Security Directory

M

Mesto Nitra

nitra.sk

49

The website nitra.sk serves as the official digital presence of the city of Nitra, Slovakia. It provides comprehensive information about municipal governance, public services, cultural events, urban planning, and social programs. The site targets residents, visitors, and local businesses, offering a broad range of services and resources relevant to city life. The business model is that of a public sector municipal service provider, positioning itself as the authoritative source for city-related information and services. Technically, the website is built on WordPress 6.0.11 with modern plugins such as Yoast SEO and Kadence Blocks, ensuring good SEO and content management capabilities. The site uses HTTPS with strong security headers and integrates Google Analytics for minimal user tracking. Mobile optimization and accessibility are well addressed, providing a positive user experience across devices. From a security perspective, the site demonstrates a solid posture with HTTPS enforcement, security headers, and no visible vulnerabilities or exposed sensitive data. However, it lacks a publicly available security policy and vulnerability disclosure program, which are recommended for transparency and incident readiness. Privacy compliance is strong, with GDPR-aligned privacy and cookie policies and a designated Data Protection Officer contact. Overall, the website is trustworthy, professional, and well-maintained, reflecting the credibility expected from a government entity. Strategic recommendations include publishing a formal security policy, establishing a vulnerability disclosure channel, and enhancing incident response transparency to further strengthen security and trust.

B

Bratislavskykraj.sk

bratislavskykraj.sk

41

Bratislavskykraj.sk serves as the official information portal for the Bratislava self-governing region in Slovakia, providing residents and visitors with timely updates on regional news, healthcare, culture, social services, and environmental matters. The website leverages WordPress CMS with a suite of plugins to enhance SEO, security, and user engagement, including GDPR-compliant cookie consent mechanisms and push notifications. The portal maintains a professional and consistent brand presence aligned with its governmental role. Technically, the site employs modern web technologies and frameworks, including Yoast SEO for search optimization, Wordfence for security, and OneSignal for push notifications. The site is mobile-optimized and performs moderately well, with good accessibility and SEO practices. Security measures are robust, featuring HTTPS enforcement and multiple security headers, though there is room for improvement in incident response transparency and vulnerability disclosure. From a security perspective, the portal demonstrates strong adherence to best practices, including GDPR compliance and secure form handling. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies and incident response contacts suggests opportunities to enhance trust and preparedness. Overall, the site is trustworthy, professionally maintained, and suitable for its public service mission. The overall risk assessment is low, with recommendations focusing on expanding security documentation, improving accessibility, and maintaining up-to-date software to mitigate emerging threats. Strategic enhancements in transparency and user communication will further solidify the portal's credibility and security posture.

K

KONSTRUKCE Media, s.r.o.

portalsvetlo.cz

54

The website portalsvetlo.cz represents a specialized Czech media company KONSTRUKCE Media, s.r.o., publishing the quarterly magazine Světlo focused on lighting technology and related fields. The site targets professionals, enthusiasts, and students in lighting, architecture, and research sectors, offering articles, podcasts, event calendars, and subscription services. The business model centers on content publication, advertising, and subscriptions, positioning itself as a niche industry leader in the Czech Republic. Technically, the website employs modern web technologies including jQuery, Google Fonts, and Google Analytics, with content delivered over HTTPS and some use of CDN services. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Security posture is moderate with no visible security headers and no explicit incident response or vulnerability disclosure information. The security evaluation shows no critical vulnerabilities or exposed sensitive data, but the absence of WHOIS data and security headers suggests room for improvement. Privacy compliance is good, with a clear privacy policy and cookie consent mechanism aligned with GDPR requirements. Contact information is professional and complete, enhancing business credibility. Overall, the website is a well-maintained professional media platform with moderate technical maturity and security posture. The lack of WHOIS data is a concern but does not outweigh the positive trust signals from content and contact transparency. Strategic improvements in security headers, incident response visibility, and WHOIS transparency would enhance trust and compliance.

P

Penzion Bejčkův mlýn

bejckuvmlyn.cz

55

Penzion Bejčkův mlýn is a small hospitality business located in the Česká Kanada natural park near Slavonice, Czech Republic. The company offers accommodation, a restaurant serving Czech cuisine, a wine cellar experience, and a domestic zoo, targeting tourists and visitors seeking nature and leisure. The website is professionally designed with good navigation and mobile optimization, leveraging modern JavaScript libraries and Google Analytics for minimal user tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. The domain is well-established since 2003, consistent with the business history, and no suspicious patterns were detected. Overall, the website presents a trustworthy and professional online presence for a local hospitality provider.

V

VML

labstore.cz

67

VML is a globally recognized creative agency operating in the Czech Republic, formed from the merger of Wunderman Thompson and VMLY&R. It offers a comprehensive suite of services including creative campaigns, customer experience management, scalable content production, technology and AI integration, and data privacy governance. The company is positioned as the largest agency in the Czech market with a strong global network supported by its parent company WPP. Technically, the website employs modern web technologies such as Google Analytics, OneTrust for cookie consent, and Cloudinary for media delivery, ensuring a good user experience with mobile optimization and accessibility. Security posture is solid with HTTPS and consent management, though improvements in security headers and explicit incident response policies are recommended. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though the lack of WHOIS data transparency slightly impacts domain trustworthiness.

B

BurdaMedia Extra s.r.o.

extra.cz

60

eXtra.cz is a Czech lifestyle and celebrity news website operated by BurdaMedia Extra s.r.o. It offers a wide range of content including celebrity news, horoscopes, and general lifestyle articles targeting a general adult audience interested in entertainment and current events. The website maintains a strong social media presence and uses modern advertising and analytics technologies to monetize and analyze user engagement. Technically, the site employs common web technologies such as jQuery, Google Tag Manager, and multiple ad networks, with a moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and consent management for GDPR compliance but could improve by adding more security headers and updating outdated libraries. The absence of WHOIS data limits domain trust assessment, but the website's branding and content quality indicate a legitimate media outlet. Overall, the site scores well in content quality, technical implementation, and business credibility, with room for improvement in privacy compliance and security best practices.

L

LATAM Airlines Group S.A.

latam.com

49

LATAM Airlines Group S.A. operates as a leading airline in Chile and South America, offering a comprehensive range of travel services including flight bookings, travel packages, hotel reservations, car rentals, and travel insurance. The website targets travelers primarily in Chile and the broader South American region, providing a seamless digital experience for booking and managing travel. The company maintains a strong market position as a regional leader with a well-established loyalty program, LATAM Pass, enhancing customer retention and engagement. Technically, the website is built on modern web technologies including React with Next.js framework, supported by robust analytics and marketing tools such as Google Analytics, FullStory, Adjust, and Exponea. The site is hosted on a reliable CDN infrastructure (Akamai), ensuring fast performance and excellent mobile optimization. SEO and accessibility practices are well implemented, contributing to a professional and user-friendly experience. From a security perspective, the site enforces HTTPS and employs standard security headers, with no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website presents a low-risk profile with high professionalism and trustworthiness, though the absence of WHOIS domain registration data slightly reduces confidence in domain legitimacy. Strategic recommendations include publishing detailed security and incident response policies and enhancing transparency around vulnerability disclosures.

K

Kontrola systémů vytápění

kontrolykotluzlin.cz

42

The website www.kontrolykotluzlin.cz represents a small Czech-based business specializing in heating system inspections and energy compliance services, primarily serving the Zlín region and nearby cities such as Brno and Olomouc. The company offers legally mandated inspections for heating systems with heat sources above 70 kW, including licensed and unlicensed operations, as well as related services like gas and pressure equipment inspections and external energy specialist consulting. The site content is professionally presented in Czech, with clear contact details and official certifications, indicating a legitimate and focused service provider in the energy sector. Technically, the website leverages the AMP framework to ensure fast loading and excellent mobile optimization. It uses JSON-LD structured data to enhance search engine understanding and integrates Google Analytics for visitor tracking. The site is well-structured with good SEO practices and accessibility features, although no CMS or hosting provider details are explicitly identified. The absence of forms reduces attack vectors, and the site appears to use HTTPS, though explicit security headers are not detected in the provided data. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. However, the lack of explicit security headers and cookie consent mechanisms are areas for improvement. The WHOIS data is missing, which is unusual and reduces trustworthiness from a domain registration perspective. Despite this, the presence of official certifications and detailed contact information supports the site's legitimacy. Overall, the website is a well-maintained, professional platform for a niche energy compliance service provider. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and verifying domain registration details to improve trust and compliance.

H

Hotel International Brno

hotelinternational.cz

53

Hotel International Brno is a well-established hospitality business located in the historic center of Brno, Czech Republic. The hotel offers a range of accommodation options including rooms and suites, complemented by multiple restaurants and bars, event and meeting facilities, and wellness services. The website reflects a professional and customer-focused approach with multilingual support and integrated booking capabilities. The company maintains active social media channels and displays recognized certifications, enhancing its market credibility. Technically, the website employs a modern technology stack including jQuery, Google Maps API, Google Analytics, Facebook Pixel, and a third-party booking widget. It features a cookie consent mechanism compliant with GDPR, uses HTTPS, and integrates reCAPTCHA for security. However, some security headers are not visibly implemented, and WHOIS data is unavailable, which slightly impacts trustworthiness. The security posture is solid with encrypted communications and consent-based tracking, but could be improved by adding explicit security policies and security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear policies and user controls. Overall, the website and business present a low risk profile with strong professionalism and digital maturity. The main concern is the lack of WHOIS transparency, which should be investigated to ensure domain legitimacy and ownership clarity.

D

Děkovačka

dekovacka.cz

46

Děkovačka is a Czech-based innovative marketing platform specializing in leveraging e-commerce thank-you pages to create a unique performance marketing channel. The company connects non-competing e-shops to share discount coupons, thereby driving new customer acquisition and expanding email marketing databases. Established around 2021, it has grown to include over 300 e-shops and reaches more than 50,000 potential customers monthly. The website presents a professional and consistent brand image with comprehensive client testimonials and media coverage, reinforcing its market position. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, WPML for multilingual support, and Complianz for GDPR compliance. It uses common JavaScript libraries like jQuery and slick slider for UI components and integrates Google Analytics for tracking. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, HTTPS is enforced, and cookie consent mechanisms are in place, though explicit security headers and incident response policies are not publicly documented. The absence of WHOIS data limits transparency and slightly impacts trustworthiness, but the overall digital maturity and business credibility remain strong. No WAF or content blocking was detected, allowing full content access and analysis. Privacy compliance is well addressed, with clear policies and consent banners. The site does not contain any adult or questionable content, targeting general audiences in the e-commerce sector. Strategically, Děkovačka should enhance its security posture by implementing recommended HTTP security headers and publishing security and incident response policies. Improving WHOIS transparency or providing verified business registration details would further boost trust. Overall, the platform is well-positioned as a niche marketing solution with a solid technical foundation and compliance awareness.

N

Noble

thatsnoble.com

61

Noble is a technology company specializing in automating brand mentions to improve visibility in AI-driven search engines such as ChatGPT, Google AI Overview, Claude, and Perplexity. Their SaaS platform targets SEO agencies and in-house SEO teams, offering automated outreach, negotiation, and payment services to secure brand mentions in authoritative sources cited by large language models. The company positions itself as a niche player with proven conversion rates and a focus on AI search visibility. Technically, the website is built on Webflow with integrations including Google Analytics, HubSpot forms, and Google reCAPTCHA Enterprise, reflecting a modern and performant digital infrastructure. Security posture is strong with HTTPS and anti-bot measures, though some security headers and explicit incident response policies are absent. The WHOIS data is missing, which slightly reduces trust but the professional website and business model support legitimacy. Overall, Noble presents a credible, well-structured online presence with room for improvement in privacy compliance and security transparency.

S

Saqurai

saqurai.nl

46

Saqurai is a newly established technology company (founded in 2024) specializing in AI-powered chatbot solutions designed to enhance customer support and business process automation. Their flagship product is a Retrieval-Augmented Generation (RAG) chatbot that integrates with websites and social media platforms, leveraging OpenAI's GPT-4o to provide intelligent, real-time responses based on uploaded business documents. The company targets businesses seeking to improve customer engagement and operational efficiency through AI-driven chatbots. Technically, the website is built using modern web technologies including Svelte framework and integrates Google Fonts and Google Analytics for tracking. The site is mobile-optimized and presents a professional design with clear navigation. However, it lacks some advanced SEO and accessibility features. The use of HTTPS and DNSSEC indicates a good baseline security posture, though the absence of security headers and privacy/cookie policies highlights areas for improvement. From a security perspective, the site shows no signs of WAF or content blocking and does not expose sensitive data. However, the lack of published privacy and cookie policies, as well as incident response or vulnerability disclosure information, suggests incomplete compliance with GDPR and best security practices. The contact mechanism is limited to a web form without direct email or phone contacts, which may affect user trust and support responsiveness. Overall, Saqurai presents as a credible startup with a focused AI chatbot offering and a solid technical foundation. To enhance trust and compliance, the company should prioritize publishing comprehensive privacy and cookie policies, implement security headers, and provide clearer contact and incident response information. These steps will improve their security posture, regulatory compliance, and customer confidence.

N

Nielsen

nielsen.com

70

Nielsen is a globally recognized leader in audience insights, data, and analytics, specializing in media measurement and shaping the future of media consumption understanding. The company offers a comprehensive suite of services including audience measurement, media planning, marketing optimization, and content metadata solutions, targeting media companies, advertisers, and marketers worldwide. The website reflects a mature digital presence with multi-language support, strong SEO, and professional branding consistent with an enterprise-level organization. Technically, the site is built on WordPress with modern technologies such as Yoast SEO, Google Tag Manager, and OneTrust for privacy compliance. The infrastructure supports good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with geolocation-based consent mechanisms. The WHOIS data is unavailable or obscured, which is common for large enterprises to protect registrant privacy. Despite this, the website's content, branding, and external references strongly support its legitimacy. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Overall, Nielsen's website demonstrates a high level of professionalism, security, and compliance, supporting its position as a trusted global media analytics provider.

T

B2B magazín pro textilní, oděvní a kožedělnou branži

textil-obuv.cz

44

The website textil-obuv.cz operates as a B2B media magazine dedicated to the textile, clothing, and leather industries, primarily targeting professionals and businesses within these sectors in the Czech Republic. It provides industry news, updates, and advertising opportunities, positioning itself as a niche media outlet with a domain age dating back to 2010, indicating an established presence. The site features regular content updates, a professional design, and active social media channels on Facebook and LinkedIn, enhancing its market credibility. Technically, the website is built on WordPress 6.8.3, utilizing common web technologies such as jQuery, Font Awesome, and Swiper Slider for UI components. Hosting is inferred to be with WEDOS based on nameservers. The site is HTTPS enabled with Google Analytics integrated for visitor tracking. Mobile optimization and SEO practices are good, though accessibility is basic. However, the site lacks explicit privacy and cookie policies, and no consent mechanism is present, which are notable compliance gaps. From a security perspective, the site benefits from HTTPS but lacks security headers like Content-Security-Policy and X-Frame-Options. No exposed sensitive data or vulnerabilities were detected in the content. There is no visible incident response or security contact information, nor any vulnerability disclosure or security.txt file. These factors suggest a moderate security posture with room for improvement in compliance and security best practices. Overall, the website is a credible and professional B2B media platform with good content quality and technical implementation but requires enhancements in privacy compliance and security policies to align with best practices and regulatory requirements.

Nowaco market is a branded food retail store operated by Bidfood Czech Republic s.r.o., a leading food wholesale company in the Czech Republic. The website presents a professional and well-structured overview of their product offerings, including fresh and frozen fish, game meat, various meats, cheeses, and frozen goods. The business targets retail customers and gastronomic operations, leveraging its parent company's supply chain for quality assurance. Technically, the website uses standard web technologies including HTML, CSS, JavaScript, and Google Analytics for visitor tracking. The site is hosted by Active24 and shows moderate performance and basic mobile optimization. Security posture is moderate with cookie consent implemented but lacks visible security headers and formal privacy or security policies. The domain registration is consistent with the business history and shows no suspicious patterns. Overall, the website is trustworthy and professional but could improve in privacy compliance and security best practices.

B

Bidfood Czech Republic s.r.o.

primazmrzlina.cz

55

Prima zmrzlina is a traditional Czech ice cream manufacturer and seller, operating under Bidfood Czech Republic s.r.o., a subsidiary of the international Bidcorp group. The company offers a variety of well-known Czech ice cream brands such as Mrož, Pegas, Kuba, Piknik, and Pikao, emphasizing quality ingredients and traditional recipes. The website reflects a medium-sized enterprise with a strong local market presence and a commitment to social responsibility and sustainability, including Rainforest Alliance certification and a pledge to eliminate palm oil from products. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI libraries, hosted by Active24. It features good SEO practices, mobile optimization, and a cookie consent mechanism compliant with GDPR. However, explicit security headers and detailed security policies are absent, representing an area for improvement. Analytics usage is moderate, relying on Google Analytics with a visible cookie consent banner. Security posture is adequate but could be enhanced by implementing HTTP security headers and publishing a vulnerability disclosure policy. Contact information is comprehensive, including multiple regional sales representatives and customer service numbers, enhancing business credibility. No forms for direct user data collection were found, reducing immediate data protection concerns. Overall, the website is professional, trustworthy, and well-aligned with the company's business claims and history. Strategic improvements in security and compliance documentation would further strengthen its posture.

K

K&T s.r.o.

benatki.com

46

Benatki.com is an e-commerce fashion retailer based in Slovakia, operated by K&T s.r.o. The company offers classic and timeless fashion apparel made from natural materials, targeting a general audience primarily in Slovakia. The website is professionally designed with clear navigation, mobile optimization, and integrated marketing tools such as Google Analytics, Facebook Pixel, and Mailchimp. The business maintains a transparent online presence with comprehensive privacy and cookie policies compliant with GDPR. The domain is registered since 2020, consistent with the company's founding and market presence. Technically, the site uses modern JavaScript libraries, Webflow CSS, and OctoberCMS as the content management system, hosted likely by Websupport.sk. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, but could be improved by enabling DNSSEC and adding security headers. No critical vulnerabilities or malicious content were detected, and the site maintains good trust indicators including social media presence and clear contact information.

U

UNIWEB s.r.o.

regionbrno.cz

54

REGIONBRNO.CZ is a well-established regional news and information portal serving the Jihomoravský kraj region in the Czech Republic. Operated by UNIWEB s.r.o., the website offers daily news, business directories, event calendars, job listings, and regional advertising services. The portal positions itself as a leading media source for local news and community information, targeting residents and businesses within the region. The content is professionally curated and regularly updated, reflecting a mature digital presence.

M

Městská knihovna v Milevsku

knihmil.cz

54

Městská knihovna v Milevsku is a public municipal library serving the town of Milevsko and its surrounding region in the Czech Republic. The library provides a wide range of services including book lending for adults and children, cultural and educational programs, workshops, and digital library access. It operates under the auspices of the local government (Město Milevsko) and serves a diverse audience including families, schools, and regional users. The website reflects a well-maintained digital presence with clear navigation and relevant content tailored to its community. Technically, the site employs modern web technologies such as HTML5, CSS3, JavaScript, jQuery, and integrates third-party libraries for enhanced user experience like Swiffy Slider and Fancybox. It uses Google Analytics with privacy-conscious settings and is hosted securely over HTTPS. Security posture is generally good, with secure forms and no exposed sensitive data, though improvements in security headers and vulnerability disclosure mechanisms are recommended. Privacy compliance is strong, with clear GDPR and cookie policies and explicit user consent mechanisms. Overall, the website is professional, trustworthy, and well-suited to its public service mission, though the absence of WHOIS data limits domain legitimacy verification.

G

GASTRO-TIPY.SK

gastro-tipy.sk

62

Gastro-tipy.sk is a Slovak culinary content website offering a wide range of recipes, cooking tips, and gastronomic articles targeted at Slovak-speaking home cooks and food enthusiasts. The website is built on a modern Laravel 10 framework with integration of Google Analytics and a custom analytics service. It features a cookie consent mechanism and uses HTTPS for secure communication. The site provides rich content with good design quality and clear navigation, optimized for mobile devices. However, it lacks explicit contact information and detailed security or incident response policies. The WHOIS data is privacy protected, which is common and justified for this type of small content publishing website. Overall, the website is safe, professional, and trustworthy for its audience.

L

LATAM Airlines Group S.A.

latamairlines.com

49

LATAM Airlines Group S.A. operates as a leading airline in Chile and South America, offering a comprehensive range of travel services including flight bookings, travel packages, hotel reservations, car rentals, and travel insurance. The website targets travelers primarily in Chile and the broader South American region, leveraging a strong brand presence and a loyalty program (LATAM Pass) to enhance customer engagement. The company maintains a significant market position as the region's leading airline, supported by subsidiaries such as LATAM Cargo and partnerships with major travel service providers like Booking.com and Despegar.

O

Oblastní charita Hradec Králové

charitahk.cz

54

Oblastní charita Hradec Králové is a regional non-profit organization providing a wide range of social and healthcare services including support for seniors, homeless people, victims of domestic violence, and families with disabled children. It operates as part of the larger Charita Česká republika network and maintains a strong presence in the Hradec Králové region. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the site uses modern web technologies such as Google Tag Manager, Google Analytics, and a cookie consent management platform, ensuring compliance with GDPR and user privacy standards. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS data is a notable gap in domain trust assessment but does not detract significantly from the overall legitimacy given the organization's transparency and partner affiliations. Strategic recommendations include enhancing security policies, publishing incident response contacts, and improving domain registration transparency.

R

Kořenové koberce pro zdravý vývoj (nejen) nohou | RootyRUG

rootyrug.cz

51

RootyRUG is an e-commerce business specializing in health-promoting root-patterned carpets designed for families, adults, and children to support natural foot development and wellness. The website presents a niche product with a focus on sensory stimulation and physiotherapy benefits, supported by customer reviews and expert endorsements. The business operates primarily in the Czech Republic with a small-scale retail model. Technically, the website is built on the Eshop-rychle.cz platform, utilizing modern web technologies such as Google Tag Manager, Google Analytics, Matomo, and reCAPTCHA to ensure user tracking and security. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and form protections, though explicit security headers and published security policies are lacking. Privacy compliance is strong with comprehensive cookie consent and privacy policies aligned with GDPR. However, the absence of WHOIS data reduces domain trustworthiness and calls for further verification. Overall, the site is professional, trustworthy, and well-positioned within its niche market.

R

RedX International CZ s.r.o.

redx.cz

52

RedX International CZ s.r.o. operates a professional e-commerce website specializing in the manufacture and sale of high-quality quick-folding party tents, inflatable advertising tents, and related event equipment. The company positions itself as a leading European supplier with over 20 years of experience, offering a broad product range including custom printing and rental services. The website is well-designed, content-rich, and targets event organizers, businesses, and private consumers in the Czech Republic and Slovakia. Technically, the site uses modern analytics and marketing tools, including Google Analytics, Matomo, Facebook SDK, and retargeting services, with GDPR-compliant consent mechanisms. Security posture is good with HTTPS and reCAPTCHA usage, though some security headers and policies are missing. The absence of WHOIS data reduces domain trust but the professional presentation and business information support legitimacy. Overall, the site is safe, user-friendly, and professionally maintained.

O

Ozdobárna

ozdobarna.cz

56

Ozdobárna.cz is a Czech-based e-commerce retailer specializing in handcrafted wooden decorative products, including seasonal decorations, gifts, and accessories. The website presents a professional and well-structured online storefront targeting general consumers interested in unique wooden items. The business emphasizes Czech production quality and offers a broad product range with clear pricing and stock availability. Technically, the site uses modern e-commerce platform Eshop-rychle.cz, integrates Google Analytics, Matomo, and Google Tag Manager for analytics and marketing, and employs reCAPTCHA for form security. The site is mobile-optimized with good navigation and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the website's transparency in contact information and policies supports credibility. Overall, the site is safe, compliant with GDPR, and professionally maintained.

E

Estemia

estemia.cz

54

Estemia.cz is a Czech Republic based small e-commerce business specializing in handcrafted mineral jewelry and bracelets. The company emphasizes the use of certified, hypoallergenic materials and supports whale protection organizations through sales contributions. The website is professionally designed with a clear focus on environmental responsibility and customer satisfaction, supported by numerous positive reviews and guarantees. Technically, the site uses a modern e-commerce platform with integrated analytics and marketing tools, including Google Analytics, Facebook Pixel, and Matomo. Security posture is good with HTTPS enforced and secure forms, although some security headers are missing and no explicit security policies are published. Privacy compliance is well addressed with cookie consent mechanisms and a privacy policy in Czech. Overall, the site presents a trustworthy and professional online store with a niche market position.

K

Kovix Group s.r.o.

kxghospitality.com

72

KXG Hospitality is a specialized hospitality asset management company operating primarily in Central and Eastern Europe from Prague. The company focuses on maximizing property owners' profits through professional hotel operations, lease structuring, and comprehensive hotel services including new hotel openings and turnaround management. Their team has over two decades of experience and adheres to industry standards such as USALI. The website presents a professional image with clear service offerings and a consistent brand identity. Technically, the site uses modern JavaScript libraries and frameworks, supports mobile optimization, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. WHOIS data is unavailable, which slightly reduces trustworthiness but the overall business credibility remains high based on website content and social media presence.

O

ORAX, s.r.o.

orax.cz

45

ORAX, s.r.o. is a Czech technology company specializing in custom web applications, unique websites, Windows custom software, and proprietary economic software solutions. With over 30 years of market presence and more than 50 completed projects, the company targets businesses seeking tailored software solutions to meet their specific needs. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in Czech. Technical infrastructure includes modern JavaScript libraries such as Swiper.js and Google Analytics for visitor tracking. Security posture is moderate with cookie consent implemented but lacks visible HTTP security headers and incident response information. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but does not contradict the professional business presentation. Overall, the website demonstrates a solid business credibility and digital maturity appropriate for a small technology firm.

B

Bidfood

bidfood.cz

59

Bidfood.cz is a major Czech food manufacturer and distributor, part of the global Bidcorp group. The company offers a wide range of food products and services including manufacturing, distribution, and a B2B e-commerce platform. The website is professionally designed using Drupal 10, with good content quality and multilingual support. It includes GDPR-compliant privacy and cookie policies with user consent mechanisms. However, WHOIS data is unavailable, which slightly impacts domain transparency and trust. Security posture is moderate with room for improvement in security headers and published policies. Overall, the site is well-positioned in the Czech food retail and hospitality sectors with strong branding and digital presence.

V

Veletrhy Brno, a.s.

styl.eu

66

Veletrhy Brno, a.s. operates the STYL and KABO international fashion and footwear trade fairs held at the Brno exhibition grounds. These events serve as major B2B platforms for manufacturers, designers, buyers, and distributors primarily from the Czech Republic, Slovakia, and Eastern Europe. The company has a strong market position as the leading organizer of fashion industry trade fairs in Central Europe, with a history dating back to 1993. The website reflects a mature digital presence with professional design, comprehensive content, and active social media engagement. Technically, the site employs modern tracking and advertising technologies, including Google Tag Manager, Facebook Pixel, and Adform, while maintaining good SSL security and cookie consent mechanisms. However, the absence of publicly available WHOIS data reduces domain transparency and trustworthiness. Overall, the security posture is solid but could benefit from enhanced security headers and clearer incident response contacts. The website is safe for general audiences and complies with GDPR regulations.

E

EPRAVO.CZ, a.s.

epravo.cz

51

EPRAVO.CZ, a.s. operates a well-established Czech legal information portal providing comprehensive legal content including laws, court decisions, articles, and educational resources. The platform targets legal professionals and the general public interested in law, offering subscription-based premium services and an e-shop for courses and publications. The website demonstrates a mature digital infrastructure utilizing modern web technologies such as jQuery, Bootstrap, and various analytics and marketing tools. Security posture is solid with HTTPS enforcement, bot protection via Cloudflare Turnstile, and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data reduces domain registration transparency but does not detract from the professional presentation and trust signals evident on the site. Overall, the site is a credible and valuable resource in the Czech legal domain.

inpublic group s.r.o. is a Czech manufacturer specializing in interactive touch panels designed for public spaces including schools, senior homes, government offices, and businesses. With over 15 years of experience and more than 500 panels delivered across the Czech Republic, the company emphasizes quality, reliability, and security in its products. Their offerings include hardware, smart and intuitive software applications, professional service, and tailored content creation to enhance communication and education. The company maintains a strong local partnership ecosystem and positions itself as a trusted technology provider in its niche market. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and Complianz GDPR for compliance and SEO optimization. Google Analytics is integrated for visitor tracking with user consent. The site is mobile optimized and demonstrates good performance and accessibility standards, although some improvements in security headers and accessibility could be made. The hosting provider is not explicitly identified, but HTTPS is enforced with excellent SSL configuration. From a security perspective, the site follows best practices including HTTPS, cookie consent with opt-in, and no visible exposure of sensitive data or vulnerable libraries. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent. The domain registration is consistent with the business identity, showing legitimacy and no suspicious patterns. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the website presents a professional and trustworthy digital presence with good content quality and compliance posture. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and improving accessibility features to further strengthen trust and security culture.

Č

ČEVAK a.s.

vodarenskavezcb.cz

59

Vodárenská věž is a public water tower and tourist attraction located in České Budějovice, Czech Republic, operated by ČEVAK a.s., a regional water utility company. The website serves as an informational and promotional platform for visitors, offering details about tours, events, and the history of the tower. The site is well-structured, visually appealing, and provides clear contact information and social media links, enhancing visitor engagement and trust. Technically, the website uses modern web technologies including Google Maps API for location services and Google Tag Manager for analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be added for improvement. The absence of WHOIS data limits full domain trust assessment, but the website content and contact details strongly indicate legitimacy. Overall, the site is a reliable and professional digital presence for the Vodárenská věž attraction.

A

AnChoice CZ, s.r.o.

anchoice.cz

48

AnChoice CZ, s.r.o. operates a modern SaaS platform tailored for travel agencies and tour operators, offering millions of travel packages with real-time price and availability updates. The company has a strong market presence in the Czech Republic with over a decade of operational history and a medium-sized business footprint. Their platform includes marketing tools, business case management, and online booking capabilities, positioning them as a comprehensive solution provider in the travel technology sector. Technically, the website is built on WordPress with modern libraries and plugins, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. Overall, the business appears legitimate and professional with clear contact information and partner affiliations.

U

UNIWEB s.r.o.

uniweb.cz

57

UNIWEB s.r.o. is a Czech online agency specializing in web design, SEO, and custom software development, targeting primarily small to medium-sized businesses and entrepreneurs in the Czech Republic. The company has a professional web presence with a focus on responsive design and comprehensive online marketing services. Their market position is supported by a portfolio of client references and a media partnership with REGION24. Technically, the website employs modern frontend technologies including jQuery, Bootstrap, and popular marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms. Security posture is moderate with HTTPS implied but lacking explicit security headers and incident response information. WHOIS data is unavailable, which slightly impacts trust but does not negate the professional appearance and business legitimacy. Overall, the website is well-structured, user-friendly, and trustworthy for its target audience.

N

Nektar Natura

nektarnatura.com

50

Nektar Natura is a company specializing in dispensing solutions for the hospitality industry, offering a range of beverage dispensing systems and related services. Their website demonstrates a professional presence with a focus on trusted partnerships with leading hotel brands. The technical infrastructure is based on WordPress with Elementor, incorporating modern web technologies and analytics tools such as Google Analytics and Hotjar. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and privacy policy transparency. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the website is well-designed and functional, targeting hospitality businesses with a medium-sized market presence.

N

Non Gamstop Casinos - OXON AA

ember.london

53

The website oxonaa.org.uk operates as an affiliate and informational platform focusing on non Gamstop casinos for UK players. It provides casino reviews, guides, and affiliate links to various offshore casinos, targeting adult UK gamblers seeking alternatives to Gamstop self-exclusion. The site is built on WordPress with modern SEO and performance optimizations, including Yoast SEO and WP Rocket, and uses Google Analytics for visitor tracking. The domain is very new, registered in 2025, which aligns with the site's recent content but may raise trust concerns for some users. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks published privacy, cookie, or security policies, which are important for compliance and user trust. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for adult audiences interested in gambling. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and clearer business contact information.

N

Non Gamstop Casinos - OXON AA

psi.org.uk

53

The website 'Non Gamstop Casinos - OXON AA' operates as an affiliate and informational platform targeting UK players interested in casinos outside the Gamstop self-exclusion scheme. It provides curated reviews, guides, and affiliate links to licensed non Gamstop casinos, positioning itself in a niche gambling market segment. Technically, the site is built on WordPress with modern SEO and performance optimizations, including the use of Yoast SEO, WP Rocket, and Google Analytics. The site is mobile-optimized and performs well with fast loading times. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities, but lacks visible security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. The WHOIS data presents inconsistencies, notably a future domain creation date, which raises questions about domain legitimacy. Overall, the site is functional and professional but requires improvements in compliance and transparency to enhance trust and security.

V

vybrat-eshop.cz

vybrat-eshop.cz

10

Vybrat-eshop.cz is a Czech e-commerce comparison platform providing users with tools to search, compare, and review various e-shop systems and templates. It positions itself as the largest overview of e-commerce solutions in the Czech market, targeting entrepreneurs and businesses seeking to establish or improve their online stores. The website offers user-generated reviews, ratings, and news articles relevant to e-commerce trends and technologies. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Analytics, and integrates advertising through reputable networks such as Seznam SSP and Sklik. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks advanced security headers and explicit incident response policies. The absence of WHOIS data for the domain is a notable anomaly, slightly reducing trust, but the active and professional nature of the site supports its legitimacy. Overall, the site demonstrates a solid digital presence with room for security and compliance enhancements.

I

Instituto Português do Mar e da Atmosfera

ipma.pt

53

The Instituto Português do Mar e da Atmosfera (IPMA) is a Portuguese government entity specializing in meteorology, oceanography, climate monitoring, and seismic activity. The website serves as the national authoritative source for weather forecasts, marine conditions, seismic alerts, and climate data, targeting the general public, researchers, and governmental sectors. It provides comprehensive scientific and public service information, including interactive maps and detailed forecasts. The site is well-branded and consistent with its government affiliation, offering a professional and trustworthy user experience. Technically, the website is built on the OpenCms content management system and utilizes JavaScript libraries such as Leaflet for mapping and jQuery for interactivity. It integrates Google Analytics for user tracking but lacks explicit cookie consent mechanisms. The site performs moderately well with basic mobile optimization and accessibility features. However, some technologies like jQuery are outdated, and security headers are not visibly implemented, which could be improved. From a security perspective, the site uses HTTPS and does not expose sensitive data. There are no detected vulnerabilities or WAF challenges, indicating a stable security posture. However, the absence of privacy and cookie policies, as well as incident response information, suggests gaps in compliance and transparency. The WHOIS data confirms the domain's legitimacy as a government entity, reinforcing trust. Overall, the IPMA website is a credible and authoritative source for meteorological and oceanographic information in Portugal, with room for improvement in privacy compliance, security best practices, and modernization of technical components.

E

Erlebnis Akademie AG

eak-ag.de

50

Erlebnis Akademie AG is a German company specializing in leisure and adventure tourism, operating treetop walks, adventure forests, and team training services. The company maintains a professional web presence with investor relations, press releases, and corporate information targeting both customers and investors. The website is well-structured, primarily in German, and provides clear navigation and contact details. Technically, the site uses a custom CMS with common JavaScript libraries such as jQuery and Google Analytics with IP anonymization, indicating a moderate level of digital maturity. Security posture is adequate with cookie consent mechanisms and HTTPS usage, but lacks advanced security headers and formal security policies. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and accessibility.

A

Auto Trutnov s.r.o.

autotrutnov.cz

44

Auto Trutnov s.r.o. is a small automotive dealership based in the Czech Republic, specializing in authorized sales and servicing of Ford, Nissan, and Piaggio vehicles, along with vehicle conversion services. The company has a long-standing presence since 2004, supported by domain registration data. The website serves as a basic informational portal linking to brand-specific subdomains and highlighting key services. Technically, the site uses standard web technologies including Google Analytics for visitor tracking but lacks advanced frameworks or CMS platforms. Security posture is moderate with HTTPS implied but no visible security headers or privacy policies, indicating room for improvement in compliance and security transparency. No contact information or privacy-related policies are present on the homepage, which impacts user trust and regulatory compliance. Overall, the website is accessible, safe, and functional but would benefit from enhanced privacy, security, and contact transparency to improve user confidence and compliance.

T

TROELL s.r.o.

ibyznys.cz

68

Troell s.r.o. operates the iBYZNYS e-commerce platform, targeting companies using ERP Byznys VR or B6 systems. The company provides a B2B ordering system and B2C e-shop solution integrated with ERP, positioning itself as a specialized software provider in the Czech Republic. The website demonstrates a mature digital infrastructure with modern technologies such as jQuery, Bootstrap, and Google Analytics, and includes advanced security features like encrypted transmissions and biometric login support. Security is a key focus, with visible badges and detailed blog content emphasizing best practices and compliance with GDPR and the Digital Services Act. Despite the lack of WHOIS data, the website presents professional contact information and a comprehensive cookie consent mechanism, indicating strong privacy compliance. Overall, the site is well-designed, user-friendly, and trustworthy, though the absence of WHOIS data slightly reduces domain trustworthiness.

P

Pluxee

pluxee.cz

66

Pluxee is a digital benefits provider focused on offering employee benefits for dining and leisure activities, primarily serving the Czech market. The company positions itself as a world leader in quality of life services, with a large network of over 73,000 accepting locations and millions of users benefiting from its services. The website reflects a professional and consistent brand image, targeting general audiences interested in digital benefit solutions. Technically, the site is built on Drupal CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, and OneTrust for cookie consent, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks visible security headers and published security policies, which are areas for improvement. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the website content and structure suggest a credible business. Overall, the site is well-designed, mobile-optimized, and provides a good user experience, but could enhance transparency and security documentation to strengthen trust and compliance.

A

APEG - Associação Portuguesa de Empresas de Gás

apeg.pt

62

APEG - Associação Portuguesa de Empresas de Gás is a non-profit scientific, technical, and professional association representing twenty-six companies in the Portuguese natural gas sector. The website serves as an information hub for industry stakeholders, providing news, events, and resources related to natural gas and renewable gases. The organization holds a solid market position within Portugal's energy sector, focusing on advocacy and sector development. Technically, the website employs AngularJS and jQuery with Google Analytics and Cookiebot for analytics and consent management, reflecting a moderate level of digital maturity. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks visible advanced security headers and uses an outdated jQuery version, which could pose minor risks. Overall, the site is professional, compliant with GDPR, and trustworthy, with room for security enhancements.

S

SUPER Sport spol. s r.o.

boudamama.cz

57

Bouda Máma is a family-oriented wellness hotel located in the Krkonošský národní park in the Czech Republic, offering a range of accommodation options, wellness services, dining, and recreational activities. The business targets families, tourists, and corporate clients seeking relaxation and active leisure in a scenic mountain environment. The website demonstrates a mature digital presence with multilingual support, online booking capabilities, and active social media engagement. Technically, the site uses modern web technologies including Google Analytics, Facebook Pixel, and jQuery, hosted likely by a Czech hosting provider. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data reduces domain transparency but does not detract from the professional presentation and trust signals on the site. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements.

C

CorCo Systems a.s.

corrency.cz

59

Corrency.cz is a Czech Republic-based platform operated by CorCo Systems a.s. that focuses on revitalizing local economies through municipal projects supporting residents, children, seniors, and cultural activities. The platform collaborates with government bodies and financial institutions, positioning itself as a niche solution for regional economic development. The website demonstrates a good level of digital maturity with modern technologies such as Google Analytics, Microsoft Clarity, and Bootstrap frameworks, alongside a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and nonce usage, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data limits domain trust verification, but the presence of credible partnerships and testimonials supports legitimacy. Overall, the site is professional, user-friendly, and trustworthy with moderate technical performance and good privacy compliance.

I

iAšsko.cz (implied editorial team)

iassko.cz

58

iassko.cz is a Czech regional news portal primarily serving the Aš region and Karlovy Vary area. It provides localized news, event calendars, cultural updates, and community information. The site targets local residents and stakeholders, operating on an advertising-supported model with premium content and newsletter subscriptions. The website is professionally designed with consistent branding and good content quality, reflecting a small but credible media outlet. Technically, the site uses modern web technologies including Bootstrap, jQuery, OwlCarousel, and Google Analytics, ensuring mobile responsiveness and moderate performance. Security posture is adequate with HTTPS, CSRF protection, and cookie consent mechanisms, though security headers and explicit incident response policies are absent. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site is trustworthy, safe, and well-positioned as a local news source.

G

GELPO, s.r.o.

gelpo.cz

9

GELPO, s.r.o. is a Czech manufacturing company specializing in the development and production of rubber products made from recycled and synthetic rubber granulate. Their product portfolio includes rubber flooring for sports and playgrounds, stable flooring for horses and livestock, anti-vibration and soundproof mats, acoustic cladding for shooting ranges, and rubber pads for construction and engineering applications. The company targets businesses and institutions requiring durable and ecological rubber solutions. The website reflects a medium-sized enterprise with a consistent brand presence and active social media engagement. Technically, the website is built on the iCard.cz platform using Bootstrap 3.3.2 and Vue.js 3.2.45, with Google Analytics integrated for visitor tracking. The site is mobile responsive and well-structured, though accessibility features are basic. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks security headers and explicit privacy or incident response policies. The absence of WHOIS registration data reduces domain trustworthiness, though the website content and related sister companies suggest legitimate business operations. No critical vulnerabilities or adult content were detected. Overall, the site demonstrates good content quality and business credibility but would benefit from enhanced privacy and security disclosures. Strategic recommendations include publishing a comprehensive privacy policy, implementing security headers, providing incident response contacts, and verifying domain registration details to improve trust and compliance.

S

Superbrands News

superbrandsnews.com

37

Superbrands News is a niche media platform established in 2019 that focuses on delivering brand news and updates related to Superbrands status worldwide. The website serves brand professionals, marketers, and business stakeholders by providing timely announcements about brands achieving recognition in various countries. The business operates primarily as a media publisher with a specialized focus on brand status and recognition news. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various plugins for enhanced UI features such as carousels and news tickers. The site is mobile optimized and uses Google Analytics and Analytify for user tracking and event monitoring. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and explicit security headers, which are recommended for improved security posture. Privacy compliance is basic with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website is professional and trustworthy but could improve transparency and security practices.