Security Directory

A

Armik.cz: Armyshop a outdoor

armik.cz

47

Armik.cz is a Czech Republic based e-commerce retailer specializing in military, outdoor, survival, and sporting goods. The website offers a wide range of products including clothing, tactical gear, and accessories, targeting outdoor enthusiasts and military gear consumers. The business has been operating since 2008, indicating a stable market presence. Technically, the site uses a proprietary e-commerce platform with modern JavaScript integrations including Google Tag Manager and Google Analytics, supporting marketing and analytics efforts. The site is mobile optimized and provides a good user experience with clear navigation and product categorization. Security posture is adequate with HTTPS enabled and asynchronous script loading, but lacks visible security headers and explicit privacy or cookie policies, which are compliance gaps. No direct contact emails or phone numbers were found in the analyzed content, limiting direct customer support visibility. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

HUKR spol. s r.o. is a small Czech company specializing in the sale, service, and restoration of classic and veteran cars, primarily Toyota, Lexus, and Hyundai brands. Established in 1994, the company has a strong local presence in Brno and offers specialized veteran car renovation services with over two decades of experience. The website provides basic business information and contact details but lacks modern digital maturity features such as privacy policies, HTTPS, and advanced security measures. The technical infrastructure relies on basic HTML, CSS, and JavaScript libraries like jQuery and Modernizr, with no detected CMS or advanced frameworks. Security posture is weak due to missing HTTPS and security headers, and privacy compliance is minimal with no cookie or privacy policies. Overall, the website serves its purpose as a business brochure but requires significant improvements in security and compliance to meet modern standards.

GigaBoard, s.r.o. operates a Czech Republic-based advertising service specializing in large-format outdoor advertising spaces for medium and long-term campaigns. The company has a well-established presence since 2002, supported by a domain age consistent with its business history. The website provides basic information about its services and contact details but lacks modern technical and security features. The technical infrastructure is simple, relying on basic HTML, CSS, and JavaScript without advanced frameworks or CMS. Security posture is weak due to absence of HTTPS, security headers, and cookie consent mechanisms. No evident vulnerabilities or malicious content were detected, but the site would benefit from improved security and privacy compliance. Overall, the business credibility is moderate, supported by clear contact information and domain legitimacy.

K

Kingsbet

kingsbet.cz

64

Kingsbet is an online gambling and sports betting platform targeting the Czech market, offering online casino games, live casino, and sports betting services with promotional bonuses. The website is professionally designed with consistent branding and good content quality tailored for adult users interested in gambling. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Tag Manager, Microsoft Clarity, and Cookiebot for cookie consent management. The site is accessible without any WAF or blocking mechanisms, indicating good availability. However, the absence of WHOIS data and lack of visible privacy policy or terms of service pages reduce transparency and trustworthiness. Security posture is moderate with HTTPS enforced but missing security headers and no explicit security or incident response policies disclosed.

R

Ráj aut

rajaut.cz

53

Ráj aut is a Czech Republic based online automotive classifieds platform specializing in car advertisements, sales, and bazaar listings. The website offers a comprehensive search and filter system for vehicles, targeting car buyers and sellers primarily within the Czech market. It maintains a moderate market position with partnerships to related automotive sites and services. Technically, the site uses standard web technologies including Google Analytics, Google Tag Manager, Google Adsense, and Adform for advertising and tracking. The site is served over HTTPS, ensuring secure data transmission, but lacks some advanced security headers and has only basic mobile optimization. Privacy and cookie policies are present but could be more explicit and comprehensive. No WHOIS data was retrievable, which slightly impacts trustworthiness but the site content and business presence indicate legitimate operation. Overall, the website is functional, moderately secure, and serves its niche audience effectively.

T

TECHNOLOGY - GARAGE spol. s r.o.

technology-garage.cz

73

TECHNOLOGY - GARAGE spol. s r.o. is a Czech Republic based company specializing in professional equipment and machinery for automotive service centers, tire services, industrial workshops, and the energy sector. Established since 1995, the company offers a broad catalog of products including lifts, compressors, diagnostic tools, and safety equipment, positioning itself as a trusted supplier in its niche markets. The website reflects a mature business with a clear focus on B2B customers in automotive and energy industries. The technical infrastructure of the website is built on a proprietary or custom e-commerce platform (wpj.cz), utilizing modern web technologies such as JavaScript, CSS, Google Tag Manager, Google Analytics, and Sentry for error monitoring. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be improved. Performance is moderate, and the site uses HTTPS with a good SSL configuration. From a security perspective, the website employs HTTPS and error monitoring but lacks some important security headers and explicit privacy and security policies. Cookie consent mechanisms are implemented, indicating some level of privacy compliance, but no dedicated privacy or terms of service pages were found. The absence of WHOIS data for the domain reduces trust in the domain registration legitimacy, though the website content and business presence suggest a legitimate operation. Overall, the website presents a professional and trustworthy business front with room for improvement in security best practices and privacy transparency. The risk level is moderate, primarily due to missing domain registration data and incomplete privacy documentation.

The website maxdrive.ovh is a recently registered domain (July 2023) owned by Gruppo Duemila snc, hosting a login portal named MaxDrive. The portal provides user authentication functionality including username/password and OTP multi-factor authentication, indicating a focus on secure access management. However, the site lacks publicly accessible privacy policies, terms of service, or contact information, which limits transparency and user trust. Technically, the site uses standard web technologies including jQuery and Font Awesome, hosted on OVH infrastructure. Security practices include OTP but lack modern security headers and DNSSEC, which are recommended for improved security posture. Overall, the site appears functional but basic, with room for improvement in compliance, security, and user trust features.

E

European Commission - Directorate-General for Communications Networks, Content and Technology

5gobservatory.eu

70

The European 5G Observatory is an official monitoring platform managed by the European Commission's Directorate-General for Communications Networks, Content and Technology. It provides comprehensive data and insights on 5G technology deployment, market developments, spectrum allocation, and policy progress across the EU and neighboring countries. The platform targets policymakers, researchers, telecom operators, and technology enthusiasts, offering reliable and up-to-date information to support the EU's digital transformation goals. Technically, the website is built on Drupal 10 and leverages the European Commission's design system (ECL), ensuring a modern, accessible, and mobile-optimized user experience. The site integrates standard web technologies and includes social media sharing tools and Matomo analytics for user insights. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, includes cookie consent mechanisms, and links to a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policy documentation and incident response contacts could enhance transparency and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with EU privacy regulations. It serves as a key resource for tracking 5G progress in Europe, supporting the Digital Decade connectivity targets.

R

R.A.C.E.

race.pt

61

R.A.C.E. is a small Portuguese company specializing in the promotion, advertising, and rental of competition vehicles, particularly classic and historic racing cars. The company has a notable presence in national classic car racing championships and offers services targeting motorsport enthusiasts and sponsors. The website reflects a focused business model with clear content about their vehicles and achievements, supported by active social media channels. Technically, the site uses modern web technologies including HTTPS, service workers for PWA capabilities, and a responsive design, although some SEO and accessibility features could be improved. Security posture is adequate with HTTPS and cookie consent, but lacks advanced security headers and incident response information. Privacy compliance is weak due to the absence of a privacy policy and terms of service. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security transparency.

D

DMSB – Deutscher Motor Sport Bund e.V.

bahnsport-deutschland.de

57

Bahnsport Deutschland is the official website for the German motor sports federation's Bahnsport discipline, operated by the Deutscher Motor Sport Bund e.V. The site serves as a comprehensive information hub for enthusiasts, athletes, and clubs involved in motor sports in Germany, providing news, event schedules, results, and official documents. The website demonstrates a solid market position as a national governing body platform with a clear focus on accessibility and user experience. Technically, the site is built on TYPO3 CMS, employs modern web standards, and integrates accessibility tools to support diverse user needs. Security posture is strong with HTTPS enforcement, security headers, and bot protection via Google reCAPTCHA, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements could be made in transparency around security and vulnerability disclosures.

R

Region Stockholm

regionstockholm.se

63

Region Stockholm is a regional government entity responsible for healthcare, public transportation, regional development, and cultural activities within Stockholm County, Sweden. The website serves as a comprehensive portal for residents, providing access to services, news, job opportunities, and contact information. The organization holds a strong market position as the primary regional authority in its sector, offering essential public services to a large population. The site is well-branded, professionally designed, and targets a broad audience including citizens, healthcare users, cultural actors, and job seekers. Technically, the website is built using modern web technologies including React and Next.js, with indications of Episerver CMS usage. The site is mobile-optimized, accessible, and SEO-friendly, with good performance characteristics. Security best practices are observed with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response information are not published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR adherence is evident. However, the absence of a vulnerability disclosure program and data protection officer contact details are areas for improvement. Overall, the website presents a low risk profile with high trustworthiness and professionalism. Strategic recommendations include publishing detailed security and incident response policies, establishing a vulnerability disclosure channel, and enhancing transparency around data protection roles.

The domain observanatura.com is currently a parked domain with no active website content beyond a SedoParking iframe and Google ads. The domain was registered in 2020 and is managed by GMO Internet Group, a reputable registrar. The website lacks any business information, contact details, or privacy and cookie policies, indicating it is not currently used for active business operations. Technically, the site uses basic HTML, CSS, and JavaScript with no CMS or advanced frameworks detected. The hosting is via SedoParking services, and no HTTPS enforcement or security headers are present, which lowers the security posture significantly. There are no signs of malware or phishing, but the lack of security best practices and minimal content results in a low trust score. Overall, the site is a placeholder domain with advertising but no substantive content or business presence.

S

skodahrou.cz

skodahrou.cz

49

skodahrou.cz is a Czech language online magazine dedicated to fans of the ŠKODA brand, offering a variety of content including news, reviews, tips, contests, and lifestyle articles related to automotive topics and beyond. The website targets automotive enthusiasts and general readers interested in transport, economy, finance, technology, health, and society. The business model is content publishing with monetization through advertising. The domain is newly registered in late 2024, consistent with the website's fresh content and market entry. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with Matomo analytics and Google Adsense for advertising and tracking. The site is hosted on vas-hosting.com servers and shows good mobile optimization and navigation clarity. However, no CMS or advanced frameworks were detected. Performance is moderate with room for improvement. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers and explicit security or incident response policies. No cookie consent mechanism is present, which may affect GDPR compliance. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the security posture is average but could be enhanced with standard best practices. The overall risk assessment indicates a legitimate, small-scale media website with moderate technical maturity and some compliance gaps. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and auditing third-party scripts to improve trust and compliance.

Ateliér PKO s.r.o., operating under the brand APKO, is a specialized engineering firm focused on road communications and related infrastructure services in the Czech Republic. Their offerings include road design, traffic engineering, expert opinions, safety audits, environmental assessments, and professional translations. The company targets professionals and organizations involved in transportation infrastructure projects, positioning itself as a niche service provider with a clear and consistent brand presence. Technically, the website employs standard web technologies including HTML, CSS, JavaScript, and Google Analytics for visitor tracking. While the site is moderately optimized for performance and basic mobile responsiveness, it lacks advanced accessibility features and modern frameworks. SEO is basic but sufficient for the content presented. No CMS or hosting provider details were detected. From a security perspective, the site uses HTTPS and includes Google Analytics scripts loaded securely. However, it lacks visible security headers and published security or privacy policies, which are important for GDPR compliance and user trust. No forms or input fields were detected on the analyzed page, reducing immediate risk exposure. The WHOIS data aligns well with the website content, indicating legitimacy and consistent registration information. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, improved security headers, and clearer incident response information to strengthen its security posture and regulatory adherence.

Spolek přátel Národního divadla Brno is a voluntary, non-political, and non-profit association focused on promoting theatrical arts including opera, ballet, and drama in Brno, Czech Republic. The organization collaborates closely with the National Theatre Brno and related artistic institutions to deepen public interest and knowledge in performing arts. The website serves as an informational platform showcasing news, events, and publications related to their activities. Technically, the website is built on the eStránky.cz platform using legacy JavaScript libraries such as jQuery 1.12.4 and includes Facebook SDK for social media integration. The site is accessible and provides relevant content but lacks modern technical and security enhancements.

The website www.ceske-knizni-novinky.cz is a Czech-language informational portal dedicated to providing extensive listings and descriptions of new book releases primarily for the year 2025 and previous years. It targets Czech-speaking readers interested in literature across various categories including women, men, children, youth, and multiple genres such as fantasy, historical, and detective books. The site aggregates content and links to a reputable external book database (CBDB.cz) for detailed book information. The business model is content aggregation and informational service with a niche focus on the Czech book market. The site is small in scale with consistent branding and good content quality.

The Victoria Transport Policy Institute is an independent Canadian research organization specializing in innovative and practical transportation solutions. Established in 1999, it offers free resources, consulting services, and publishes research to improve transportation planning and policy analysis. The website serves transportation planners, policymakers, researchers, and the public with a focus on sustainable and equitable transportation. Technically, the site is custom-built with classic HTML, JavaScript, and CSS, hosted on Island Hosting, and integrates Mailchimp for marketing. While the site content is rich and professionally presented, technical modernization opportunities exist, including improved mobile optimization and accessibility. Security posture is moderate; domain management is sound with transfer protections, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, representing compliance gaps. Overall, the site is trustworthy and credible but would benefit from enhanced security and privacy practices.

G

GTO Solutions s.r.o.

jdvm.cz

48

Skutočnosť.sk is an online Slovak informational portal operated by GTO Solutions s.r.o., focusing primarily on transportation-related news, including traffic updates, toll information, fuel prices, and travel advice. The website targets Slovak-speaking drivers and travelers seeking up-to-date and practical information for navigating road transport in Slovakia and neighboring countries. The business model appears to be content publishing monetized through advertising networks such as Google Adsense. The site maintains a consistent brand presence with a clear navigation structure and regularly updated content.

The website davar.cz is a personal site maintained by RNDr. David VARNER, Ph.D., featuring diverse hobbyist content including military history, technical monuments, Ford car collections, fossils, applied mechanics, and trainspotting. It serves a niche audience interested in these specialized topics and does not appear to operate as a commercial business. The domain is mature, registered since 2006, and hosted with Czech-based registrar and DNS providers, consistent with the website's Czech language content and focus. Technically, the site is built using legacy tools such as Microsoft FrontPage 6.0, with static HTML and CSS. There is no evidence of modern CMS, responsive design, or accessibility features. The site lacks HTTPS enforcement and security headers, which are critical for protecting user data and ensuring secure communications. No forms or user data collection mechanisms are present, reducing immediate data security risks but also limiting interactivity. From a security perspective, the absence of HTTPS and security headers lowers the security posture score. No privacy or cookie policies are present, indicating non-compliance with GDPR and related privacy regulations. The site does not use analytics or advertising scripts, minimizing tracking but also limiting business intelligence capabilities. Contact information is limited to a single email address, with no phone or physical address provided. Overall, the website is safe for general audiences, with no adult or explicit content detected. The site’s technical and security posture is basic and would benefit from modernization and implementation of standard security and privacy practices. The domain registration data is consistent and trustworthy, supporting the legitimacy of the site as a personal project rather than a commercial enterprise.

H

Heidelberg Materials

heidelbergmaterials.com

77

Heidelberg Materials is a global leader in the manufacturing and supply of building materials including cement, aggregates, ready-mixed concrete, and asphalt. The company emphasizes sustainability and digital innovation as core pillars of its business strategy, targeting construction industry professionals, investors, and sustainability stakeholders worldwide. The website reflects a mature digital presence built on Drupal 10, with excellent design, mobile optimization, and clear navigation. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain is unusual for a large enterprise and warrants further verification. Overall, the website presents a professional, trustworthy, and comprehensive corporate presence.

R

Raiffeisen stavební spořitelna a.s.

rsts.cz

70

Raiffeisen stavební spořitelna a.s. is a Czech financial institution specializing in building savings, housing loans, and related financial products. The company targets individuals and legal entities in the Czech Republic seeking financial solutions for housing and savings. The website reflects a professional and consistent brand presence with clear navigation and comprehensive service offerings. Technically, the site employs modern web technologies including JavaScript, SVG graphics, and integrates Google Tag Manager and Sentry for analytics and error tracking. Cookie consent management is robust, supporting GDPR compliance. Security posture is strong with HTTPS enforced and secure form handling, though explicit security policies and incident response contacts are not published. The domain WHOIS data is unavailable, which slightly reduces trust but the overall website professionalism and presence on social media platforms support legitimacy. Recommendations include publishing security policies and enhancing security headers.

C

cdv.cz

shopcdv.cz

66

The website shopcdv.cz represents an e-commerce platform operated by Centrum dopravního výzkumu (CDV), a Czech organization specializing in transportation research and related expert services. The platform offers publications, methodologies, and professional services targeting both public and private sector stakeholders interested in transportation safety, planning, and sustainability. The business is positioned as a niche provider with a medium-sized footprint, founded in 2019, and focused on delivering research outputs into practical applications. The website is primarily in Czech with multilingual support and integrates social media channels for broader engagement. Technically, the site is built on the Shopify platform, leveraging modern web technologies including JavaScript, CSS, and HTML5. It employs hCaptcha for form security and Judge.me for customer reviews, indicating a mature digital infrastructure. Performance and mobile optimization are good, with accessibility and SEO considerations well implemented. Hosting and domain registration are consistent with the business location and sector. From a security perspective, the site enforces HTTPS with excellent SSL configuration and uses CAPTCHA to protect forms. However, explicit security headers and published security policies are lacking, and no incident response or vulnerability disclosure mechanisms are evident. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, the website demonstrates a solid business and technical foundation with good security hygiene, though it could benefit from enhanced transparency on security policies and incident response. The risk profile is low, with no critical vulnerabilities or suspicious indicators detected.

M

Mimosa.květiny

kvetinymimosa.cz

58

Mimosa.květiny is a small local flower shop based in Blansko, Czech Republic, offering a variety of floral products including bouquets, flower delivery, workshops, and wedding arrangements. The business operates an e-commerce platform with free delivery within the Blansko area, targeting local customers seeking creative and handmade floral decorations. The website is professionally designed with consistent branding and clear contact information, supporting a positive user experience and trustworthiness. Technically, the website is built on the Webnode CMS platform and utilizes Amazon Cloudfront CDN for content delivery. It employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good SEO practices. The site uses HTTPS with a valid SSL certificate, ensuring secure communication. Cookie consent mechanisms and privacy policies are implemented, indicating compliance with GDPR requirements. From a security perspective, the website has a good posture with HTTPS and cookie consent but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious content were detected. However, the absence of WHOIS data for the domain reduces the ability to fully verify domain legitimacy and trustworthiness. Overall, the website presents a trustworthy and professional front for a small retail flower business with moderate technical maturity and good privacy compliance. Strategic improvements in security headers and domain registration transparency would enhance trust and security posture.

N

NOHO

cihlovka.cz

52

The website cihlovka.cz represents a real estate development project by NOHO focused on revitalizing the Kukleny district in Hradec Králové, Czech Republic. It highlights sustainable residential buildings, including the first passive house in the city, and offers modern living solutions with amenities such as carsharing and proximity to public transport. The site is professionally designed using WordPress and WPBakery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and Wordfence plugin presence, but lacks visible security headers and privacy policies, indicating room for improvement in compliance and security best practices. Overall, the domain registration is consistent with the business claims, supporting legitimacy and trustworthiness.

D

DEBYT

debyt.cz

59

DEBYT is a small Czech architecture and furniture design studio that integrates architectural services with sociological participation and community involvement. Their offerings include architectural projects, artistic creations by architect Tomáš Petrášek, and a curated e-shop for retro and antique furniture renovation and sales. The website presents a professional portfolio and clear contact information, targeting clients interested in personalized architectural and furniture solutions. Technically, the website uses modern analytics tools and is mobile-optimized, but lacks some security headers and privacy compliance features. The absence of WHOIS data raises concerns about domain legitimacy, although the website content itself is professional and safe. Overall, the site demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

Internetové-stránky.eu is a small Czech-based professional web development company specializing in creating websites, e-shops, and internet applications. Their services include graphic design, coding, SEO optimization, marketing, and advertising. The website content is primarily in Czech and targets local businesses and individuals seeking affordable and professional web solutions. The company provides clear contact details including email, phone, and physical address, enhancing business credibility. Technically, the website uses basic HTML, CSS, and JavaScript with legacy Google Analytics integration. There is no evidence of modern CMS or frameworks, and mobile optimization and accessibility are basic. The site lacks HTTPS enforcement and security headers, which are critical for protecting user data and ensuring trust. No forms are present, reducing data collection risks but also limiting user engagement. From a security perspective, the site shows moderate risk due to missing HTTPS and outdated analytics scripts. There are no privacy or cookie policies, indicating non-compliance with GDPR requirements. The WHOIS data is consistent with the website's business information, supporting legitimacy. Overall, the site is functional but requires significant improvements in security and privacy compliance to meet modern standards. The overall risk is moderate with recommendations to implement HTTPS, update analytics, add privacy and cookie policies, and improve security headers. These steps will enhance trust, compliance, and user safety.

B

Beyond Gravity

beyondgravity.com

71

Beyond Gravity is a well-established aerospace technology company specializing in satellite and launcher components, with over 40 years of experience supporting space missions. Their website reflects a mature business with a clear focus on advancing humanity through space exploration technologies. The company targets aerospace professionals and organizations requiring advanced satellite and launcher solutions. Technically, the website is built on Drupal CMS, employs modern analytics (Matomo), and integrates a robust cookie consent mechanism (OneTrust), indicating a good level of digital maturity. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response information are absent. The lack of WHOIS data slightly impacts trust but does not overshadow the professional presentation and compliance indicators. Overall, the website is trustworthy, well-structured, and compliant with privacy regulations.

W

Web Incubator Community Group (WICG)

wicg.io

56

The Web Incubator Community Group (WICG) operates as a community-driven platform under the World Wide Web Consortium (W3C) to incubate and discuss new web platform features. It serves developers and browser makers by providing a collaborative environment for proposing and refining web standards. The website reflects a well-established entity with a domain age consistent with its founding in 2015, and it maintains a reputable presence with active GitHub repositories and affiliation with recognized web standards bodies. Technically, the site employs modern web technologies including HTML5, CSS, and JavaScript with asynchronous script loading, and is hosted by a reputable registrar, Gandi SAS. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured content. Security-wise, the site uses HTTPS but lacks visible security headers and published security policies, which suggests room for improvement in security posture and transparency. Privacy compliance is minimal, with no privacy or cookie policies found, and no explicit GDPR compliance indicators. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures to align with best practices and regulatory expectations.

P

Prozdravi.cz na Vivantis | Vivantis.cz - Od kabelky po parfém

prozdravi.cz

54

The website vivantis.cz, specifically the Prozdravi.cz section, operates as an e-commerce platform primarily targeting consumers in the Czech Republic. It offers health-related products alongside fashion accessories and perfumes under the Vivantis brand umbrella. The site demonstrates a consistent and professional branding approach with a modern design and good user experience. The business model is retail-focused, leveraging online sales channels to reach a broad consumer base. However, the absence of publicly available WHOIS data limits the ability to fully verify domain legitimacy and ownership transparency. From a technical perspective, the site employs contemporary web technologies including Bootstrap 5, JavaScript libraries such as Swiper.js and Fancybox, and Google Fonts, indicating a modern frontend infrastructure. Performance and mobile optimization are adequate, though accessibility features appear basic. SEO practices are reasonably implemented with proper meta tags and Open Graph data. Security posture is moderate but could be improved. There is no evidence of security headers or explicit security policies, and privacy and cookie policies are not found, which raises compliance concerns. The lack of WHOIS data and absence of contact information for security incidents or data protection officers further reduce trustworthiness. No WAF or blocking mechanisms were detected, and the site content is safe for general audiences. Overall, the site is functional and professionally presented but would benefit from enhanced transparency, security best practices, and compliance documentation to improve trust and reduce risk.

O

Obzor

ctreports.com

56

ctreports.com is an Azerbaijani-focused online casino informational and affiliate platform established in 2021. It provides comprehensive content about online casinos, including reviews, bonus offers, game strategies, and responsible gambling guidelines. The site targets mature users interested in online gambling within Azerbaijan, offering localized content in Azerbaijani language. Technically, the website uses Cloudflare for DNS and CDN services, ensuring good performance and security. The site is mobile-optimized and well-structured with clear navigation and SEO-friendly metadata. Security posture is moderate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and explicit security headers. Privacy and cookie policies are present with consent mechanisms, though GDPR compliance is basic. Contact information is limited to an email address without phone or physical address details. Overall, the site demonstrates a professional approach to content and user experience but could improve security policies and transparency. The domain registration is consistent with the business model and age, supporting legitimacy. No WAF or blocking mechanisms were detected, allowing full content access.

K

Kluby | mcompanies.cz

kluby-mcompanies.cz

63

Kluby | mcompanies.cz is a newly launched e-commerce platform based in the Czech Republic, focusing on club memberships and related products. The website is built on Shopify, leveraging its robust e-commerce infrastructure and payment capabilities. The platform targets club members and customers interested in club benefits, providing a streamlined shopping and account management experience. The business appears to be in its early stages, with domain registration dating to June 2024, consistent with the website's branding and content.

S

Saab

saab.com

67

Saab is a well-established enterprise founded in 1937, serving global governments, authorities, and corporations with advanced defense and civil security products and solutions. The website reflects a mature digital presence with comprehensive information on products, investor relations, sustainability, and corporate governance. The technical infrastructure leverages modern web technologies, including Azure Application Insights and Google Tag Manager, with a strong emphasis on privacy compliance via Cookiebot. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. However, the absence of WHOIS data is notable but does not detract from the overall legitimacy given the professional content and branding. Contact is primarily via web forms rather than direct emails or phone numbers.

H

HENSOLDT AG

hensoldt.net

65

HENSOLDT AG is a leading German technology company specializing in defense and security electronics, with a strong presence across multiple domains including Air, Land, Sea, Space, and Cyber. The company offers manufacture-independent system integration, innovative radar, optronics, and electronic warfare products, as well as comprehensive services and training. Positioned as a European market leader with global reach, HENSOLDT targets government and defense sectors with advanced sensor solutions. The website infrastructure is built on modern technologies such as SvelteKit and hosted on Vercel, ensuring fast performance, mobile optimization, and good accessibility. The site employs HTTPS with strong security headers and integrates analytics and consent management tools, reflecting a mature digital presence. Security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy or vulnerability disclosure page and missing WHOIS domain registration data introduce some concerns. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-maintained, though the domain registration inconsistency warrants further verification. Strategic recommendations include publishing explicit security policies and incident response contacts to enhance transparency and trust.

L

Lukáš Churý

lukaschury.cz

46

Lukáš Churý's website serves as a personal portfolio and project showcase highlighting his expertise in project management, programming, graphic design, and education. The site presents a well-established personal brand with multiple successful projects primarily in technology and media sectors, targeting a general audience interested in these fields. The domain age and WHOIS data align well with the business history, reinforcing legitimacy. Technically, the website uses a simple but effective tech stack including jQuery and custom JavaScript, hosted on a Czech hosting provider. The site is mobile-optimized and SEO-friendly but lacks advanced frameworks or CMS. Performance is moderate with good design and navigation clarity. From a security perspective, the site lacks visible security headers and privacy compliance documents such as privacy or cookie policies. No forms collect sensitive data, reducing immediate risk, but the absence of GDPR compliance indicators and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security practices to improve compliance and user trust.

Muzeum Tupeské keramiky is a small local museum located in Tupesy, Czech Republic, dedicated to the history and production of traditional and modern majolica ceramics. The museum offers exhibitions, workshops, school excursions, and a retail shop selling local ceramic products. The website provides basic information about the museum's offerings and cultural significance but lacks detailed contact information and formal privacy or security policies. Technically, the site uses older web technologies such as jQuery 1.x loaded over HTTP, which introduces mixed content risks. There is no evidence of HTTPS enforcement or modern security headers, which impacts the overall security posture. The absence of WHOIS data for the domain reduces trust in domain legitimacy, although the website content appears genuine and focused on cultural heritage. Overall, the site serves its informational purpose but requires improvements in security, privacy compliance, and technical modernization.

Česká alzheimerovská společnost, o.p.s. (ČALS) is a Czech non-profit organization established in 1997 dedicated to supporting people with dementia and their caregivers. The organization offers educational programs, certification, publications, and events to raise awareness and provide assistance. The website reflects a professional and consistent brand presence targeting patients, families, healthcare professionals, and donors. Technically, the site is built on Vizus CMS, uses Google Analytics for traffic measurement, and implements a cookie consent mechanism with granular controls. However, the absence of a privacy policy and terms of service pages, as well as missing WHOIS data, slightly reduce trustworthiness from a compliance and domain legitimacy perspective. Security posture is moderate with HTTPS enabled but lacking security headers and incident response information. Overall, the site is well-designed, accessible, and content-rich, serving its non-profit mission effectively.

E

EnviWeb s.r.o.

enviweb.eu

55

EnviWeb s.r.o. is a specialized public relations agency focused on environmental topics, ecology, and sustainability primarily serving clients in the Czech Republic. The company manages notable environmental projects such as Ukliďme Česko, Kam s ním?, and EKOkalendář, positioning itself as a niche leader in environmental communication. Their business model centers on providing comprehensive PR services including media relations, brand building, and content creation tailored to environmental and sustainability sectors. The website is built on a modern React and Next.js framework, indicating a contemporary technical infrastructure with good mobile optimization and user experience. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are areas for improvement in compliance and security posture. The domain WHOIS data is privacy protected by EURid, which is typical for EU domains, and no suspicious patterns were detected, supporting the legitimacy of the business. Overall, the website presents a professional and trustworthy image with moderate technical and security maturity.

N

nevajgluj.cz |

nevajgluj.cz

46

The website nevajgluj.cz is a small-scale, relatively new website registered in 2022 under the Active24 registrar, hosted on servers with websupport.cz name servers. The site uses WordPress CMS with the Divi theme and loads Google Fonts for typography. The content is minimal and primarily technical, with no visible business descriptions, contact information, or detailed service offerings. The cookie policy is present with a consent mechanism, but no privacy policy or terms of service were found. No security headers or advanced security policies are detected, indicating a basic security posture. The site does not appear to use analytics or tracking services, and no social media or contact details are provided. Overall, the website appears to be in an early stage or possibly a personal or small business site with limited digital maturity and security measures.

L

Lehnen Websolutions GmbH & Co. KG

resavio.com

49

RESAVIO is a German-based company offering a comprehensive cloud-based hotel management software suite that integrates property management, channel management, online booking, and digital guest services. The company targets a broad range of accommodation providers including hotels, pensions, hostels, holiday apartments, and camping sites. With over 15 years of experience, RESAVIO positions itself as a trusted solution for direct booking optimization and online distribution. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content to its target audience. Technically, the website uses modern web technologies with a custom-built platform, ensuring good performance and mobile responsiveness. Security is well addressed with HTTPS and CSRF protection, though some advanced security headers and explicit security policies are not publicly visible. Privacy compliance is strong, with comprehensive privacy and cookie policies and a consent mechanism in place. The security posture is solid with no visible vulnerabilities or exposed sensitive data. The domain registration data aligns well with the business claims, enhancing trustworthiness. Social media presence and client testimonials further reinforce credibility. Overall, the website and business demonstrate a mature digital presence with good security and privacy practices. Strategically, RESAVIO should consider publishing explicit security policies and incident response contacts, enhancing security headers, and possibly adding a security.txt file to improve transparency and vulnerability management. These steps would further strengthen trust and compliance in the hospitality software market.

M

MAS Slavkovské bojiště, z.s.

spolubezhranic.cz

45

Spolu bez hranic is a Czech Republic based community platform operated by MAS Slavkovské bojiště, z.s., focused on connecting local sports and hobby clubs with residents. The website provides a directory of clubs with filtering by activity and location, linking to official municipal and club websites. The platform targets local community members interested in sports, cultural, and social activities, fostering engagement and social interaction. Technically, the site uses classic web technologies including HTML, CSS, JavaScript with jQuery 1.4 and Fancybox for UI enhancements. While the site is functional and mobile responsive to a basic degree, it uses an outdated jQuery version which poses security risks. Security posture is moderate with HTTPS enabled but lacks modern security headers and privacy policies. No analytics or tracking scripts are detected, indicating minimal user tracking. Business credibility is supported by clear contact pathways and consistent branding, though no direct emails or phone numbers are present on the main page. Overall, the site is a niche community service with good content quality but needs improvements in security and privacy compliance.

R

Rudolf Desenský

psycholog-psu.com

45

The website psycholog-psu.com represents Rudolf Desenský, a Czech dog psychologist specializing in dog behavior, training, and holistic therapies. The business operates primarily as a small-scale service and educational provider, offering personal consultations, socialization events, and publishing books. The website content is rich and well-structured, targeting dog owners and enthusiasts in the Czech Republic. The business has a credible market position supported by media presence and certifications. Technically, the site is built using Incomedia WebSite X5 Pro and hosted by WEDOS Internet, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced security and compliance measures.

ТОВ “1+1 Internet” operates as a content distributor and digital advertising provider primarily serving the Ukrainian media market. The company distributes a portfolio of Ukrainian and international TV channels and offers digital advertising campaigns on prominent Ukrainian media websites. The business targets advertisers and media partners seeking to leverage digital platforms for brand promotion and content distribution. The website presents a professional image with clear business descriptions and publicly available financial reports, indicating transparency and operational legitimacy. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with a moderate performance profile and good mobile optimization. However, it lacks advanced technical features such as security headers, analytics integration, and comprehensive SEO metadata. The absence of privacy and cookie policies and contact information limits the site's compliance posture and user trust. From a security perspective, the site is accessible without WAF or blocking mechanisms but shows limited security best practices. No HTTPS or SSL configuration details were provided, and no security policies or incident response contacts are published. This suggests a need for improved security governance and compliance measures to protect user data and enhance trust. Overall, the website is functional and professional but would benefit from enhanced security, privacy compliance, and user engagement features to strengthen its market position and reduce operational risks.

H

Hotel & Therme AQUA DOME

aqua-dome.at

44

Hotel & Therme AQUA DOME is a premium alpine spa hotel located in the Ötztal valley, Tyrol, Austria. It offers a comprehensive wellness experience including thermal baths, spa treatments, fitness facilities, and culinary services. The business targets wellness tourists, couples, families, and singles seeking relaxation and alpine experiences. The website is professionally designed, mobile optimized, and provides clear navigation and booking options. Technically, it uses modern frameworks such as Next.js and React, with integrated consent management and advertising pixels. Security posture is good with HTTPS and consent mechanisms, though explicit security headers and incident response policies are not publicly documented. The domain WHOIS data is unavailable, likely due to privacy protection, but the website's trust indicators and certifications support its legitimacy. Overall, the site demonstrates a mature digital presence aligned with hospitality industry standards.

S

SIA Selected agency

caballero.lv

60

Caballero is a Latvia-based digital agency specializing in customized web solutions for businesses and the public sector. Their services include website development, e-commerce projects, UX/UI design, branding, and IT consultations. The company has a strong portfolio including government and corporate clients, positioning itself as a trusted partner in the digital transformation space. Technically, the website is built on WordPress with modern frameworks and integrates Google Analytics and Cookiebot for analytics and privacy compliance. Security posture is solid with HTTPS enforced, cookie consent management, and reCAPTCHA for bot protection, though explicit incident response and security policies are not published. Overall, the website is professional, well-structured, and compliant with GDPR requirements, reflecting a mature digital presence.

S

Stingray Group Inc.

qello.com

63

Qello Concerts by Stingray is a mature and reputable streaming service specializing in full-length music concerts and documentaries. Owned by Stingray Group Inc., the platform offers a subscription-based model with a global reach, serving music enthusiasts with a vast catalog of content accessible on multiple devices. The website demonstrates a high level of digital maturity, leveraging modern web technologies such as Next.js and AWS infrastructure to deliver fast, responsive, and accessible user experiences. Privacy and compliance are well addressed with clear policies and consent mechanisms aligned with GDPR standards. Security posture is strong, with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Overall, the site presents a professional, trustworthy, and user-friendly platform with no critical security or compliance issues detected.

The website obec.cz serves as a centralized portal for municipalities and local governments in the Czech Republic, providing an official platform for publishing municipal content and public notices. Operated by Ceska vydavatelska pro internet s.r.o., the portal leverages the VISMO editorial system to facilitate content management for towns and communities. The site targets municipal officials and citizens seeking local government information, positioning itself as a long-standing resource since 1998. Technically, the site employs basic HTML and CSS with no modern JavaScript frameworks detected. The CMS VISMO is proprietary and tailored for municipal content publishing. Hosting and technical support are provided by WEBHOUSE, s.r.o. Performance and mobile optimization are basic, with limited accessibility and SEO features. No advanced analytics or tracking technologies are present, indicating a minimal data collection approach. From a security perspective, the site lacks visible HTTPS confirmation and security headers, which reduces its security posture. No privacy or cookie policies are published, and no incident response or vulnerability disclosure mechanisms are evident. Contact information is limited but present, primarily via email and phone in the footer. The domain is well-established with consistent WHOIS data, supporting legitimacy. Overall, the site is functional for its purpose but would benefit from enhanced security measures, privacy compliance, and modern technical improvements to better serve users and protect data.

The website vezkukla.cz serves as an informational and cultural heritage platform dedicated to the Kukla coal mine headframe located in Oslavany, Czech Republic. It provides historical context, tourist information, and promotes the site as a cultural monument and interactive tourist destination. The site targets local visitors, tourists, and history enthusiasts interested in mining heritage. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, hosted likely by a Czech provider REG-ZONER. The site includes Google Tag Manager for analytics but lacks advanced CMS or frameworks. Security posture is moderate with HTTPS usage inferred but no visible security headers or published security policies. Privacy and cookie policies are absent, indicating compliance gaps. Contact information is minimal, with no emails or phone numbers explicitly provided. Overall, the site is functional and informative but would benefit from improved privacy compliance and security hardening.

The website www.petpieta.cz represents a small Czech non-profit organization named Občanské sdružení přátel pietního parku Draháň, dedicated to the care and maintenance of a pet cemetery in Prague Bohnice. The organization relies on membership fees and donations to sustain the upkeep of the cemetery and provides information and support to its members and the public. The website content is primarily informational, targeting pet owners and local community members interested in the memorial park. Technically, the site is built on the eStránky.cz CMS platform and uses legacy JavaScript libraries such as jQuery 1.12.4 and jQuery UI 1.12.1. The design and navigation are basic but functional, with moderate mobile optimization and accessibility features.

Gastroenteroloģijas Atbalsta Biedrība operates a Latvian medical portal focused on gastroenterology, providing news, congress information, research, and educational resources for both medical professionals and patients. The website serves as a key information hub for the gastroenterology community in Latvia, with a history of event announcements dating back over a decade. Technically, the site uses a traditional HTML/CSS/JavaScript stack with jQuery and Fancybox libraries, hosted by SHOSTING. While the site is functional and content-rich, it shows signs of dated design and limited mobile optimization. Security posture is basic with HTTPS enabled but lacks modern security headers and privacy compliance mechanisms such as cookie consent and privacy policies. Contact information is limited to email addresses with no phone or physical address details. Overall, the site is legitimate and consistent with its stated purpose but would benefit from modernization and enhanced compliance.

A

ASD - AeroSpace and Defence Industries Association of Europe

asd-europe.org

69

ASD - AeroSpace and Defence Industries Association of Europe is a leading European industry association representing aerospace, defense, security, and space sectors. The organization connects over 4,000 companies across 21 countries, providing advocacy, standards development, and networking services. Their website reflects a professional and comprehensive digital presence, targeting industry professionals and stakeholders. The site uses modern web technologies including Next.js and React, with privacy-conscious analytics via Matomo and a robust cookie consent mechanism powered by Cookiebot. Security posture is strong with HTTPS enforced and appropriate security headers in place, though explicit security policies and incident response information are not publicly detailed. Overall, the domain appears legitimate and consistent with an established industry association, despite the lack of WHOIS data due to privacy protection. Strategic recommendations include publishing security policies and vulnerability disclosure information to enhance trust and compliance.