Security Directory

H

Hotel Rudolf s.r.o.

hotelrudolf.cz

9

Hotel Rudolf s.r.o. operates a hospitality business providing accommodation, wellness, event hosting, and dining services in Havířov, Czech Republic. The website presents a professional and consistent brand image targeting travelers and guests seeking local hotel services with wellness and event facilities. The business appears to be a small-sized local hotel with a clear focus on customer experience and convenience. Technically, the website uses a traditional tech stack including jQuery 1.11.3, Bootstrap, and various UI libraries, managed via the AD-RS CMS platform. While the site is functional and moderately optimized for mobile, it uses outdated JavaScript libraries and lacks modern security headers, which could expose it to vulnerabilities. The website is accessible over HTTPS, but no explicit security policies or privacy notices are present. From a security perspective, the absence of WHOIS data limits domain legitimacy verification, and the lack of privacy and cookie policies indicates poor privacy compliance. The site uses Google Analytics for tracking but does not provide clear data protection information. Contact information is clearly provided, enhancing business credibility. Overall, the security posture is moderate but could be improved by updating libraries, adding security headers, and publishing privacy and cookie policies. The overall risk is moderate with recommendations to improve security best practices, privacy compliance, and technical modernization to enhance trust and protect customer data.

V

Vinný sklep U Mostu

vinoostrava.cz

50

Vinný sklep U Mostu is a small hospitality business based in Ostrava, Czech Republic, specializing in wine sales and tastings. The website presents a local wine shop and bar offering a wide selection of wines from Moravia and international sources, including services such as wine menus, degustations, and reservations. The business targets mature wine consumers and local visitors seeking quality wine experiences. Technically, the website uses a variety of JavaScript libraries and plugins, including jQuery, Bootstrap modal, and Nivo Slider, hosted on Banan.cz with a CMS platform called Web Bez starosti. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and structured data. Security posture is adequate with HTTPS and cookie consent but lacks security headers and detailed policies. WHOIS data is unavailable due to privacy protection, which is typical for small businesses and does not raise immediate concerns. Overall, the website is functional, trustworthy, and serves its business purpose effectively.

I

ITS Office Technology, spol. s.r.o.

itsoffice.cz

55

ITS Office Technology, spol. s.r.o. is a Czech-based small IT services company specializing in comprehensive IT management solutions tailored for small to medium-sized businesses. Their offerings include IT infrastructure optimization, monitoring, printing management, helpdesk support, virtualization, and cloud solutions. The company positions itself as a reliable partner providing cost-effective IT outsourcing and support services with SLA guarantees. The website content is professionally presented, targeting regional businesses seeking IT operational support. Technically, the website employs a traditional tech stack including jQuery, Bootstrap, and Font Awesome, running on a custom CMS (AD-RS). The site is HTTPS enabled and mobile responsive with moderate performance. However, it lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and security hardening. Google Analytics is used for user tracking, indicating moderate data collection practices. From a security perspective, the site shows basic good practices such as HTTPS and no visible sensitive data exposure. However, the absence of security headers and vulnerability disclosure policies suggests room for improvement. The WHOIS data is missing, which raises concerns about domain legitimacy and reduces trustworthiness, although the website content and contact information appear legitimate and consistent with a small regional IT service provider. Overall, the website is functional, professional, and relevant to its business purpose but would benefit from enhanced security measures, improved privacy compliance, and transparency in domain registration to strengthen trust and compliance posture.

Komunitní plánování Ostrava is a Czech non-profit organization focused on community planning of social services tailored to the needs of Ostrava citizens. The website serves as an information portal providing news, event calendars, and resources related to social service planning and community engagement. It maintains a network of partner organizations and offers structured content in Czech language. Technically, the site is built on WordPress CMS with plugins for event management and GDPR compliance, and uses Matomo for analytics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, serving its community-focused mission effectively.

C

Clermont Auvergne Métropole

clermontmetropole.eu

10

Clermont Auvergne Métropole is a public metropolitan government entity serving 21 communes in the Clermont-Ferrand region of France. The website provides comprehensive information on urban planning, waste management, mobility, cultural activities, and ecological transition initiatives. It targets residents and stakeholders within the metropolitan area, offering services and resources relevant to local governance and community development. The site is positioned as a key regional authority with a broad scope of public services.

W

WebHouse, s.r.o.

mlady-vedec.eu

41

Mladý vedec is a Slovak-based e-commerce retailer specializing in scientific and technical toys, educational kits, and related products aimed at children, students, and educators. The website offers a broad range of categories including physics, biology, astronomy, robotics, and chemistry, positioning itself as a niche educational toy provider in Slovakia. The business model focuses on online sales with a clear target audience interested in educational and science-related products. The site is branded consistently and provides clear contact information, enhancing trustworthiness.

F

Fondation Léa Nature

fondation-mecenat-leanature.org

59

Fondation Léa Nature is a French non-profit organization dedicated to environmental philanthropy, supporting ecological agriculture, biodiversity, climate action, and health initiatives. The foundation operates under the umbrella of Compagnie Léa Nature and is affiliated with the global 1% for the Planet network, indicating a strong commitment to sustainability and environmental causes. Their website provides comprehensive information about their mission, funding axes, and project submission processes, targeting associations, citizens, and local actors engaged in environmental protection. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and GDPR Cookie Compliance, ensuring good SEO and privacy compliance. The site uses Google Analytics and Google Tag Manager for analytics and tracking, and implements Google reCAPTCHA v3 for form security. The site is mobile-optimized, accessible, and performs moderately well, with consistent branding and clear navigation. From a security perspective, the site enforces HTTPS and uses GDPR-compliant cookie consent mechanisms. While some security headers are not explicitly detected, the overall posture is good with no visible vulnerabilities or exposed sensitive data. The domain registration is consistent with the foundation's age and business claims, enhancing trustworthiness. Overall, Fondation Léa Nature presents a professional, trustworthy, and well-maintained online presence that aligns with its mission and audience. Strategic improvements in security headers and ongoing maintenance are recommended to sustain and enhance their security posture.

The website represents the Festival International du Film Ornithologique de Ménigoute, a well-established non-profit cultural event focused on wildlife and nature documentaries, particularly ornithology. Founded in 1985 and organized by Association MAINATE, it serves a general audience interested in nature and film. The site provides comprehensive information about the festival's program, activities, and participation opportunities, supported by social media and newsletter engagement. Technically, the site is built on the Contao CMS platform with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. Overall, the site is professional, trustworthy, and well-maintained.

B

Brdy a Podbrdsko - dovolená kousek za Prahou

brdyapodbrdsko.cz

10

The website www.brdyapodbrdsko.cz serves as an official regional tourism portal for the Brdy and Podbrdsko area near Prague, Czech Republic. It provides visitors with comprehensive travel information including event calendars, accommodation options, cultural and natural attractions, and travel planning tools. The content is primarily in Czech and targets tourists and visitors interested in exploring this region. The business model focuses on promoting regional tourism through informational content and digital engagement. The site maintains a consistent brand image aligned with regional tourism authorities and governmental partners.

C

Centre Hospitalier Universitaire de Nîmes

chu-nimes.fr

56

The Centre Hospitalier Universitaire de Nîmes (CHU de Nîmes) is a major public university hospital serving the Gard region and neighboring departments in France. It provides comprehensive healthcare services including emergency care, consultations, hospitalizations, medical research, and professional training. The institution is large, with nearly 7,400 staff including medical and non-medical personnel, and operates across multiple sites. The website reflects a mature digital presence with a professional design, clear navigation, and accessibility features, targeting patients, healthcare professionals, researchers, and students. Technically, the website is built on the Drupal CMS platform, hosted by OVH, and incorporates modern web technologies such as Bootstrap and Swiper.js. It includes a cookie consent mechanism compliant with GDPR and uses Google Analytics for audience measurement. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data confirms the domain's legitimacy with a long registration history and consistent registration details. Overall, the website demonstrates a strong security posture and compliance with privacy regulations, supporting the trustworthiness of the institution. Recommendations include enhancing security headers, publishing security policies, and adding a vulnerability disclosure mechanism to further improve security transparency.

C

Campus France

campusfrance.org

59

Campus France is the official French government agency dedicated to promoting higher education and research opportunities in France to international students and researchers. The website serves as a comprehensive portal offering detailed information on study programs, research initiatives, scholarships, visa procedures, and student life in France. It targets international students, researchers, and institutional partners, positioning itself as a key facilitator of academic mobility and cooperation. Technically, the website is built on Drupal 10, leveraging modern web technologies such as jQuery UI and cookie consent management via tarteaucitron. The site is well-structured, mobile-optimized, and incorporates accessibility and SEO best practices. It integrates multimedia content including videos and interactive maps, enhancing user engagement. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and shows indications of standard security headers, although some headers could be explicitly verified or enhanced. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear GDPR-aligned policies and user consent management. Overall, Campus France's website demonstrates a high level of professionalism, trustworthiness, and technical maturity, supporting its mission as a government-backed educational promotion entity. The lack of WHOIS registrant details is typical for such domains and does not detract from its legitimacy. Strategic recommendations include enhancing explicit security headers and continuous monitoring of third-party scripts.

I

Inria

inria.fr

64

Inria is a well-established French national research institution specializing in computer science and applied mathematics. The website reflects a professional and consistent brand identity, targeting researchers, academics, and industry partners. The technical infrastructure is modern, leveraging Drupal 10 CMS and privacy-conscious Matomo analytics, with a cookie consent mechanism implemented via tarteaucitron.js. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and publishing explicit security policies. Overall, the domain registration and website content are consistent and legitimate, supporting a high trust level.

B

Bandzone.cz

bandzone.cz

50

Bandzone.cz is a well-established Czech online community platform dedicated to music bands, DJs, MCs, and their fans. Founded in 2005, it hosts profiles for over 35,000 groups and 180,000 fans, offering music streaming, downloads, concert listings, videos, and promotional services. The platform integrates ticket sales via SMS Ticket and promotes music education partners, positioning itself as the largest Czech music community online. Technically, the site uses a custom CMS with a mix of legacy and modern technologies including jQuery, Firebase, Google Analytics, and Facebook Pixel. While the site is functional and professionally designed, it uses an outdated jQuery version which poses security risks. Security posture is moderate with HTTPS enabled and basic privacy compliance via cookie consent, but lacks explicit security headers and published security policies. Overall, the website is credible and trustworthy for its audience but would benefit from technical and security updates.

I

IZUM – Institut informacijskih znanosti, Maribor

cobiss.si

60

COBISS.SI is a well-established Slovenian national library information system portal managed by IZUM, providing comprehensive access to library catalogs, e-book lending, and user profile services. The platform targets library users, researchers, authors, and librarians, offering a centralized and integrated library experience. The website demonstrates a mature digital infrastructure with modern JavaScript libraries and social media integration, supporting good user experience and mobile responsiveness. Security posture is adequate with HTTPS and secure form handling, though improvements in security headers and explicit security policies are recommended. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR through clear privacy and cookie policies. The domain's WHOIS data confirms legitimacy and institutional backing, supporting a high trust level.

T

Tcsard, s.r.o

vycvikvhale.cz

43

The website www.vycvikvhale.cz represents a small Czech social enterprise named Tcsard, s.r.o, specializing in dog training, particularly for rescue dogs and kynological activities. The business model focuses on social entrepreneurship, employing disadvantaged individuals and reinvesting profits into community and economic development. The site offers services including professional training for rescue dog handlers, dog training for the general public, rental of training facilities, and organization of related events and courses. The company maintains an active presence on Facebook and is supported by regional authorities, enhancing its community credibility. Technically, the website employs a traditional tech stack with jQuery 1.11.2, jQuery UI, Flexslider, Fancybox, Google Fonts, Google Analytics, and Mapy.cz API. While functional and moderately performant, the use of outdated JavaScript libraries introduces security risks. The site is served over HTTPS but lacks visible advanced security headers. Mobile optimization and accessibility are basic but adequate. SEO practices are present but could be improved with more comprehensive metadata and structured data. From a security perspective, the site shows moderate maturity. HTTPS is enabled, and a cookie consent banner is implemented, indicating some privacy awareness. However, the absence of privacy and terms of service pages, outdated libraries, and missing security headers reduce the overall security posture. The WHOIS lookup failed to retrieve domain registration data, which raises concerns about domain legitimacy and transparency. No direct company contact emails or phone numbers are publicly listed, limiting direct communication channels. Overall, the website is a functional and community-oriented platform with good content quality and user experience but requires improvements in security practices, privacy compliance, and domain transparency to enhance trust and resilience against threats.

C

CRnet, s.r.o.

ecanis.cz

44

eCanis.cz is a Czech online kynology magazine operated by CRnet, s.r.o., providing a rich array of expert articles, interviews, podcasts, and real-life stories focused on dogs and dog training. The site maintains a consistent publishing schedule with at least one new article daily and serves as an official media partner of the Czech-Moravian Cynological Union (ČMKU). The business model combines media publishing with e-commerce offerings and advertising partnerships, targeting dog enthusiasts and kynology professionals primarily in the Czech Republic. Technically, the website employs a traditional web stack with jQuery, jQuery UI, Flexslider, and Fancybox, alongside Google Fonts and Google Analytics for tracking. The site uses HTTPS and includes a cookie consent banner, but some JavaScript libraries are outdated, which may pose security risks. Mobile optimization and accessibility are basic but functional, and SEO practices are moderate. From a security perspective, the site benefits from HTTPS and secure login forms but lacks visible security headers and uses older JavaScript libraries. No explicit privacy policy or terms of service pages were found, which impacts privacy compliance. WHOIS data is unavailable, limiting domain registration trust analysis, but the website's partnerships and content suggest legitimacy. Overall, eCanis.cz presents a professional and trustworthy online presence within its niche, though improvements in security practices, privacy transparency, and technical modernization are recommended to enhance its risk posture and compliance standing.

M

motoTrasy.com - cestování na motorce

mototrasy.com

40

motoTrasy.com is a niche web platform dedicated to motorcycle enthusiasts primarily in the Czech Republic region. It provides a community-driven environment where users can share motorcycle routes, interesting places, and multi-day trips. The website offers user registration and login features to personalize content sharing. Technically, the site uses a combination of older JavaScript libraries such as jQuery 1.11.2, jQuery UI, and plugins like Nivo Slider and Fancybox, alongside modern mapping libraries like OpenLayers. Google Analytics is employed for user tracking, but no visible cookie consent or privacy policies are present, indicating limited privacy compliance. Security posture is moderate with HTTPS usage but lacks modern security headers and uses outdated libraries with known vulnerabilities. The absence of WHOIS registration data raises concerns about domain legitimacy, although the site content and partner links suggest a legitimate community platform. Overall, the site is functional and content-rich but requires improvements in security, privacy compliance, and domain registration transparency.

T

treninksepsem, s.r.o.

treninksepsem.cz

40

The website treninksepsem.cz represents a small Czech company, treninksepsem, s.r.o., specializing in dog training services including individual lessons, puppy training, and rescue dog training. The business is positioned as a specialized provider with over 25 years of experience, targeting dog owners seeking professional training and behavioral improvement for their pets. The site content is well-structured, professionally presented, and focused on its niche audience. Technically, the website uses a traditional tech stack with jQuery 1.11.2, jQuery UI, Flexslider, and Fancybox, along with Google Fonts and Font Awesome. While the site is served over HTTPS with a good SSL configuration, it uses an outdated jQuery version that may expose it to security vulnerabilities. The site lacks modern security headers and does not appear to have a CMS or advanced frameworks. Performance and mobile optimization are moderate to basic. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, indicating some privacy awareness. However, the absence of a privacy policy, terms of service, and security headers reduces its compliance posture. The WHOIS data is unavailable, which raises concerns about domain legitimacy and registration transparency. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the website is functional and professional but requires improvements in security practices, privacy compliance, and domain registration transparency to enhance trustworthiness and reduce risk.

T

Tričkař.cz - nejenom ručně kreslená trička

trickar.cz

43

Tričkař.cz is a small Czech Republic based e-commerce retailer specializing in original hand-drawn designs and digital textile printing, primarily on T-shirts and related apparel. The website showcases a niche market focus with custom and personalized products, targeting customers interested in unique, artistic clothing. The technical infrastructure uses a mix of legacy and modern JavaScript libraries, with integration of external services such as Mapy.cz for mapping and Google Fonts for typography. The site is accessible, uses HTTPS, and includes cookie consent mechanisms, but lacks explicit privacy and terms of service documentation. Security posture is moderate with secure forms and HTTPS but missing security headers and vulnerability disclosures. Overall, the website is functional and professional but could improve compliance and security transparency.

C

CRnet, s.r.o.

engravia.cz

42

Engravia.cz is a specialized small business based in České Budějovice, Czech Republic, offering laser engraving and cutting services primarily focused on wood, stainless steel, leather, and plastic materials. The company provides personalized gifts and custom manufacturing solutions with a business model combining service and e-commerce. Their market position is that of a local niche specialist with a consistent brand presence and a professional website showcasing detailed product offerings and customer engagement features such as login and registration. Technically, the website employs a moderately modern tech stack including jQuery, jQuery UI, Google Analytics, and Mapy.cz API for mapping. While the site is accessible and well-structured with good SEO and content quality, some technical improvements are recommended, such as updating JavaScript libraries and enhancing mobile optimization and accessibility. From a security perspective, the site uses HTTPS and has secure login forms, but lacks visible security headers and explicit privacy or terms of service pages. The cookie consent banner is present, indicating some level of privacy compliance. No critical vulnerabilities or exposed sensitive data were detected, but updating security practices and adding formal policies would strengthen the security posture. Overall, the website is trustworthy and professional with moderate risk due to missing WHOIS data and some security best practices. Strategic recommendations include implementing security headers, publishing privacy and terms policies, updating libraries, and improving mobile and accessibility features to enhance user trust and compliance.

I

Informační portál Kaplice a Kaplicko

ikaplice.cz

44

The website ikaplice.cz serves as an information portal dedicated to the town of Kaplice and its surrounding region in the Czech Republic. It provides comprehensive local cultural, tourist, and community event information, targeting residents and visitors interested in the area. The portal features event calendars, news articles, and service directories, positioning itself as a key regional resource for cultural engagement and tourism promotion. The site is supported by partnerships with local government and tourism organizations, enhancing its credibility and reach. Technically, the website employs a custom CMS with a technology stack including jQuery 1.11.2, jQuery UI, Fancybox, Google Fonts, Google Analytics, and Mapy.cz API for mapping services. While the site is functional and well-structured with good navigation and content relevance, it uses outdated JavaScript libraries that may pose security risks. Mobile optimization and accessibility are basic, and SEO practices are moderate. The site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and explicit privacy or terms of service policies. From a security perspective, the portal demonstrates moderate maturity. The use of outdated libraries and absence of security headers are notable vulnerabilities. No direct contact emails or phone numbers are provided, limiting transparency. The cookie consent banner indicates some GDPR awareness, but the lack of a privacy policy and security incident response information suggests compliance gaps. No WAF or blocking mechanisms are detected, and the domain registration data aligns well with the website's regional focus, supporting legitimacy. Overall, ikaplice.cz is a valuable regional information resource with good content quality and business credibility but requires improvements in technical security, privacy compliance, and modernization of its technology stack to enhance trust and resilience against threats.

P

ProDarce.cz

prodarce.cz

42

ProDarce.cz is a Czech Republic-based online platform dedicated to providing benefits, discounts, and rewards for voluntary blood and bone marrow donors. It positions itself as the largest database of such benefits in the country, targeting donors and related communities. The website offers regularly updated content about partner offers, insurance contributions, and events supporting blood donation. Technically, the site is built on WordPress with common plugins such as Yoast SEO and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a user-friendly experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy policies. WHOIS data is unavailable, which limits full trust verification of the domain registration. Overall, the site is safe, professional, and serves a niche non-profit community effectively.

C

CRnet, s.r.o.

crnet.cz

44

CRnet, s.r.o. is a Czech Republic based small technology company specializing in custom web development, e-commerce solutions, internet marketing, and graphic design services. Established since 1999, the company has a solid local market presence with a portfolio of satisfied clients and a range of partner sites offering complementary services. Their website is professionally designed, content-rich, and targets businesses and individuals seeking digital marketing and web solutions. Technically, the site uses a custom CMS with a legacy JavaScript stack including jQuery 1.11.2 and integrates Google Analytics and Mapy.cz APIs. Security posture is moderate with HTTPS enabled and cookie consent implemented, but the use of outdated libraries and lack of advanced security headers are areas for improvement. Privacy compliance is basic with clear privacy and cookie policies but no visible terms of service or incident response information. Overall, the website is trustworthy, safe, and well-positioned for its market segment.

G

Groupe Caisse des Dépôts

caissedesdepots.fr

65

The Groupe Caisse des Dépôts is a major French public financial institution dedicated to serving the public interest through investment and management of public funds. The website reflects a well-established entity with a clear mission to support social, territorial, and economic development in France. The site is built on a modern Drupal 10 CMS platform, incorporating accessibility features, GDPR-compliant consent management, and Matomo analytics for user tracking. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly detailed. Overall, the website presents a professional and trustworthy digital presence aligned with its public institution status.

P

Průvodce Koloběhem

pruvodce-kolobehem.cz

53

Průvodce Koloběhem operates as a specialized content platform providing the largest database of scooter routes primarily focused on the Czech Republic and Europe. The website offers detailed trip descriptions and navigation aids for mobile users, targeting outdoor enthusiasts and scooter riders. The business model centers on content provision and partnerships with related companies such as Kostka Koloběžky and Kudyznudy.cz, enhancing its market position as a leading resource in its niche. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing. Hosting is managed via Webflow's CDN and Amazon S3 for static assets, ensuring moderate performance and good mobile optimization. However, accessibility features are basic and there is room for improvement in security headers and privacy compliance mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. It integrates common tracking and retargeting services but lacks explicit cookie consent banners and security policies. The WHOIS data is privacy protected, which is reasonable for this business type, though it reduces transparency. No critical vulnerabilities or security incidents are evident from the analysis. Overall, the website presents a professional and trustworthy front with good content quality and business credibility. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance its security posture and user trust.

Z

ZOO Dvorec

zoodvorec.cz

46

ZOO Dvorec is a private zoological garden located in the South Bohemian region of the Czech Republic, established in 2007. The website serves as a comprehensive portal for visitors, offering detailed information about visiting hours, ticketing, animal exhibits, educational programs for schools, and special experience activities such as guided tours and animal caretaker programs. The business model focuses on visitor engagement, education, and community involvement, supported by an e-shop and animal adoption initiatives. The zoo maintains an active presence on social media platforms including Facebook, YouTube, and Instagram, enhancing outreach and visitor interaction. Technically, the website employs a custom CMS with a technology stack including jQuery 1.11.2, jQuery UI, Flexslider, Fancybox, and integrates Google Tag Manager and Google Analytics for tracking. The site uses HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. However, some outdated JavaScript libraries present potential security risks, and no explicit security headers were detected. The website performance is moderate with basic mobile optimization and accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks published security policies or incident response contacts. The use of older JavaScript libraries and absence of security headers are notable vulnerabilities. No signs of malware, phishing, or exposed sensitive data were found. Privacy compliance is good with accessible privacy and cookie policies. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, ZOO Dvorec's website is well-structured, content-rich, and trustworthy, serving its audience effectively. Strategic improvements in updating technical components and enhancing security headers would strengthen its security posture and resilience against emerging threats.

D

DKV

dkv.es

10

DKV is a well-established health insurance provider in Spain offering a broad range of insurance products including health, dental, life, home, accident, and travel insurance. The website is professionally designed using Drupal 10 CMS and integrates multiple marketing and analytics tools such as Google Tag Manager, HubSpot, and Inbenta chatbot, reflecting a mature digital infrastructure. The site is fully accessible, mobile-optimized, and provides clear navigation and comprehensive content tailored to individuals and families seeking private health insurance in Spain. Security posture is good with HTTPS enforced and use of bot detection scripts, though explicit security headers and policies are not publicly visible. Privacy compliance is basic with cookie consent implemented but no visible privacy or terms of service pages in the provided content. WHOIS data is not publicly accessible due to privacy protection, which is justified for this business type. Overall, the website demonstrates high business credibility and trustworthiness with clear contact information and consistent branding.

한

한국과학기술원 (KAIST)

kaist.ac.kr

56

KAIST is a prestigious national science and technology university in South Korea, established to foster scientific talent and conduct advanced research aligned with national policies. The website reflects its institutional stature, providing comprehensive academic, research, and campus life information targeted at students, researchers, and stakeholders. The domain is longstanding and registered transparently under the institution's name, reinforcing its legitimacy. Technically, the website employs common web technologies such as jQuery and Bootstrap, with moderate performance and good mobile responsiveness. However, it lacks modern security headers and DNSSEC, which could be improved to enhance security posture. Privacy and cookie policies are not explicitly found, indicating a gap in compliance with modern privacy standards. Security-wise, the site uses HTTPS and does not expose sensitive data, but could benefit from publishing incident response contacts and vulnerability disclosure policies. Overall, the site is trustworthy and professional but should address privacy compliance and security best practices to strengthen its digital maturity. The risk assessment is low given the institutional nature and absence of suspicious elements, but strategic improvements in privacy and security policies are recommended to maintain trust and compliance.

AST Partner Connect is a professional platform operated by the American Society of Transplantation, providing transplant healthcare professionals with access to educational content, clinical trials, career opportunities, and partner resources. The platform serves as a bridge between healthcare professionals and industry partners, facilitating knowledge sharing and professional development in transplantation. The website is well-branded, consistent, and targets a specialized audience in the healthcare sector. Technically, the site uses common web technologies such as jQuery, Vimeo API, and Select2, hosted likely on AWS infrastructure. The design is professional and mobile-optimized, though accessibility and SEO could be improved. Security posture is moderate with no evident critical vulnerabilities, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a clear privacy policy but no cookie consent mechanism. WHOIS data is transparent and consistent with the organization's profile, enhancing trustworthiness. Overall, the site is a credible and useful resource for its target audience.

V

Výtahy VOTO s.r.o.

vytahy-voto.cz

46

Výtahy VOTO s.r.o. is a Czech Republic-based company specializing in the manufacturing, installation, modernization, and servicing of various types of elevators and elevator shafts. Founded in 1995, the company serves a diverse clientele including residential customers, building managers, and persons with mobility challenges. Their product portfolio includes personal and freight elevators, vertical platforms, and stair lifts, with a focus on compliance with European standards. The company maintains regional offices in Plzeň and Prague, enhancing its market reach. Technically, the website employs a range of established web technologies including jQuery, Bootstrap, Google Analytics, and Facebook SDK, indicating a moderate level of digital maturity. The site is mobile responsive and well-structured, though it lacks some modern security headers and explicit privacy and cookie policies, which are important for compliance and user trust. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML content. However, the absence of security headers and privacy policies represents areas for improvement. The WHOIS data for the domain is unavailable, which limits the ability to fully verify domain registration legitimacy, though the website content and business information appear professional and trustworthy. Overall, the website presents a solid business presence with good content quality and user experience but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

Ing. Nikoleta Zsigóová - AuraFoto.sk is a specialized small business operating in Slovakia, offering certified aura imaging services, personal development consultations, and therapeutic activities. The website presents a professional and consistent brand image, targeting individuals interested in energetic and personality analysis through aura photography. The business model is service-oriented with offerings including personal consultations, reports, workshops, and gift vouchers. Technically, the website is built on the SmartWeb CMS platform, utilizing modern JavaScript libraries such as jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile-optimized and SEO-friendly with clear navigation and relevant content.

C

CCI Paris Ile-de-France

cci-paris-idf.fr

66

CCI Paris Ile-de-France is a major regional economic and educational institution supporting business creation, development, and training in the Ile-de-France region. The website offers comprehensive resources for entrepreneurs, students, companies, and local authorities, including business advice, educational programs, international development support, and event hosting. The site is built on a modern Drupal 10 CMS with integrated analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit privacy policies and incident response contacts are lacking. The absence of WHOIS data reduces domain registration trust but the website content and branding strongly indicate legitimacy. Overall, the site is professional, well-structured, and trustworthy for its target audience.

Základní umělecká škola Říčany is a Czech educational institution specializing in artistic education for children and youth, including music, dance, visual arts, and drama. The website serves as a communication platform for news, events, and projects related to the school and its community. It holds partnerships with cultural institutions such as the National Theatre and participates in EU-funded educational projects, indicating a stable position in the regional education sector. Technically, the website is built on a custom CMS developed by Vitalex Computers, utilizing a variety of JavaScript libraries including jQuery, Bootstrap, and TinyMCE. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements are recommended, such as adding security headers and enhancing accessibility. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, reflecting awareness of privacy compliance. Nonetheless, the absence of WHOIS data and security headers, as well as missing explicit contact information for security incidents, represent areas for improvement. No vulnerabilities or malicious content were detected. Overall, the website is a trustworthy and professional platform for the school’s community, but it would benefit from enhanced transparency in domain registration and improved security practices to strengthen its credibility and compliance posture.

A

Artisans du Monde

artisansdumonde.org

45

Artisans du Monde is a French non-profit organization and associative distribution network dedicated to promoting fair trade products and solidarity artisan crafts. Established in 2001, it operates a network of shops and campaigns to inform, sensitize, and advocate for ethical commerce. The website reflects this mission with content focused on fair trade, education, and advocacy, targeting consumers interested in socially responsible products. Technically, the site is built on Joomla CMS with extensions like Flexicontent and uses modern JavaScript libraries such as jQuery and Select2. It employs Matomo analytics, indicating a preference for privacy-conscious tracking. The site is hosted on o2switch servers with HTTPS enabled, but lacks DNSSEC and some security headers, representing minor security gaps. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service policies detected. Overall, the website is professional, well-branded, and trustworthy, with a moderate to good security posture.

L

L’Ecole Nationale Supérieure Agronomique de Toulouse (AgroToulouse)

agrotoulouse.fr

56

L’Ecole Nationale Supérieure Agronomique de Toulouse (AgroToulouse) is a reputable public engineering school in France specializing in agronomy, environment, food, and oenology education. The institution serves a diverse audience including students, apprentices, partner companies, and international students. It holds recognized certifications such as CTI, ISO 9001, and EUR-ACE, reinforcing its market position as a quality educational provider. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the website is built on the Ametys CMS platform, leveraging common frontend libraries like jQuery, Bootstrap, and Owl Carousel. It demonstrates good mobile optimization and moderate performance. The site employs HTTPS with excellent SSL configuration and integrates a cookie consent mechanism compliant with GDPR using tarteaucitron.js. Analytics are handled via Matomo, indicating a moderate level of user tracking with privacy considerations. From a security perspective, the site shows good practices such as HTTPS enforcement and no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. The WHOIS data aligns well with the website’s claims, confirming legitimacy and consistency. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable digital presence for AgroToulouse. Strategic improvements in security transparency and accessibility could further strengthen its position.

P

Power Yoga Akademie

poweryoga.cz

45

Power Yoga Akademie is a Czech Republic-based accredited educational center specializing in yoga instructor training and workshops. The organization holds official accreditations from the Ministry of Education, Youth and Sports (MŠMT) and Yoga Alliance, offering recognized certifications including state exams and international diplomas. Their services cater primarily to individuals seeking professional yoga qualifications and enthusiasts interested in seminars and online courses. The website presents a professional and consistent brand image with clear navigation and relevant content.

E

emocio s.r.o.

jogavirtual.cz

45

Jóga Virtual is a Czech-based online yoga platform offering a comprehensive video library with over 380 yoga videos, including courses, workshops, and DVDs. The business targets a broad audience ranging from beginners to advanced practitioners, including specialized groups such as pregnant women and seniors. The platform operates on a subscription model providing on-demand yoga content accessible anytime. Technically, the website uses common web technologies such as jQuery, Google Tag Manager, and Font Awesome, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are missing. The absence of WHOIS data reduces domain trustworthiness, but the website content and business presence appear professional and legitimate.

S

Středisko společných činností AV ČR, v. v. i.

zamek-liblice.cz

55

Zámek Liblice operates as a historic hospitality and conference center affiliated with the Academy of Sciences of the Czech Republic (Akademie věd ČR). It offers accommodation, conference facilities, wellness services, restaurant dining, and event hosting including weddings. The venue leverages its cultural heritage and baroque architecture to attract visitors seeking a unique experience. The business targets general audiences including tourists, corporate clients, and event organizers. The website is professionally designed with consistent branding and clear navigation, supporting a medium-sized operation with a niche market position in the hospitality sector.

S

Středisko společných činností AV ČR, v. v. i.

bistro-narodni.cz

54

Bistro Národní operates as a hospitality and catering service located within the main building of the Academy of Sciences of the Czech Republic in Prague. It provides daily lunch menus, coffee, snacks, catering for events, and conference room rentals. The website is professionally designed, targeting institutional clients and visitors to the Academy. The business model focuses on serving a niche market within a government/non-profit research environment, leveraging its association with the Academy for trust and credibility. Technically, the website uses OpenCms CMS with modern JavaScript libraries such as jQuery and Slick Carousel. It employs Google Fonts and Font Awesome for styling and icons. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Analytics are implemented via Plausible, indicating a privacy-conscious approach to user tracking. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which are recommended for compliance with EU regulations. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration trust analysis, but the website's content and institutional affiliation strongly indicate legitimacy. Overall, the website presents a trustworthy and professional digital presence for Bistro Národní, with room for improvement in security headers and privacy compliance to enhance user trust and regulatory adherence.

L

La Vie des idées

laviedesidees.fr

43

La Vie des idées is a well-established French intellectual magazine founded in 2007, focusing on analysis and information about debates of ideas across politics, society, philosophy, arts, and sciences. It targets academics, researchers, and culturally engaged readers, offering essays, recensions, interviews, and dossiers. The website is built on the SPIP CMS platform and employs modern web technologies including jQuery, Google Analytics, and a GDPR-compliant cookie consent manager. It maintains a consistent brand identity and strong social media presence across multiple platforms. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policies and vulnerability disclosures. The domain registration data is consistent and supports the site's legitimacy. Overall, the website provides a professional and trustworthy platform for intellectual content.

R

Reality z celé ČR i zahraničí - RealHit.cz

realhit.cz

51

RealHit.cz is a Czech real estate portal established in 2010, offering a wide range of property listings including sales, rentals, auctions, and shares. The platform also provides additional services such as free price estimation, contract creation, legal advice, mortgage calculators, and educational content. The website targets general users interested in real estate within the Czech Republic and some international locations, supporting multiple languages for broader accessibility. Technically, the site is built on WordPress and leverages modern JavaScript libraries and analytics tools like Google Tag Manager and Microsoft Clarity, indicating a moderate level of digital maturity. The site is hosted behind Cloudflare nameservers, ensuring reliable performance and security. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks some security headers and formal security policies. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Modio.sk | Módne inšpirácie, novinky aj zľavy na jednom mieste

modio.sk

53

Modio.sk is a Slovak e-commerce platform specializing in fashion and sports equipment aggregation and inspiration. It offers users a comprehensive search engine for products from various e-shops and physical stores, featuring extensive brand and category listings. The website targets consumers interested in fashion and sports products within Slovakia, providing curated content such as fashion inspirations and news. Technically, the site uses a traditional web stack including jQuery, Google Tag Manager, and lazy loading for images, delivering a moderate performance with good mobile optimization and clear navigation. Security-wise, the site enforces HTTPS and uses rel="nofollow" on external links but lacks advanced security headers and uses an outdated jQuery version, which could pose risks. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices.

A

AiVision, s.r.o.

paper.cz

47

Paper.cz is a Czech Republic-based e-commerce retailer specializing in paper goods, gift wrapping, party supplies, stationery, and related products. The company operates both online and through multiple physical retail locations in Czech cities such as Třinec, Nový Jičín, Prostějov, Havířov, Frýdek-Místek, and Jablunkov. The website offers a broad product range including creative materials, decorations, seasonal goods, and school supplies, targeting general consumers and event organizers. The business model focuses on direct online sales complemented by physical stores, positioning Paper.cz as a significant distributor in its market segment.

N

Nejlevnejsi-Barvy-Laky.cz

nejlevnejsi-barvy-laky.cz

50

Nejlevnejsi-Barvy-Laky.cz is a Czech Republic based e-commerce retailer specializing in paints, varnishes, and related products for interior and exterior use. The company offers a wide range of products including wall paints, facade paints, wood and metal coatings, and painting tools. They also provide color mixing and tinting services and painting work in the Prague area. The business positions itself as the largest online seller of paints and varnishes in the Czech market, targeting both general consumers and professional painters. The website is professionally designed with good navigation and mobile optimization, supported by a mature digital marketing infrastructure including Google Analytics, Facebook Pixel, and affiliate tracking. Contact information and business details are transparent and consistent with WHOIS data, enhancing trustworthiness.

V

VORWERK CS k.s.

vorwerk.cz

48

Vorwerk Czech Republic operates a professional and well-established website focused on retailing household appliances, specifically vacuum cleaners under the Kobold brand and kitchen appliances under the Thermomix brand. The company has a strong market presence in the Czech Republic, supported by a comprehensive e-commerce platform and customer service infrastructure. The website demonstrates good content quality, clear navigation, and consistent branding, targeting consumers interested in home cleaning and cooking solutions. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Tag Manager, with a custom e-commerce CMS (AiShop). Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, the site reflects a mature digital presence aligned with business goals.

A

AiVision, s.r.o.

kavaprodej.cz

55

The website www.kavaprodej.cz represents a Czech-based e-commerce business specializing in the retail of fresh roasted coffee beans, teas, chocolates, and coffee accessories. The company, AiVision, s.r.o., positions itself as a provider of high-quality, freshly roasted coffee from a family roastery in Prague's Holešovice district. The site targets coffee enthusiasts and retail customers within the Czech Republic, offering a wide variety of coffee types including Arabica, Robusta, bio, decaffeinated, and gourmet blends. The business model is primarily direct-to-consumer online sales with a focus on product variety and freshness. Technically, the website employs a modern tech stack including Bootstrap for responsive design, jQuery and various JavaScript libraries for UI enhancements, and integrates Google Tag Manager, Google Analytics 4, and Facebook Pixel for marketing and analytics purposes. The platform appears to be a custom or proprietary e-commerce CMS. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses secure login forms with AJAX validation. Cookie consent mechanisms are implemented, supporting GDPR compliance. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, suggesting room for improvement. No visible vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS data for the domain raises concerns about domain registration transparency and legitimacy, though the website content and business presence appear professional and trustworthy. Overall, the website demonstrates a solid business presence with good technical and security practices, but the lack of WHOIS information and some missing security headers slightly reduce the trust score. Strategic recommendations include enhancing security headers, verifying domain registration details, and continuing to maintain GDPR compliance and user privacy protections.

M

Match Point s.r.o.

matchpoint.cz

57

Match Point s.r.o. is a Czech Republic-based company operating since 2001 as an exclusive distributor of renowned tennis and badminton brands Babolat and Tretorn. The company targets sports equipment buyers within the Czech market, offering a range of rackets, balls, bags, apparel, and accessories. The website reflects a professional retail business with clear branding and contact information, supporting its market position as a significant local distributor. Technically, the website employs a moderate technology stack including jQuery, Bootstrap, and other JavaScript libraries, delivering a responsive and user-friendly experience. While performance and mobile optimization are adequate, there is room for improvement in accessibility and SEO. The site uses HTTPS, ensuring secure communication, but lacks advanced security headers and cookie consent mechanisms, which are important for compliance and security. From a security perspective, the site shows basic good practices such as HTTPS enforcement but misses critical security headers and explicit incident response or security policies. The absence of WHOIS data reduces transparency and trustworthiness, although the website content and contact details appear legitimate. No forms or data collection mechanisms were detected, minimizing immediate data exposure risks. Overall, the website is functional and professional but would benefit from enhanced security measures, improved privacy compliance, and greater transparency in domain registration to strengthen trust and reduce risk.

A

AiVision, s.r.o.

dalekohledy.cz

57

Dalekohledy.cz is a Czech-based specialized retailer focusing on astronomical telescopes, binoculars, observation telescopes, microscopes, and related accessories. The company, AiVision, s.r.o., operates both an e-commerce platform and a physical store serving customers primarily in the Czech Republic and Slovakia. The website presents a professional and well-structured interface with clear navigation and a comprehensive product catalog. The business targets astronomy enthusiasts and amateur astronomers, offering products from reputable brands such as Baader, Celestron, Sky-Watcher, and Swarovski. Technically, the site employs modern web technologies including Bootstrap, jQuery, and various UI enhancement libraries, ensuring a responsive and user-friendly experience. However, some minor technical issues such as PHP warnings and lack of security headers were observed. Security posture is adequate with HTTPS enforced and secure login mechanisms, but improvements are recommended in cookie consent and security header implementation. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and consistent with a specialized retail operation. Overall, the site is well-positioned in its niche with room for security and privacy compliance enhancements.

A

Affinity Fundraising Registration

afrportal.com

53

The website afrportal.com hosts a customer login portal titled 'Affinity Fundraising Registration' for the Affinity Single Portal® service. The portal appears to be designed for customers to access fundraising management services. The domain was registered in early 2022 and is currently active with Cloudflare DNS services. The site uses basic web technologies including HTML, CSS, JavaScript, and jQuery, with a slider captcha (QapTcha) implemented to prevent automated login attempts. The content is minimal and focused solely on login functionality without additional business or policy information. From a technical perspective, the site employs standard web technologies but lacks advanced security headers and visible HTTPS enforcement details in the provided data. The use of Cloudflare DNS and a reputable registrar adds some trustworthiness. However, the absence of privacy, cookie, or terms of service policies, as well as lack of contact information, limits the site's compliance and transparency. Security posture is moderate with some anti-bot measures but missing critical security headers and no visible multi-factor authentication. The domain registration data is consistent with the business purpose and shows no suspicious patterns. Overall, the site is functional but basic, with room for improvement in security, privacy compliance, and user trust signals. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, improving form security, and providing clear contact information to enhance trust and compliance.