Security Directory

P

Penzion Rossini

rossini.cz

47

Penzion Rossini is a small hospitality business located in Františkovy Lázně, Czech Republic, offering accommodation and wellness services including massages and cosmetics. The website is professionally designed with good content quality and clear navigation, targeting tourists and visitors seeking comfortable lodging near the spa colonnade. The business holds a Hotel.cz quality certificate and has positive customer reviews, indicating a strong local market position. Technically, the site uses modern web technologies such as Bootstrap, Google Analytics, and Smartlook for analytics and user experience enhancement. The cookie consent mechanism is implemented with granular user controls, reflecting basic privacy compliance. Security posture is moderate with no visible security headers and unknown SSL configuration, suggesting room for improvement. Overall, the website is trustworthy and safe with no adult or questionable content detected.

JAW.cz s.r.o. is a regional telecommunications provider based in the Czech Republic, offering high-speed internet, television, telephony, and security services primarily to households and businesses in the Děčín region. The company positions itself as a reliable and flexible ISP with no long-term contracts and competitive pricing. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site uses a CMS platform (MultiCMS.net) and integrates common analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The site is mobile optimized and provides a cookie consent mechanism, though it lacks a visible privacy policy and terms of service pages. Security posture is moderate with HTTPS enabled but missing security headers and no published incident response or vulnerability disclosure information. WHOIS data is unavailable, which reduces trustworthiness but the presence of company registration details on the site supports legitimacy. Overall, the website is functional, professional, and safe for general audiences.

M

MAGISTRÁT HLAVNÍHO MĚSTA PRAHY

metropolevsech.eu

61

The website 'Prague for all' is an official government informational portal primarily targeting migrants and residents of Prague. It provides comprehensive guidance on integration, civic participation, healthcare, education, employment, and cultural activities. The site is operated under the auspices of the Prague City Hall, reflecting a strong public sector presence and commitment to community support. The platform is multilingual, enhancing accessibility for diverse audiences. Technically, the site is built on WordPress with common plugins for multilingual support and media management. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for user tracking and marketing insights. The site is hosted by Webglobe, s.r.o., a reputable registrar and hosting provider. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned as a government resource for migrants and residents.

QES Cert s.r.o. is a Czech certification company specializing in accredited certification of management systems, training, and personnel certification. The company offers certifications aligned with international standards such as ISO 9001, ISO 14001, ISO 27001, and others, targeting businesses seeking recognized quality and compliance certifications. Their market position is that of a nationally recognized certification body with international accreditation, serving a broad range of industries. The website content is professional and clearly communicates their services and certifications, with a focus on practical auditing experience and flexibility. Technically, the website employs a moderate technology stack including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA for form security. The site is mobile optimized with good navigation and design quality, though accessibility and SEO optimizations are basic. The absence of a CMS or hosting provider information limits deeper infrastructure insights. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms, but lacks important security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were found, but the absence of privacy and cookie policies and contact emails for security or incident response reduces compliance and trust. The missing WHOIS data is a notable concern, limiting domain legitimacy verification. Overall, the website presents a professional and trustworthy business front with room for improvement in privacy compliance, security headers, and transparency of domain registration. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, providing clear security contact information, and addressing the missing WHOIS data to enhance trust and compliance.

Adell.com is a professional e-commerce website specializing in the manufacturing and sale of kitchen and bath faucets, taps, showers, and related bathroom accessories. The company targets both consumers and B2B customers, offering a range of products including OEM metal parts and semi-finished products. The website is built on the Shopify platform, leveraging modern web technologies and third-party extensions to provide a robust shopping experience. Despite the lack of publicly available WHOIS data, the site presents a professional front with secure HTTPS connections and a well-structured product catalog. However, the absence of visible privacy, cookie, and terms of service policies, as well as missing contact information, indicates areas for improvement in compliance and transparency. Security measures such as hCaptcha are implemented for form protection, and the site benefits from Shopify's inherent security features. Overall, the site is functional and trustworthy but would benefit from enhanced privacy compliance and clearer business contact details.

S

SYNOT Games

synotgames.com

76

SYNOT Games is a well-established gaming content provider specializing in HTML5 casino slots and table games, serving a large network of over 1800 casino partners. The company emphasizes player engagement tools such as PEAK and progressive bonuses, positioning itself as a key player in the online gambling technology sector. The website demonstrates a mature digital infrastructure built on WordPress with modern JavaScript frameworks and integrates Google Analytics and Tag Manager for marketing insights. Security posture is solid with HTTPS enforcement and anti-user enumeration measures, though some standard security headers are missing and privacy compliance documentation is not explicitly found. The absence of WHOIS data raises some concerns about domain registration transparency, but the extensive social media presence and certifications support legitimacy. Overall, the site is professional, content-rich, and targeted at adult gambling operators and players.

E

e-gaming s.r.o.

e-gaming.cz

51

e-gaming s.r.o. is a well-established Czech company specializing in gaming software and hardware, particularly video slot games with progressive jackpots for both online and land-based markets. Founded in 2005, it holds a strong market position as one of the main players in the Czech VLT market, with subsidiaries in Slovakia and Spain. The company offers multi-channel gaming solutions with a focus on ergonomic hardware design and modern software. The website reflects a professional digital presence with multilingual support and compliance with GDPR cookie regulations. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, WPML for multilingual support, and Complianz for GDPR cookie consent management. It uses Google Analytics and Google Tag Manager for analytics and tracking. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit security policies or vulnerability disclosure pages. No exposed sensitive data or vulnerable libraries were detected. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's history and no privacy protection, enhancing trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, suitable for its target audience in the gaming industry. Strategic improvements in security headers, accessibility, and explicit security policies would further strengthen its posture.

A

Allwyn Lottery Solutions

allwyn-lotterysolutions.com

69

Allwyn Lottery Solutions is a technology-focused company specializing in delivering innovative lottery solutions aimed at enhancing player engagement and fun. Founded in 2023, the company positions itself as a leader in lottery technology and design, targeting lottery operators and related stakeholders. The website reflects a professional and modern digital presence built on WordPress with Elementor, incorporating SEO best practices and Google Analytics with privacy-conscious configurations. Security posture is adequate with HTTPS enabled and some privacy controls, but lacks published security policies, incident response plans, and vulnerability disclosures. The domain registration is consistent with the business timeline and shows no suspicious indicators. Overall, the site is accessible, safe, and professionally presented but would benefit from enhanced transparency in privacy, security, and contact information.

I

Intelligent Data

intelligentdata.es

56

Intelligent Data is a Spanish technology company specializing in the engineering and production of accessible terminals, telecare solutions, telemedicine platforms, and cloud services enhanced with artificial intelligence. The company positions itself as an expert in designing and manufacturing electronic devices tailored for healthcare and payment systems, serving healthcare providers and telecare service markets. Their website reflects a medium-sized enterprise with a professional digital presence and multilingual support, indicating a mature and internationally oriented business model. Technically, the website is built on WordPress with modern plugins such as Elementor and Smart Slider 3, and integrates Google Analytics and Tag Manager for tracking. The site is well-optimized for mobile devices and SEO, though accessibility features could be improved. Security posture is solid with HTTPS enforced and standard security headers present, but lacks publicly available security policies or incident response information. Overall, the domain registration is privacy-protected as per Red.es policies, consistent with the business's Spanish location and industry. The website is safe, professional, and trustworthy with no signs of adult or questionable content.

E

EveryMatrix

everymatrix.com

70

EveryMatrix is a leading B2B technology provider specializing in iGaming and sports betting software solutions. Established in 2009, the company offers a comprehensive suite of products including sportsbook management, casino integration, payment processing, affiliate marketing, and bonus abuse prevention tools. Their platform is modular and API-driven, designed to serve regulated markets globally with a strong footprint in multiple jurisdictions. The website reflects a mature digital presence with professional design, clear navigation, and extensive content relevant to their target audience of gaming operators and partners. Technically, the website is built on WordPress and leverages modern analytics and marketing technologies such as Google Tag Manager, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. Hosting is supported by Akamai CDN infrastructure, ensuring fast performance and global availability. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured data. Privacy compliance is robust, featuring a cookie consent mechanism and GDPR-aligned privacy policy. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes security headers to mitigate common web vulnerabilities. No exposed sensitive data or vulnerable libraries were detected in the HTML content. However, DNSSEC is not enabled, and the site lacks a published security.txt or explicit incident response contact, which are recommended for enhanced security posture. Overall, EveryMatrix demonstrates a high level of professionalism, trustworthiness, and compliance suitable for its industry. The domain registration is consistent with the company's history and identity, supporting legitimacy. Strategic recommendations include enabling DNSSEC, publishing vulnerability disclosure policies, and enhancing incident response transparency to further strengthen security and trust.

I

INTRALOT

intralot.com

65

INTRALOT is a global leader in the gaming industry, providing comprehensive lottery, betting, and gaming solutions along with digital transformation and operational services. The company targets lottery and gaming organizations worldwide, offering technology platforms and services to enhance player engagement and operational efficiency. The website reflects a mature digital presence with professional design and structured navigation, supporting its market position. Technically, the site uses modern JavaScript libraries and Google Analytics, with HTTPS enabled and cookie consent implemented, indicating a reasonable level of digital maturity. Security posture is adequate but could be improved by adding security headers and publishing clear privacy and security policies. The absence of WHOIS data is a concern but does not significantly detract from the overall legitimacy given the professional business content. Strategic recommendations include enhancing transparency with privacy and security policies, improving security headers, and providing incident response information to strengthen trust and compliance.

C

Carmanah Signs

carmanahsigns.com

59

Carmanah Signs is a specialized division of STRATACACHE focused on delivering advanced digital signage solutions tailored for lottery retail environments. The company leverages powerful software and durable hardware to enhance lottery player experiences and drive sales growth. Their market position is strong, supported by their parent company's global leadership in digital signage networks. Technically, the website is built on Squarespace with modern tracking and font technologies, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain locking but lacks DNSSEC and some security headers. Privacy compliance is weak due to missing policies and consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy practices.

G

Greentube GmbH

greentube.com

61

Greentube GmbH, a division of NOVOMATIC, is a leading full-service provider in the online and mobile gaming sector, delivering secure and innovative casino entertainment solutions globally. The company targets B2B clients, offering a broad portfolio including slot games, table games, video poker, and server-based gaming platforms. Their market position is strong, supported by a comprehensive product suite and certifications such as ISO 27001. Technically, the website is built on WordPress with modern JavaScript libraries and frameworks, optimized for mobile and SEO, and integrates analytics and consent management tools. Security posture is robust with HTTPS, security headers, and cookie consent, though explicit security policies and incident response details are not publicly available. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though the lack of WHOIS data slightly impacts domain trust. Strategic recommendations include publishing security policies, vulnerability disclosure, and providing direct security contacts to enhance trust and compliance.

M

My interior service s.r.o.

myishop.cz

46

My interior service s.r.o. operates the MYi e-commerce platform specializing in design furniture sales primarily targeting consumers interested in stylish interior solutions within the Czech Republic. The website presents a professional and consistent brand image with a clear focus on retailing high-quality furniture products and curated collections. The company was founded in 2017, and the domain registration aligns well with this timeline, supporting the legitimacy of the business. The platform integrates multiple social media channels to enhance brand engagement and customer outreach. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics, Google Tag Manager, and Smartsupp chat, hosted behind Cloudflare DNS services. The site demonstrates good mobile optimization and SEO practices, although no explicit CMS or framework is detected, suggesting a custom-built solution. Performance is moderate, with room for improvement in accessibility features and security headers. From a security perspective, the site enforces HTTPS and provides a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy documentation and incident response contacts, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain registration consistency and legitimacy. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, positioning it as a trustworthy and professional e-commerce platform. Strategic improvements in security headers and incident response transparency would further strengthen its security posture and user trust.

S

Spinelli s.r.o.

spinelli.cz

48

Spinelli s.r.o. is a Czech-based marketing consultancy specializing in creative marketing solutions, business consulting, brand building, HR marketing, and marketing communication. The company targets businesses seeking to improve their brand presence and operational success through tailored marketing strategies. The website presents a professional image with clear service offerings and notable client references, positioning Spinelli as a trusted partner in the marketing sector within the Czech Republic. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics for tracking, uses web fonts and icons for design consistency, and implements a cookie consent mechanism compliant with GDPR standards. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, while HTTPS is presumably enabled (based on URL schema), explicit security headers and policies are not visible in the provided data. The absence of WHOIS registration details limits the ability to fully verify domain legitimacy and ownership, which is a moderate risk factor. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, Spinelli's website reflects a credible and professional marketing consultancy with moderate technical maturity and privacy compliance. The main risk lies in the lack of publicly available WHOIS data, which should be addressed to enhance trust and transparency.

R

Rubena, s.r.o.

rubena.eu

57

Rubena, s.r.o. is a Czech manufacturing company specializing in a wide range of rubber products including V-belts, air springs, tyres, ice hockey pucks, and rubber molded parts. The company operates multiple e-commerce platforms to sell its products and supports multiple languages, indicating a focus on international markets. The website is professionally designed with good navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses modern tracking and consent management tools such as Google Analytics and CookieScript, and employs JavaScript frameworks like Naja for enhanced user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response contacts could be improved. WHOIS data is privacy protected, which is common for EU domains, and does not raise immediate concerns. Overall, the website presents a trustworthy and professional image suitable for its industrial manufacturing business.

V

Vaše pekárna a.s.

mojesklizeno.cz

43

MojeSklizeno.cz is a Czech franchise business website offering franchising opportunities for the Sklizeno brand, which focuses on healthy lifestyle retail stores selling farm and bio foods, delicacies, and alternative diets. The company positions itself as a market leader with over ten years of experience and targets entrepreneurs interested in healthy food retail franchising in the Czech Republic. The website provides detailed business model information, franchise concepts, financial models, and contact forms for prospective franchisees. Technically, the site uses Bootstrap and Google Analytics, hosted on Czech-based servers, with moderate performance and good mobile optimization. Security posture is basic with HTTPS implied but lacks explicit security headers and privacy/cookie policies, representing compliance gaps. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

Skupina COOP is a large cooperative retail network in the Czech Republic, operated by the Svaz ceskych a moravskych spotrebnich druzstev. The organization manages the largest network of retail grocery stores under the COOP brand and also operates several educational institutions focused on hospitality, gastronomy, and services. The website provides comprehensive information about the cooperative stores, schools, and customer services, targeting Czech consumers and cooperative members. Technically, the site uses a mix of JavaScript libraries including jQuery, Select2, Google Maps API, and tracking tools such as Google Analytics and Adform. The hosting is managed via Websupport.cz, and the site is accessible with no blocking or WAF challenges detected. Security posture is moderate with HTTPS enabled but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented with multiple official emails, phone numbers, and physical addresses. Social media presence on Facebook and YouTube adds to trust. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

I

Rezervační systém pro sporty, cvičení a aktivity

isportsystem.cz

44

The website www.isportsystem.cz represents a Czech-based reservation system focused on sports, fitness, wellness, and leisure activities. It targets operators of sports centers, fitness zones, wellness facilities, and organizers of group and individual sports lessons. The business model is SaaS, providing a customizable and continuously updated booking platform with a strong local market presence evidenced by over 20 years of operation and more than 1000 customers. The site content is professionally presented in Czech, with clear navigation and relevant business information, although explicit contact details are not prominently displayed. Technically, the website employs a traditional web stack with jQuery and jQuery UI libraries, along with popular UI components like Fancybox and Unite Gallery. Google Analytics and Google Tag Manager are used for user tracking and analytics. The site is mobile optimized and SEO friendly but uses somewhat outdated JavaScript libraries which may pose security risks. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no advanced security headers were detected, and no explicit incident response or security policy information is provided. The absence of a cookie consent mechanism is a compliance gap under GDPR. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trustworthiness. No vulnerabilities or malware indicators were found in the content. Overall, the website is a credible and professional platform for sports reservation services with room for improvement in security practices and privacy compliance. Strategic recommendations include implementing security headers, adding cookie consent, updating JavaScript libraries, and publishing clear security and incident response policies.

K

Kultura Jablonec, p.o.

kulturajablonec.cz

54

Kultura Jablonec, p.o. is a publicly funded cultural organization supported by the statutory city of Jablonec nad Nisou, Czech Republic. It manages local cultural venues including cinemas, event spaces, and tourist information centers, organizing a variety of cultural and social events. The website targets local residents and visitors interested in cultural activities and community events. The business model is that of a government-supported non-profit entity focused on cultural promotion and event management. The organization maintains a consistent brand presence and offers clear contact channels and social media engagement.

K

Kultura Jablonec, p.o.

ejbc.cz

54

Kultura Jablonec, p.o. is a publicly funded cultural organization supported by the statutory city of Jablonec nad Nisou. It manages local cinemas, cultural venues, and organizes a variety of cultural and social events aimed at residents and visitors. The organization plays a key role in the cultural life of the region, offering event spaces for rent, ticket pre-sales, and tourist information services. The website reflects a medium-sized entity with a clear focus on community engagement and cultural promotion. Technically, the site is built on WordPress using the Avada theme and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. Security posture is good with HTTPS enforced and spam protection via Google ReCAPTCHA, though additional security headers could enhance protection. Privacy compliance is basic, with a cookie policy present but no explicit privacy or terms of service pages. Contact information is comprehensive and prominently displayed, supporting business credibility. The absence of WHOIS data limits domain trust assessment but the website content and presentation indicate a legitimate and professional organization.

R

Rona, a.s.

rona.glass

50

Rona, a.s. is a well-established Slovakian glass manufacturer specializing in high-quality, lead-free cristallin glassware primarily targeting hotels, restaurants, and catering companies. With over 130 years of tradition, the company offers a diverse range of handmade and machine-produced glass products, emphasizing craftsmanship and decorative techniques. Their digital presence is supported by a professional WordPress-based website utilizing modern plugins such as Elementor and Yoast SEO, ensuring good content quality and SEO optimization. The website is mobile-optimized and includes social media integration across major platforms, enhancing brand visibility. Technically, the site employs a modern tech stack with secure HTTPS configuration and uses Google Analytics and Google Ads for tracking and marketing purposes. While the site implements a cookie consent mechanism, it lacks explicit privacy policy and terms of service pages, which are critical for full privacy compliance. Security headers are not explicitly detected, suggesting room for improvement in security hardening. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, the security posture is solid but could benefit from enhanced transparency and formalized policies. The domain WHOIS data is privacy protected but consistent with the company's long-standing history, supporting legitimacy. No WAF or blocking mechanisms were detected, allowing full content access and analysis. The website content is safe for general audiences, with no adult or questionable material. Strategically, Rona should focus on publishing comprehensive privacy and terms documents, improving security headers, and providing clear contact information to strengthen trust and compliance. These steps will enhance their digital maturity and security posture, supporting continued growth and market presence.

C

CRYSTAL BOHEMIA a.s.

crystal-bohemia.com

56

Crystal BOHEMIA a.s. is a leading Czech manufacturer specializing in high-quality lead crystal products, holding a prominent market position both domestically and internationally. Their website showcases a professional and well-structured digital presence, offering product categories, custom design services, retail locations, and factory tours. The company targets a general audience interested in premium crystal glassware. Technically, the site employs modern JavaScript libraries including Swiper.js for UI, Google Analytics for tracking, and Google reCAPTCHA for form security, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though improvements in security headers and incident response transparency are recommended. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS registrant data slightly reduces domain trustworthiness.

C

Chambers and Partners

chambers.com

80

Chambers and Partners is a well-established global legal research and ranking organization founded in 1998. The company specializes in ranking top law firms and lawyers worldwide, providing clients with in-depth research and analysis to identify the best legal talent. Their market position is strong as a leading authority in legal rankings, targeting legal professionals, law firms, and clients seeking legal services. The website reflects a mature business model focused on research, content publication, and events related to the legal industry. Technically, the website is built on a modern Angular framework, leveraging Cloudflare for DNS and performance optimization. It integrates widely used analytics and marketing tools such as Google Analytics, Hotjar, and OneTrust for cookie consent management. The site demonstrates good digital maturity with fast performance, excellent mobile optimization, and solid SEO practices. From a security perspective, the site enforces HTTPS, employs multiple security headers, and uses a cookie consent mechanism compliant with GDPR. However, DNSSEC is not enabled, and there is no publicly available security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, Chambers.com presents a professional, trustworthy, and secure online presence with comprehensive content and strong compliance posture. Strategic recommendations include enabling DNSSEC, publishing a security policy and incident response contacts, and considering a vulnerability disclosure program to further enhance trust and security.

Č

Česká asociace streetwork, z.s.

casodcasu.cz

42

ČAS od ČASU is a Czech non-profit organization focused on social work, particularly streetwork and low-threshold social services. The website serves as a platform for their podcast series, educational content, and campaigns aimed at raising awareness and supporting socially excluded groups. The organization is well positioned within the Czech social services sector, leveraging partnerships with related sites and campaigns. The website content is professionally presented, targeting social workers, professionals, and the general public interested in social issues. Technically, the site uses standard web technologies with Google Analytics and Facebook Pixel for tracking, hosted by Active24. While the site is mobile optimized and well structured, it lacks critical privacy and cookie policies, which impacts GDPR compliance. Security posture is basic with HTTPS enabled but missing security headers and incident response information. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and consistency.

I

Institut kontaktní práce s.r.o.

kontaktniprace.cz

51

Institut kontaktní práce s.r.o. is a specialized educational organization founded in 2019, focused on providing accredited training and professional development for contact workers in low-threshold social services in the Czech Republic. The website reflects a well-established niche player with strong ties to the parent organization Česká asociace streetwork, z. s. (ČAS). The business model centers on delivering accredited courses and tailored training programs to social service professionals, supported by a consistent brand and clear communication channels. The target audience includes social workers, contact workers, and related professionals seeking career growth and skill enhancement.

Č

Česká asociace streetwork

pracenaulici.cz

47

The website pracenaulici.cz represents the Česká asociace streetwork, a Czech non-profit umbrella organization focused on low-threshold social services addressing children, youth, addiction, and homelessness. The site provides campaign information and links to related social service areas. The organization appears to be small-sized and founded in 2018, with a clear mission to support vulnerable populations in the Czech Republic. The website is professionally designed with good content relevance and clear navigation, optimized for mobile devices. Technically, it uses standard web technologies including JavaScript, CSS, and Google Analytics for visitor tracking, with a cookie consent mechanism implemented to comply with privacy regulations. However, no explicit privacy policy or terms of service pages were found, which is a compliance gap. Security posture is moderate with HTTPS implied but no detailed security headers detected. No contact information or incident response details are published, limiting transparency. Overall, the website is safe, trustworthy, and serves a general audience without adult or explicit content.

K

KDPW_CCP S.A.

kdpwccp.pl

52

KDPW_CCP S.A. operates as a central counterparty clearing house in Poland, providing clearing, risk management, collateral management, and reporting services primarily for organized and non-organized financial and commodity markets. The website presents a professional and comprehensive overview of its services, targeting financial market participants and counterparties. The company holds a significant market position within Poland's financial infrastructure, supported by regulatory compliance and transparent communication. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Swiper.js, with integration of Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and offers good navigation and content relevance, although accessibility features could be improved. The SSL configuration is excellent, ensuring secure communications. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some HTTP security headers and does not publish explicit incident response or vulnerability disclosure policies, which are recommended for enhanced security posture. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the website is trustworthy and professional, though the absence of WHOIS data limits domain trust verification. Strategic improvements in security headers and incident response transparency would further strengthen its security and compliance stance.

Č

Česká golfová federace

cgf.cz

51

Česká golfová federace (ČGF) is the official governing body for golf in the Czech Republic, providing comprehensive services including tournament organization, player rankings, club information, and educational resources. The website serves as a central hub for Czech golf players, clubs, and enthusiasts, offering detailed information about golf courses, competitions, and federation activities. The site is professionally designed, mobile-optimized, and integrates modern web technologies such as Google Analytics and Facebook SDK for analytics and social media engagement. Privacy and cookie policies are implemented with user consent mechanisms, reflecting compliance with GDPR standards. However, the absence of WHOIS data for the domain reduces transparency and trust slightly, although the website content and structure strongly indicate legitimacy. Security posture is good with HTTPS enforced and security headers present, but explicit security and incident response policies are not publicly available. Overall, the site is a reliable and professional resource for the Czech golf community.

I

IT Děčín s.r.o.

hpdecin.cz

58

IT Děčín s.r.o. operates the e-commerce website hpdecin.cz, specializing in the retail sale of computers, notebooks, printers, multifunction devices, consumables, and software primarily focused on HP products. The company targets retail customers and businesses within the Czech Republic, positioning itself as a specialist local retailer with a broad product offering and customer advisory services. The website demonstrates a professional and consistent brand presence with clear navigation and comprehensive product categorization. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, reCAPTCHA v3, and integrates with local services such as Seznam.cz and Mapy.cz. The site is built on a CMS platform likely VirtueMart, optimized for mobile devices, and includes accessibility features at a basic level. Performance is moderate with good SEO practices and structured data enhancing search visibility. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA to protect forms. Cookie consent is managed with Google Consent Mode, indicating privacy compliance efforts. However, explicit security headers such as CSP and HSTS are not confirmed and should be implemented to strengthen security posture. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data for the domain is unavailable, which limits the ability to fully verify domain legitimacy and registration details. This is a notable risk factor despite the professional appearance and trust signals on the website. Overall, the site is safe for general audiences, with no adult or questionable content detected. Strategic recommendations include enhancing security headers, maintaining up-to-date third-party libraries, establishing a clear security policy and incident response contact, and improving accessibility compliance to further strengthen trust and security.

S

Sunset Drive s.r.o.

sunsetdrive.cz

54

Sunset Drive s.r.o. is a small creative design studio based in Prague, Czech Republic, specializing in design, DTP, graphics, and multimedia portfolios focused on sports such as golf and hockey. The company targets creative professionals and businesses seeking specialized design services. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies including JavaScript and Google Analytics for visitor tracking. While the site presents a professional design and clear navigation, it lacks comprehensive privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enabled but missing important security headers. The absence of WHOIS data reduces transparency but the social media presence and structured data lend credibility.

H

Hotel Koflík

hotel-koflik.cz

56

Hotel Koflík is a small four-star hotel located in a historic building in the center of Strakonice, Czech Republic. The hotel offers a limited number of rooms and apartments with standard amenities and includes breakfast. The website is professionally designed using the Wix platform, featuring clear navigation and relevant business information. The technical infrastructure relies on Wix's hosting and CMS services, with Google Analytics and Tag Manager integrated for visitor tracking. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and privacy compliance features. No WHOIS data is available from the CZ.NIC server, indicating privacy protection or data unavailability, which is common for small businesses. Overall, the site presents a trustworthy and professional online presence for a local hospitality business.

H

Hotel Bouda Helena

hotel-bouda-helena.cz

45

Hotel Bouda Helena is a small hospitality business located in the Krkonoše mountains of the Czech Republic, offering hotel accommodation, restaurant services, and event hosting. The website is professionally designed using WordPress and Elementor, featuring modern technologies and good SEO practices. The business maintains a consistent brand presence with clear contact information and social media integration. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security posture is good with HTTPS enabled and cookie consent implemented, though some security headers and policies could be improved. Overall, the website presents a trustworthy and professional image suitable for its target audience of tourists and corporate clients.

P

pelicantravel.com s.r.o.

flipo.at

64

Flipo.at is an established online travel agency specializing in flight ticket bookings, hotel reservations, and car rentals primarily targeting German-speaking customers in Austria. The company, operating under pelicantravel.com s.r.o., leverages over 20 years of experience and serves more than 3 million satisfied customers, positioning itself as a trusted player in the transportation sector. The website offers a comprehensive user experience with clear navigation, multiple language and currency options, and a modern design tailored for desktop and mobile users. Technically, the site employs a modern AngularJS framework combined with various analytics and marketing tools such as Google Analytics, Facebook Pixel, New Relic, and Exponea. The infrastructure appears robust with CDN usage and good mobile optimization. However, some security best practices like explicit security headers are not visibly implemented, and no public security policy or incident response information is provided. From a security and compliance perspective, the website enforces HTTPS, provides a detailed cookie consent mechanism aligned with GDPR, and displays trust badges including IATA membership and PCI compliance. Contact information is transparent and accessible, enhancing business credibility. The absence of WHOIS data limits domain registration trust analysis but does not detract significantly from the overall legitimacy based on website content and trust signals. Overall, Flipo.at demonstrates a mature digital presence with strong business credibility and good security posture, though improvements in security transparency and WHOIS data availability could further enhance trust and compliance standing.

P

pelicantravel.com s.r.o.

flipo.pl

59

Flipo.pl operates as an established online travel agency primarily serving the Polish market, offering affordable flight tickets, car rentals, and gift cards. The business is part of pelicantravel.com s.r.o., a Slovak company with over 20 years of experience and a customer base exceeding 3 million. The website demonstrates a professional and user-friendly design with comprehensive travel search functionalities and multiple payment options. Technically, the site leverages modern web technologies including AngularJS, Google Tag Manager, and various analytics and marketing tools, ensuring a robust digital presence. Security-wise, the site enforces HTTPS, employs security headers, and integrates cookie consent mechanisms, though it lacks a publicly available security policy or incident response contacts. The absence of WHOIS data for the domain reduces transparency but does not significantly detract from the overall trustworthiness given the strong business signals and certifications. Strategic recommendations include publishing security policies, enhancing accessibility, and maintaining vigilance on third-party scripts to further strengthen security posture.

P

pelicantravel.com s.r.o.

pelikan.hu

58

Pelikan.hu is a well-established Hungarian online travel agency specializing in affordable flight tickets, hotel bookings, car rentals, and travel insurance. With over 3 million satisfied customers and 20 years of experience, it holds a strong market position in the Hungarian travel sector. The website offers a comprehensive range of travel services with Hungarian language support and integrates multiple partner services to enhance its offerings. Technically, the site uses modern web technologies including AngularJS and integrates advanced analytics and marketing tools such as Google Analytics, Facebook Pixel, and New Relic. The platform is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR, though it lacks explicit security policy and incident response disclosures. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the site.

P

pelicantravel.com s.r.o.

pelipecky.sk

51

Pelipecky.sk is a Slovak travel media website operated by pelicantravel.com s.r.o., specializing in providing travel stories, tips, and affordable flight and holiday deals. The site targets travelers seeking budget-friendly travel options and leverages affiliate marketing partnerships, notably with Pelikan.sk. The website is built on WordPress with a modern tech stack including Slider Revolution, Google Analytics, and Crisp Chat, indicating a mature digital infrastructure. Security posture is solid with HTTPS and DNSSEC enabled, though improvements can be made by adding explicit security headers and publishing privacy and terms policies. Overall, the site presents professional content with good user experience and trustworthy branding, though lacks explicit privacy and terms documentation in the analyzed content.

T

ThemeAnsar

themeansar.com

66

ThemeAnsar is a specialized WordPress theme and plugin provider established in 2016, offering both free and premium WordPress themes along with related services. The website targets WordPress users, bloggers, and businesses seeking modern, responsive, and easy-to-use themes. The company positions itself as a niche player with a focus on quality design and user-friendly features, supported by testimonials and trust signals such as money-back guarantees and features on reputable platforms like WordPress.org and WPBeginner. Technically, the website is built on WordPress 6.8.3 with popular plugins like Elementor and Easy Digital Downloads, leveraging modern web technologies including jQuery and Font Awesome. The site is mobile optimized and SEO friendly, with structured data and meta tags implemented effectively. Hosting details are not explicit, but DNS is managed via Cloudflare, indicating some level of infrastructure robustness. From a security perspective, HTTPS is enabled and domain registration includes protective status locks, but DNSSEC is not enabled and security headers are minimal. No advanced security policies or incident response contacts are found, and cookie consent mechanisms are absent despite use of tracking scripts. These gaps suggest room for improvement in compliance and security hardening. Overall, ThemeAnsar presents a professional and trustworthy online presence with solid business credibility and technical implementation. Strategic enhancements in privacy compliance and security posture would further strengthen its risk profile and user trust.

TIGIS spol. s r.o. operates a Czech-language website focused on publishing specialized medical magazines for both healthcare professionals and patients. The company offers quarterly printed and electronic versions of its publications, including advertising opportunities with multimedia content. The website targets medical professionals and patients interested in healthcare topics, positioning itself as a niche publisher within the Czech healthcare media sector. The business model revolves around magazine publishing, advertising, subscriptions, and author contributions. Technically, the site is built on Joomla CMS with legacy JavaScript libraries and integrates Google Analytics and Tag Manager for user tracking. Cookie consent is implemented, but privacy and terms policies are absent, indicating partial privacy compliance. Security posture is moderate with no visible advanced security headers and use of outdated scripts, which could expose vulnerabilities. WHOIS data is missing, raising concerns about domain legitimacy and trustworthiness. Overall, the site is functional and content-rich but requires improvements in security, privacy, and domain transparency to enhance trust and compliance.

D

Dovista

meetdovista.com

45

Dovista is a major European manufacturer and provider of vertical windows and exterior doors, operating through 13 distinctive brands with strong local market roots. The company is part of the VKR Group, a well-established corporate group passionate about daylight and fresh air solutions. The website reflects a professional corporate presence with clear branding, multilingual support, and a focus on business-to-business and business-to-consumer markets across Europe. Technically, the site is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements such as DNSSEC and enhanced security headers are recommended. No critical vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with clear policies and consent management. Overall, the site demonstrates a solid digital maturity aligned with its business objectives.

D

DOVISTA A/S

dovista.com

49

DOVISTA A/S is a large European manufacturing group specializing in vertical windows and exterior doors, operating through a portfolio of 13 distinctive brands. The company is headquartered in Denmark and owned by VKR Holding A/S. Their market presence spans multiple European countries with a strong focus on both B2B and B2C segments. The website reflects a mature digital presence with clear branding, comprehensive product and corporate information, and multilingual support. Technically, the site is built on WordPress with modern libraries and tracking tools, offering good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the site projects a professional and trustworthy image consistent with a large manufacturing enterprise.

S

Stredná priemyselná škola elektrotechnická Prešov

spse-po.sk

56

Stredná priemyselná škola elektrotechnická Prešov is a well-established secondary technical school in Slovakia, specializing in electrical engineering and information technology education. The institution has a strong regional presence and is actively engaged in international projects such as Erasmus+, robotics competitions, and startup innovation programs. The website reflects a vibrant educational environment with frequent updates on student achievements, events, and collaborations with industry and innovation centers. Technically, the website uses modern frameworks like Bootstrap and integrates Google Analytics for user insights. Security posture is solid with HTTPS and DNSSEC enabled, though improvements could be made in cookie consent and explicit security policies. Overall, the school demonstrates a credible and professional online presence aligned with its educational mission.

P

pelicantravel.com s.r.o.

pelikan.sk

58

Pelikan.sk is a well-established Slovak online travel agency specializing in affordable flight bookings, hotel reservations, car rentals, visas, and travel insurance. With over 3 million satisfied customers and 20 years of experience, it holds a strong market position in Slovakia's travel sector. The website offers a comprehensive and user-friendly platform with modern technologies and mobile app support. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

D

D.R.J. Tiskárna Resl s.r.o.

tiskarnaresl.cz

52

D.R.J. Tiskárna Resl s.r.o. is a Czech Republic-based company operating since 2006, specializing in transportation services including international and domestic freight, bus transportation, and printing services such as production of publications, magazines, books, and textbooks. The company maintains a professional online presence with a well-structured website that clearly segments its three main divisions: Bus, Print, and Transport. The website targets both general public and business clients in the transport and printing sectors, positioning itself as an established regional player with diversified services. Technically, the website employs modern JavaScript libraries including jQuery and integrates Google Analytics, Google Tag Manager, and Google Ads for tracking and marketing purposes. The hosting and domain registration are managed by REG-GRANSY, a known registrar, with no indications of privacy protection or suspicious registrations. The website demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site uses HTTPS (implied by Google Analytics and external scripts) and implements a cookie consent mechanism with granular user controls, supporting GDPR compliance. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website presents a trustworthy and professional digital front for the company, with room for improvement in security policy transparency and technical security headers. Strategic recommendations include enhancing security headers, publishing comprehensive security and incident response policies, and adding terms of service to improve compliance and trust.

K

Kestřany Golf & Country Club

golfkestrany.cz

60

Kestřany Golf & Country Club is a hospitality and recreation business located in the Czech Republic, offering a comprehensive golf experience including an 18-hole course, training facilities, accommodation, restaurant services, and event hosting such as weddings and corporate events. The website reflects a well-structured and professional digital presence with clear navigation and relevant content targeting families, golf enthusiasts, and corporate clients. Technically, the site is built on WordPress with modern technologies like jQuery and integrates Google Analytics and Tag Manager for visitor tracking, complemented by a cookie consent mechanism to comply with privacy regulations. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though improvements in security headers and published security policies are recommended. Overall, the site is trustworthy, with clear contact information and active social media engagement, supporting a positive business credibility profile.

G

Golfresort Terasy

golfterasy.cz

48

Golfresort Terasy is a Czech golf resort offering a comprehensive range of services including golf course access, club memberships, golf training for juniors and adults, a restaurant with scenic lake views, and event hosting such as weddings and corporate celebrations. The resort also operates an online shop and a reservation system, indicating a well-rounded hospitality and sports business model. The website is professionally designed with clear navigation and good content relevance, targeting golf enthusiasts, families, and corporate clients in the region. Technically, the site is built on WordPress using the Mioweb3 theme, leveraging common libraries like jQuery and Google Analytics for tracking, with hosting and domain registration managed by a reputable Czech provider, WEDOS. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies, which are recommended for compliance and trust. Overall, the site is trustworthy and functional, though improvements in privacy compliance and security best practices would enhance its maturity and user confidence.

G

Golfresort Monachus

golfmonachus.cz

59

Golfresort Monachus is a well-established golf and hospitality business located in the Czech Republic, offering golf courses, training, memberships, accommodation, and restaurant services. The website reflects a mature digital presence with a clear focus on golf tourism and related services. The business targets golf enthusiasts, families, and tourists seeking quality golf experiences in a natural setting. Technically, the website is built on WordPress with the Mioweb platform, utilizing modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and Smartlook for user behavior insights. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent banner but lacks a visible privacy policy or terms of service pages. WHOIS data confirms the domain's legitimacy with a long registration history consistent with the business's age. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

M

Ministerstvo financí ČR

eeagrants.cz

76

The website eeagrants.cz serves as the official portal for the EEA and Norway Grants managed by the Ministry of Finance of the Czech Republic. It provides comprehensive information on funding programs, calls for proposals, bilateral cooperation, and news updates relevant to government entities, NGOs, researchers, and the general public interested in these grants. The site is positioned as a trusted government resource with a clear focus on transparency and accessibility. From a technical perspective, the website employs modern web technologies including HTML5, CSS3, and JavaScript, with integration of Cookiebot for cookie consent management and analytics tools such as Google Analytics and Matomo. Hosting appears to be on Microsoft Azure, inferred from session cookies. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security-wise, the site enforces HTTPS and uses a consent mechanism for cookies, reflecting compliance with privacy regulations. However, there is room for improvement in publishing explicit security policies, incident response contacts, and implementing additional security headers. No vulnerabilities or suspicious activities were detected in the analyzed content. Overall, the website exhibits a strong security posture, good technical implementation, and high business credibility as a government entity. Strategic recommendations include enhancing transparency by publishing security and privacy policies, improving security headers, and providing clear contact information for incident response and data protection inquiries.

G

G-up Delta s.r.o.

goopan.cz

47

Goopan, operated by G-up Delta s.r.o., is a well-established company specializing in the design and construction of low-energy and passive family homes primarily in the Czech Republic and Slovakia. The website presents a professional and comprehensive digital presence with detailed product catalogs, customer references, and multiple contact channels. The company emphasizes sustainable building technologies and offers both catalog and custom home solutions. Technically, the website employs modern web technologies including HTTPS, Google Tag Manager, Facebook Pixel, Smartlook, and reCAPTCHA v3, ensuring a secure and user-friendly experience. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanisms. However, the absence of WHOIS data and explicit security headers slightly reduces trustworthiness. Overall, the site is secure, professional, and trustworthy with room for improvement in security transparency and domain registration clarity.