Security Directory

The website cdvplus.cz is currently a parked domain with no active business content or services. It primarily serves as a placeholder page indicating the domain may be for sale. The site is heavily monetized through advertising scripts and tracking pixels from Google Adsense and third-party providers. There is no meaningful business information, contact details, or user engagement features present. The domain is newly registered in December 2024 and uses parking name servers, consistent with domain resale or parking services. From a technical perspective, the site uses basic HTML, CSS, and JavaScript with integration of Google Adsense Domains CAF scripts and Cloudfront CDN for content delivery. The site shows basic mobile optimization but lacks accessibility and SEO best practices. No CMS or advanced frameworks are detected. Performance is moderate but limited by the minimal content and advertising load. Security posture is weak with no visible HTTPS enforcement or security headers. There are no forms or inputs to evaluate for secure data handling. Privacy compliance is minimal with only a basic privacy policy accessible via a popup link and no cookie consent mechanism. No incident response or security policies are disclosed. The WHOIS data confirms the domain is very new and consistent with a parked domain profile. Overall, the site presents a low trust profile with poor content quality and minimal business credibility. It is recommended to implement HTTPS, add clear business and contact information, provide comprehensive privacy and cookie policies with consent mechanisms, and reduce excessive third-party tracking to improve user trust and compliance.

E

Elektromobilní platforma, z.s.

eplatforma.cz

59

The Czech E-mobility Platform is a non-profit technological platform dedicated to supporting the development of e-mobility, charging infrastructure, and related scientific research and education within the Czech Republic. It serves as a key partner to government ministries, coordinating legislative, communication, and educational efforts to advance the National Clean Mobility Action Plan. The platform's membership includes representatives from automotive, energy, scientific, research, and governmental sectors, positioning it as a central hub for electromobility initiatives in the country. Technically, the website is built on the Webnode CMS platform, leveraging modern web technologies such as HTML5, CSS3, JavaScript, and Amazon Cloudfront CDN for hosting static assets. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Performance is moderate, with no significant technical issues detected. The site employs HTTPS with a strong SSL configuration, ensuring secure communications. From a security perspective, the site benefits from HTTPS and a cookie consent mechanism, but lacks visible security headers and published privacy or security policies. No contact information or incident response channels are provided, which limits transparency and user trust. The absence of WHOIS data reduces confidence in domain registration legitimacy, although the website content and hosting appear professional and consistent with the stated mission. Overall, the platform presents a credible and professional front for e-mobility development in the Czech Republic but would benefit from enhanced transparency through published privacy policies, contact information, and security best practices. Addressing these gaps would improve trustworthiness and compliance with data protection regulations.

M

Mimosa.květiny

kvetinymimosa.cz

58

Mimosa.květiny is a small local flower shop based in Blansko, Czech Republic, offering a variety of floral products including bouquets, flower delivery, workshops, and wedding arrangements. The business operates an e-commerce platform with free delivery within the Blansko area, targeting local customers seeking creative and handmade floral decorations. The website is professionally designed with consistent branding and clear contact information, supporting a positive user experience and trustworthiness. Technically, the website is built on the Webnode CMS platform and utilizes Amazon Cloudfront CDN for content delivery. It employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good SEO practices. The site uses HTTPS with a valid SSL certificate, ensuring secure communication. Cookie consent mechanisms and privacy policies are implemented, indicating compliance with GDPR requirements. From a security perspective, the website has a good posture with HTTPS and cookie consent but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious content were detected. However, the absence of WHOIS data for the domain reduces the ability to fully verify domain legitimacy and trustworthiness. Overall, the website presents a trustworthy and professional front for a small retail flower business with moderate technical maturity and good privacy compliance. Strategic improvements in security headers and domain registration transparency would enhance trust and security posture.

The website tralandia.cz is currently a parked domain with placeholder content indicating it may be for sale. There is no active business presence or services offered on the site. The domain was registered recently in 2022 and uses parkingcrew.net name servers, consistent with domain parking services. The site heavily relies on advertising scripts from Google Adsense and Youseasky, with no user-facing content or navigation beyond the parked domain message. Technically, the site uses standard HTML and JavaScript with CDN hosting via Cloudfront, but lacks modern security headers and HTTPS enforcement visible in the HTML content. Privacy compliance is minimal, with only a basic privacy policy accessible via a popup link and no cookie consent mechanism. No contact or business information is provided, reducing trust and business credibility. Overall, the site is low quality, low trust, and serves primarily as a domain parking landing page.

S

Stingray Group Inc.

qello.com

63

Qello Concerts by Stingray is a mature and reputable streaming service specializing in full-length music concerts and documentaries. Owned by Stingray Group Inc., the platform offers a subscription-based model with a global reach, serving music enthusiasts with a vast catalog of content accessible on multiple devices. The website demonstrates a high level of digital maturity, leveraging modern web technologies such as Next.js and AWS infrastructure to deliver fast, responsive, and accessible user experiences. Privacy and compliance are well addressed with clear policies and consent mechanisms aligned with GDPR standards. Security posture is strong, with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Overall, the site presents a professional, trustworthy, and user-friendly platform with no critical security or compliance issues detected.

D

Divadlo Na zábradlí

nazabradli.cz

66

Divadlo Na zábradlí is a cultural theatre organization based in Prague, Czech Republic, offering theatrical performances and related e-commerce services such as ticket sales. The website is professionally designed using WordPress CMS with WooCommerce and Elementor, providing a rich user experience with event calendars and program details. The site is well-optimized for SEO and mobile devices, with clear navigation and consistent branding. Security posture is good with HTTPS enabled and no obvious vulnerabilities, though security headers could be improved. Privacy compliance is moderate, with a cookie consent mechanism present but no explicit privacy policy found in the analyzed content. Overall, the website appears legitimate and trustworthy, serving a general audience interested in theatre and cultural events.

V

Ventspils Augstskola

venta.lv

59

Ventspils Augstskola is a Latvian higher education institution offering a broad range of academic programs from bachelor's to doctoral levels, along with lifelong learning and scientific research. The website reflects a well-structured academic institution with a clear focus on education and research, targeting students, researchers, and the local community. The institution is positioned as a regional player with European university alliance partnerships, enhancing its academic credibility. Technically, the website uses a modern tech stack including JavaScript libraries, CDN hosting via Amazon Cloudfront, and progressive web app features such as service workers. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and SEO. From a security perspective, HTTPS is properly implemented, and service workers are registered, indicating a modern approach to web delivery. However, the absence of security headers and explicit privacy and cookie policies indicates compliance and security posture gaps. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

G

Genecy

genecy.com

70

Genecy is a specialized technology company providing premium custom creative templates for Google Ad Manager, targeting publishers seeking to enhance ad engagement with interactive and rich media formats. The company positions itself as a trusted provider with over 500 publishers worldwide, focusing on B2B digital advertising solutions. The website demonstrates a moderate level of digital maturity, employing modern analytics tools such as Google Analytics and Microsoft Clarity, and implementing a cookie consent mechanism via Cookiebot. However, the absence of explicit privacy policy and terms of service pages, as well as missing contact information, limits the transparency and user trust aspects. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks published security policies and incident response contacts. Overall, the website is functional and professional but would benefit from enhanced compliance and transparency documentation.

The website ww38.radioexpres.sk currently serves as a parked domain with advertising content and no substantive business information or services presented. The site lacks any clear company identity, contact details, or descriptive content about its purpose or offerings. The presence of multiple third-party advertising and tracking scripts indicates a business model focused on monetizing domain traffic rather than providing direct services or content. Technically, the site uses standard HTML and JavaScript with content delivery via Amazon Cloudfront CDN, but lacks modern security practices such as HTTPS enforcement and security headers. Privacy compliance is minimal, with only a basic privacy policy linked via a JavaScript popup and no cookie consent mechanism. Overall, the site exhibits low digital maturity and poor user experience.

U

University of Colorado Colorado Springs

gomountainlions.com

66

The University of Colorado Colorado Springs (UCCS) Athletics website serves as the official digital platform for the Mountain Lions sports teams, providing comprehensive information including schedules, rosters, news, and fan engagement resources. Positioned as a key resource for students, athletes, and fans, the site supports NCAA Division II athletics within the Rocky Mountain Athletic Conference. The business model focuses on delivering timely sports content and fostering community involvement through digital channels. Technically, the website leverages a modern technology stack including JavaScript frameworks, RequireJS, jQuery, and integrates with multiple third-party services such as Google Analytics, Facebook Pixel, and Google Tag Manager. Hosting is managed via AWS Cloudfront CDN, ensuring reasonable performance and scalability. The site demonstrates good mobile optimization and accessibility features, with a consistent and professional design. From a security perspective, the site enforces HTTPS and employs domain transfer protections. However, it lacks some advanced security headers like Content-Security-Policy and explicit incident response contact information. Privacy compliance is addressed with accessible privacy and cookie policies, including consent mechanisms. No critical vulnerabilities or suspicious patterns were detected, indicating a mature security posture suitable for an educational institution. Overall, the website presents a low-risk profile with strong business credibility and technical implementation. Strategic improvements in security headers and incident response transparency would further enhance trust and resilience.

C

CollegeVine

collegevine.com

68

CollegeVine is a technology-driven platform focused on enhancing the higher education experience through autonomous AI agents that engage prospects, students, and alumni. The platform integrates with existing institutional data systems to support the entire student journey from prospect to post-graduation. The website reflects a medium-sized education technology company with a professional and consistent brand presence. Technically, the site uses modern web technologies including React, jQuery, and various UI frameworks, hosted on Amazon Cloudfront CDN, with moderate performance and good mobile optimization. Security-wise, the site employs HTTPS and secure form tokens but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The WHOIS data is unavailable publicly, indicating privacy protection or recent registration, which slightly impacts trust but is not uncommon for tech companies. Overall, the site is safe, professional, and trustworthy with moderate tracking and analytics usage.

F

Fundación Teaming

teaming.net

67

Teaming is a Spanish non-profit foundation providing a micro-donation platform enabling individuals, NGOs, companies, and educational institutions to raise funds for social causes with a simple 1€/month donation model. The platform is well-established with a large user base and significant funds raised, supported by corporate sponsors and pro bono services. Technically, the website uses modern frameworks like Bootstrap and jQuery, is hosted on Amazon Cloudfront CDN, and integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. The WHOIS data is missing or unavailable, which slightly reduces trust but the professional site and social proof mitigate concerns. Overall, Teaming presents a trustworthy, well-maintained platform for social fundraising.

Q

Qualified

qualified-dev.com

61

Qualified is a technology company specializing in AI-driven inbound pipeline generation through its flagship AI SDR agent, Piper. The platform automates real-time visitor engagement, personalized email follow-up, sales meeting scheduling, and content personalization to accelerate B2B marketing and sales efforts. Positioned as a leader in agentic marketing, Qualified targets marketing and sales teams seeking scalable automation solutions. The website demonstrates a mature digital presence with professional design, rich multimedia content, and integration with modern web technologies such as Webflow, Google Tag Manager, and Wistia. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance practices. However, the absence of WHOIS data for the domain raises questions about domain registration legitimacy, possibly indicating a development or staging environment. Security posture is strong with HTTPS and secure scripts, though additional security headers and a published security policy would enhance trust. Overall, Qualified presents a credible and professional business with room for improvement in transparency and security documentation.

T

The British Editorial Society of Bone & Joint Surgery

orthosearch.org.uk

49

OrthoSearch is a specialized orthopaedic discovery platform developed and affiliated with The British Editorial Society of Bone & Joint Surgery. It provides a curated index of orthopaedic journals, medical standards, podcasts, videos, and case studies targeted at healthcare professionals and researchers in orthopaedics. The platform leverages academic citation metrics and integrates with PubMed and DOI systems to enhance research discovery. Technically, the website is built on modern web technologies including React.js and uses reputable third-party services for fonts, icons, and analytics. The site is hosted with a UK-based registrar and uses HTTPS with appropriate security headers, indicating a good security posture. However, it lacks explicit cookie consent mechanisms and published security policies, which are areas for improvement. Overall, the website is professional, content-rich, and trustworthy, serving a niche medical audience effectively.

E

easyscience

easyscience.eu

55

easyscience is a small service-oriented business specializing in developing dissemination, communication, and innovation concepts primarily targeted at children, young people, and stakeholders interested in research and technology. The company offers consulting services and interactive science labs to foster engagement with science and innovation. The website is built on the Webnode platform, hosted via AWS Cloudfront CDN, and uses Google Tag Manager for analytics. The technical infrastructure is modern and supports good mobile optimization and user experience. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit privacy or security policies. The absence of direct contact emails or phone numbers reduces transparency. WHOIS data is privacy protected, which is common for small businesses but limits verification of registrant details. Overall, the website is professional and safe, with moderate trustworthiness and room for improvement in privacy compliance and security best practices.

R

RUKE

ruke.eu

38

RUKE is a Polish-based retailer specializing in custom mirrors and bathroom cabinets, serving both individual and business customers through dedicated e-commerce and B2B platforms. The company emphasizes premium quality, unique design, and certified components, positioning itself as a niche player in the retail sector for interior furnishings. Their website is multilingual, professionally designed, and integrates modern marketing and analytics tools, reflecting a mature digital presence. Technically, the site is built on WordPress with WooCommerce, supported by reputable hosting and CDN providers, and employs standard security headers and HTTPS encryption. However, some minor technical issues such as lazy loading image errors and the absence of a cookie consent mechanism were noted. Security posture is generally good but lacks published incident response or security policies. Overall, RUKE demonstrates a solid business and technical foundation with room for improvement in privacy compliance and security transparency.

I

iStores

istores.sk

53

iStores is a retail business operating as an Apple Premium Partner in Slovakia, specializing in the sale of Apple products including iPhone, iPad, Mac, Apple Watch, and AirPods. The website serves consumers interested in Apple technology products within the Slovak market. The business model focuses on authorized retail sales and possibly service support for Apple devices. The website's technical infrastructure includes modern CSS grid layouts and uses Amazon Cloudfront CDN for content delivery, indicating a moderate level of digital maturity. However, the site lacks advanced CMS or frameworks and shows basic mobile optimization and SEO practices. Security posture is weak due to the absence of security headers, privacy policies, and incident response information. No WAF or blocking mechanisms were detected, and the site is accessible. WHOIS data confirms the domain's legitimacy with consistent registrant information matching the business claims. Overall, the website is functional but requires significant improvements in privacy compliance, security best practices, and contact transparency to enhance trust and compliance.

H

podkings.de

hello-vape.de

48

The website www3.podkings.de is a parked domain landing page primarily monetized through advertising networks such as Google Adsense and DoubleClick. It lacks substantive business content, contact information, or clear branding, indicating it is not an active commercial site. The technical infrastructure relies on standard HTML5 and JavaScript with third-party ad and tracking scripts loaded from multiple external domains. The site is accessible without WAF or security challenges but does not implement HTTPS enforcement or security headers, which weakens its security posture. Privacy compliance is minimal, with only a basic privacy policy linked via a popup and no cookie consent mechanism. Overall, the site presents low business credibility and trustworthiness, with a high degree of user tracking and advertising but no clear business entity or services.

HUNDSANS Hundeschule is a small, locally focused dog training school and retail shop operating in the Inntal, Rosenheim, Kufstein, and Tirol regions. The business emphasizes gentle, violence-free dog training methods and offers a variety of services including individual and group training, social dog walks, and nose work activities. Their online presence includes a professional website with integrated booking and e-commerce capabilities, supported by modern web technologies and CDN hosting. The company maintains active social media channels and provides clear contact information, enhancing customer trust and engagement. Technically, the website is well-structured, mobile-optimized, and uses HTTPS with a good security posture, although explicit security headers could be improved. Privacy compliance is evident through cookie consent and a privacy policy, aligning with GDPR requirements. Overall, the website and business present a trustworthy, professional image with a focus on customer service and quality content.

The website the-doghouse.de represents a small local business specializing in comprehensive dog care services including dog boarding, daycare, training, and retail of pet food and equipment. The business targets dog owners primarily in the German regions around Schöffengrund, Wetzlar, Gießen, and Frankfurt. The site is professionally designed with clear navigation and relevant content that effectively communicates the business offerings. Technically, the site is built on the 1&1 IONOS Website Editor platform, leveraging modern technologies such as jQuery, Mapbox, and CDN services to ensure moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and CAPTCHA on contact forms, but lacks advanced security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security best practices. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening.

C

Colourbox

colourbox.es

59

Colourbox is a large-scale e-commerce platform specializing in royalty-free stock media including photos, videos, and vectors. The website targets a general audience primarily in Spanish-speaking regions, offering over 26 million media assets with all rights included for various uses such as print, web, and social media. The company maintains a professional market position with a comprehensive digital presence and social media engagement. Technically, the website leverages modern web technologies such as React, Font Awesome Pro icons, Google Fonts, and Amazon Cloudfront CDN for content delivery, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS enforced and secure payment integration via Stripe, although explicit security headers like Content-Security-Policy are not clearly declared. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and safe for general audiences.

C

Colourbox

colourbox.dk

57

Colourbox is a Danish-based stock media platform offering millions of stock images, videos, and vectors with simple licensing and pricing models. The website targets businesses and individuals seeking creative digital assets for online and offline communication. The company maintains a professional market position with exclusive and editorial content, supported by active social media channels on Facebook, LinkedIn, and Pinterest. Technically, the website leverages modern web technologies including React, Font Awesome Pro icons, Google Tag Manager, and Amazon Cloudfront CDN to deliver a performant and responsive user experience. However, the absence of explicit privacy and cookie policies and missing WHOIS data represent gaps in compliance and transparency. Security posture is generally good with HTTPS enforced but could be improved by adding security headers and incident response contact information. Overall, the site is safe for general audiences and demonstrates a solid business and technical foundation.

C

Colourbox

colourbox.de

58

Colourbox is a large German-based stock media agency offering over 26 million royalty-free images, videos, and vectors for purchase. The company targets businesses and individuals requiring licensed digital media for web, print, and social media use. The website demonstrates a mature technical infrastructure leveraging modern JavaScript frameworks, CDN hosting via AWS Cloudfront, and integration with Google Tag Manager for analytics and marketing. While the site is well-designed and content-rich, it lacks explicit privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by implementing security headers and publishing incident response policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

F

FormBeat

formbeat.com

63

FormBeat is a specialized AI-powered cycling analytics platform designed to help cyclists of all fitness levels improve their training and performance. The company offers a subscription-based SaaS model with monthly and yearly plans, integrating with popular cycling platforms such as Strava, Garmin, and Zwift. The website demonstrates a high level of professionalism, excellent content quality, and a clear focus on user experience and mobile optimization. Technically, the platform leverages modern JavaScript frameworks (Vue.js), cloud CDN hosting, and multiple analytics and marketing tools to deliver a fast and responsive user experience. Security posture is good with HTTPS enforced and CSRF protections, though there is room for improvement in security headers and explicit privacy compliance mechanisms. Overall, the business appears legitimate and well-positioned in the niche cycling analytics market, with strong trust indicators such as testimonials and recognized trademarks.

P

Pepper Deals Ltd.

hotukdeals.com

47

hotukdeals.com is a leading UK-based e-commerce community platform operated by Pepper Deals Ltd., a subsidiary of Atolls GmbH. The site offers a vibrant community-driven environment where users share deals, discounts, and voucher codes, positioning itself as Europe's largest shopping rewards company. The platform targets savvy shoppers seeking to maximize savings through crowdsourced deals and affiliate partnerships. Technically, the website employs modern JavaScript frameworks such as Vue.js, uses service workers for performance, and leverages Amazon Cloudfront CDN for hosting, ensuring fast and responsive user experience across devices. Security posture is strong with HTTPS enforced and multiple security headers implemented, though explicit privacy and cookie policies are not readily found, indicating room for compliance improvement. The absence of WHOIS data limits domain registration trust verification, but the professional branding, verified social media presence, and active community engagement strongly support the site's legitimacy. Overall, hotukdeals.com presents a mature, well-maintained e-commerce community platform with solid technical and security foundations but would benefit from enhanced privacy transparency and incident response documentation.

R

Regionálne osvetové stredisko v Leviciach

roslevice.sk

56

Regionálne osvetové stredisko v Leviciach is a regional cultural and educational institution based in Levice, Slovakia, established in 2007. The organization focuses on promoting regional culture and education through events, programs, and archival services. The website serves as an informational portal with links to social media and archival resources, targeting the general public interested in regional cultural activities. The business model is non-profit and government-oriented, with a small organizational size and local market position. Technically, the website is built on the Webnode CMS platform and hosted on Amazon Cloudfront CDN, utilizing standard web technologies such as HTML5, CSS, and JavaScript. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The cookie consent mechanism is implemented, but privacy and terms of service policies are absent. From a security perspective, the website enforces HTTPS with excellent SSL configuration but lacks security headers and published security policies. No forms or data collection mechanisms are present on the main page, reducing exposure to input-based vulnerabilities. The absence of privacy policy and incident response contacts indicates gaps in compliance and security readiness. Overall, the security posture is moderate but could be improved with better policy transparency and technical safeguards. The overall risk assessment suggests a low to moderate risk profile due to the nature of the organization and limited online data collection. Strategic recommendations include adding privacy and terms of service pages, implementing security headers, publishing incident response contacts, and enhancing transparency to build trust and compliance with GDPR and other regulations.

A

Alena Gajdošová - ALDOX LEVICE

aldoxlevice.sk

55

ALDOX LEVICE is a Slovakian full-service advertising agency established in 2002, offering comprehensive marketing, graphic design, printing, promotional events, and advertising products. The company targets business clients seeking creative advertising solutions and brand promotion. Their market position is that of a small, local agency with a focus on quality and client satisfaction. The website reflects their business model and services clearly, with consistent branding and good content quality. Technically, the website is built on the Webnode CMS platform and hosted on AWS Cloudfront CDN, utilizing modern JavaScript and Google Tag Manager for analytics. The site is moderately optimized for performance and mobile devices, though accessibility and SEO could be improved. The technical infrastructure is adequate for a small business but lacks advanced frameworks or custom development. From a security perspective, the site uses HTTPS, which is a positive baseline. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available, indicating a low maturity in security governance. The absence of these policies and mechanisms represents a compliance and trust gap. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices to enhance trustworthiness and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and establishing incident response contacts to improve the security posture and user confidence.

K

Klaviyo

kmail-lists.com

71

Klaviyo is a leading marketing automation platform specializing in email and SMS marketing for eCommerce businesses. Founded in 2012 and headquartered in Boston, MA, it offers a SaaS solution that enables personalized customer engagement through data-driven campaigns. The company holds a strong market position with a focus on technology-driven marketing solutions tailored for online retailers. Technically, Klaviyo's website demonstrates a mature digital infrastructure, leveraging modern JavaScript frameworks, CDN hosting via AWS Cloudfront, and integration with analytics and experimentation tools such as Google Tag Manager and Optimizely. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a high level of digital maturity. From a security perspective, the website enforces HTTPS, employs security headers, and uses reCAPTCHA to protect forms. However, it lacks a publicly visible dedicated security policy or incident response contact, which could be improved to enhance transparency and trust. No vulnerabilities or suspicious content were detected, and privacy compliance is supported by comprehensive privacy and cookie policies. Overall, Klaviyo presents a professional and trustworthy online presence with strong technical and security foundations. Strategic enhancements in security transparency and WHOIS data availability would further strengthen its risk profile and stakeholder confidence.

P

Programia s.r.o.

nejlevnejsinabytek.cz

58

Nejlevnejsinabytek.cz is a Czech Republic based e-commerce platform specializing in furniture and home accessories. The website offers a large inventory of furniture products, including private label items under the NEJBY brand, and targets general consumers seeking affordable and quality home furnishings. The business is positioned as one of the largest furniture e-shops in the Czech market, providing extensive stock and a loyalty club for customers. Technically, the site uses modern JavaScript libraries, CDNs, and tracking tools, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks some security headers and explicit privacy policy pages. The absence of WHOIS domain registration data is a notable concern, reducing domain trustworthiness, though the website content and business presence indicate legitimacy. Overall, the site is professional and trustworthy for its market segment.

O

Orchestre à l'École

orchestre-ecole.com

66

Orchestre à l'École is a French non-profit association dedicated to enriching young people's lives through collective instrumental music education in schools. It has a significant presence across France with over 184,000 beneficiaries and partnerships with notable foundations and cultural institutions. The website reflects a mature digital presence with professional design, clear navigation, and multimedia content supporting its mission. Technically, the site uses modern frameworks like Bootstrap, integrates Google Tag Manager and Consent Framework for analytics and privacy compliance, and is hosted on a reliable CDN. Security posture is strong with HTTPS and security headers, though it lacks a publicly available security policy or incident response information. The absence of WHOIS data for the domain is a concern for domain legitimacy but is mitigated by the professional and transparent nature of the website content and contact information. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations.

S

SIA ČR - Rada výstavby, z.s.

siacr.cz

59

SIA ČR - Rada výstavby, z.s. is a Czech non-profit association coordinating efforts in architecture, construction, and urban planning sectors. The organization focuses on harmonizing measures in these fields within the Czech Republic, especially in the context of EU integration. The website reflects a professional presence with event announcements and partnerships with related industry organizations, indicating a well-established market position in the national construction and architecture community. Technically, the website is built on the Webnode platform, leveraging modern web standards and Amazon Cloudfront CDN for hosting. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements are possible, such as adding security headers and enhancing accessibility features. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, demonstrating basic compliance with privacy regulations. The absence of explicit privacy policy and terms of service pages, as well as missing security headers, suggests room for improvement in security posture and compliance maturity. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy and professional, serving its target audience effectively. Strategic enhancements in privacy documentation, security headers, and contact transparency would further strengthen its security and compliance stance.

Zoovu (Germany) GmbH, formerly SEMKNOX GmbH, operates a professional website offering advanced product search and data processing solutions primarily targeting e-commerce businesses. Their services leverage machine learning to transform unstructured product data into structured, searchable formats, enhancing online shop conversions and customer satisfaction. The company positions itself as a specialist in next-generation product search and data cleansing technologies, serving notable clients such as Lidl and Gravis. Technically, the website is well-constructed using modern web standards, optimized for performance and mobile devices, and employs secure HTTPS connections with a cookie consent mechanism to comply with GDPR requirements. However, explicit security policies and incident response information are not published, representing an area for improvement. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity, with no indications of security vulnerabilities or questionable content.

P

Pivovar Mazák

pivovarmazak.cz

46

Pivovar Mazák is a small craft brewery based in Dolní Bojanovice, Czech Republic, established in 2011. The company specializes in brewing fresh, balanced craft beers that respect tradition and modern trends. The website reflects a local business with a clear focus on quality and craftsmanship, targeting adult consumers interested in craft beer. The site includes an age verification popup to restrict access to users 18 years or older, aligning with legal requirements for alcohol-related content. Technically, the website is built on WordPress using WPBakery Page Builder, hosted by cesky-hosting.eu, and integrates common analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. The site is mobile optimized and SEO friendly with good content quality and consistent branding. Security posture is moderate with HTTPS enabled and basic best practices observed, but lacks explicit security headers and published security policies. Privacy compliance is strong with GDPR-compliant cookie consent and a comprehensive privacy policy. WHOIS data is consistent with the business claims, showing domain registration since 2011 without privacy protection, supporting legitimacy. Overall, the website is professional and trustworthy but could improve security headers and incident response transparency.

M

Madcat.beer a.s.

madcat.beer

49

MadCat is a Czech craft brewery specializing in sour ales, lagers, and traditional ales, operating since 2011. The company is structured as a stock company with over 100 shareholders, emphasizing community involvement and direct sales through brewery visits and an online e-shop. Their market position is niche but strong locally, with active participation in charity projects and brewing workshops. Technically, the website is built on the Webnode platform, uses modern CDN hosting, and is mobile optimized with good performance. Security posture is solid with HTTPS and cookie consent implemented, though lacks published security policies and privacy documentation. Overall, the site is professional and trustworthy, with room for improvement in compliance documentation and security headers.

R

RevContent, LLC

revcontent.com

70

RevContent, LLC operates a performance-driven native advertising platform that connects advertisers with highly engaged audiences across premium publisher sites. The company targets both advertisers seeking quality traffic and publishers aiming to monetize content without compromising user experience. The website demonstrates a strong market position with trusted partnerships and industry certifications such as IAB membership. Technically, the site is built on modern web technologies including Webflow CMS, Amazon Cloudfront CDN, and integrates analytics and chat support tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements could be made by adding security headers and explicit incident response policies. Overall, the site is professional, well-structured, and compliant with privacy regulations, supporting a high level of trustworthiness.

D

Discover Magazine

discovermagazine.com

63

Discover Magazine is a well-established science media publication providing accessible and relevant science news, feature articles, and multimedia content. It operates under LabX Media Group and targets a broad audience interested in science, health, environment, and technology. The website offers subscription services, newsletters, and advertising opportunities, positioning itself as a reputable source in the science media sector. Technically, the site uses modern frameworks such as Next.js and React, integrates with major analytics and advertising platforms, and is hosted on a reliable CDN infrastructure. The site is mobile-optimized with good SEO and accessibility features, delivering a professional user experience. Security-wise, the site enforces HTTPS and uses reputable third-party services but lacks some security headers and published security policies. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. The absence of WHOIS registration data is a concern, reducing trust scores, though the site's content and social media presence support legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security disclosures.

The website rybarskedny.cz is currently a parked domain with no active business content or services. It primarily serves as a placeholder with advertising and domain sale offers. The domain was registered recently in November 2024 and uses parking name servers, indicating no operational business presence. The technical infrastructure relies on standard HTML and JavaScript with integration of Google Adsense Domains CAF and other advertising/tracking scripts. There is no evidence of a CMS or advanced frameworks. Security posture is weak due to lack of HTTPS enforcement and missing security headers. Privacy compliance is minimal with only a basic privacy policy accessible via a popup link and no cookie consent mechanism. Business credibility is low due to absence of contact information or company identity. Overall, the site is low trust and low content quality, suitable only as a domain parking page.

P

PrintLife

printlife.cz

57

PrintLife is a small local printing service provider based in Brno, Czech Republic, specializing in express printing services including business cards, flyers, posters, catalogs, and banners. The website is built on the Webnode platform and hosted via Amazon Cloudfront CDN, indicating a modern and scalable technical infrastructure. The site is well-structured, mobile-optimized, and provides clear navigation for its target audience. However, the absence of WHOIS registration data and lack of explicit contact information on the website reduce the overall trustworthiness from a security and compliance perspective. The site uses HTTPS and implements a cookie consent mechanism, but lacks visible privacy policy and security headers, which are important for GDPR compliance and security best practices. Overall, the website presents a professional business front but would benefit from enhanced transparency and security measures.

A

Advokátní kancelář LISSE HRABEC

lisse-hrabec.cz

58

Advokátní kancelář LISSE HRABEC is a Czech legal services firm specializing in corporate, civil, contract, labor, administrative law, and arbitration. The firm targets both companies and individual clients, offering a broad range of legal services including company formation, liquidation, arbitration, and statutory body representation. The website presents a professional image with clear service descriptions, client testimonials, and partnerships with reputable legal organizations, positioning the firm as a trusted legal partner in the Czech market. Technically, the website is built on the Webnode CMS platform, leveraging Amazon Cloudfront CDN for content delivery and employing modern web technologies including JavaScript and SVG graphics. The site is mobile-optimized and includes SEO best practices such as meta tags and Open Graph data. Google Analytics and Google Tag Manager are used for visitor tracking, with a cookie consent banner implemented to comply with privacy regulations. From a security perspective, the site uses HTTPS with a strong SSL configuration, but lacks explicit security headers and published security policies. No WHOIS data is available for the domain, which limits trust verification from a domain registration standpoint. The cookie consent mechanism is robust, but the absence of a privacy policy page and terms of service is a compliance gap. Overall, the website is professional and trustworthy in content and design, but improvements in transparency around privacy, security policies, and domain registration information would enhance its security posture and compliance standing.

The website zameklazen.cz is a parked domain with minimal content indicating it is for sale. There is no business presence, contact information, or services offered on the site. The technical infrastructure relies on basic HTML and JavaScript with third-party advertising scripts primarily from Google Adsense and Youseasky. The site lacks HTTPS and security headers, which negatively impacts its security posture. Privacy compliance is minimal with only a basic privacy policy accessible via a popup link and no cookie consent mechanism. Overall, the site does not represent an active business and serves primarily as a domain parking page.

The website kinosvet.tv is a parked domain landing page primarily aimed at selling the domain name. It is operated by Tool Domains Ltd, a company specializing in domain parking and resale, registered in Bulgaria. The site contains minimal content, mostly advertising scripts and a call to purchase the domain. There is no active business or service offered on the site. The technical infrastructure relies on standard HTML and JavaScript with Google Adsense Domains CAF for monetization. The site uses cloudfront CDN for asset delivery and multiple third-party ad and tracking scripts. Security posture is basic with no advanced headers or DNSSEC enabled, and no visible HTTPS enforcement in the HTML content. Privacy compliance is minimal with only a basic privacy policy accessible via popup and no cookie consent mechanism. No contact or business information is provided on the site, limiting business credibility. Overall, the site is low trust and low content quality, typical for a domain parking page.

C

Cyklodiskont.cz

cyklodiskont.cz

49

Cyklodiskont.cz is an established Czech e-commerce retailer specializing in bicycles, electric bikes, and cycling accessories. The company emphasizes over 20 years of experience in the cycling industry, offering a wide range of products with fast delivery and free shipping over a certain order value. The website is professionally designed with clear navigation, product categorization, and integration of modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Ecomail. The technical infrastructure includes HTTPS, Bootstrap framework, and CDN usage, indicating a mature digital presence. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is generally good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published privacy or security policies. Overall, the site presents a trustworthy shopping experience for cycling enthusiasts in the Czech Republic, but would benefit from improved transparency and compliance documentation.

Ř

Římskokatolická farnost Police nad Metují

farnostpolice.cz

59

The website www.farnostpolice.cz represents the Roman Catholic parish of Police nad Metují, providing information about religious services, events, and local church heritage. It serves a local community audience with a focus on parish activities and cultural heritage. The site is built on the Webnode CMS platform and uses Amazon Cloudfront CDN for content delivery. The technical infrastructure is modern with responsive design and moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and a privacy policy page. The absence of WHOIS data reduces domain trustworthiness, though the website content and EU funding mention support its legitimacy. Overall, the site is functional, informative, and safe for general audiences.

D

Daikin Middle East and Africa FZE

daikinbahrain.com

65

Daikin Middle East and Africa FZE operates a professional and comprehensive website focused on air conditioning and climate control solutions tailored for the Middle East and Africa region, particularly Bahrain. The company is a global leader in HVAC manufacturing with a strong regional presence, offering a wide range of products and after-sale services. The website demonstrates a mature digital infrastructure using Adobe Experience Manager CMS, modern analytics tools like Matomo, and marketing integrations such as Trustpilot. Privacy and cookie policies are well implemented with user consent mechanisms, reflecting good compliance with GDPR and related regulations. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data reduces domain trust slightly, but the overall branding, content quality, and external references strongly support legitimacy. Contact is primarily via forms, with no direct emails or phone numbers explicitly listed on this page. The site is well optimized for mobile and accessibility, providing an excellent user experience.

D

Daikin

daikinoman.com

68

Daikin Oman is a regional branch of the global Daikin group, specializing in air conditioning and HVAC solutions with a strong focus on energy efficiency and sustainability. The website presents a professional and comprehensive overview of their products, services, and corporate mission, targeting residential and commercial customers in Oman and the Middle East. Technically, the site uses modern web technologies including Adobe Experience Manager, Matomo analytics, and Google Tag Manager, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the overall branding and external references support legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details.

F

Felix a spol. advokátní kancelář, s.r.o.

doadvokacie.cz

55

Felix a spol. advokátní kancelář, s.r.o. is a well-established Czech law firm offering internships and employment opportunities primarily targeting law students and junior lawyers. The firm emphasizes professional development, practical legal experience, and a supportive work environment. The website serves as a recruitment and informational platform, highlighting the firm's location, benefits, and contact details. Technically, the website is built on the Webnode CMS platform, leveraging modern web technologies including JavaScript, CSS, and Amazon Cloudfront CDN for hosting static assets. Google Tag Manager is used for analytics and tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. The absence of WHOIS data reduces transparency and trustworthiness, although the website content and presentation suggest a legitimate business. No critical vulnerabilities or malicious content were detected. Overall, the website is functional and professional but would benefit from enhanced security practices and compliance documentation to improve trust and legal adherence.

Č

Česká kongregace sester dominikánek

dominikanky.cz

59

The website represents the Česká kongregace sester dominikánek, a small non-profit religious congregation in the Czech Republic dedicated to spiritual life and community service. Their offerings include spiritual guidance, educational services through affiliated schools, accommodation for students, and publishing theological literature. The organization maintains an active social media presence and provides a contact form for prayer requests and communication. Technically, the site is built on the Webnode CMS platform, uses Amazon Cloudfront CDN for content delivery, and implements HTTPS with a cookie consent mechanism. However, it lacks explicit privacy and terms of service pages and security headers, which are areas for improvement. The WHOIS data is missing, which reduces domain trustworthiness, but the website content and affiliations indicate a legitimate entity. Overall, the site is well-structured, mobile-optimized, and safe for general audiences.

B

BEALIO

bealio.cz

55

BEALIO is a Czech Republic-based e-commerce retailer specializing in silver and gold jewelry, offering a wide range of products including rings, earrings, pendants, and bracelets for women, men, and children. The website presents a professional and user-friendly interface with clear navigation and comprehensive product categorization. The business emphasizes quality craftsmanship and personalized customer service, positioning itself as a niche player in the jewelry retail market. Technically, the website leverages modern web technologies including the Shoptet e-commerce platform, Google Analytics, and Microsoft Clarity for analytics, and employs CDN services for content delivery. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. The absence of WHOIS domain registration data reduces transparency but does not detract from the overall legitimacy of the business. Privacy compliance is well addressed with GDPR-aligned policies and consent banners. Overall, the website is a trustworthy and professional online jewelry store serving the Czech market.

C

Cloudup

cloudup.com

67

Cloudup is a technology-driven file sharing and streaming platform owned by Automattic Inc., designed to provide users with an easy and fast way to share media and files via streams. The service emphasizes seamless sharing with real-time previews, password protection, and a pay-for-what-you-use pricing model. The website is professionally designed, mobile-optimized, and provides clear calls to action for early access via newsletter signup. Technically, the site leverages modern web technologies including VideoJS for media playback, WordPress for content management, and Amazon Cloudfront for CDN delivery, ensuring fast performance and good accessibility. Security posture is strong with HTTPS enforced, domain locking, and secure form handling, although DNSSEC is not enabled. Privacy compliance is robust through linkage to Automattic's comprehensive privacy and cookie policies. Overall, Cloudup presents a trustworthy and mature digital presence with a clear business model and strong parent company backing.

N

NEVA

neva.eu

49

NEVA is a Czech-based manufacturer specializing in outdoor shading solutions including venkovní žaluzie (external blinds) and fabric roller blinds, serving both domestic and international markets. The company positions itself as a leading Czech manufacturer with a strong emphasis on quality, short delivery times, and customer satisfaction. Their business model includes direct sales and a partner network, supported by a professional website with comprehensive product information, references, and partner programs. Technically, the website is built on WordPress with modern technologies such as Google Tag Manager, Microsoft Clarity, and Cloudfront CDN, ensuring fast performance and excellent mobile optimization. The site employs standard security best practices including HTTPS, security headers, and a cookie consent mechanism compliant with GDPR. Security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security policies or incident response information, which could be improved. WHOIS data is privacy protected, which is common for commercial entities, and does not raise immediate concerns given the professional nature of the site and consistent business information. Overall, NEVA's website reflects a mature, trustworthy business with solid technical infrastructure and good compliance with privacy regulations. Strategic recommendations include publishing security and incident response policies and enhancing transparency around data protection officer contacts to further strengthen trust and compliance.