Security Directory

A

Asociace rodinných firem

asociacerf.cz

49

Asociace rodinných firem is a Czech Republic-based association dedicated to supporting family-owned businesses through education, consulting, and networking. The website presents a professional and content-rich platform targeting owners, successors, and managers of family firms. It offers workshops, expert advice, and events tailored to the unique challenges of family businesses. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks some security headers and formal security policies. The absence of WHOIS data is a notable concern, though the website's content and presentation suggest legitimacy. Privacy and cookie policies are missing, indicating compliance gaps that should be addressed.

Č

Česká asociace výrobců a dodavatelů diagnostik in vitro (CZEDMA)

czedma.cz

46

CZEDMA is a Czech non-profit association representing manufacturers and suppliers of in vitro diagnostic products. Established in 2001, it aims to support its members in delivering high-quality healthcare diagnostics. The website provides information about the association, educational webinars, and resources related to laboratory diagnostics. The target audience includes healthcare professionals, industry members, and the general public interested in diagnostics. Technically, the site uses an older CMS (CMS PRO-WEB) and legacy JavaScript libraries such as jQuery 1.8.3, with Google Analytics and Tag Manager for tracking. The site is accessible, uses HTTPS, and has a cookie consent banner, but lacks a privacy policy page and modern security headers. Security posture is moderate but could be improved by updating libraries and adding security policies. WHOIS data is unavailable, likely due to privacy protection, but the website content and association registration details support legitimacy. Overall, the site is professional and trustworthy but would benefit from technical and compliance enhancements.

T

Technologická agentura ČR

tacr.cz

67

Technologická agentura ČR is a Czech government agency established in 2009 to support research, experimental development, and innovation. It operates as a state organizational unit providing funding programs, competitions, and methodological support to researchers, innovators, and entrepreneurs. The agency maintains a strong national presence with official government domain and multiple partner platforms supporting research administration and dissemination. The website is professionally designed, content-rich, and targets stakeholders in the Czech research and innovation ecosystem. Technically, the site is built on WordPress with modern plugins and includes comprehensive privacy and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and some security best practices observed, though improvements in security headers and incident response documentation are recommended. Overall, the website is trustworthy and well-maintained, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving transparency in incident response.

Č

Česká asociace paraplegiků - CZEPA, z.s.

vozejkov.cz

53

Vozejkov.cz is a well-established Czech non-profit community portal operated by the Česká asociace paraplegiků - CZEPA, z.s., focused on supporting individuals with spinal injuries and disabilities. The website offers a broad range of services including news, events, classifieds, educational webinars, and a dedicated advice section, positioning itself as a trusted resource within the Czech disability community. The presence of reputable partners such as Centrum Paraple, Škoda Auto, and the Czech government further strengthens its market position and credibility. Technically, the website employs a modern technology stack including jQuery, Google Analytics, Google Tag Manager, and LightGallery, built on the Toolkit CMS platform. It demonstrates good mobile optimization, SEO practices, and moderate performance. The site uses HTTPS and implements a cookie consent mechanism compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the site benefits from HTTPS and privacy compliance but lacks explicit security headers and incident response contact information. No vulnerabilities or malicious content were detected. The WHOIS data confirms domain legitimacy with consistent registration details and an appropriate domain age for the organization's history. Overall, Vozejkov.cz presents a secure, trustworthy, and user-friendly platform with strong community focus and compliance adherence. Strategic improvements in security headers and incident response transparency could further enhance its security posture and user trust.

B

Balticum TV, UAB

manobalticum.lt

51

Mano Balticum is a Lithuanian telecommunications self-service portal operated by Balticum TV, UAB. The website provides customers with personalized offers, service management, bill payment, and address management functionalities. It targets existing Balticum TV subscribers in Lithuania, offering a convenient digital interface to manage their telecommunications services. The business appears to be a medium-sized regional telecom provider with a clear focus on customer self-service and digital engagement. Technically, the website uses a modern tech stack including Bootstrap for responsive design, jQuery, Google Analytics, Google Tag Manager, Google Identity Services for authentication, and Facebook SDK for social login. The site is mobile optimized and includes standard privacy and cookie consent mechanisms. However, there is no evidence of advanced security headers or explicit security policies, and WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency. From a security perspective, the site implements CSRF protection on login forms and uses HTTPS (implied by external scripts), but lacks visible HTTP security headers. The privacy policy is comprehensive and GDPR compliant, with a named data protection officer contact. No vulnerabilities or malicious content were detected in the analysis. Overall, the security posture is moderate but could be improved with enhanced HTTP headers and verified domain registration. The overall risk assessment is moderate with a legitimacy score of 50 due to missing WHOIS data. Strategic recommendations include verifying domain registration status, implementing security headers, publishing explicit security policies, and continuing to maintain GDPR compliance. The website is professionally designed and trustworthy for its intended audience but would benefit from improved transparency and security hardening.

The website at saugierdve.lt/login serves as a login portal for GRIFS AG, a company presumably operating in Lithuania given the domain and registrar information. The site is primarily functional with a focus on user authentication, featuring branding elements but lacking detailed business descriptions or public-facing content. The technical infrastructure includes standard web technologies such as Google Analytics and Google Tag Manager for tracking, Google Fonts for typography, and Font Awesome for icons. The domain is registered with a Lithuanian registrar, UAB "Interneto vizija", since 2016, indicating a stable and legitimate presence. From a security perspective, the site uses HTTPS, but no explicit security headers were detected in the provided data. There is no visible privacy policy, cookie policy, or terms of service on the login page, which raises compliance concerns, especially regarding GDPR. No contact information or incident response channels are exposed, limiting user support and security communication. The site does not appear to be behind a WAF or security challenge, allowing full content access. Overall, the website demonstrates a basic level of technical implementation suitable for a corporate login portal but lacks comprehensive privacy and security disclosures. The absence of contact and policy information may impact user trust and regulatory compliance. Strategic improvements in these areas would enhance the site's security posture and business credibility.

Customize.cz, s.r.o. is a Czech-based company specializing in personalization solutions for e-commerce websites. Their core offering is personalized recommendation boxes that help online shops increase sales and customer satisfaction by analyzing user behavior in real-time and dynamically presenting relevant products. The company operates on a commission-based business model tied to conversion orders, positioning itself as a niche player in the Czech and Slovak e-commerce personalization market. The website is professionally designed, mobile-optimized, and provides clear contact channels and customer testimonials, supporting a trustworthy business image. Technically, the website uses a modern front-end stack including Bootstrap, jQuery, and popular UI libraries like Swiper and Owl Carousel. Google Analytics and a third-party chat service (Suppoo) are integrated for marketing and customer engagement. While the site uses HTTPS and implements a cookie consent banner with detailed user controls, it lacks visible advanced security headers and formal security or incident response policies. The site is accessible without WAF or blocking mechanisms, indicating good availability. From a security perspective, the site demonstrates basic compliance with GDPR through cookie consent and privacy policy pages but lacks explicit terms of service, security policy, or vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the business claims, showing a domain age consistent with the company's founding date and no privacy protection, enhancing trustworthiness. Overall, Customize.cz presents a solid, professional online presence with moderate technical maturity and basic security posture. Strategic improvements in security headers, formal policies, and enhanced privacy compliance could elevate their security and trust profile further.

S

SORAL & HANZLIK Medical s.r.o.

noano.eu

41

Noano.eu is a Czech healthcare company specializing in the sale and rental of medical and home care products, including nursing beds, anti-decubitus mattresses, lifts, and other aids. With over 30 years of experience, the company targets families and caregivers providing home care, aiming to improve the quality of life for their clients' loved ones. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product information. Technically, the site uses modern analytics and tracking tools such as Google Analytics, Google Tag Manager, and Google reCAPTCHA to enhance user experience and security. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, though additional security headers could improve protection. The WHOIS data is privacy protected, which is typical for small healthcare businesses, and the domain age could not be verified. Overall, the site presents a trustworthy and professional image with clear contact information and compliance with GDPR and cookie regulations.

LANDBAU s.r.o. is a small Czech construction company specializing in earthworks, heavy machinery rental with operators, and oversized cargo transport primarily in the Opava and Ostrava regions. The company leverages advanced 3D GPS leveling technology and reputable heavy machinery brands to deliver precise and efficient services. Their website provides clear descriptions of services and contact information but lacks privacy and cookie policies, which impacts compliance. Technically, the site uses jQuery and Google Analytics but does not employ advanced CMS or security headers. The absence of WHOIS data reduces transparency but is common for small businesses. Overall, the company presents a legitimate regional service provider with moderate digital maturity and basic security posture.

Stolařství Šputa s.r.o. is a well-established Czech woodworking and construction company specializing in custom furniture, interior and exterior woodwork, and wooden buildings. Founded in 1999 and operating primarily in Ostrava, the company offers a broad range of wood-related manufacturing services including stairs, doors, furniture, pergolas, and dřevostavby (wooden houses). The website reflects a mature business with a clear market position serving both individual and commercial clients. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Analytics, and Google Maps API, hosted likely by Active24, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, GDPR compliance, cookie consent, and secure forms, though some security headers and incident response contacts could be improved. Overall, the site is professional, trustworthy, and compliant with relevant privacy regulations.

E

Euroregion Silesia - CZ

euroregion-silesia.cz

48

Euroregion Silesia - CZ operates as a regional cross-border cooperation entity focused on fostering sustainable development, tourism, and institutional collaboration between Czech and Polish border regions. The organization facilitates EU-funded projects, organizes training and events, and promotes regional tourism products such as the Silesianka trail. The website reflects a well-established entity with a domain registered since 2002, indicating long-term presence and legitimacy. The content is primarily in Czech and targets local municipalities, institutions, and potential project applicants. Technically, the website uses modern web technologies including Bootstrap, jQuery, Font Awesome, and Google Analytics, hosted by Active24. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks a dedicated privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and serves its audience effectively.

Stavby Complet s.r.o. is a Czech-based small enterprise specializing in chimney construction, maintenance, and related services, including manufacturing their own chimney system. The company has been established since 2011 and positions itself as a quality-focused specialist with a broad service portfolio targeting both industrial and residential customers. The website reflects a professional and consistent brand image with comprehensive service descriptions and customer references. Technically, the site uses modern web technologies such as Bootstrap and jQuery, integrates Google Analytics and Ads for marketing, and implements GDPR-compliant privacy and cookie policies. Security posture is adequate with secure forms and consent mechanisms, though some security headers and incident response details are missing. Overall, the website is well-structured, mobile-optimized, and trustworthy, supporting the company's market position as a reliable local specialist.

T

Taneční škola ASTRA Praha

astra-praha.cz

39

Taneční škola ASTRA Praha is a local dance school offering a wide range of dance courses and events targeting adults, youth, and children in Prague and surrounding areas. Their services include standard and Latin dance courses, competitive dance, summer dance schools, seminars, dance clubs, wedding dance lessons, and dance performances. The website is professionally designed with clear navigation and good content quality, supporting multiple dance-related offerings and event announcements. Technically, the website employs common web technologies including Google Analytics, Google Tag Manager, and Plausible Analytics for tracking, along with Google Fonts for typography. The site is mobile-optimized and uses HTTPS, though no explicit security headers were detected. The site lacks a cookie consent mechanism despite having a GDPR-compliant privacy policy, indicating partial privacy compliance. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data. However, the absence of WHOIS data limits domain trust assessment, and no incident response or security policy information is provided. The site does not appear to be behind a WAF or security challenge, and content is fully accessible. Overall, the security posture is moderate but could be improved with better header configurations and privacy mechanisms. The overall risk is low given the nature of the business and content, but the lack of WHOIS transparency and cookie consent are notable gaps. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response contacts, and enhancing accessibility features to improve trust and compliance.

I

IT Asociácia Slovenska

itas.sk

58

IT Asociácia Slovenska (ITAS) is the largest professional association of IT companies in Slovakia, representing both domestic and international firms in the information and communication technology sector. The organization acts as a platform for IT industry leaders, promoting innovation, digital transformation, and a progressive digital environment in Slovakia. The website provides extensive content including news, projects, membership information, and official reports, reflecting an active and engaged community. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and uses Google Analytics and Tag Manager for tracking. The site is mobile-optimized and SEO-friendly, with good performance and accessibility standards. Security posture is solid with HTTPS and reCAPTCHA usage, though some security headers could be improved. Privacy and cookie policies are not explicitly found, indicating room for compliance enhancement. WHOIS data confirms the domain's legitimacy with a long registration history consistent with the organization's profile. Overall, ITAS presents a credible, professional, and well-maintained digital presence.

Š

ŠIOV - štátny inštitút odborného vzdelávania

siov.sk

56

ŠIOV (Štátny inštitút odborného vzdelávania) is a Slovak government agency under the Ministry of Education responsible for coordinating vocational education and adult learning in Slovakia. The website serves as an official portal providing information about vocational education, projects, certifications, and research. It targets educational institutions, students, and stakeholders in the Slovak education sector. The site is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with Elementor and Yoast SEO, integrating Google Analytics and Tag Manager for user tracking. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. WHOIS data confirms domain legitimacy with a long registration history consistent with the organization's government affiliation. Overall, the site is trustworthy, compliant with GDPR, and serves its educational mission effectively.

S

SOITRON Group SE

soitronsecurity.com

75

SOITRON Security is a cybersecurity solutions integrator and managed services provider operating primarily in Slovakia and several other European countries. The company offers consultancy, cybersecurity solutions, Security Operations Center (SOC) services, and operational cybersecurity services. Their website reflects a professional and modern digital presence built on WordPress, integrating advanced tracking and security technologies such as Google Analytics, Google Tag Manager, and reCAPTCHA. The company maintains strong partnerships with leading cybersecurity vendors, enhancing its market credibility. Technically, the website is well-structured with good mobile optimization and SEO practices. Security measures include HTTPS enforcement, CAPTCHA on forms, and cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and incident response policies are not published, representing areas for improvement. The domain WHOIS data is missing or not found, which raises concerns about domain registration transparency despite the professional appearance and established business presence. This discrepancy affects the trustworthiness from a domain registration perspective but does not diminish the evident operational maturity of the business. Overall, SOITRON Security presents a solid cybersecurity service offering with a good security posture on its website, though it should address domain registration transparency and publish more detailed security policies to enhance trust and compliance.

S

Soitron

soitron.cz

79

Soitron is a well-established IT services company operating primarily in the Czech Republic and surrounding regions, with over 30 years of experience. The company offers a broad portfolio of IT solutions including cybersecurity, data center management, communication and network solutions, IoT, robotic process automation, and IT outsourcing. Positioned as a long-term leader in IT infrastructure and network services, Soitron serves diverse industries such as manufacturing, finance, public sector, energy, and healthcare. The website reflects a mature digital presence with multilingual support and strong branding aligned with its parent group, Soitron Group. Technically, the website is built on WordPress using WPBakery Page Builder and integrates modern web technologies including Google Tag Manager, Google Analytics, and Microsoft MSCI WebTracking for analytics and user behavior tracking. The site employs GDPR-compliant cookie consent mechanisms and uses reCAPTCHA v2 to secure its contact forms. Performance and mobile optimization are good, with SEO best practices implemented via Yoast SEO plugin. From a security perspective, the site enforces HTTPS and uses standard security practices such as CAPTCHA and cookie consent. While explicit security headers are not directly visible in the HTML, the overall posture is strong with no exposed sensitive data or vulnerabilities detected. The absence of WHOIS data due to privacy protection is typical for enterprises and does not detract from the site's legitimacy, supported by certifications like ISO 27001 and client testimonials. Overall, Soitron's website demonstrates a professional, secure, and compliant digital presence suitable for its business scale and sector. Strategic recommendations include enhancing transparency with dedicated security and incident response policies, explicit security header implementation, and publishing vulnerability disclosure information to further strengthen trust and security posture.

P

Pears Health Cyber, s.r.o.

lekarna.cz

68

Lékárna.cz is a leading Czech online pharmacy operated by Pears Health Cyber, s.r.o., offering a wide range of medicines, vitamins, dietary supplements, cosmetics, and health-related products. The website targets the general public in the Czech Republic and provides a comprehensive e-commerce platform with a strong focus on user experience and accessibility. The company positions itself as the first online pharmacy in the Czech Republic with a broad product portfolio and health advisory services. Technically, the website employs modern JavaScript frameworks like Alpine.js, integrates Google Tag Manager, Google Analytics, and Microsoft Clarity for analytics and user behavior tracking, and uses structured data for SEO and business information. The site is well-optimized for mobile devices and demonstrates good performance and accessibility standards. Security-wise, the site enforces HTTPS, implements multiple security headers, and provides a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS data for the domain reduces trust slightly and suggests the need for further verification of domain registration details. Overall, the website is professional, secure, and compliant, with minor areas for improvement in transparency and incident response readiness.

UAB Balticum TV operates as a telecommunications service provider in Lithuania, offering internet and television services to both residential and business customers. The website presents a professional and consistent brand image with clear navigation and relevant content focused on fiber optic internet, wireless internet, mobile internet, and smart TV services. The company maintains a moderate market position within the Lithuanian telecommunications sector. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Microsoft Clarity, Facebook Pixel, and Tawk.to live chat, built on the Ips Community Suite CMS platform. The site is mobile optimized and performs moderately well with good SEO practices. Security posture is solid with HTTPS enforced and use of reCAPTCHA on forms, though some security headers are missing and no explicit security policy or incident response information is published. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. The absence of WHOIS data limits domain registration verification, but the website content and business presence appear legitimate and trustworthy. Overall, the site scores well in content quality, technical implementation, security, privacy compliance, and business credibility.

J

Joma Sport

joma-sport.lt

37

Joma Sport is an official Lithuanian representative of the Joma brand, specializing in the retail of sports apparel, equipment, and accessories for individual athletes, teams, and leisure consumers. The company operates an e-commerce platform built on WordPress and WooCommerce, offering a wide range of products categorized by gender, sport type, and product type. The website is professionally designed with good navigation, mobile optimization, and SEO practices, targeting the Lithuanian market primarily. Contact information and social media presence are clearly provided, enhancing trust and customer engagement. Technically, the website leverages modern web technologies including Elementor for page building, Yoast SEO for search optimization, and Google Analytics and Tag Manager for traffic analysis. Security measures include HTTPS encryption and Google reCAPTCHA integration to protect forms. However, some security headers are not explicitly detected, and there is no visible cookie consent mechanism, which could be improved for better GDPR compliance. The website performance is moderate, with good mobile responsiveness and basic accessibility features. From a security perspective, the site maintains a good posture with encrypted connections and no exposed sensitive data. The WHOIS data confirms a consistent and legitimate domain registration aligned with the business location and operations. No signs of malicious activity or suspicious domains were found. Privacy policy and terms of service pages are present, though the cookie policy and incident response information are lacking. Overall, Joma Sport presents a trustworthy and professional online presence with room for improvement in privacy compliance and security header implementation. Strategic recommendations include adding a cookie consent banner, publishing a security policy with incident response contacts, and enhancing security headers to strengthen protection and compliance.

H

HARTMANN - RICO a. s.

lecbarany.cz

57

The website www.lecbarany.cz is a professional healthcare portal focused on wound treatment and healing, operated by HARTMANN - RICO a. s., a recognized entity in the healthcare sector in the Czech Republic. It serves both medical professionals and patients by providing educational content, product information, and specialized tools such as e-hojeni.cz for treatment monitoring. The site is well-branded and consistent with the parent company's identity, offering a comprehensive resource in Czech language. Technically, it is built on Drupal 10, integrates Google Analytics and Tag Manager for tracking, and uses Cookiebot for consent management, reflecting a modern digital infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and secure forms, though it lacks explicit security headers and incident response information. Privacy and cookie policies are present and GDPR compliant. The absence of WHOIS data limits domain trust assessment, but the website's content and external links strongly indicate legitimacy. Overall, the site is a credible, well-maintained healthcare resource with room for security enhancements.

N

Nutricia

nutricia.cz

44

Nutricia.cz is a specialized healthcare nutrition website operated under the Danone group, focusing on providing nutritional products and services for children and patients with special dietary needs. The website presents a professional and consistent brand image, with a clear focus on patient care, scientific knowledge, and individualized nutrition solutions. The target audience includes patients, parents, and healthcare professionals in the Czech Republic. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and integrating Google Analytics and Tag Manager for tracking. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though security headers and explicit security policies are absent. Privacy compliance is strong, with comprehensive GDPR-aligned privacy and cookie policies. No critical vulnerabilities or suspicious patterns were detected. Overall, the site is trustworthy and professionally maintained, supporting Nutricia's market position as a reputable healthcare nutrition provider.

E

EPUAP org

epuap.org

39

The European Pressure Ulcer Advisory Panel (EPUAP) is a well-established non-profit organization dedicated to the prevention and treatment of pressure ulcers through research, education, and policy advocacy across Europe. The website serves as a comprehensive hub for healthcare professionals, researchers, and policy makers, offering educational resources, clinical guidelines, research funding information, and event details. The organization has a clear market position as a niche advisory panel with a strong focus on patient-centered and cost-effective pressure ulcer care. Technically, the website is built on a modern WordPress CMS platform using Elementor for design and WooCommerce for e-commerce capabilities. It integrates common web technologies such as jQuery and Google Analytics for tracking. The site demonstrates good SEO practices and mobile optimization, although performance is moderate. The presence of a cookie consent banner indicates awareness of GDPR requirements, but explicit privacy and terms of service documents are not readily found. From a security perspective, the site uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and explicit security headers. No critical vulnerabilities or blocking mechanisms were detected. The WHOIS data confirms a long-standing domain registration consistent with the organization's history, enhancing trustworthiness. Overall, the website is professional, trustworthy, and serves its target audience effectively. However, improvements in published privacy policies, security headers, and DNS security would strengthen compliance and security posture.

G

GSKlub.cz

gsklub.cz

65

GSKlub.cz is a Czech Republic-based e-commerce platform specializing in the sale of dietary supplements. It positions itself as one of the largest online sellers in its market segment, offering exclusive products for all age groups directly from manufacturers. The website is built on WordPress with WooCommerce, leveraging a range of modern marketing and analytics tools such as Google Analytics, Hotjar, and Meta Pixel. The site implements a comprehensive cookie consent mechanism via Cookiebot, reflecting a commitment to privacy compliance. However, the absence of a visible privacy policy and WHOIS data gaps present some concerns regarding transparency and domain legitimacy. Technically, the site is well-structured, mobile-optimized, and uses HTTPS, but could improve security headers and explicit privacy documentation.

U

UAB "Interneto vizija"

uostopoliklinika.lt

38

Uosto poliklinika is a Lithuanian healthcare provider offering a broad spectrum of primary and secondary healthcare services including family medicine, specialist consultations, dental care, mental health services, rehabilitation, and laboratory testing. The website positions itself as a modern and reliable health institution serving the regional population. The digital infrastructure is built on WordPress with Elementor and WooCommerce, integrating essential marketing and analytics tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site implements GDPR-compliant cookie consent and privacy policies, reflecting a commitment to privacy and regulatory compliance. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though security headers could be improved. Overall, the website is professional, user-friendly, and trustworthy, supporting the business's credibility in the healthcare sector.

V

VMG GROUP

vmg.eu

61

VMG GROUP is a large Lithuanian industrial and investment group uniting 20 leading companies in their segments, employing over 3,000 people and exporting products to 50 markets. Their business model focuses on manufacturing innovative and quality products across various industrial sectors, with a strong emphasis on green innovation development. The website reflects a professional corporate presence with multilingual support and SEO optimization. Technically, the site is built on WordPress with modern JavaScript libraries and includes cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information are lacking. Overall, the site is trustworthy and well-maintained, though improvements in published security policies and contact information would enhance credibility.

T

tovi

tovi.cz

34

tovi.cz is a Czech-based small technology company specializing in custom web and mobile application development, web design, process automation, and digital marketing services such as SEO and PPC. Founded in 2017, the company presents a professional portfolio of completed projects and transparent pricing examples, targeting businesses seeking tailored digital solutions. The website is well-structured, mobile-optimized, and uses modern web technologies including Google Fonts, Font Awesome, and jQuery, with analytics integrated via Google Analytics and Tag Manager. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies, which is a notable gap given GDPR requirements. Contact information is clearly provided with email, phone, and a contact form, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy and security disclosures.

U

Український журнал. Час для...

ukrzurnal.eu

7

The website ukrzurnal.eu operates as an online cultural-political monthly magazine targeting the Ukrainian diaspora in Europe. It provides archived issues, subscription options, and information about projects and partners. The content is primarily in Ukrainian with additional language options, focusing on cultural and political topics relevant to Ukrainians living in Europe. The business model centers on digital publication and community engagement through social media integration. Technically, the site uses basic web technologies including HTML, CSS, JavaScript, Facebook SDK, and Google Analytics. The site lacks modern CMS indicators and advanced frameworks, suggesting a simple, possibly custom-built platform. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO practices. From a security perspective, the site does not explicitly confirm HTTPS usage in the HTML base tag, and no security headers such as CSP or HSTS are detected. External scripts are loaded without integrity checks. Privacy and cookie policies are absent, indicating potential GDPR compliance gaps. No forms collecting sensitive data are present, reducing immediate risk exposure. The WHOIS data shows the domain is registered via a Czech registrar, consistent with the European focus but no direct registrant organization is disclosed. Overall, the website is functional and serves its niche audience but requires improvements in security posture, privacy compliance, and technical modernization to enhance trust and resilience against threats.

U

Ukrajinská iniciativa v ČR, z.s.

ukrajinci.cz

59

Ukrajinská iniciativa v ČR, z.s. is a small non-profit organization dedicated to supporting the Ukrainian diaspora in the Czech Republic through cultural events, news dissemination, and community engagement. The website serves as a hub for news updates, event announcements, and educational projects primarily targeting Ukrainians living in the Czech Republic and interested Czech residents. The organization maintains a consistent brand presence and provides clear contact information, enhancing trust and accessibility. Technically, the website employs a legacy technology stack including jQuery 1.8.3, Bootstrap 3.2.0, and Google Analytics for tracking. While the site is mobile responsive and well-structured, the use of outdated libraries poses potential security risks. The site lacks explicit security headers and comprehensive privacy policies, which are areas for improvement. Cookie consent is implemented, indicating some level of privacy compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, the absence of WHOIS data and domain registration details raises concerns about domain legitimacy and trustworthiness. No critical vulnerabilities or adult content were detected, and the site is safe for general audiences. Overall, the website scores moderately well in content quality and business credibility but needs enhancements in technical security and privacy compliance. Strategic recommendations include updating technology stacks, implementing security headers, publishing privacy policies, and verifying domain registration details to improve trust and compliance.

N

Národní pedagogický institut České republiky (NPI ČR)

cestina-pro-cizince.cz

59

The website cestina-pro-cizince.cz serves as the official portal for Czech language exams required for permanent residence and citizenship in the Czech Republic. It is supported by key governmental bodies including the Ministry of Interior, Ministry of Education, and Charles University, and operated by the National Pedagogical Institute of the Czech Republic (NPI ČR). The site provides comprehensive information about exam requirements, preparation materials, online registration, and links to relevant institutions, targeting foreigners seeking legal residency or citizenship. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and the Nette framework, with integration of Google Analytics and Tag Manager for tracking and marketing purposes. The site is mobile-optimized and multilingual, enhancing accessibility for its diverse audience. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible advanced security headers and explicit security policies. Overall, the domain registration data aligns well with the site's official and governmental nature, supporting its legitimacy and trustworthiness.

P

Packung s.r.o.

obaly-optimalizace.cz

49

Packung s.r.o. operates the website obaly-optimalizace.cz, specializing in packaging optimization and sales primarily for industrial and manufacturing clients in the Czech Republic. The company offers a comprehensive range of services including packaging design, cost optimization, mechanical testing, and automation solutions. The website reflects a mature business with a medium-sized market presence and multiple specialized projects and partnerships. Technically, the site is built on WordPress with modern plugins and SEO tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates good compliance with GDPR and provides clear contact and business information, enhancing trustworthiness.

K

KERA GREEN s.r.o.

kera.cz

45

KERA GREEN s.r.o. is a well-established Czech manufacturer specializing in gardening substrates, fertilizers, and decorative materials, operating since 1992. The company serves professional gardeners, municipalities, hobby markets, and retail chains primarily in the Czech Republic and Slovakia, with presence in several European markets. Their business model focuses on manufacturing high-quality products with an emphasis on quality control, ecological footprint reduction, and customer flexibility including custom packaging solutions. Technically, the website is built on WordPress 6.1.8 with common plugins such as Yoast SEO, WPML for multilingual support, and Complianz for GDPR cookie consent management. The site uses Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is mobile optimized and has good SEO practices, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain legitimacy verification, which is a concern for trust but the website content and business information appear professional and consistent. Overall, the website presents a professional and trustworthy front for a medium-sized manufacturing business with good privacy compliance and moderate technical maturity. Strategic improvements in security headers, incident response transparency, and domain registration verification are recommended to enhance trust and security posture.

O

OSLAVAN AGRO s.r.o.

oslavan.cz

70

OSLAVAN AGRO s.r.o. is a Czech company specializing in the sale and service of specialized agricultural machinery primarily for viticulture and orchard management. Founded in 1991, it has established itself as a key regional player offering a broad portfolio of products and services including machinery sales, equipment servicing, and an e-commerce platform. The company also promotes a hospitality business through a partner restaurant and hotel complex. Technically, the website employs modern web technologies including Google Tag Manager, Analytics, Ads, and reCAPTCHA for security. The site is well-structured, mobile-optimized, and includes privacy and cookie policies with user consent mechanisms, reflecting a mature digital presence. Security posture is good with HTTPS and form protections, though additional security headers and explicit incident response information could enhance trust. The absence of WHOIS data limits domain trust assessment but the website content and contact details support legitimacy. Overall, the site presents a professional and trustworthy business front with moderate technical sophistication and compliance.

A

Agentura Osma a.s.

osma.cz

43

Agentura Osma a.s. is a well-established Czech family-owned manufacturer specializing in the design and production of self-adhesive labels. With a history dating back to 1991 and a domain registered since 2000, the company serves a broad European market including France, producing over one million labels weekly. Their business model focuses on combining unique design with advanced printing technologies to support brand image development for clients in food, cosmetics, beverages, and related sectors. The website reflects a mature digital presence with modern technologies, good mobile optimization, and comprehensive content including customer testimonials and certifications. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and formal policies are absent. Overall, the company demonstrates strong business credibility and technical maturity.

S

STILLUS s.r.o.

stillus.cz

54

STILLUS s.r.o. is a well-established advertising agency based in Břeclav, Czech Republic, recognized as one of the largest and most successful in South Moravia. The company offers a broad range of services including graphic design, large format printing, 3D and light advertising, promotional items, textiles, gift packaging, and web services. Their market position is strong within their regional niche, targeting businesses seeking comprehensive advertising and promotional solutions. The website reflects a professional digital presence with modern design and clear navigation, supported by WordPress and Elementor technologies. Integration of Google Analytics and Tag Manager indicates a mature approach to digital marketing and user behavior analysis. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and consistent. Overall, STILLUS s.r.o. demonstrates a solid business and technical foundation with room for enhanced security practices.

SBC News is a well-established media company specializing in providing comprehensive news, analysis, and insights for the sports betting industry. Founded in 2013, it serves a global audience of industry professionals and enthusiasts with a broad range of content including news articles, interviews, podcasts, webinars, and event coverage. The company maintains a strong market position within its niche, supported by a network of sister sites covering related sectors and regions. Technically, the website is built on WordPress with a modern tech stack including jQuery, Matomo analytics, Google Analytics, and various advertising and marketing tools. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting is provided by GoDaddy, and the site uses HTTPS with a good SSL configuration. From a security perspective, SBC News employs standard best practices such as HTTPS, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, some security headers are not explicitly detected and could be improved. Privacy compliance is good with GDPR cookie consent implemented, though no explicit privacy policy or terms of service pages were found in the provided content. Overall, SBC News presents a professional, trustworthy, and content-rich platform with a solid technical foundation and good security posture. Strategic recommendations include enhancing security headers, publishing clear security and privacy policies, and conducting regular security audits to maintain and improve trust and compliance.

E

EDELWEISS Werbeagentur GmbH

edelweiss-werbeagentur.at

53

EDELWEISS Werbeagentur GmbH is a small Austrian full-service advertising agency specializing in sustainable brand building for small and medium-sized enterprises. Their services include corporate design, logo creation, website and webshop development, SEO, social media marketing, and traditional advertising. The company emphasizes long-term partnerships and comprehensive marketing solutions. Technically, the website is built on a custom CMS with modern front-end technologies such as UIkit and jQuery, and integrates Google Analytics and Google Ads for marketing and analytics. The site is mobile-optimized and SEO-friendly, providing a professional user experience. Security-wise, the site uses HTTPS and implements a detailed cookie consent mechanism, but lacks advanced HTTP security headers and explicit security policies or incident response contacts. WHOIS data is unavailable, which slightly reduces trust but the website content and business presence appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, privacy compliance, and business credibility, with room for improvement in security best practices and transparency.

N

NG Consulting s.r.o.

ngstranky.cz

51

NG Consulting s.r.o. operates the website ngstranky.cz, providing web development, SEO, online marketing, and webhosting services primarily in the Czech Republic. The company targets businesses and individuals seeking professional internet presence and digital marketing solutions. Their market position is that of a small but established local player with a portfolio of notable clients and positive testimonials. Technically, the website is built on WordPress with a modern plugin ecosystem including Slider Revolution, Contact Form 7, and Google Analytics integration, demonstrating a mature digital infrastructure. Security posture is good with HTTPS enforced and use of Google reCAPTCHA on forms, though HTTP security headers are missing and WHOIS data is unavailable, which slightly reduces trust. Overall, the website is professional, GDPR compliant, and well-optimized for SEO and user experience.

S

Soitron

soitron.sk

53

Soitron is a well-established IT services company with over 30 years of experience operating in seven countries, primarily in Central Europe. The company offers a broad portfolio of IT solutions including cybersecurity, data centers, communication and network solutions, IoT, IT outsourcing, and automation services. Positioned as a long-term leader in IT infrastructure and services, Soitron targets business clients across various sectors such as industry, finance, public administration, energy, and healthcare. The website reflects a professional and consistent brand image with comprehensive service descriptions and client testimonials, supporting its market credibility. Technically, the website is built on WordPress with modern technologies including WPBakery Page Builder, Google Tag Manager, and EWWW Image Optimizer for performance and SEO. It employs HTTPS with strong SSL configuration and security headers, and integrates reCAPTCHA v2 on forms to mitigate spam. Privacy compliance is robust, featuring GDPR-aligned privacy and cookie policies with explicit consent mechanisms. The site is mobile optimized and SEO friendly, though accessibility could be improved. From a security perspective, Soitron demonstrates good practices such as HTTPS enforcement, security headers, and secure form handling. However, explicit security policies and incident response contacts are not publicly detailed, and no vulnerability disclosure or security.txt files were found. The domain registration data aligns well with the company's identity and history, reinforcing trustworthiness. Overall, Soitron's website presents a secure, professional, and compliant digital presence suitable for its business model and target audience. Strategic recommendations include publishing detailed security policies, incident response information, and vulnerability disclosure mechanisms to further enhance trust and compliance.

C

Crystal BOHEMIA a.s.

24crystal.cz

39

Crystal BOHEMIA a.s. operates the e-commerce website 24crystal.cz, specializing in the sale of crystal glassware and related decorative and gift products. The company targets consumers interested in high-quality crystal products, positioning itself as a niche retailer within the Czech Republic. The website provides a professional online shopping experience with clear navigation and detailed terms of service, reflecting a mature business model founded in 2019. Technically, the website employs common JavaScript libraries such as jQuery, Slick Carousel, and tracking tools including Google Analytics and Facebook Pixel. The site is hosted under the registrar REG-WEBGLOBE and uses HTTPS, ensuring secure communication. However, the site lacks explicit privacy and cookie policies and does not implement visible security headers, indicating areas for compliance and security improvement. From a security perspective, the website shows a moderate posture with no detected vulnerabilities or blocking mechanisms. The absence of privacy and cookie consent mechanisms presents compliance risks under GDPR. Contact information is clearly provided, enhancing business credibility. The content is safe for general audiences but includes mature content related to alcohol products. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and better mobile optimization to strengthen trust and regulatory adherence.

3

Events in Jablonec | 365 Jablonec

365jablonec.cz

47

The website 365jablonec.cz serves as a local event listing platform for Jablonec nad Nisou, Czech Republic, providing up-to-date information on cultural, sports, educational, and leisure events. It targets a general audience interested in local happenings and offers features such as event search and organizer information. The site uses modern web technologies including React and Next.js, indicating a contemporary technical infrastructure with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data raises concerns about domain legitimacy and trustworthiness, impacting the overall risk profile. Strategic recommendations include enhancing security headers, publishing privacy and cookie policies, and providing clear contact and incident response information to improve compliance and trust.

S

SHERWOOD Digital a.s.

sherwood.cz

50

SHERWOOD Digital a.s. is a well-established Czech digital agency founded in 2006, specializing in premium custom websites, robust e-commerce platforms, online marketing, and digital ecosystems for events and festivals. The company holds a strong market position in the Czech Republic, serving both domestic and export-oriented businesses with a portfolio of reputable clients and multiple industry awards. Their business model focuses on delivering tailored digital solutions that drive measurable business results for B2B clients. Technically, the website employs modern tracking and analytics tools such as Google Tag Manager and Leady, hosted on reliable Czech hosting providers, with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS and cookie consent mechanisms, though it lacks explicit security policies and advanced security headers. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a mature digital presence.

R

Rubena, s.r.o.

rubena.cz

55

Rubena, s.r.o. is a Czech manufacturing company specializing in a broad range of rubber products including V-belts, air springs, flexible and inflatable rubber products, hockey pucks, technical molded rubber, rubber compounds, and mold production. The company operates multiple e-commerce platforms targeting industrial and commercial customers, indicating a diversified business model and a solid market position in the manufacturing sector. The website is professionally designed with clear navigation and consistent branding, supporting a positive user experience and trustworthiness. Technically, the website employs modern analytics tools such as Google Analytics and Google Tag Manager, alongside a comprehensive cookie consent management system via CookieScript. The site appears to be custom-built or uses a proprietary CMS platform by SHERWOOD Media s.r.o. Performance is moderate with good mobile optimization and basic accessibility features. However, security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were identified in the HTML content. The absence of explicit incident response contacts or a security.txt file indicates an opportunity to enhance transparency and readiness for security incidents. Overall, the domain WHOIS data is unavailable or privacy protected, which is common for medium-sized enterprises but limits direct verification of domain registration details. The website’s content, social media presence, and compliance measures provide strong trust signals. Strategic recommendations include implementing security headers, publishing incident response information, and enhancing accessibility compliance to further strengthen the security posture and user trust.

У

Українська національна лотерея

unl.ua

51

The website represents the official Ukrainian National Lottery, providing state lottery services and online ticket purchases. It targets Ukrainian citizens interested in participating in national lotteries. The site uses modern web technologies including React and integrates multiple analytics and tracking services such as Google Analytics, TikTok Pixel, and Facebook Pixel. The technical infrastructure appears moderately optimized for performance and mobile usage, with a good level of design and user experience. Security posture is adequate with HTTPS enabled, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of accessible privacy and cookie policies and no clear consent mechanisms. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

I

Integrační centrum Praha

konferenceintegrace.cz

39

Integrační centrum Praha operates as a non-profit organization focused on integration and migration communication, primarily organizing conferences such as "Komunikací k integraci". The website serves as an informational and promotional platform for these events, targeting professionals in public administration, NGOs, media, and academia. Technically, the site is built on WordPress using the Enfold theme and WPML for multilingual support, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security headers and incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting its role as a government/non-profit entity in the Czech Republic.

P

Poradna pro integraci

barevnaplaneta.cz

47

Barevná planeta is a well-established multietnic world music festival organized by the non-profit organization Poradna pro integraci, held in Ústí nad Labem, Czech Republic. The website provides comprehensive event information, supported by local government and international organizations such as UNICEF. The festival targets a broad audience interested in multicultural music and cultural events. Technically, the site is built on WordPress with modern plugins and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS, reCAPTCHA, and no visible vulnerabilities, though security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and well-maintained, reflecting the festival's long history and community support.

OPA Group s. r. o. operates the website oculocin.cz, specializing in the development, manufacturing, and distribution of natural eye care products, including eye drops designed to treat chronic conjunctivitis and irritated eyes without antibiotics. The company positions itself as a provider of safe, effective, and innovative healthcare products with certifications such as ISO 13485 and CE MDD 0434, targeting consumers seeking natural and hygienic eye care solutions. The website is professionally designed using WordPress with multilingual support and SEO optimization, providing clear product information and customer engagement through a registration form and social media links. Technically, the site employs modern web technologies and is hosted by Wedos, with good SSL configuration and basic security practices in place. However, security headers and explicit security policies could be enhanced. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the website demonstrates a high level of business credibility and technical maturity, with no signs of blocking or malicious content.

The website hitachimorava.cz represents Tepelná čerpadla Mazur s.r.o., a small Czech company specializing in the sale, installation, and servicing of heat pumps and HVAC systems, primarily under the HITACHI brand. The company positions itself as an official distributor in the Czech Republic with over 60 years of experience in the industry. The site targets residential and commercial customers seeking high-quality, energy-efficient heating and cooling solutions. The business model focuses on product sales, professional installation, and after-sales service, supported by a user-friendly website with clear product offerings and contact channels. Technically, the website employs a modern but somewhat dated technology stack including AngularJS 1.6.7, jQuery, Bootstrap, and integrates Google Analytics, Google Tag Manager, and Smartsupp live chat for customer engagement and analytics. The site is hosted likely via WEDOS, a Czech hosting provider, consistent with the domain registrar information. The site is mobile optimized and SEO friendly with proper meta tags and structured navigation. From a security perspective, the website demonstrates good privacy compliance with a comprehensive GDPR policy and cookie consent mechanism. However, no explicit security headers were detected, and the use of an older AngularJS version may pose some security risks. There is no visible incident response or vulnerability disclosure information, which could be improved. The site uses HTTPS for all external resources, but direct SSL configuration details are not available. Overall, the website is professional, trustworthy, and well-aligned with the business goals. The risk level is moderate with recommendations to enhance security headers, update frameworks, and publish incident response contacts. The domain registration data is consistent with the business claims, supporting legitimacy. The site contains no adult or questionable content and is safe for general audiences.

P

Panevėžio „Lietkabelis“

kklietkabelis.lt

40

Panevėžio „Lietkabelis“ is a Lithuanian basketball club with a professionally maintained website providing comprehensive information about the team, news, schedules, sponsors, and community projects. The site targets basketball fans and stakeholders, offering ticket and merchandise sales through partner platforms. Technically, the site is built on WordPress with modern libraries like jQuery, Bootstrap, and Slick Carousel, and integrates Google Analytics and Klaviyo for marketing and analytics. Security posture is moderate with HTTPS enabled and IP anonymization in analytics, but lacks security headers and privacy/cookie policies. WHOIS data is unavailable, raising some concerns about domain registration transparency. Overall, the website is professional, content-rich, and safe for general audiences, but could improve privacy compliance and security best practices.