and offers professional courses and expert literature, positioning itself as a niche market leader in the Czech Republic. The website is well-structured, professionally designed, and targets both professionals and home users in the pedicure and manicure sectors. Technically, the site uses the Shoptet e-commerce platform with modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The site is served over HTTPS with cookie consent mechanisms and GDPR-compliant privacy policies, reflecting a good digital maturity level. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. WHOIS data is unavailable, which limits domain trust verification, but the website content and business information appear legitimate and professional. Overall, the site is safe, compliant, and trustworthy for its target audience.

H

Hotel Imperial *****

spa-hotel-imperial.cz

66

Hotel Imperial is a luxury hospitality business located in Karlovy Vary, Czech Republic, with a rich tradition dating back to 1912. The hotel offers a wide range of services including accommodation in various room categories, wellness and spa treatments, gastronomy through multiple restaurants and cafés, and event hosting facilities. The website reflects a well-established market position targeting luxury travelers and wellness guests. Technically, the website employs modern web technologies such as lazy loading, Google Analytics, Facebook Pixel, and a custom booking form, ensuring a smooth user experience with mobile optimization and good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data is a notable gap that slightly reduces trustworthiness but does not detract significantly from the overall professional presentation. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to improve business credibility and compliance.

S

Středisko společných činností AV ČR, v. v. i.

vila-lanna.cz

50

Vila Lanna is a historic hotel and event venue located in Prague 6, operated by the Středisko společných činností AV ČR, affiliated with the Czech Academy of Sciences. The website presents a professional and content-rich platform offering accommodation, café services, conference hosting, and wedding event facilities. The business targets general audiences interested in cultural, scientific, and social events in a historic setting. Technically, the site uses OpenCms CMS with modern JavaScript libraries and integrates multiple analytics and marketing tools with GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced, though some security headers are missing. The absence of WHOIS data reduces domain trust but the affiliation with a reputable institution supports legitimacy.

K

Köttner Diamonds

kottner.cz

60

Köttner Diamonds is a Czech luxury jewelry retailer specializing in handcrafted diamond rings, including engagement and wedding rings, as well as other fine jewelry such as pearls, bracelets, and earrings. The company emphasizes its long-standing tradition dating back to 1919, combining artisanal craftsmanship with modern technology. Their business model includes both a physical showroom in Prague and an online e-commerce platform, targeting customers seeking premium, certified diamond jewelry with lifetime guarantees. Technically, the website is built on the Solidpixels CMS platform and integrates modern web technologies including Google Tag Manager, Google Analytics, and Google Ads for marketing and analytics. The site is mobile-optimized with good SEO practices and a cookie consent mechanism that supports GDPR compliance. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces domain transparency and trustworthiness, though the professional presentation and business information mitigate some concerns. Overall, the website presents a professional and trustworthy front for a niche luxury retailer, but could enhance its security posture and domain transparency to improve trust and compliance.

F

Fomei s.r.o.

fomei.cz

45

Fomei s.r.o. is a Czech-based company specializing in the supply and support of high-quality diagnostic medical devices and software solutions, including mammography, X-ray, MRI, and veterinary medical equipment. The company serves healthcare providers and diagnostic professionals, positioning itself as a trusted regional partner with established manufacturer relationships. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the website employs a moderate technology stack including jQuery, Lightbox, Google Analytics, and a proprietary CMS. It is mobile-optimized and uses HTTPS, but lacks some modern security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site shows a solid baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data and security headers reduces overall trustworthiness. Privacy compliance is partial, with a privacy policy present but no cookie consent banner. No incident response or security policy information is publicly available. Overall, the site is professional and trustworthy for its business domain but would benefit from enhanced transparency in domain registration, improved security headers, and stronger privacy compliance to reduce risk and increase user trust.

P

Podiart Kft.

podiart.hu

49

Podiart Kft. operates a Hungarian-language website focused on foot health services and retail products, including computerized foot examinations, custom insoles, therapeutic slippers, and footwear. The company appears to be a small-sized healthcare retail and service provider established in 2010, with a consistent domain registration history. The website is built on WordPress with WooCommerce, leveraging modern plugins and tracking technologies such as Google Analytics, Facebook Pixel, and Cookiebot for cookie consent management. While the site uses HTTPS and integrates multiple analytics and marketing tools, it lacks explicit privacy policy and terms of service pages, which are critical for GDPR compliance and user trust. Security headers are not explicitly visible, and no incident response contacts or vulnerability disclosures are provided, indicating room for improvement in security posture and transparency.

E

Extra Publishing

radostzpoznani.cz

57

Extra Publishing operates the e-commerce website radostzpoznani.cz, a Czech online store specializing in magazines, books, and subscriptions focused on history, military, hobbies, and children's educational content. The site targets a general audience interested in cultural and educational materials, positioning itself as a niche market leader within the Czech Republic. The business model centers on retail sales of printed media and subscription services, supported by a well-structured product catalog and clear navigation.

E

emocio s.r.o.

powerjoga.sk

44

Powerjoga Akadémia Slovensko is a small educational organization specializing in yoga training and instructor certification in Slovakia. The website presents a clear focus on yoga philosophy, practical training, and seminars, targeting yoga practitioners and aspiring instructors. The business maintains a network of related partner sites in the Czech Republic and Slovakia, enhancing its regional presence. Technically, the website uses legacy JavaScript libraries alongside modern analytics and cookie consent tools, indicating moderate digital maturity. The site is mobile-optimized with a good user experience but could benefit from modernization of its tech stack and improved accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and uses outdated libraries, posing potential risks. Privacy compliance is well addressed with a clear cookie consent banner and a privacy policy in Slovak. Overall, the website is professional and trustworthy but should address technical and security improvements to enhance resilience and compliance.

České modelky s.r.o. is a Czech Republic based modeling and hostess agency established in 2006, offering a wide range of services including hostesses, photo modeling, fashion shows, casting organization, and photo competitions. The company maintains a large database of over 22,000 models and operates multiple partner sites across Europe. The website is professionally designed with good content quality and moderate technical implementation, leveraging technologies such as jQuery, Google Analytics, and Google reCAPTCHA. Security posture is adequate with HTTPS enabled but lacks several important security headers. Privacy compliance is limited due to absence of explicit privacy and terms of service pages, though cookie consent is implemented. Overall, the business appears legitimate and well-established with a moderate risk profile.

L

Les Amis de la Terre France

amisdelaterre.org

51

Les Amis de la Terre France is a well-established non-profit environmental organization founded in 1970, dedicated to protecting the environment, climate, and human rights through investigation, awareness, advocacy, and civil disobedience. The website reflects a mature digital presence with active campaigns, local group news, and donation capabilities, targeting a general audience interested in environmental activism. Technically, the site is built on WordPress with modern JavaScript libraries, optimized for performance and mobile responsiveness, and integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and reCAPTCHA v3 implemented, though some security headers could be improved. Privacy compliance is evident with a privacy policy and cookie consent mechanism, but no explicit terms of service or security policy pages were found. WHOIS data is unavailable, which slightly reduces trust but the overall site professionalism and content quality support legitimacy.

R

renault

renault.es

69

Renault España operates as the official Spanish website for Renault, a major automotive manufacturer offering a wide range of vehicles including electric, hybrid, and commercial models. The site targets general consumers in Spain interested in purchasing new vehicles, providing detailed vehicle information, configuration options, and stock availability. The website demonstrates a high level of digital maturity with modern technologies such as React, optimized images, and integration of Google Analytics and Tag Manager for analytics and marketing purposes. Security measures are robust with HTTPS enforcement and security headers, alongside a cookie consent mechanism ensuring compliance with privacy regulations. However, explicit privacy policies, terms of service, and clear contact information are not found in the provided content, representing areas for improvement. Overall, the site is professional, trustworthy, and well-optimized for user experience.

Iberdrola is a leading Spanish energy company specializing in electricity and gas services for residential and commercial customers. The website offers detailed tariff plans and energy solutions tailored to customer consumption needs, reflecting a strong market position in the energy sector. The site targets primarily Spanish consumers and operates at an enterprise scale with consistent branding and professional content. Technically, the website is built on the Liferay CMS platform and integrates multiple modern technologies including Google Tag Manager, OneTrust for consent management, and various analytics and marketing tools. The site demonstrates good performance, mobile optimization, and SEO practices. Security-wise, the website enforces HTTPS, employs security headers, and uses reCAPTCHA to protect forms, though it lacks a dedicated security policy or incident response contact information. Overall, the domain registration data aligns well with the company's identity, supporting the site's legitimacy and trustworthiness.

E

EDP

edpenergia.es

69

EDP Energia is a large energy company operating in Spain, focusing on providing sustainable and innovative energy solutions for businesses. Their website highlights key services such as solar energy installations, electricity and gas supply, electric vehicle charging infrastructure, and energy efficiency services. The company positions itself as a leader in the energy sector with a strong emphasis on renewable energy and business customer support. Technically, the website uses a modern CMS (webControl CMS 3.5) and integrates various marketing and analytics tools including Google Tag Manager, Google Analytics, and Visual Website Optimizer. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA, but lacks visible security headers and published security policies or incident response contacts. Privacy compliance is basic with no explicit privacy or cookie policies detected on the analyzed page. Overall, the website is trustworthy and professional but could improve transparency and security posture by adding privacy policies, cookie consent mechanisms, and security disclosures.

S

Svatba na jednom místě Brno

svatbanajednommistebrno.cz

50

The website 'Svatba na jednom místě Brno' offers comprehensive wedding services including ceremony hosting, catering, coordination, and accommodation in the Brno-Modřice area. It targets couples seeking an all-in-one wedding venue and service provider. The business operates as a small local hospitality service focused on wedding event planning and execution. Technically, the site is built on the Webnode CMS platform, leveraging AWS Cloudfront CDN for content delivery and integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized with a moderate performance profile and good SEO practices. Security posture is adequate with HTTPS enabled but lacks important security headers and explicit privacy or cookie policies, which impacts compliance and trust. The absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

The website www.visittrebic.eu serves as the official tourism portal for the city of Třebíč, Czech Republic. It provides comprehensive information about the city's UNESCO heritage sites, cultural events, museums, natural attractions, and wellness activities. The portal targets tourists and visitors interested in exploring the historical and natural beauty of Třebíč and its surroundings. The business model is focused on tourism promotion, supported by local government and regional partners, positioning itself as a trusted source for visitor information. Technically, the website employs a traditional web stack including jQuery, Swiper.js for sliders, Fancybox for media display, and integrates multiple third-party analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and Seznam Retargeting. The site is mobile-optimized with good navigation and SEO practices, although no explicit CMS or hosting provider details were identified. Cookie consent and privacy policies are implemented in compliance with GDPR. From a security perspective, the site uses HTTPS and has a cookie consent mechanism, but lacks visible security headers and explicit security or incident response policies. The WHOIS data is unavailable due to privacy protection, which is common and justified for this type of municipal website. No critical vulnerabilities or suspicious patterns were detected in the content or technical setup. Overall, the website presents a professional, trustworthy, and user-friendly platform for tourism promotion. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to further strengthen security posture.

M

Město Třebíč

trebic.cz

49

The website www.trebic.cz serves as the official digital presence of the city of Třebíč, Czech Republic. It provides comprehensive information and services for residents, tourists, and local businesses, including municipal news, event updates, electronic citizen services, and urban development projects. The site is well-structured and targets a broad audience interested in local government and community activities. Technically, the site uses a custom CMS platform (Vismo) and integrates several Google services such as Analytics, Tag Manager, reCAPTCHA, and Translate. The website is mobile-optimized, accessible, and includes cookie consent mechanisms compliant with GDPR. Performance is moderate with good SEO and accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. However, it lacks visible security headers and does not publish formal security or incident response policies. No vulnerability disclosure or security.txt files are present, which could be improved to enhance transparency and security posture. Overall, the website is trustworthy and professional, with clear contact information and official branding. The absence of WHOIS data limits domain trust assessment but does not detract from the site's legitimacy as a government portal. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to strengthen security and compliance.

M

Maurerův Výběr

maureruv-vyber.cz

60

Maurerův Výběr operates a niche gastronomy-focused reservation and media platform based in the Czech Republic. The website promotes a curated reservation program called Maurerův Stůl, offering exclusive dining experiences, alongside media content including a regular column in the Metro newspaper. The business targets general audiences interested in gastronomy and restaurant culture. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar, hosted on a Czech provider consistent with its domain registration. The site is mobile optimized and well-structured with good SEO practices but lacks visible privacy and cookie policies, which impacts compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers are not explicitly detected. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact information.

S

Skeepers

skeepers.io

73

Skeepers is a technology company specializing in AI-powered User Generated Content (UGC) solutions designed to help brands enhance engagement, loyalty, and sales through authentic customer voices. Their platform offers a comprehensive suite of products including Verified Reviews, Feedback Management, Influencer Marketing, and Brand Communities, targeting brands that want to leverage UGC at scale. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the site is built on WordPress with integrations of multiple marketing and analytics tools such as HubSpot, Google Analytics, Hotjar, and Microsoft Clarity, indicating a sophisticated marketing infrastructure. Security posture is good with HTTPS and domain protections, though there is room for improvement in DNS security and published security policies. Privacy compliance is limited due to the absence of visible privacy and cookie policies. Overall, the site is trustworthy and well-positioned in the technology sector, serving a medium-sized business founded in 2020 in France.

C

CIRVE Project

cirveproject.com

54

The CIRVE Project website represents a European collaborative initiative focused on deploying interoperable fast charging infrastructure for electric vehicles across the Iberian Peninsula and connecting with the broader European Union. The project involves multiple partners from Spain, Portugal, and France, targeting electric vehicle users and stakeholders in sustainable transportation. The website is built on WordPress with multilingual support and integrates common plugins for SEO, forms, and analytics. It demonstrates a moderate level of digital maturity with good content quality and user experience. Security posture is adequate with HTTPS and some security plugins but lacks advanced security headers and DNSSEC. Privacy compliance is basic with cookie consent and a privacy policy in Spanish. Overall, the site is trustworthy and professionally maintained with consistent branding and partner endorsements.

M

Mailjet: Email Delivery Service for Marketing & Developer Teams

mailjet.com

77

Mailjet is a large, established SaaS company specializing in email marketing software and email APIs designed for marketing and developer teams. The platform offers a comprehensive suite of services including email marketing, transactional email delivery, automation, segmentation, and deliverability solutions. It targets enterprises and teams requiring reliable and GDPR-compliant email solutions. The website demonstrates a high level of digital maturity with a modern WordPress CMS, Bootstrap framework, and integration of analytics and SEO tools. The content is professionally presented, mobile-optimized, and rich in relevant business information. Security posture is strong with HTTPS and secure form usage, though explicit security policies and vulnerability disclosures are absent. WHOIS data is unavailable, which slightly reduces trust but is not uncommon for SaaS providers. Overall, the website is trustworthy, professional, and well-positioned in the email marketing technology sector.

P

PermoniQ s.r.o.

permoniq.com

60

PermoniQ s.r.o. is a Czech-based technology company specializing in automated PPC advertising solutions for e-commerce businesses. Their flagship product, PermoniQ, leverages machine learning to optimize online ad campaigns across the Google Ads ecosystem, offering 24/7 campaign management and budget optimization. The company positions itself as a certified partner with major industry players, providing a SaaS model that integrates with various e-commerce platforms and advertising tools. The website is professionally designed, mobile-optimized, and rich in relevant content targeting online shops seeking efficient advertising solutions. Technically, the website employs modern web technologies including React, Google Tag Manager, and Cookiebot for consent management. It integrates tracking and advertising pixels from Google and Facebook, ensuring comprehensive analytics and retargeting capabilities. The site demonstrates good SEO and accessibility practices, with structured data enhancing search engine understanding. Performance is fast, and the site is fully accessible without any blocking or WAF challenges. From a security perspective, the site enforces HTTPS with strong SSL configuration and employs cookie consent mechanisms aligned with GDPR requirements. While some advanced security headers are not explicitly visible, the overall posture is strong with no exposed sensitive data or vulnerabilities detected. The WHOIS data is consistent with the business claims, showing a recently registered domain matching the company's founding year, with no privacy protection masking, enhancing trustworthiness. Overall, PermoniQ presents a low-risk profile with a solid business and technical foundation. The main areas for improvement include publishing explicit security policies, incident response contacts, and a terms of service page to enhance transparency and compliance. Strategic recommendations include enabling DNSSEC, adding a security.txt file, and continuous monitoring of third-party scripts to maintain security integrity.

C

CivicPlus LLC

civicplus.com

68

CivicPlus LLC operates a comprehensive software platform designed to empower local governments and public sector organizations by streamlining operations, enhancing resident engagement, and improving public trust. The company offers a wide range of integrated technology solutions including municipal websites, agenda and meeting management, public records request management, web accessibility, recreation management, and more. With over 10,000 local government customers and 25 years of experience, CivicPlus positions itself as a leader in the government technology sector. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO Premium, Google Analytics, Google Tag Manager, and HubSpot integrations. The site is mobile-optimized, accessible, and well-structured, reflecting a mature digital presence. Performance is moderate with good SEO and accessibility features. From a security perspective, the site enforces HTTPS and employs privacy and cookie policies with consent mechanisms, indicating a good privacy posture. However, explicit security headers were not detected, and no public incident response or vulnerability disclosure information is available, suggesting areas for improvement in transparency and security maturity. Overall, the website and business presence indicate a reputable and professional organization serving government clients. The absence of WHOIS data reduces domain registration trust but does not detract significantly from the business credibility established through content and trust signals. Strategic recommendations include enhancing security header implementation, publishing a security.txt file, and providing clear incident response contacts to strengthen security posture and trust.

G

General Code

ecode360.com

10

eCode360 is a specialized online platform operated by General Code, providing municipal code management and subscription services primarily targeting municipalities and professionals such as attorneys, planners, and engineers. The platform offers access to a comprehensive library of local government codes and related research tools, positioning itself as a key resource in the government sector. The website reflects a mature business with a domain age consistent with its founding date in 2008, indicating stability and market presence. Technically, the website employs modern web technologies including React and Material UI, supported by Cloudflare DNS and CDN services. The site is mobile-optimized and integrates Google Analytics and Cloudflare Insights for performance and user behavior tracking. While the technical implementation is solid, there is room for improvement in accessibility and SEO optimization. The site uses HTTPS and cookie consent mechanisms, but lacks advanced security headers and published security policies. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and password masking on login forms. However, it does not publish a security policy, incident response contacts, or vulnerability disclosure information, which are important for transparency and trust. DNSSEC is not enabled, representing a minor security gap. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, eCode360 presents a professional and trustworthy online presence with a good security posture but could enhance compliance and transparency by publishing security policies and enabling additional DNS security features. The business is well-positioned in the government sector with a clear target audience and established market presence.

The website www.doutniky-humidory-prislusenstvi.cz appears to be an e-commerce platform focused on selling tobacco-related products such as cigars, humidors, and pipes. The site content is minimal, primarily consisting of a placeholder image with a clickable map and basic metadata describing the business. The lack of WHOIS data and registrant information limits the ability to verify the domain's legitimacy and history. Technically, the site uses common libraries such as Bootstrap, jQuery UI, and Google Analytics, but lacks visible security headers and privacy compliance documentation. The security posture is weak due to missing HTTPS confirmation and absence of security best practices. Overall, the site presents a low trust profile with poor content quality and minimal business transparency.

M

MEDIATEL CZ, s.r.o.

zlatestranky.cz

56

Zlatestranky.cz is a well-established Czech online business directory operated by MEDIATEL CZ, s.r.o. The platform provides comprehensive company profiles, categorized listings, and contact information for over 823,000 businesses. It targets both consumers and businesses seeking reliable contact data and service information within the Czech Republic. The business model relies on free listings supplemented by paid enhanced profiles and digital marketing services. The website demonstrates consistent branding and professional content presentation, supporting its market position as a leading directory in the region. Technically, the website employs modern web technologies including Bootstrap for responsive design, Google Analytics and Tag Manager for tracking, and a consent management platform to comply with privacy regulations. The site is mobile-optimized with good SEO practices and moderate performance. However, some accessibility features could be improved to enhance usability. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain registration trust analysis, but the website's professional appearance and operational indicators suggest legitimacy. Overall, Zlatestranky.cz presents a trustworthy and functional online directory service with room for improvement in security policy transparency and technical enhancements. Strategic recommendations include implementing security headers, publishing incident response contacts, and enhancing accessibility compliance to strengthen security posture and user trust.

N

Napovíme.cz

myx.cz

50

Napovíme.cz is a Czech technology-focused educational portal specializing in artificial intelligence, automation, and robotics. Founded in 2019 and operated by Petr Malec, it provides readers with accessible articles, tutorials, and reviews to help them navigate the evolving digital landscape. The website targets tech enthusiasts and businesses interested in AI and web optimization, offering content primarily in Czech. Its business model centers on content publishing combined with affiliate marketing and advertising revenue. Technically, the site is built on WordPress 6.8.3, leveraging multiple plugins for SEO, social sharing, and content management. It uses Google Analytics and Adsense for tracking and monetization. Hosting is provided by a Czech registrar and hosting provider (REG-WEDOS), ensuring regional consistency. The site demonstrates moderate performance and good mobile optimization, with a clean and professional design. From a security perspective, the website enforces HTTPS and uses Akismet for spam protection. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. No vulnerabilities or exposed sensitive data were detected. Privacy policy is present and GDPR compliance appears basic but adequate. Overall, Napovíme.cz presents a trustworthy and professional online presence with solid content quality and technical implementation. Strategic improvements in privacy compliance and security headers would further strengthen its posture. There are no indications of blocking or WAF interference, allowing full content accessibility and analysis.

C

Czech Fashion Week

czechfashionweek.eu

44

Czech Fashion Week is a well-established fashion event and media platform based in the Czech Republic, focusing on organizing fashion shows, publishing interviews, news, and photo galleries related to the fashion industry. The website serves as a hub for event information, ticket sales, and partner promotion, targeting fashion enthusiasts and industry professionals. The business operates with a small-sized footprint and has been active since at least 2005, as indicated by copyright dates and content history. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Analytics, Facebook SDK, and various tracking and marketing tools. It uses HTTPS with good SSL configuration and implements cookie consent mechanisms compliant with GDPR principles. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, use of Google reCaptcha for form protection, and cookie consent banners. However, it lacks explicit security headers and publicly available security or incident response policies. No critical vulnerabilities or exposed sensitive data were detected. The domain WHOIS information is privacy protected, which is common and justified for this type of business. Overall, the website presents a trustworthy and professional digital presence with moderate to good security and privacy compliance. Strategic improvements could include publishing explicit privacy and security policies, enhancing security headers, and providing incident response contact information to further strengthen trust and compliance.

The website ezofest.sk functions primarily as a landing page promoting two health and wellness events in Slovakia: VITALfest and Zdravé Vianočné trhy. It provides minimal direct content, focusing on visual branding and links to partner event websites. The technical infrastructure is basic, utilizing Google Fonts and Google Analytics for tracking, but lacks modern CMS or advanced frameworks. Security posture is weak due to absence of visible HTTPS confirmation, security headers, and privacy or cookie policies. No contact or business registration information is provided, limiting trust and compliance indicators. Overall, the site serves as a simple promotional gateway rather than a full business platform.

E

Estetica Magazine

estetica.it

38

Estetica.it is a well-established digital magazine focused on the Italian hairdressing industry, providing news, trends, product information, and educational content. It serves a professional audience of hairdressers and industry stakeholders, positioning itself as a leading media outlet in this niche. The website is part of a broader international media network with sister sites targeting multiple countries. Technically, the site is built on WordPress with modern plugins and SEO tools, ensuring good performance and search visibility. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie management. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and secure digital presence. Overall, Estetica.it demonstrates a professional, trustworthy, and user-friendly platform with effective business and technical implementations.

R

restartuj s.r.o.

fanonline.cz

38

FANonline.cz is a Czech cultural and entertainment website operated by restartuj s.r.o., providing event listings, club and cinema information, and contests primarily targeting the Prague region. The site serves as a local media platform with advertising partnerships and a modest user base. Technically, the website uses basic JavaScript and jQuery libraries along with Google Analytics for tracking. The site lacks modern CMS indications and shows limited mobile optimization and accessibility features. Security posture is weak due to missing HTTPS confirmation and absence of security headers or privacy policies. The WHOIS data is unavailable, which raises concerns about domain registration legitimacy, although the presence of company contact information partially mitigates trust issues. Overall, the site is functional but requires improvements in security, privacy compliance, and technical modernization.

J

Jóga Dnes

jogadnes.cz

10

Jóga Dnes is a well-established Czech media publication focused on yoga, health, and lifestyle topics. The website offers a rich content experience including articles, news, event calendars, and subscription services. It targets yoga enthusiasts primarily in the Czech Republic and maintains a consistent brand presence with active social media and newsletter engagement. Technically, the site uses a modern tech stack with popular libraries and frameworks, and it is mobile optimized with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced HTTP security headers and incident response disclosures. The absence of WHOIS data is a notable gap that impacts trust and legitimacy assessment. Overall, the site is professional, content-rich, and trustworthy, serving its niche audience effectively.