Security Directory

D

De Heus a.s.

energys.cz

49

Energys.cz is a Czech website representing the Energys brand, a producer of horse feed and nutritional products. The brand is part of the international company De Heus a.s., a well-established player in the animal feed industry since 2009. The website targets horse owners, breeders, and equestrian professionals, offering a range of feed products tailored to different horse needs, including premium, base, and nature lines. The site also provides tools such as a feed configurator and maintains active customer engagement through newsletters and social media channels. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and Facebook Pixel, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. The WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, Energys.cz presents a professional, trustworthy, and well-maintained online presence in the equine nutrition sector.

A

Adaptive Micro Systems

adaptivedisplays.com

63

Adaptive Micro Systems operates a professional e-commerce website specializing in LED electronic signage solutions tailored for markets such as intelligent transportation systems, emergency mass notification, and law enforcement. The company offers a range of LED display products including indoor, semi-outdoor, and outdoor displays, supported by software and technical services. The website is built on the BigCommerce platform, leveraging modern e-commerce technologies and analytics tools to provide a functional and user-friendly experience. The site is mobile optimized and presents clear navigation and product information, targeting business customers in specialized sectors. From a technical perspective, the website employs a modern tech stack including Google Tag Manager and Google Analytics 4 for tracking, and uses the Stencil framework on BigCommerce. Performance is moderate with good mobile responsiveness and basic accessibility features. Security is well implemented with HTTPS enforced and secure checkout processes, though the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and security best practices. The security posture is solid but could be enhanced by adding explicit security policies, incident response contacts, and GDPR-compliant cookie consent. No vulnerabilities or exposed sensitive data were detected in the HTML content. However, the WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and trustworthiness. This discrepancy should be investigated further to ensure domain ownership and reduce risk. Overall, the website presents a credible and professional business front with good technical implementation and security fundamentals. Strategic improvements in privacy compliance, security headers, and domain registration transparency would strengthen trust and reduce potential risks.

M

Metaswitch Networks

metaswitch.com

71

Metaswitch Networks is a cloud native communications software provider specializing in voice core, unified communications, and robocall blocking solutions. The company is positioned as a pioneering software provider in the telecommunications sector and is now part of the parent company Alianza. Their website reflects a professional and modern digital presence built on the HubSpot CMS platform, integrating advanced marketing and analytics tools such as Google Analytics and Hotjar. The site is well-structured, mobile-optimized, and provides comprehensive legal and privacy documentation, indicating a strong commitment to compliance and user privacy. However, direct contact information such as emails or phone numbers is not readily available on the site, which may impact user engagement.

U

Université de Strasbourg

unistra.fr

55

Université de Strasbourg is a prominent French public university offering extensive educational programs, research activities, and international collaborations. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting students, researchers, and academic partners. The technical infrastructure is based on TYPO3 CMS with modern JavaScript libraries, ensuring good performance and mobile optimization. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though improvements in security headers and cookie consent mechanisms are recommended. The absence of WHOIS data is notable but likely due to AFNIC policies; however, the website's content and partner affiliations strongly support its legitimacy. Overall, the site scores well on content quality, technical implementation, and business credibility, with minor penalties for privacy compliance and WHOIS transparency.

H

HP Fyzioclinic s.r.o.

hpfyzioclinic.cz

43

HP Fyzioclinic s.r.o. operates a specialized physiotherapy and rehabilitation center primarily serving athletes and patients requiring musculoskeletal therapy in the Czech Republic. The website presents a professional image with detailed team profiles and service descriptions, positioning itself as a local healthcare provider. The business model focuses on delivering specialized health services with a small-scale operation. Technically, the website is built on WordPress with a modern tech stack including jQuery, Slick Carousel, and Foundation framework. It uses HTTPS and integrates Google Analytics and Tag Manager for visitor tracking. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. From a security perspective, the site enforces HTTPS and uses nonce tokens in AJAX calls, but it lacks important security headers such as Content-Security-Policy and HSTS. There is no visible privacy or cookie policy, which raises compliance concerns especially under GDPR. The absence of WHOIS data for the domain reduces trust and raises questions about domain legitimacy. Overall, the website is functional and professional but would benefit from improved privacy compliance, enhanced security headers, and transparent domain registration information to strengthen trust and security posture.

B

Bílý kruh bezpečí, z.s

infovictims.cz

8

The website www.infovictims.cz serves as an informational and support platform primarily targeting victims of crime in the Czech Republic. It is associated with the non-profit organization Bílý kruh bezpečí, z.s, which focuses on providing legal rights information, support, and guidance related to criminal proceedings. The site is professionally designed with a clear focus on its niche audience, offering relevant content and resources for victims seeking assistance. From a technical perspective, the website employs standard web technologies including HTML5, CSS3, Google Fonts, and common JavaScript libraries such as Fancybox and Slick Carousel. The site appears to be moderately optimized for performance and mobile responsiveness, though accessibility features are basic. There is no evidence of a CMS or advanced frameworks, suggesting a custom or lightweight implementation. Security posture is moderate but could be improved. The site uses HTTPS (implied by base URL), but no security headers were detected in the provided data. There are no visible privacy or cookie policies, nor incident response contacts or data protection officer information, indicating gaps in compliance and security transparency. The WHOIS data is missing, which raises concerns about domain legitimacy and trustworthiness despite the site's professional appearance and association with a known non-profit. Overall, the website is a useful resource for its target audience but would benefit from enhanced security practices, transparent privacy policies, and verified domain registration information to improve trust and compliance.

A

Australasian Division of the International Academy of Pathology

iap-aus.org.au

52

The Australasian Division of the International Academy of Pathology operates a professional website serving pathology professionals and members in Australasia. The site provides information on annual scientific meetings, master classes, grants, and other educational resources, positioning itself as a regional non-profit professional association. The business model focuses on member services, education, and professional development within the healthcare sector. Technically, the website is built on WordPress with the Divi theme, utilizing modern JavaScript libraries and Google Fonts, and integrates Matomo analytics and reCAPTCHA for security and tracking. The site is mobile-optimized with good navigation and professional design. Security posture is solid with HTTPS and some security best practices, though DNSSEC is not enabled and no advanced security headers were detected. Privacy compliance is lacking due to absence of privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, with no blocking or WAF interference detected.

W

Winning Group a.s.

winninggroup.cz

45

Winning Group a.s. is a Czech investment company focused on advancing its portfolio of firms primarily in manufacturing, construction, real estate, hospitality, and premium food sectors. The company positions itself as a strategic partner ready for long-term growth and acquisitions, targeting investors and industry professionals. The website reflects a mature digital presence with multilingual support and comprehensive corporate content including annual reports and press releases. Technically, the site is built on WordPress with modern JavaScript libraries and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and WHOIS transparency are areas for improvement. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

Design by Ewa is a specialized small business focused on providing custom web design and graphic design services tailored to dog and cat breeders, kennels, catteries, and the equestrian industry. The company has a long-standing presence since 2001 and offers a range of services including website packages, logo design, magazine publication, and advert design. Their market position is that of a niche specialist with a professional and artistically driven approach. Technically, the website uses a modern but basic tech stack including Bootstrap and jQuery, with moderate performance and good mobile optimization. However, there is a lack of advanced SEO and accessibility features. Security posture is weak due to missing security headers and unknown SSL configuration, and there are no visible privacy or cookie policies, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance measures.

Dostihový spolek a.s. operates as a prominent horse racing organization based in Pardubice, Czech Republic, managing events such as the renowned Velká pardubická race. The company targets horse racing enthusiasts and visitors, providing event calendars, ticketing, and visitor information. The website reflects a medium-sized regional business with a focus on hospitality and transportation services related to horse racing events. Technically, the website is built on WordPress using modern plugins and themes, ensuring good mobile optimization and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response details are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

M

Muséum de Bordeaux - sciences et nature

museum-bordeaux.fr

57

The Muséum de Bordeaux - sciences et nature is a well-established public museum located in Bordeaux, France, focusing on natural history and cultural exhibitions. It serves a broad audience including families, schools, leisure professionals, journalists, and patrons. The museum offers permanent and temporary exhibitions, educational workshops, events, and virtual tours, positioning itself as a key cultural institution in the region. Technically, the website is built on Drupal 10 with modern libraries such as jQuery UI, Slick Carousel, Leaflet.js for maps, and FontAwesome for icons. It demonstrates good mobile optimization, accessibility, and SEO practices. The site includes a cookie consent mechanism and privacy policies aligned with GDPR requirements, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. The WHOIS data is unavailable, which limits domain registration insights but does not detract from the site's legitimacy given its professional content and official nature. Overall, the website is secure, compliant, and professionally maintained, with no signs of blocking or malicious activity. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

T

The Conference Forum

drug-delivery.org

58

Drug-delivery.org is a specialized content and event platform serving the drug delivery and formulation ecosystem. It operates under The Conference Forum brand, providing industry professionals with conferences, editorial articles, podcasts, webinars, and marketing services. The website targets pharmaceutical and biotech stakeholders interested in drug delivery innovations and partnerships. The business model focuses on content dissemination and event organization within a niche healthcare sector. The domain is newly registered in 2023, consistent with the business timeline, and hosted on Amazon AWS infrastructure with CloudFront CDN for performance.

T

The Conference Forum

theconferenceforum.org

60

The Conference Forum is a specialized event organizer and content provider serving the pharmaceutical, biotechnology, and drug delivery sectors. Founded in 2010, it offers a portfolio of conferences, webinars, podcasts, and editorial content aimed at professionals and executives in these industries. The business model centers on delivering industry-specific knowledge and networking opportunities, supported by marketing services tailored to the medicine development ecosystem. The website reflects a mature and consistent brand presence with a clear focus on its niche audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Slick Carousel, Select2, and integrates advanced analytics and tracking tools such as Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. Hosting is provided by Bluehost Inc., and the site uses HTTPS with a valid SSL certificate. Mobile optimization and user experience are good, though accessibility and SEO could be improved. The site lacks a CMS signature, suggesting a custom or proprietary platform. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v3 to protect forms from abuse. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is limited to a web form, with no direct emails or phone numbers published. The domain registration is consistent and legitimate, with a long history and no privacy protection, reinforcing trustworthiness. Overall, the website is professionally maintained and serves its business purpose well. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust. The site is safe for general audiences and does not contain any adult or questionable content.

H

HELLENiQ ENERGY

helleniqenergy.gr

71

HELLENiQ ENERGY is a leading energy group operating in Southeastern Europe with activities spanning six countries. The company focuses on refining, supply, and sales of petroleum products and petrochemicals, positioning itself as a key player in the energy sector. Their website reflects a professional corporate presence with clear branding and comprehensive business information. The target audience includes industry stakeholders, partners, and customers interested in energy solutions with a focus on low carbon emissions. Technically, the website is built on Drupal 9, leveraging modern web technologies such as jQuery UI and Slick Carousel for UI components. It integrates Google Tag Manager and Cookiebot for analytics and cookie consent management, demonstrating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. From a security perspective, the site enforces HTTPS and implements multiple security headers, contributing to a strong security posture. Cookie consent mechanisms comply with GDPR requirements, offering users granular control over cookie categories. However, explicit security policies, incident response contacts, and vulnerability disclosure information are absent, representing areas for improvement. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic enhancements in transparency around security policies and incident handling would further strengthen its security and compliance posture.

S

Středočeský kraj

bezpecnevotice.cz

54

Bezpecnevotice.cz is a regional government website operated under the Středočeský kraj authority, providing public safety information, announcements, and contact details for police and municipal services in the Votice area. The site serves local residents and community members seeking crime prevention updates and emergency contact information. The business model is a government-funded public service project focused on community safety and crime prevention. Technically, the website is built on WordPress 5.3.20 with common plugins such as Yoast SEO and uses standard web technologies including jQuery, Slick Carousel, and Lightbox. The site is moderately optimized for performance and mobile devices, with basic accessibility features and good SEO practices. However, some scripts are loaded over HTTP, which may cause mixed content warnings, and Google Analytics is incompletely configured. From a security perspective, the site uses HTTPS but lacks explicit security headers and advanced security policies. The cookie consent banner is implemented, indicating some privacy compliance, but no detailed privacy or security policies are published. No incident response or vulnerability disclosure information is available. The domain registration is consistent with the website's government affiliation and age, supporting legitimacy. Overall, the website is a trustworthy and professional regional government portal with good content quality and user experience. Security posture can be improved by addressing mixed content issues, adding security headers, and enhancing privacy and incident response disclosures. The site poses no content safety risks and is suitable for general audiences.

S

Skupina Compag

compag.cz

59

Skupina Compag is a Czech-based company specializing in a broad range of municipal and communal services, including waste management, road infrastructure maintenance, facility cleaning, and biogas station operations. The company operates multiple subsidiaries across different regions, positioning itself as a regional leader in communal services. Their business model focuses on providing essential municipal services leveraging modern technology and equipment to serve public and municipal clients effectively. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several plugins for SEO, contact forms, and cookie compliance. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements GDPR-compliant cookie consent mechanisms. However, it lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business profile, enhancing trustworthiness. Overall, the website presents a professional and trustworthy digital presence for Skupina Compag, with good content quality and compliance. Strategic improvements in security headers and public security policies could further enhance their security posture and trust.

M

MEDIA MARKETING SERVICES a.s.

rockovyradio.cz

56

Rockovyradio.cz is a Czech online rock radio station operated by MEDIA MARKETING SERVICES a.s., established in 2008. The website offers multiple specialized rock music streams, podcasts, and programs targeting Czech-speaking rock music enthusiasts. It maintains a professional digital presence with a consistent brand and active social media channels. The business model revolves around media broadcasting, online streaming, and merchandise sales via an e-shop. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Foundation, and Slick Carousel, hosted by Active24, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS, includes CSRF tokens, and implements cookie consent mechanisms, but lacks explicit security headers and public security policies. Overall, the site is compliant with GDPR and provides clear contact information, enhancing trust and credibility.

P

Pavel Hilšer - studio R3D

r3d.cz

47

R3D.cz is a small, established web design studio based in Olomouc, Czech Republic, led by Pavel Hilšer. The company offers custom web design, SEO, and online marketing services with over 25 years of experience. The website presents a professional image with clear service offerings and client references, targeting small to medium businesses in the Czech market. Technically, the site uses a custom CMS and common JavaScript libraries, delivering a moderate performance and good mobile optimization. Security posture is adequate with GDPR compliance and secure form practices, but lacks advanced security headers and incident response information. WHOIS data is missing, which impacts domain trustworthiness, but the business information on the site is consistent and credible. Overall, the site is functional, professional, and trustworthy with room for security improvements.

S

SPA Studio

spa-studio.cz

57

SPA Studio is a specialized retailer and service provider of family whirlpools and hybrid swim spa pools under the Canadian Spa International® brand, operating primarily in the Czech and Slovak markets. The company emphasizes quality, innovation, and customer service, supported by multiple showrooms and a comprehensive online presence. Their product offerings include over 47 unique whirlpool models and 9 swim spa models, targeting families and wellness enthusiasts seeking year-round relaxation solutions. Technically, the website is built on WordPress with a modern tech stack including jQuery, Slick Carousel, and various analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Smartlook. The site is well optimized for performance, mobile responsiveness, and accessibility, with strong SEO practices and GDPR compliance through the Complianz plugin. From a security perspective, the site enforces HTTPS, uses reCAPTCHA for forms, and manages cookie consent effectively. However, there is room for improvement in HTTP security headers and incident response visibility. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy digital front for SPA Studio, though the lack of WHOIS data reduces transparency regarding domain registration. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving incident response contact information to further strengthen trust and compliance.

C

Cestovní kancelář CAPRO

capro.cz

55

Cestovní kancelář CAPRO is a Czech travel agency specializing in active holidays and various travel packages including last minute and first minute offers. The company targets Czech-speaking travelers seeking both domestic and international active vacations. The website is professionally designed, mobile-optimized, and provides clear contact information, supporting a medium-sized business profile in the hospitality sector. Technically, the site employs modern JavaScript libraries, tracking tools like Google Analytics and Facebook Pixel, and enforces HTTPS with appropriate security headers, indicating a mature digital infrastructure. However, the absence of WHOIS data and explicit privacy and cookie policies suggests areas for improvement in transparency and compliance. Overall, the security posture is strong with no evident vulnerabilities, but the lack of formal security and incident response disclosures limits full security maturity assessment. Strategic recommendations include publishing comprehensive privacy and cookie policies, establishing a vulnerability disclosure process, and enhancing accessibility features to improve compliance and user trust.

L

LANDCRAFT

landcraft.cz

53

LANDCRAFT is a Czech-based craft distillery specializing in the production and online retail of premium spirits including gin, liqueurs, vermouths, and limited edition distilled products. The company targets mature consumers interested in high-quality alcoholic beverages and offers additional value through recipes, custom production, and tasting events. The website is built on the Shoptet e-commerce platform, leveraging modern web technologies and marketing tools such as Google Analytics and Facebook SDK. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness but does not detract from the professional presentation and clear contact information on the site. Overall, the website is functional, user-friendly, and professionally maintained, serving a niche market effectively.

K

Koně Hradištko

kone-hradistko.cz

52

Koně Hradištko is a specialized equestrian business based in the Czech Republic focusing on horse breeding, riding training, event hosting, and hospitality services including accommodation. The website presents a well-structured and content-rich platform targeting horse enthusiasts, riders, and tourists interested in the Kinsky horse breed and related cultural events. The business operates in a niche hospitality and equestrian sector with a small-scale footprint and regional market presence. Technically, the website is built on WordPress using common JavaScript libraries such as jQuery, Slick Carousel, and Fancybox, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and secure form handling, but lacks advanced security headers and visible privacy or cookie policies, which are compliance gaps. The absence of WHOIS data limits domain legitimacy verification, though the website content and partner ecosystem suggest a legitimate operation. Strategic improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

V

vFairs

vfairs.com

74

vFairs operates a comprehensive event management platform specializing in hybrid, in-person, and virtual events. The company offers a broad suite of services including event registration, ticketing, mobile apps, virtual event hosting, and engagement tools such as gamification and networking. Their market position is strong, supported by a large user base and high customer satisfaction ratings. Technically, the website is built on WordPress with modern integrations for analytics, marketing, and multilingual support, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit incident response policies could be improved. Overall, the website is professional, user-friendly, and trustworthy, but the lack of WHOIS registration data introduces some uncertainty regarding domain legitimacy.

É

Éclaireuses & Éclaireurs de France

eedf.fr

44

Éclaireuses & Éclaireurs de France (EEDF) is a French non-profit scouting association promoting secular scouting and youth development. The organization offers educational programs, camps, and volunteer opportunities aimed at children and young adults. The website is professionally designed, mobile-optimized, and provides comprehensive information about the association's mission, age groups, and activities. It is well integrated with social media and uses modern web technologies including WordPress and WooCommerce for content and e-commerce functionalities. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which slightly impacts domain trustworthiness. Overall, the site is trustworthy, informative, and serves its target audience effectively.

G

Gymnázium a Střední odborná škola, Rýmařov, příspěvková organizace

gymsosrym.cz

50

Gymnázium a Střední odborná škola Rýmařov is a public secondary educational institution in the Czech Republic, offering both gymnasium and vocational training programs. It is affiliated with the Moravskoslezský kraj regional government and serves students seeking academic and practical education. The website provides comprehensive information about study programs, school life, and cooperation with local businesses. Technically, the site uses modern web technologies including the Nette framework, jQuery, and Google services such as Tag Manager and reCAPTCHA, ensuring a functional and user-friendly experience. Security measures include HTTPS and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data limits domain registration trust analysis, but the website content and contact information indicate a legitimate and professional institution. Overall, the site is well-designed, accessible, and compliant with GDPR requirements.

S

Střední škola řemesel, Šumperk

skolasumperk.cz

45

Střední škola řemesel, Šumperk is an educational institution specializing in vocational and technical education in the Czech Republic. The school offers a wide range of study programs including apprenticeship, maturitní (graduation) and extension courses, focusing on crafts and technical trades. It maintains strong partnerships with local and regional companies, providing practical training and opportunities for students. The website reflects a well-structured and professionally maintained digital presence, supporting prospective students and stakeholders with comprehensive information and resources. Technically, the site employs modern web technologies such as jQuery, Nette Framework, Flatpickr, and integrates Google services including reCAPTCHA and Tag Manager, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS and form protections, though improvements in security headers and explicit incident response policies are recommended. Overall, the site is compliant with GDPR and cookie regulations, providing clear privacy and cookie policies with consent mechanisms. The domain WHOIS data is unavailable, which slightly impacts trust but the website content and external references strongly indicate legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date third-party libraries to further strengthen security and compliance.

V

Vyšší odborná škola zdravotnická a Střední zdravotnická škola, Praha 4, 5. května 51

zdravotnickaskola5kvetna.cz

45

The website represents Vyšší odborná škola zdravotnická a Střední zdravotnická škola, a healthcare-focused educational institution based in Prague, Czech Republic. It offers secondary and higher vocational education in healthcare disciplines, targeting students and prospective students interested in healthcare careers. The site is well-structured with clear navigation and relevant content, supporting its educational mission. Technically, the website employs modern JavaScript libraries such as jQuery, Flatpickr, Tippy.js, and Slick carousel, alongside the Nette Framework for backend and AJAX functionalities. The site is mobile-optimized, accessible, and uses HTTPS with Google reCAPTCHA for form security, indicating a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and uses secure form validation and CAPTCHA to mitigate automated abuse. However, it lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected, suggesting a generally secure posture. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. The absence of WHOIS data limits domain legitimacy verification, but the website's content and structure support its authenticity as an educational institution. Strategic recommendations include enhancing security headers, publishing detailed security policies, and maintaining up-to-date third-party libraries.

S

Střední škola letecké a výpočetní techniky Odolena Voda

sslvt.cz

44

Střední škola letecké a výpočetní techniky Odolena Voda is a specialized secondary educational institution in the Czech Republic focusing on aviation mechanics and information technology. The school aims to preserve and develop Czech aviation traditions within the EU framework and offers programs compliant with European Part 147 legislation. It maintains strong partnerships with key aviation industry players such as Aero Vodochody and Czech Airlines Technics, enhancing its market position and practical training capabilities. The website reflects a professional educational institution targeting prospective students and stakeholders in the aviation and IT sectors. Technically, the website employs modern web technologies including jQuery, Nette Framework, Flatpickr, and Slick carousel, with integrations for Google reCAPTCHA and Cookiebot for security and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. However, some security headers are not explicitly set, and there is no visible published security policy or incident response information. From a security perspective, the site uses HTTPS and has implemented anti-bot measures and cookie consent management, indicating a good baseline security posture. The absence of WHOIS data limits domain trust assessment, but the presence of industry partnerships and compliance indicators supports legitimacy. No critical vulnerabilities or suspicious content were detected. Overall, the website is a credible and professional representation of an educational institution with a solid technical foundation and good privacy practices. Strategic improvements in security headers and transparency around security policies would enhance trust and compliance further.

W

Webové aplikace s.r.o.

webap.cz

53

Webové aplikace s.r.o. is a Czech Republic based small business specializing in web development, e-commerce solutions, and graphic design services primarily serving the Ostrava, Opava, and Hlučín regions. The company offers responsive websites, custom web applications, e-shop systems, and graphic design including logos and corporate identity. Their market position is that of a regional specialized agency with a portfolio of local and international clients. The website demonstrates a professional design with good navigation and mobile responsiveness, leveraging common JavaScript libraries and Google Analytics for tracking. However, the absence of WHOIS data limits domain legitimacy verification. Security posture is moderate with HTTPS implied but lacking explicit security headers and privacy policies. Contact information is available via a contact form and social media but lacks direct email or phone contacts. Overall, the website is safe and business-focused with no adult or questionable content.

Klastr sociálních inovací a podniků – SINEC z.s. is a non-profit cluster organization based in the Moravskoslezský region of the Czech Republic. It focuses on supporting social enterprises and social innovation, aiming to foster growth in the social economy and increase employment opportunities for socially and health-disadvantaged groups. The website serves as a hub for information about the cluster, its members, projects, and annual reports, targeting social economy actors primarily within the region but also across the Czech Republic. Technically, the website is built on WordPress using the Blocksy theme and Elementor page builder with JetEngine plugin. It employs modern web technologies such as jQuery and Slick Carousel for UI components. The site is mobile optimized and has moderate performance, but lacks advanced SEO and accessibility features. No analytics or tracking services are detected, indicating a privacy-conscious approach or minimal user tracking. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and published security policies. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Incident response and vulnerability disclosure mechanisms are not present. Overall, the website is professional and trustworthy for its intended audience but would benefit from enhanced privacy compliance, security hardening, and transparency measures to improve its security posture and regulatory adherence.

M

MORAVEC Kvalitní ponožky s.r.o.

moravec-cz.com

55

MORAVEC Kvalitní ponožky s.r.o. operates a professional e-commerce website specializing in high-quality socks and seamless underwear, targeting Czech consumers. The company emphasizes its 25 years of experience, Czech manufacturing, and product quality, positioning itself as a trusted local brand in the retail sector. The website is built on the Shoptet platform, leveraging modern e-commerce technologies and integrating marketing and analytics tools such as Google Analytics and Facebook SDK. Security measures include HTTPS enforcement and cookie consent mechanisms, although some improvements in security headers and library updates are recommended. Overall, the site is accessible, well-structured, and compliant with GDPR requirements, reflecting a mature digital presence for a small-sized retail business.

S

Střední odborná škola a Základní škola, Město Albrechtice, příspěvková organizace

souzma.cz

48

The website represents a public educational institution in Město Albrechtice, Czech Republic, offering secondary vocational and basic education. It is affiliated with the regional government (Moravskoslezský kraj) and provides a variety of educational programs including special education and vocational training. The site targets prospective students and the local community, providing detailed information about courses, admissions, and school activities. Technically, the website employs a modern technology stack including jQuery, Flatpickr, Tippy.js, and Google Tag Manager, built on the Nette PHP framework. It features responsive design, accessibility considerations, and integrates Google reCAPTCHA for form security. Cookie consent and GDPR compliance mechanisms are implemented, reflecting a mature digital presence. From a security perspective, the site uses HTTPS and includes anti-bot measures. However, explicit security headers are not evident in the HTML content, and no published security or incident response policies were found. The WHOIS data is missing, which slightly impacts trust but is mitigated by the official nature of the institution and clear contact information. Overall, the website is professional, secure, and compliant with privacy regulations, serving its educational mission effectively. Strategic improvements include enhancing security headers, publishing security policies, and improving WHOIS transparency to bolster trust.

O

Obchodní akademie s. r. o.

obaka.cz

40

Obchodní akademie s. r. o. is a small private educational institution in the Czech Republic specializing in business academy studies combined with sports activities. It operates multiple campuses in Ostrava and Karviná, targeting students interested in both academic and athletic development. The website presents clear contact information and social media presence, supporting its regional educational role. Technically, the site uses a modern JavaScript stack including jQuery, Nette Framework AJAX, and Google reCAPTCHA for security on login forms. The site is mobile optimized with moderate performance and basic SEO and accessibility features. Security posture is good with HTTPS and CAPTCHA but lacks advanced security headers and formal privacy or cookie policies, which are compliance gaps. WHOIS data is missing, limiting domain trust assessment, but no suspicious content or vulnerabilities were detected. Overall, the site is professional and functional but could improve privacy compliance and security hardening.

S

Střední odborná škola ochrany osob a majetku s.r.o.

sosoom.cz

40

Střední odborná škola ochrany osob a majetku s.r.o. is a Czech educational institution specializing in secondary vocational education with a focus on security and legal protection. The website presents multiple regional branches with clear contact details and physical addresses, targeting students seeking specialized secondary education. The business operates primarily in the education sector within the Czech Republic and appears to be a small-sized entity. Technically, the website uses modern frontend libraries such as jQuery, Nette Framework, Flatpickr, and Slick carousel, providing a good user experience with mobile optimization and clear navigation. Security posture is moderate with HTTPS enforced and Google reCAPTCHA v3 implemented for form protection, but lacks security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security best practices. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact information suggest a legitimate educational organization. Overall, the site is safe, professional, and functional but would benefit from enhanced privacy compliance and security hardening.

S

Střední škola technická a řemeslná, Nový Bydžov

sstrnb.cz

49

Střední škola technická a řemeslná, Nový Bydžov is a Czech secondary technical and vocational school offering education in technical fields, food industry, and driving training. The institution targets students and prospective students seeking practical and theoretical education in these sectors. The website reflects a well-established regional educational institution with partnerships with notable companies such as Škoda, Volvo, and Bosch. Technically, the website uses modern JavaScript libraries and frameworks, including jQuery, Flatpickr, and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is strong with a clear GDPR-compliant privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, supporting the institution's educational mission.

S

Střední škola obchodní a služeb SČMSD, Polička, s.r.o.

ssospolicka.cz

48

Střední škola obchodní a služeb SČMSD, Polička, s.r.o. is a private secondary vocational school located in Polička, Czech Republic, with a long-standing tradition dating back to 1929. The school offers a variety of study programs including business, marketing, public administration, cosmetology, hairdressing, and sports massage, targeting students and their parents. The website reflects a professional and well-structured digital presence with comprehensive content, clear navigation, and modern web technologies. Security measures such as HTTPS, Google reCAPTCHA Enterprise, and Google Tag Manager are implemented, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant. However, WHOIS data for the domain is unavailable, which slightly impacts trustworthiness from a domain registration perspective. Overall, the site is trustworthy, content-rich, and serves its educational audience effectively.

U

Urssaf

urssaf.fr

57

Urssaf.fr is the official website of the French social security contribution agency, providing personalized support and online services for employers, independent workers, and associations in France. The site offers comprehensive information, declaration services, and legal documentation, positioning itself as a key government resource in the social security sector. The website is professionally designed with consistent branding and good content quality, targeting a broad audience involved in social security contributions. Technically, the site uses a modern technology stack including jQuery, Bootstrap, and the Jahia CMS platform. It is mobile-optimized, accessible, and includes privacy and cookie consent mechanisms compliant with GDPR. Performance is moderate, with a well-structured HTML and CSS foundation. Analytics and chatbot services are integrated for user engagement and data collection. From a security perspective, the site enforces HTTPS, includes CSRF protection, and follows best practices, although explicit security headers could be verified further. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which is typical for AFNIC-managed .fr domains, and does not detract from the site's legitimacy. Overall, Urssaf.fr presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include enhancing visible security headers, publishing incident response contacts, and maintaining up-to-date third-party libraries to sustain security and trust.

E

Edunation

edunation.cz

54

Edunation is a specialized Czech company providing digital services tailored for educational institutions, including school website creation, graphic design, and virtual tours. The website reflects a focused business model targeting schools and school founders, with a strong presence in the Czech education sector. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Nette, and Google APIs, indicating a mature digital infrastructure. Security measures include HTTPS and Google reCAPTCHA, but the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the site is professional and trustworthy, though it lacks some compliance documentation and direct contact details. Strategic enhancements in privacy compliance and security policies would strengthen its market position and trustworthiness.

V

Virtual Visit s.r.o.

domovyonline.cz

48

Domovy online is a Czech Republic based service provider specializing in enhancing the online presentation of social service organizations. Their offerings include modern website creation, virtual tours, graphic design, and premium digital tools aimed at improving communication and operational efficiency for social service providers and regional governments. The company positions itself as a trusted partner with multiple regional government clients and a focus on GDPR compliance and accessibility. Technically, the website employs a modern tech stack including jQuery, Nette Framework, Google reCAPTCHA, and Cookiebot for consent management, ensuring a secure and user-friendly experience. Security posture is strong with HTTPS, secure forms, and no visible vulnerabilities, though explicit privacy and security policies are not published. Overall, the website is professional, accessible, and well-structured, supporting the company's credibility and market position.

O

Old Stories Presse

oldyssey.org

58

Oldyssey is a French media platform dedicated to bridging generations by sharing stories and knowledge from elderly individuals aged 70 and above. The platform offers video and audio content series that highlight the experiences and skills of older generations, aiming to foster intergenerational understanding and transmission. Supported by partnerships and donations, Oldyssey positions itself as a niche media outlet with a strong community focus. Technically, the website is built on Webflow CMS, leveraging modern web technologies such as jQuery and Slick Carousel, and is hosted on Webflow's CDN. The site demonstrates good mobile optimization, SEO practices, and a professional design, providing a positive user experience. Security-wise, the site enforces HTTPS, uses a GDPR-compliant cookie consent mechanism via Axeptio, and shows no signs of exposed sensitive data or vulnerabilities. However, it lacks explicit security headers and published incident response or vulnerability disclosure policies. Overall, Oldyssey presents a trustworthy and professional online presence with room for improvement in formal security and compliance documentation.

R

Rivacom

rivacom.fr

50

Rivacom is a regional communication agency operating primarily in Brittany, France, with offices in Brest and Rennes. The company offers a comprehensive suite of communication services including press relations, event management, digital marketing, branding, and audiovisual production. Positioned as a 360° communication agency, Rivacom targets businesses and organizations seeking professional marketing and communication support within the regional market. The website reflects a professional and consistent brand image, supported by active social media channels and modern web technologies. Technically, the website is built on WordPress using the Elementor page builder, leveraging popular libraries such as jQuery and Slick Carousel. It integrates Google Tag Manager, Google Analytics, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and demonstrates good SEO practices with appropriate meta tags and structured data. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. Cookie consent mechanisms are implemented, indicating awareness of GDPR requirements. However, the absence of additional security headers and lack of visible privacy policy or terms of service pages suggest areas for improvement. The WHOIS data is unavailable, likely due to privacy protection, but the website content and social presence support legitimacy. Overall, Rivacom presents a trustworthy and professional online presence suitable for its business domain. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and improving contact information visibility to strengthen trust and compliance.

M

Metaswitch Networks

opencloud.com

70

Metaswitch Networks is a cloud native communications software provider specializing in voice core, unified communications, and robocall blocking solutions primarily targeting telecommunications operators and service providers. The company is positioned as a pioneering network software vendor and is now part of the parent company Alianza, which is prominently referenced throughout the website. The business model focuses on B2B software solutions that enable operators to modernize and expand their communications services. The website content is professionally presented with clear branding and consistent messaging aligned with the telecommunications industry.

S

Salesiáni Dona Bosca Ostrava

boscoostrava.cz

48

Salesiáni Dona Bosca Ostrava is a local non-profit organization focused on youth and community engagement in Ostrava, Czech Republic. The website serves as an information portal for their activities including youth clubs, workshops for schools, accommodation, and church services. The organization maintains a consistent brand presence with official contact emails and social media channels, supporting community outreach and engagement. Technically, the website is built on WordPress using modern plugins and frameworks such as Bootstrap and Smart Slider 3, providing a responsive and user-friendly experience. Security measures include HTTPS enforcement and Google reCAPTCHA integration, although some security headers are missing. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy page. The absence of WHOIS data limits domain trust verification, but the overall digital footprint and content quality support the legitimacy of the organization. Strategic recommendations include enhancing security headers, publishing a privacy policy, and improving accessibility features to strengthen compliance and trust.

B

Broadcast Sport

broadcastsportevents.co.uk

63

Broadcast Sport is a specialized media company focused on the sports broadcasting industry, offering an online news portal, quarterly magazine, and hosting the Broadcast Sport Summit event. The website targets professionals in sports media including producers, broadcasters, athletes, and brands. The company positions itself as a niche leader in sports media innovation and networking. Technically, the website uses a modern tech stack with jQuery, Google Analytics, and a proprietary CMS (SHOWOFF by ASP.events). It is mobile optimized, accessible, and performs moderately well. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are missing. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

L

La Venelle

lavenelle-montreuil.org

56

La Venelle is a non-profit community organization based in Montreuil, France, focused on promoting solidarity-based reuse and circular economy practices. It hosts nine associations that operate reuse shops, repair workshops, and social insertion employment programs. The organization also offers a café-cantine and hosts cultural events, positioning itself as a local hub for ecological and social initiatives. The website reflects this mission with clear content, community-oriented messaging, and accessible navigation. Technically, the site uses modern web technologies such as Ionic and React, with a moderate performance profile and good mobile optimization. However, it lacks explicit privacy and security policies, and no security headers or vulnerability disclosures are present. The site does not use tracking or analytics scripts, aligning with its privacy-conscious stance. Overall, the website is professional and trustworthy but could improve in privacy compliance and security posture.

M

Media Business Insight (MBI) Ltd

broadcastsportawards.co.uk

59

The Broadcast Sport Awards website represents a well-established event brand under Media Business Insight (MBI) Ltd, a subsidiary of GlobalData. The site focuses on celebrating excellence in sports broadcasting and production, targeting industry professionals such as broadcasters, production companies, and rights holders. It offers event information, sponsorship opportunities, and showcases past winners and shortlists, positioning itself as a leading UK and Ireland sports television awards event. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Google Tag Manager, and Permutive for tracking, built on the SHOWOFF CMS platform by ASP.events. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and consistent branding. However, some improvements could be made in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent banner or explicit GDPR compliance indicators. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic enhancements in privacy and security policies would further strengthen its compliance and user trust.

D

Dunapack Packaging

dunapack-packaging.com

66

Dunapack Packaging is a large European manufacturer specializing in customized corrugated cardboard packaging solutions, operating 24 plants across 12 countries. The company is part of the Prinzhorn Group and emphasizes sustainability and circular economy principles in its business model. The website is professionally designed, multilingual, and provides comprehensive information about products, locations, and corporate values. Technically, the site is built on TYPO3 CMS with modern front-end frameworks and integrates Google Tag Manager and analytics tools with user consent mechanisms. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data reduces domain trust slightly but the overall corporate presence and transparency mitigate concerns. Contact information is clear and extensive, supporting business credibility.

I

International Osteoporosis Foundation

fundamentals-osteoporosis.org

10

The Fundamentals of Osteoporosis website is operated by the International Osteoporosis Foundation, a reputable non-profit organization based in Switzerland. The site offers specialized educational courses aimed at healthcare professionals to enhance their knowledge and clinical skills in osteoporosis diagnosis and management. The business model centers on providing training and certification, positioning itself as a key resource in osteoporosis education globally. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Bootstrap, jQuery, and Font Awesome for a responsive and accessible user experience. The site includes a cookie consent mechanism compliant with GDPR standards and integrates Google Tag Manager for analytics. Performance and SEO optimizations are moderate to good, with clear navigation and mobile responsiveness. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible advanced security headers in the provided HTML. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which limits domain trust verification; however, the website content and branding strongly indicate legitimacy. Overall, the website presents a professional, trustworthy, and well-maintained platform for osteoporosis education. Strategic improvements in security headers and WHOIS transparency could further enhance trust and compliance.

C

Creative Bureaucracy Festival

creativebureaucracy.org

62

Creative Bureaucracy Festival is a well-established international event focused on public sector innovation, attracting thousands of participants from government and civil society. The website is professionally designed using Drupal 10, with modern analytics and consent management tools implemented. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC and security headers could be improved. The domain registration data aligns well with the festival's founding and operations, indicating legitimacy. Overall, the website effectively supports the festival's mission and audience engagement.