Security Directory

S

SINCLAIR Global Group s.r.o.

sinclair-lighting.cz

55

SINCLAIR Global Group s.r.o. operates the Sinclair Lighting website, specializing in manufacturing and designing advanced LED lighting fixtures and systems. Their offerings target a professional audience including architects, project designers, investors, and installation firms, focusing on energy-efficient, photobiologically safe LED lighting solutions for various sectors such as education, healthcare, industrial, and public lighting. The company emphasizes quality, innovation, and compliance with modern standards including healthy lighting concepts aligned with human biorhythms. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and Google services such as Tag Manager and Analytics. The site is built on Pagio CMS and demonstrates good mobile responsiveness and user experience. Privacy compliance is robust with a detailed cookie consent mechanism and a comprehensive privacy policy in Czech. However, the absence of WHOIS data and security headers indicates areas for improvement in transparency and security hardening. Security posture is moderate; HTTPS is assumed but no explicit security headers were detected. No incident response or vulnerability disclosure information is provided, which could be a gap in security readiness. The site shows no signs of malicious content or adult material, maintaining a professional and safe environment. Overall, the website presents a credible and professional business front with good privacy practices but would benefit from enhanced security policies, transparency in domain registration, and improved technical security controls to strengthen trust and compliance.

H

HOBBY TIME ON s.r.o.

tvoriva-olomouc.cz

9

Tvořivá Olomouc is a small Czech event organizer specializing in creative and artistic exhibitions and workshops targeted at families and creative enthusiasts. The website promotes upcoming events, showcases partner collaborations, and offers a newsletter subscription to keep visitors informed. The business model revolves around event organization and sales of creative materials, with a focus on local creators and community engagement. Technically, the website uses legacy JavaScript libraries such as jQuery 1.9.1 and integrates Google Analytics and Facebook SDK for tracking and social media presence. The site is moderately optimized for mobile and SEO, with basic accessibility features. Security posture is moderate but could be improved by updating libraries, adding security headers, and ensuring HTTPS enforcement. Privacy compliance is basic, with a cookie consent banner but no dedicated privacy policy page. The absence of WHOIS data raises concerns about domain registration legitimacy, impacting overall trustworthiness. Contact information is limited to an email address consistent with the domain. Overall, the website is functional and professional but would benefit from enhanced security, privacy, and transparency measures.

A

AiVision, s.r.o.

svicky.net

61

Svíčky.net is a Czech Republic based e-commerce retailer specializing in hobby crafting supplies, particularly components for candle and soap making. The website offers a comprehensive catalog of products and detailed category navigation, targeting hobbyists and small-scale crafters. The company behind the site is AiVision, s.r.o., indicating a small-sized business focused on niche retail. The site integrates modern web technologies and marketing tools such as Google Tag Manager and Facebook Pixel, demonstrating a moderate level of digital maturity. Security posture is good with HTTPS enforced and secure login mechanisms, although some HTTP security headers could be improved. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration status, which should be further investigated. Overall, the site presents a professional and trustworthy front for its target market.

Steiner & Kovarik is a small family-owned premium chocolate manufacturer based in the Czech Republic, operating since 2005. The company produces high-quality, design-focused chocolate products sold through multiple physical stores in Prague and an online e-shop, with international distribution including prestigious clients such as the Sultan's palace. The website is professionally designed, mobile-optimized, and uses a modern technology stack including jQuery, Google Tag Manager, Facebook Pixel, and Matomo Analytics. Security posture is good with HTTPS and reCAPTCHA implemented, but lacks some security headers and formal privacy and terms policies. The WHOIS data is missing, which raises concerns about domain registration legitimacy despite the professional online presence. Overall, the website is trustworthy and business credible but would benefit from improved transparency and security practices.

D

Digiforum s.r.o.

digiforum.cz

40

Digiforum s.r.o. operates the largest photography trade fair in the Czech Republic, offering workshops, seminars, lectures, and exhibitions focused on digital photography. The website targets photography enthusiasts, professionals, students, and seniors, providing event information and ticket sales. The business model centers on event organization and educational services within the photography media sector. Technically, the website uses a traditional jQuery-based stack with external libraries and Google Fonts, delivering moderate performance and basic mobile optimization. Security posture is moderate with HTTPS assumed but lacking explicit security headers and advanced protections. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content appears professional and legitimate. Overall, the site is safe, well-structured, and serves its niche audience effectively.

A

Académie royale de Belgique

academieroyale.be

53

The Académie royale de Belgique is a well-established Belgian royal academy dedicated to the advancement of sciences, arts, letters, and societal studies. The website serves as an institutional portal providing comprehensive information about the academy's history, statutes, members, commissions, publications, and events. It targets academics, researchers, students, and the general public interested in Belgian cultural and scientific heritage. The business model is non-profit, focusing on educational and cultural dissemination supported by government and institutional partnerships. Technically, the website is built on a legacy 4D Web Server CMS platform, utilizing older JavaScript libraries such as jQuery 1.9.1 and Highslide JS. The hosting provider is OVH, a reputable European hosting company. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be enhanced. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and privacy policies. From a security perspective, the site enforces HTTPS and provides cookie consent controls, but it uses outdated JavaScript libraries with known vulnerabilities and lacks advanced security headers like CSP or HSTS. No incident response or security policy information is publicly available. No exposed sensitive data or malicious content was detected, but updating dependencies and improving security headers are recommended. Overall, the website is professional, trustworthy, and serves its academic audience well. Strategic improvements in technical modernization and security posture would enhance resilience and user trust.

P

Poem / Atelier Jérôme Knebusch

poem-editions.com

51

Poem Editions is a small independent publisher specializing in editions and typefaces, directed by Jérôme Knebusch and based in Frankfurt am Main, Germany. The company offers a curated selection of artworks, typefaces, books, pamphlets, and posters, emphasizing originality and quality. Their business model is focused on direct online sales through their website, targeting design professionals, typographers, artists, and cultural institutions worldwide. The website is professionally designed, mobile-optimized, and provides comprehensive information about ordering, licensing, and privacy policies. Technically, the site uses modern web technologies including Bootstrap, jQuery, Stripe for payments, and Snipcart for ecommerce, ensuring secure transactions and a good user experience. Security posture is solid with HTTPS and secure payment gateways, though some improvements in security headers and cookie consent mechanisms are recommended. The absence of WHOIS data for the domain is a notable concern, impacting domain trustworthiness despite the professional appearance and operation of the website. Overall, the site presents a trustworthy and niche-focused business with room for enhanced transparency and compliance.

S

Sinclair Corporation, Ltd.

sinclair-solutions.com

62

Sinclair Corporation, Ltd. is an established company specializing in air conditioning, heat pumps, and LED lighting products, targeting both B2B partners and end consumers globally. The company emphasizes environmental protection and quality, operating in 46 countries with a broad product portfolio and aftersales support including technical training. The website reflects a professional digital presence with multilingual support and clear navigation. Technically, the site uses modern web technologies such as Bootstrap and jQuery, with Google Tag Manager and Analytics for marketing and tracking. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing and WHOIS data is unavailable, which slightly reduces trust. Overall, the site is well-maintained, GDPR compliant, and provides comprehensive contact information and customer support channels.

R

Recyklohraní, o.p.s.

recyklohrani.cz

51

Recyklohraní, o.p.s. is a Czech non-profit organization dedicated to environmental education and sustainability, primarily targeting schools and educators. The website serves as a platform for educational tasks, recycling campaigns, and year-round eco-games, engaging thousands of registered schools. It maintains a strong partnership ecosystem with recognized environmental organizations, enhancing its credibility and outreach. Technically, the website employs a mature technology stack including jQuery, Bootstrap, FontAwesome, and the Nette Framework. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Hosting and domain registration are consistent and reliable, with Active24 as the registrar and hosting provider. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks visible security headers such as Content-Security-Policy and HSTS, which are recommended to enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies. Overall, the website presents a low-risk profile with a good security posture and strong business credibility. Strategic improvements in security headers and accessibility could further enhance its resilience and user experience.

P

PIPNI s.r.o.

pipni.cz

43

PIPNI s.r.o. is a Czech-based hosting provider established in 2001, offering a comprehensive suite of hosting services including WebHosting, VPS, VirtualBox, and domain registration. The company positions itself as a modern and reliable hosting provider with a strong market presence, hosting over 50,000 domains and more than 1,000 virtual servers. Their business model focuses on providing automated, secure, and scalable hosting solutions primarily targeting individuals and businesses in need of Linux-based hosting platforms. The website is professionally designed, well-structured, and provides clear pricing and service information in Czech with an English language option. Technically, the website employs a variety of JavaScript libraries such as jQuery and Sequence.js to enhance user experience and interactivity. Hosting is self-managed, with a focus on Linux platforms and SSD storage options. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security practices include HTTPS with free SSL certificates and an emphasis on ISO certifications, but lack explicit security headers and cookie consent mechanisms. From a security perspective, the website demonstrates a moderate security posture with no visible vulnerabilities or exposed sensitive data. However, improvements are recommended in implementing security headers, cookie consent, and publishing incident response or vulnerability disclosure policies. The WHOIS data confirms the legitimacy of the domain and company, showing consistent registration details aligned with the business claims. Overall, PIPNI s.r.o. presents a trustworthy and professional hosting service with room for enhancement in privacy compliance and security best practices. Strategic recommendations include adopting comprehensive cookie consent, enhancing security headers, and formalizing vulnerability disclosure processes to strengthen their security and compliance posture.

O

Ollero

ollero.cz

47

Ollero is a Czech-based digital marketing agency specializing in PPC advertising, SEO optimization, social media marketing, and additional marketing services. Established in 2017, the company has positioned itself as a reputable player in the Czech market, holding Google Partner certifications that attest to its expertise and quality of service. The website reflects a professional and comprehensive marketing service provider targeting businesses seeking measurable online marketing results. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Smartlook, indicating a mature digital infrastructure focused on performance and user behavior analysis. Security posture is solid with HTTPS enabled and secure form handling, though there is room for improvement in implementing security headers and explicit incident response policies. Overall, the site is well-optimized for SEO, mobile-friendly, and provides clear contact and business information, supporting a high trustworthiness rating.

The website hotelclass.info serves as an informational portal providing hotel classification details segmented by country via multiple subdomains. The business model appears to be a niche informational service targeting travelers or hospitality professionals seeking classification standards across various European countries. The site is small in scale with basic content quality and moderate branding consistency. Technically, the site employs common open-source libraries such as jQuery, Bootstrap, and TinyMCE, indicating a moderate level of digital maturity but lacks advanced CMS or hosting details. Security posture is weak due to lack of visible HTTPS enforcement, absence of security headers, and no incident response or security policy disclosures. Privacy compliance is minimal with only a basic privacy policy page in German and no cookie consent mechanisms. Overall, the site is accessible and safe but lacks business credibility signals such as contact information or certifications, resulting in a moderate risk profile.

A

American Society for Clinical Pathology

ascp.org

71

The American Society for Clinical Pathology (ASCP) operates a comprehensive and professionally designed website serving over 100,000 pathologists and laboratory professionals. The organization focuses on education, certification, and advocacy to improve patient care within the healthcare sector. Their market position is strong as a leading professional society in clinical pathology, offering a broad range of services including training, credentialing, and member resources. The website content is rich, well-structured, and targeted to healthcare professionals and students, reflecting a mature and established entity. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and multiple analytics and marketing tools such as HubSpot, Microsoft Clarity, and Google Tag Manager. Hosting is on Microsoft Azure, ensuring reliable performance and scalability. The site is mobile-optimized, accessible, and SEO-friendly, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, uses multiple security headers, and does not expose sensitive data. However, explicit security policies and incident response information are not publicly available, indicating room for improvement in transparency and preparedness. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. WHOIS data is privacy protected, which is typical for professional organizations, and does not raise immediate concerns. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for its audience and business model. Strategic recommendations include publishing detailed security and incident response policies, establishing a vulnerability disclosure program, and enhancing transparency around data protection roles to further strengthen trust and compliance.

I

IDIF

idif.cz

32

IDIF is a Czech-based educational institution specializing in digital photography courses and related services. The website offers a variety of photography courses for beginners and advanced users, rekvalifikace (requalification) programs, equipment rentals, and an e-shop. The business targets photography enthusiasts and professionals seeking to improve their skills. The site also publishes a weekly photography magazine called iZIN IDIF. Technically, the website uses a combination of jQuery libraries, Google Analytics, Adsense, and AddThis for social sharing, running on the WMpublic CMS platform. The site is secured with HTTPS and includes a login system for user accounts. However, there is no visible cookie consent mechanism or detailed privacy policy compliance indicators, which may pose GDPR compliance risks. The WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective. Overall, the website is professionally designed with good content quality and moderate technical implementation, but it could improve its security posture and privacy compliance.

F

Fórum dárců | Czech Donors Forum

darcovskasms.cz

44

The website www.darcovskasms.cz operates as a charitable SMS donation platform managed by the Czech Donors Forum, a non-profit organization. It facilitates one-time and recurring donations via SMS to various social and humanitarian projects in the Czech Republic. The platform is supported by major Czech mobile operators and government entities, indicating a strong market position within the charitable sector. The site provides clear information on donation methods, project categories, and partner organizations, targeting the general public interested in supporting non-profit causes. Technically, the website employs common JavaScript libraries such as jQuery and Slick Carousel, uses HTTPS, and implements a cookie consent mechanism compliant with GDPR principles. The site is mobile-optimized with good navigation and SEO practices. However, it lacks explicit privacy policy and terms of service pages, and no advanced security headers were detected, which are areas for improvement. From a security perspective, the site shows a moderate security posture with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain reduces trustworthiness and raises concerns about domain registration legitimacy. No incident response or vulnerability disclosure information is provided, which could be enhanced to improve security transparency. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing security headers, verifying domain registration details, and establishing a vulnerability disclosure process to strengthen security and compliance posture.

H

Hôpitaux Robert Schuman

acteurdemasante.lu

56

Acteur de ma santé is a health information platform affiliated with the Hôpitaux Robert Schuman hospital group in Luxembourg. It provides a wide range of health-related educational content, including articles, live sessions, and interactive tools, targeting the general public, patients, and healthcare professionals. The website is well-branded, professionally designed, and offers multilingual support primarily in French and German. It leverages WordPress CMS with modern web technologies and SEO best practices to deliver content effectively. Technically, the website uses WordPress 6.8.1, jQuery, Google Tag Manager, and Yoast SEO plugin, hosted on infrastructure associated with EuroDNS. The site demonstrates good mobile optimization and accessibility features, ensuring a positive user experience. Performance is moderate, with asynchronous loading of scripts and optimized images. From a security perspective, the site enforces HTTPS and uses asynchronous tag management. However, it lacks visible security headers and explicit security or incident response policies on the site. Privacy and cookie policies are not found, indicating a gap in GDPR compliance. No contact emails or phone numbers are directly available, which may impact user trust and support accessibility. Overall, the website is a trustworthy and professional health information resource with strong business credibility and technical implementation. To enhance security posture and compliance, it should implement security headers, publish privacy and cookie policies with consent mechanisms, and provide clear contact information for data protection and incident response.

GRAWEB s.r.o. is a small Czech creative advertising agency specializing in marketing, graphic design, printing, and web development services. The company targets local and regional businesses seeking professional advertising and web solutions. Their website demonstrates a mature digital presence with a portfolio of client references and active social media engagement. Technically, the site uses a modern JavaScript stack with analytics and marketing tools integrated, though some security best practices such as security headers and privacy policies are missing. The security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks comprehensive security policies and vulnerability disclosures. The WHOIS data is missing or indicates the domain may be unregistered or expired, which raises concerns about domain legitimacy and trustworthiness. Overall, the website is functional and professional but would benefit from improved compliance and security transparency.

O

OZO Ostrava s.r.o.

ozoostrava.cz

48

OZO Ostrava s.r.o. is a well-established Czech company specializing in waste collection, sorting, recycling, and environmental services primarily serving the city of Ostrava and surrounding areas. The company has a long history dating back to 1949 and offers a comprehensive range of services including municipal and industrial waste management, hazardous waste disposal, biogas collection, ecological education, and operates a reuse center and an e-shop for waste-related products. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting both citizens and businesses. Technically, the site employs a modern JavaScript stack with integrations such as Google Maps and FullCalendar, and uses the Shopnero CMS platform. Security posture is good with HTTPS enabled and secure forms, though explicit security policies and incident response contacts are not published. Privacy compliance is partially addressed with a cookie consent banner but lacks a dedicated privacy policy page. WHOIS data confirms the domain's legitimacy and long-term registration consistent with the company's history. Overall, the website is trustworthy, functional, and serves its audience effectively.

Bayer is a global enterprise operating in healthcare and agriculture sectors, with a long-standing presence in the Czech Republic since 1884. The website reflects a professional corporate identity with consistent branding and a focus on providing information about Bayer's operations in Czechia. The technical infrastructure is modern, leveraging Drupal 11 CMS, Google Tag Manager, and OneTrust for cookie compliance, indicating a mature digital presence. Security posture is strong with HTTPS enforced and clickjacking protections in place, although explicit security policies and incident response contacts are not published on the site. Privacy compliance is supported by cookie consent mechanisms, but a clearly accessible privacy policy page was not identified in the provided content. WHOIS data for the domain is not publicly available, which is unusual for a major corporation but does not detract significantly from the site's legitimacy given the brand recognition and content quality. Overall, the site is well-designed, secure, and compliant with basic privacy standards, suitable for a large multinational corporation.

E

ESO travel

esotravel.cz

47

ESO travel is a Czech travel agency specializing in discovery tours and exotic vacations worldwide, offering trips to over 136 countries. The website is professionally designed, mobile-optimized, and provides extensive travel options including last minute and first moment offers. The technical infrastructure leverages modern JavaScript libraries, Google Tag Manager, and Facebook Pixel for analytics and marketing. Security posture is strong with HTTPS and cookie consent mechanisms, though security headers could be improved. The absence of WHOIS data is a concern for domain legitimacy verification but the website content and business information suggest a legitimate and established travel service provider. Overall, the site is trustworthy and well-positioned in the hospitality sector.

ergoline GmbH is a German-based manufacturer specializing in ergometers and related medical and training equipment. The company offers a broad product portfolio including bicycle ergometers, reclining ergometers, special ergometers, treadmills, and cardiac rehabilitation systems. They emphasize quality and precision, with products developed and produced exclusively in Germany, certified to international standards such as DIN EN ISO 13485. The website targets healthcare providers, rehabilitation centers, and fitness facilities, positioning ergoline as a globally successful player in the ergometer market. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries like jQuery and Google Analytics for user insights, with a good level of mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and no explicit incident response or vulnerability disclosure information is provided. The WHOIS data is unavailable, which raises some concerns about domain registration legitimacy, but the professional website content and clear contact information mitigate this risk. Overall, the site is trustworthy, professional, and compliant with GDPR and privacy standards.

The website www.mojerevma.cz is a Czech informational portal dedicated to educating the general public about rheumatic diseases. It offers a variety of content including articles, videos, and an online magazine, authored or curated by medical professionals. The site targets individuals seeking knowledge about rheumatology and related health topics. Technically, the site is built on LuckyWonder CMS 3.0 and uses common web technologies such as jQuery, FontAwesome, and Google reCAPTCHA v3 for form protection. The design is professional and mobile-optimized, providing a good user experience with clear navigation. Security posture is moderate with HTTPS enforced and spam protection on forms, but lacks advanced security headers and explicit privacy or cookie policies, which are compliance gaps. The absence of WHOIS data limits domain legitimacy verification, though the website content and partner affiliations suggest a legitimate healthcare informational service. Overall, the site scores moderately well on content quality, technical implementation, and business credibility but needs improvements in privacy compliance and security best practices.

The website 'Nechci bolest | CENTRUM LÉČBY BOLESTI' serves as an informational and educational platform focused on pain treatment for the general public, primarily in the Czech Republic. It provides comprehensive content about different types of pain, treatment options, practical advice, and alternative therapies. The site also offers a contact form for users to ask questions directly to medical professionals and the editorial team. The presence of partner projects and a dedicated magazine subdomain indicates a networked approach to healthcare education. Technically, the site uses a variety of modern web technologies including jQuery, Bootstrap, FontAwesome, Google Analytics, and Google reCAPTCHA v3, built on the LuckyWonder CMS 3.0 platform. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Cookie consent mechanisms are implemented to comply with GDPR requirements. From a security perspective, the site employs reCAPTCHA to protect forms from spam and includes a cookie consent banner. However, no explicit security headers were detected, and WHOIS data for the domain is missing, which raises concerns about domain registration transparency. No critical vulnerabilities or malware indicators were found in the content. The site lacks explicit privacy and security policies, which could be improved to enhance user trust and compliance. Overall, the website is a well-structured, content-rich resource for pain treatment information with moderate technical maturity and security posture. Strategic improvements in domain registration transparency, security headers, and privacy documentation are recommended to strengthen trust and compliance.

P

Vítejte v eshopu Polojasno.cz - Polojasno.cz

polojasno.cz

46

Polojasno.cz is a Czech e-commerce website specializing in health and orthopedic products such as relaxation footwear, bandages, orthoses, bathing covers, creams, and supportive stockings. The site targets consumers interested in wellness and orthopedic aids, offering a range of products with online shopping capabilities. The website demonstrates a consistent brand presence with a professional design and clear navigation, supporting a positive user experience. Technically, the site leverages common web technologies including jQuery, Bootstrap, Google Tag Manager, and Google Analytics, indicating a moderate level of digital maturity. Mobile optimization is good, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and detailed security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and policies suggest legitimate business operations. Overall, the site is safe for general audiences and compliant with GDPR requirements.

M

MS félag Íslands

msfelag.is

63

MS félag Íslands is a non-profit organization dedicated to supporting individuals affected by Multiple Sclerosis in Iceland. The website serves as a comprehensive resource offering educational materials, support services, publications, and community engagement opportunities. It targets patients, families, healthcare professionals, and the Icelandic public interested in MS-related information and support. The organization appears well-established within its niche, providing a broad range of services and information online. Technically, the website is built on the Moya CMS framework and utilizes modern web technologies including jQuery, Google Tag Manager, and Facebook SDK for analytics and social media integration. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and security headers implementation. From a security perspective, the site enforces HTTPS and uses asynchronous loading of third-party scripts, which is positive. However, the absence of visible security headers and lack of a published privacy or cookie policy indicate gaps in compliance and security best practices. The missing WHOIS data for the domain reduces trust from a domain registration standpoint, though the website content itself appears legitimate and professional. Overall, the website is a valuable resource for its community but should enhance its privacy disclosures, security headers, and domain registration transparency to improve trust and compliance.

G

GPS Ofa s.r.o.

gps-ofa.cz

43

GPS Ofa s.r.o. is a Czech family-owned company established in 1995 specializing in the distribution and sale of premium healthcare materials and medical devices, including implants and orthopedic products. The company operates both B2B and B2C e-commerce platforms and holds an ISO 13485:2016 certification, underscoring its commitment to quality standards in medical device supply. The website reflects a professional presence with clear product catalogs and partner affiliations with reputable medical brands. Technically, the site employs common JavaScript libraries and frameworks such as jQuery and Bootstrap, providing a moderate performance and good mobile responsiveness. Security-wise, the site implements cookie consent mechanisms and GDPR-compliant privacy policies but lacks visible HTTP security headers and explicit security policies. The absence of WHOIS data for the domain reduces domain registration trust, though the business information and website content appear legitimate and professional. Overall, the site presents a solid digital footprint with room for security and technical enhancements.

T

The National Heritage Institute

npu.cz

45

The National Heritage Institute is a large government organization under the Ministry of Culture of the Czech Republic, managing over a hundred state monuments and providing heritage conservation services. Their website offers information about castles, chateaux, heritage conservation projects, events, and an e-shop for related publications. The site targets the general public, tourists, and professionals interested in cultural heritage. Technically, the website uses modern web technologies including Google Tag Manager, Google Analytics, Leaflet.js for maps, and web fonts from Typekit and Google Fonts. The site is mobile-optimized with good navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are missing. No signs of WAF or content blocking were detected, and the domain registration data is consistent with the organization's government affiliation and long history. Overall, the website is trustworthy, safe, and professionally maintained.

I

Irish Nurses & Midwives Organisation

inmo.ie

63

The Irish Nurses & Midwives Organisation (INMO) is Ireland's largest professional nursing and midwifery trade union and association, serving members across all health service areas. The organization provides tailored support, professional development, employment rights advice, and advocacy services to nurses and midwives. The website reflects a strong market position with comprehensive member resources, events, and campaigns, targeting healthcare professionals in Ireland. Technically, the website is built on the DNN CMS platform with modern JavaScript frameworks including Angular 14 and Alpine.js, supported by jQuery libraries. It integrates Matomo analytics and cookie consent mechanisms, demonstrating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. From a security perspective, the site enforces HTTPS and uses anti-forgery tokens in forms, but lacks explicit security headers and documented incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, with clear contact information and social media presence enhancing trust. Overall, the site presents a professional, trustworthy, and well-maintained digital presence for a large healthcare union. The main limitation is the absence of WHOIS data, which restricts domain registration trust verification. Strategic recommendations include enhancing security headers, publishing security policies, and obtaining full WHOIS transparency to improve trust and compliance.

M

MediMerck - portál pro pacienty i lékaře

medimerck.cz

64

The website www.medimerck.cz appears to be a healthcare portal targeting patients and doctors in the Czech Republic. It is built on Adobe Experience Manager CMS and uses common web technologies such as jQuery, Adobe Launch for tag management, and OneTrust for cookie consent. The site content is accessible without any WAF or security blocking mechanisms. However, the WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency and trustworthiness. The website lacks explicit privacy policies, contact information, and security policies, which are important for compliance and user trust in healthcare-related services. The technical infrastructure is moderately modern but could benefit from enhanced security headers and clearer business information.

S

Schindlerova pletárna s. r. o.

elite-cz.cz

46

Schindlerova pletárna s. r. o. operates the ELITE e-commerce website specializing in hosiery products with a rich tradition dating back to 1854 in the Czech Republic. The company targets consumers seeking quality hosiery and related products, offering both retail and wholesale options. The website is professionally designed with clear navigation and a consistent brand presence, supported by active social media channels and comprehensive customer contact information. Technically, the website leverages a mature technology stack including jQuery, Bootstrap 3.3.7, Font Awesome, and integrates Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and includes cookie consent mechanisms aligned with GDPR requirements. However, some technical improvements are recommended, such as implementing security headers and enhancing accessibility features. From a security perspective, the site enforces HTTPS and uses consent-based tracking but lacks explicit security policies and incident response information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a concern for domain legitimacy, though the website content and business information appear trustworthy and professional. Overall, the website presents a solid business and technical foundation with good privacy compliance and user experience. Strategic improvements in security posture and domain registration transparency would enhance trust and reduce risk.

A

Asociace inovativního farmaceutického průmyslu

pacientskaakademie.cz

51

The website pacientskaakademie.cz represents the Akademie pacientských organizací, a patient organization academy operated by the Asociace inovativního farmaceutického průmyslu in the Czech Republic. The organization focuses on providing educational seminars, mentoring, and support services to patient groups and healthcare stakeholders. The site is well-established with a domain age since 2012, reflecting over a decade of continuous operation and engagement in the healthcare non-profit sector. The content is professionally presented, targeting patient organizations and healthcare professionals with relevant educational materials and event information. Technically, the website uses a custom CMS (Kompletweb) and incorporates modern JavaScript libraries such as jQuery, Swiper, and SimpleLightbox. It employs Google Analytics for traffic analysis and CookieHub for cookie consent management, demonstrating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, though accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, security headers are not explicitly detected, and there is no visible security or incident response policy. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is consistent with the organization's claims, showing a legitimate and long-standing domain registration. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements could include enhancing security headers, adding explicit security policies, and improving accessibility to further strengthen the security posture and user experience.

Ambit Media a.s. operates a specialized media portal focused on the publication and subscription management of healthcare-related magazines and educational materials primarily targeting healthcare professionals and readers interested in medical topics. The company, founded in 2016 and based in the Czech Republic, offers subscription services, book sales, and educational events, positioning itself as a niche media publisher within the healthcare sector. The website reflects this focus with content primarily in Czech and includes partner links to related healthcare and medical publication sites. From a technical perspective, the website employs a modern tech stack including jQuery, Bootstrap, Google Fonts, and various UI and carousel libraries. It integrates Google Analytics and Google Tag Manager for user tracking and marketing insights. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. Hosting is managed through REG-ZONER, consistent with the domain registration data. Security posture is moderate; while HTTPS is implied and cookie consent mechanisms are in place, explicit security headers and detailed security policies are absent. No critical vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is basic but present, with a privacy policy, cookie banner, and terms of service clearly linked. Contact information is comprehensive, enhancing business credibility. Overall, the website presents a professional and trustworthy front for Ambit Media a.s., with a solid business model and consistent domain registration data. Strategic improvements in security headers, incident response transparency, and enhanced privacy compliance would further strengthen the site’s security and trustworthiness.

The website www.csgh.info serves as a professional portal for the Czech and Slovak gastroenterology and hepatology community, providing access to journal articles, author submission guidelines, and society information. It is operated by Care Comm s.r.o., a small healthcare-focused company. The platform targets healthcare professionals specialized in gastroenterology and hepatology, offering subscription services and professional society support. The site is indexed in major medical databases, enhancing its credibility within the medical community. Technically, the website uses legacy JavaScript libraries such as jQuery 1.10.2 and jQuery UI, with tracking implemented via Google Tag Manager and Leady. The site shows basic mobile optimization and accessibility features but lacks modern security headers and cookie consent mechanisms. Performance is moderate, and SEO practices are basic. The WHOIS data is unavailable or malformed, limiting domain trust verification. From a security perspective, HTTPS is implied but not explicitly confirmed. The absence of security headers and use of outdated libraries present moderate risks. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent banner. Contact information is limited to a contact page without direct emails or phone numbers on the main page. Overall, the website is professionally designed and trustworthy for its niche audience but would benefit from improved security practices, updated technology stack, and enhanced privacy compliance to strengthen its risk posture and user trust.

Česká a slovenská psychiatrie is a specialized online platform serving as the official website for a Czech and Slovak psychiatry journal. It provides access to current and archived journal issues, announcements, and multimedia content tailored for healthcare professionals in the psychiatry field. The platform leverages the Open Journal Systems CMS, indicating a focus on academic publishing and professional dissemination of medical research. The website targets psychiatrists, researchers, and healthcare professionals primarily in the Czech Republic and Slovakia, offering a niche but important service in the regional healthcare publishing sector. Technically, the website employs a modern but standard technology stack including jQuery, Bootstrap, and FontAwesome, hosted on a Czech hosting provider (cesky-hosting.eu). The site is mobile optimized and accessible, with a moderate performance profile. However, some improvements are needed in security headers and cookie consent mechanisms to enhance compliance and security posture. The domain is very recently registered, which is somewhat inconsistent with the professional and mature content, suggesting a new launch or relaunch. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent banners, which are important for GDPR compliance and security best practices. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of contact emails or phone numbers on the main page reduces direct contact transparency but a contact form is available. No WAF or blocking mechanisms were detected, and the content is safe with no adult or explicit material. Overall, the website presents a professional and trustworthy platform for its niche audience but would benefit from enhanced privacy compliance features and security hardening. The domain's recent registration date should be monitored but does not currently detract significantly from trustworthiness.

K

KISA

kisa.it

50

KISA is a well-established municipal IT service provider based in Saxony, Germany, founded in 2003. The company specializes in providing IT infrastructure, software solutions, data protection, and digitalization services tailored for public administration and municipal clients. Their market position is strong within the regional government sector, supported by a comprehensive service portfolio and positive client testimonials. Technically, the website is built on a modern stack including Bootstrap 4, jQuery, and a custom GeoCMS, with good mobile optimization and accessibility features. Security posture is solid with HTTPS, DNSSEC, and privacy-conscious analytics, though some advanced security headers and explicit security policies are missing. Overall, the site is professional, trustworthy, and compliant with GDPR, featuring clear cookie consent mechanisms. No blocking or WAF interference was detected, allowing full content access and analysis.

E

Endorfy

endorfy.com

65

Endorfy is a technology-focused company specializing in the design, manufacturing, and sale of technology products, including keyboards and accessories. The company positions itself as a niche brand targeting technology enthusiasts and consumers seeking high-quality and innovative products. The website is built on WordPress and employs modern JavaScript libraries and tracking tools, indicating a mature digital infrastructure. The site is hosted with Cloudflare DNS and uses HTTPS, ensuring secure communications. However, the absence of explicit privacy and terms of service pages suggests room for improvement in compliance and transparency. Security posture is generally good with standard best practices observed, but additional security headers and DNSSEC could enhance protection. Overall, the website is professional, well-branded, and trustworthy, though it would benefit from enhanced privacy and security disclosures.

B

BOSP

bosp.sk

50

BOSP is a Slovak-based manufacturer and e-commerce retailer specializing in handcrafted hiking and work footwear, including specialized shoes for police, military, and firefighters. The company emphasizes quality and advanced footwear technologies such as Goretex and Vibram, targeting outdoor enthusiasts and professionals in Slovakia and surrounding regions. The website presents a professional and consistent brand image with rich product content and clear navigation, supporting a positive user experience. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, Facebook SDK, and Hotjar, hosted on Webglobe infrastructure with DNSSEC and HTTPS enabled, indicating a mature digital presence. Security posture is solid with encrypted connections and bot protection via hCaptcha, though improvements are recommended in security headers and formal security policies. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy or terms of service policies. Overall, the site is trustworthy and well-positioned in its niche, though it would benefit from enhanced transparency and security documentation.

Dosli.cz is a Czech educational software provider with over 20 years of experience developing digital teaching tools such as EduBase, DoTest, and EduRibbon. The company targets teachers and schools, offering software solutions to facilitate digital learning and interactive classroom activities, including tablet-based teaching environments. The website reflects a medium-sized, established business with a moderate market position in the Czech education sector. Technically, the site uses legacy JavaScript libraries like jQuery and Google Analytics for tracking, hosted likely by WEDOS, the domain registrar. The website design is good with clear navigation but lacks advanced mobile optimization and accessibility features. Security posture is moderate with HTTPS usage but no visible security headers or advanced protections. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. No contact emails or phone numbers are explicitly provided, which may impact user trust and support accessibility. Overall, the domain registration data supports the legitimacy and long-term operation of the business.

UAB Balticum TV operates as a telecommunications service provider in Lithuania, offering internet and television services to both residential and business customers. The website presents a professional and consistent brand image with clear navigation and relevant content focused on fiber optic internet, wireless internet, mobile internet, and smart TV services. The company maintains a moderate market position within the Lithuanian telecommunications sector. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Microsoft Clarity, Facebook Pixel, and Tawk.to live chat, built on the Ips Community Suite CMS platform. The site is mobile optimized and performs moderately well with good SEO practices. Security posture is solid with HTTPS enforced and use of reCAPTCHA on forms, though some security headers are missing and no explicit security policy or incident response information is published. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. The absence of WHOIS data limits domain registration verification, but the website content and business presence appear legitimate and trustworthy. Overall, the site scores well in content quality, technical implementation, security, privacy compliance, and business credibility.

S

South East Asia – liaison, z. s.

sea-l.cz

57

South East Asia – liaison, z. s. (SEA-l) is a small non-profit organization established in 2014, dedicated to fostering cultural understanding and integration between the Czech Republic and Vietnam, as well as Southeast Asia more broadly. The organization offers a wide range of services including information dissemination, integration projects, intercultural work, consulting, lectures, exhibitions, translation, cultural events, and language education. Their target audience primarily consists of the Vietnamese community in the Czech Republic and individuals interested in Southeast Asian culture. The website is professionally designed using Umbraco CMS and common front-end technologies, providing good user experience and clear navigation. Contact information is comprehensive and includes multiple communication channels.

K

KERA GREEN s.r.o.

kera.cz

45

KERA GREEN s.r.o. is a well-established Czech manufacturer specializing in gardening substrates, fertilizers, and decorative materials, operating since 1992. The company serves professional gardeners, municipalities, hobby markets, and retail chains primarily in the Czech Republic and Slovakia, with presence in several European markets. Their business model focuses on manufacturing high-quality products with an emphasis on quality control, ecological footprint reduction, and customer flexibility including custom packaging solutions. Technically, the website is built on WordPress 6.1.8 with common plugins such as Yoast SEO, WPML for multilingual support, and Complianz for GDPR cookie consent management. The site uses Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is mobile optimized and has good SEO practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain legitimacy verification, which is a concern for trust but the website content and business information appear professional and consistent. Overall, the website presents a professional and trustworthy front for a medium-sized manufacturing business with good privacy compliance and moderate technical maturity. Strategic improvements in security headers, incident response transparency, and domain registration verification are recommended to enhance trust and security posture.

A

AUTO WOZAR s.r.o.

auto-wozar.cz

43

AUTO WOZAR s.r.o. operates as an authorized Peugeot dealership in the Czech Republic, specializing in the sale of new and used Peugeot vehicles, vehicle servicing, and financing options. The website targets both individual consumers and business clients interested in Peugeot cars and related services. The company has been established since 2015 and maintains a consistent brand presence with official Peugeot branding and a clear focus on automotive retail and service. Technically, the website is built on Joomla CMS with Yootheme templates and uses modern frontend frameworks like UIkit and jQuery. Hosting is provided by a Czech hosting provider, ensuring regional consistency. Security posture is moderate with HTTPS usage but lacks visible security headers and formal privacy or cookie policies, indicating areas for compliance improvement. Contact information is clearly presented, enhancing business credibility. No blocking or WAF mechanisms interfere with content access, and no adult or questionable content is present, making the site safe for general audiences.

K

KISA

zv-kisa.de

50

KISA is a municipal IT service provider based in Saxony, Germany, offering a broad portfolio of IT infrastructure management, software solutions for municipal administration, data protection, IT security, and digitalization consulting. The organization targets public sector entities such as counties, cities, and municipalities, positioning itself as a key regional IT partner. The website reflects a professional and consistent brand image with comprehensive service descriptions and client testimonials, indicating a solid market presence. Technically, the website is built on GeoCMS with modern web technologies including jQuery, Bootstrap 4, and Matomo analytics configured for privacy. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security practices include HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. The security posture is good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with GDPR-aligned cookie consent and a detailed privacy policy. However, the absence of a terms of service page and vulnerability disclosure reduces transparency. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, KISA's website demonstrates a mature digital presence suitable for its public sector audience, with room for improvement in security transparency and direct contact information for incident response.

A

Astronomický ústav Slovenskej akadémie vied

astro.sk

51

Astronomický ústav Slovenskej akadémie vied is a Slovak public research institution specializing in astronomy and astrophysics. It operates under the Slovak Academy of Sciences and provides research, educational programs, and public outreach in the field of astronomy. The website serves as an information portal for researchers, students, and the general public interested in astronomical sciences. It features news, events, scientific publications, and contact information for the institution. The site is bilingual with Slovak as the primary language and English as an alternate. Technically, the website is built on WordPress with modern plugins and libraries such as jQuery and FontAwesome, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks some security headers and incident response contact details. Privacy compliance is partial with a privacy policy page present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and serves its academic and public mission effectively.

Unie ROSKA is a Czech non-profit organization dedicated to supporting patients with multiple sclerosis (MS) and their families. With over 30 years of experience, it provides education, rehabilitation, social services, and advocacy to improve the quality of life and societal integration of people living with MS. The organization maintains partnerships with international MS federations and reputable healthcare and donor entities, reinforcing its established market position in the Czech healthcare non-profit sector. The website reflects a professional and consistent brand image, targeting patients, caregivers, and donors with relevant content and resources. Technically, the website employs a mature technology stack including jQuery, Google Tag Manager, Matomo analytics, and a donation widget from Darujme.cz. It uses the IPO CMS platform and demonstrates good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy page. Overall, the website is trustworthy and professionally maintained, with no signs of malicious activity or content safety concerns. The absence of WHOIS registrant data is due to EURid privacy policies and does not detract significantly from legitimacy given the organization's transparency and partner ecosystem. Strategic improvements in privacy documentation, security headers, and incident response disclosures would enhance the security and compliance posture.

U

Unie pacientů ČR

uniepacientu.cz

63

Unie pacientů ČR is a Czech non-profit organization operating a reservation system to facilitate placement of patients and applicants into social and inpatient healthcare facilities. The website serves as an information hub and booking platform, targeting patients and applicants within the Czech Republic. The organization has been established since 2005, supported by partnerships such as the Ministry of Labour and Social Affairs of the Czech Republic. Technically, the website uses a custom stack with jQuery, Google Maps API, and Google Analytics for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is moderate with HTTPS usage but missing key security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

C

CLA Czech Republic

claczech.cz

67

CLA Czech Republic is a professional services firm providing integrated consulting services including audit, tax advisory, financial and payroll accounting, legal consulting, corporate finance, and IT support. The company positions itself as a reliable partner for successful businesses on an international level, supported by its affiliation with the CLA Global network. The website reflects a mature digital presence with a professional design, multilingual support, and comprehensive service descriptions. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and accessibility. Security measures include HTTPS, Google reCAPTCHA, and GDPR-compliant cookie consent, though some security headers could be enhanced. Overall, the website demonstrates a strong security posture with no evident vulnerabilities or exposed sensitive data. The absence of WHOIS data limits domain registration insights, but the professional presentation and network affiliation support legitimacy. Strategic recommendations include improving security headers, maintaining updated software, and publishing explicit security policies to enhance trust and compliance.

C

CLINITEX s.r.o.

clinitex.cz

60

CLINITEX s.r.o. is a Czech company specializing in the production and sale of healthcare textiles and medical clothing, serving medical professionals, healthcare staff, and patients. Established in 2005, the company emphasizes quality, comfort, and modern design in its product offerings. The website reflects a mature business with a clear market position in the healthcare textile sector. Technically, the site uses established JavaScript libraries such as jQuery and Owl Carousel, with a cookie consent mechanism implemented to comply with privacy regulations. The site is hosted under Czech domain registrars and uses HTTPS with good SSL configuration, indicating a secure environment. However, there is room for improvement in security policies and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

D

Diome, s.r.o.

zamestnanivezdravotnictvi.cz

56

Zaměstnanivezdravotnictvi.cz is a Czech Republic-based online employment platform specializing in healthcare sector job listings, news, and related content. Operated by Diome, s.r.o. since 2010, it serves healthcare professionals and institutions by providing detailed job advertisements, newsletters, and informational articles. The platform has a niche market position with over a decade of operation, offering a trusted resource for healthcare employment in the region. Technically, the website uses a custom CMS with a technology stack including jQuery, jQuery UI, FullCalendar, Moment.js, and Google services such as reCAPTCHA and Analytics. While the site is functional and well-structured, it uses an outdated jQuery version and lacks modern security headers, which presents potential security risks. The site employs HTTPS and bot protection but lacks explicit privacy and cookie policies, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.