Security Directory

N

NORMSERVIS s.r.o.

nody.cz

56

NORMSERVIS s.r.o. operates the website nody.cz, providing an easy-to-use SaaS e-commerce platform targeted primarily at small and medium businesses in the Czech Republic. The platform enables users to create customizable online shops quickly without programming knowledge, offering multiple templates, multilingual support, and integrations with popular payment gateways and shipping providers. The company positions itself as a cost-effective and user-friendly solution with strong customer support and a focus on practical e-commerce features. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google reCAPTCHA v3, and Google Analytics, ensuring a responsive and accessible user experience. Security measures include HTTPS enforcement and a comprehensive cookie consent mechanism, although some HTTP security headers are not explicitly detected. The absence of WHOIS data limits domain trust assessment, but the website's professional content, clear contact information, and customer testimonials support its legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and marketing integrations.

T

Topinfo s.r.o.

tzb-info.cz

46

TZB-info is a well-established Czech professional web portal specializing in construction, building technical equipment, and energy savings. Operated by Topinfo s.r.o. since 2001, it serves as a leading industry resource offering news, technical articles, databases, legal regulations, and multimedia content targeted at professionals in the construction and energy sectors. The website demonstrates a mature digital presence with consistent branding and comprehensive content tailored for its audience. Technically, the site uses a proprietary CMS (Topinfo CMS) and integrates multiple third-party analytics and advertising services, including Google Analytics, Gemius, and Hotjar. While the site is mobile-optimized and SEO-friendly, some technical debt is evident in the use of outdated jQuery versions and minimal security headers. Security posture is adequate with HTTPS enforced but could be improved by adding advanced headers and updating libraries. Privacy compliance is supported by a cookie consent mechanism and a comprehensive privacy policy, though explicit GDPR compliance details are limited. The absence of WHOIS data reduces domain trust verification, but the website's content quality and business presence support legitimacy. Overall, TZB-info is a credible and professional platform with room for technical and security enhancements.

A

AGRO-partner s.r.o.

agropartner.cz

50

AGRO-partner s.r.o. is a well-established Czech company specializing in advanced agricultural technologies, particularly automation systems for dairy farming and livestock care. With over 30 years of experience, the company offers a comprehensive portfolio including sales, service, and construction of farm buildings. The website reflects a professional and consistent brand image targeting farmers and agricultural enterprises in Czechia and Slovakia. Technically, the site employs modern tracking and analytics tools such as Google Analytics, Microsoft Clarity, and Seznam.cz tracking, with a cookie consent mechanism ensuring user privacy compliance. Security posture is adequate with HTTPS enforced and form validation, though some security headers and policies could be improved. The absence of WHOIS data limits domain registration trust assessment, but the website's content and contact transparency support legitimacy. Overall, the site is well-designed, mobile-optimized, and trustworthy for its business domain.

V

VP AGRO, spol. s r.o.

vpagro.cz

44

VP AGRO, spol. s r.o. is a well-established Czech company founded in 1991, specializing in the distribution of field crop seeds, plant protection chemicals, and fertilizers. The company operates nationwide in the Czech Republic, serving agricultural professionals and farmers. It holds recognized certifications such as ISO 9001, ISO 2001, and GMP B2, underscoring its commitment to quality. The website reflects a professional business with clear contact information, a cookie consent mechanism, and regularly updated content including news and event calendars. Technically, the website employs modern web technologies including Bootstrap, jQuery, FontAwesome, and Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, there is no evidence of advanced security headers or a published privacy policy, which are areas for improvement. From a security perspective, the site uses HTTPS (implied by external script sources), and implements cookie consent with user choice, but lacks visible security headers and incident response contacts. The absence of WHOIS data for the domain is a concern for domain legitimacy and trust, although the website content and business information appear consistent and professional. Overall, the website is functional, informative, and trustworthy from a business perspective but would benefit from enhanced transparency in privacy policies, improved security headers, and domain registration clarity to strengthen its security posture and compliance.

K

KXG Hospitality

petrovykameny.cz

56

Hotel Petrovy Kameny is a mountain hotel located in the Praděd Nature Reserve in the Czech Republic, operated by KXG Hospitality. It offers accommodation, wellness, restaurant services, and seasonal packages targeting tourists and wellness seekers. The website is professionally designed, multilingual, and integrates modern digital marketing and analytics tools. The technical infrastructure is based on WordPress with Previo CMS and includes Google services and Facebook Pixel for tracking. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is due to privacy protection, which is common and justified for this business type. Overall, the site is trustworthy and well-positioned in the hospitality market.

Č

Česká barmanská asociace, z.s.

cbanet.cz

54

Česká barmanská asociace, z.s. is a Czech non-profit organization dedicated to uniting bartenders, baristas, teatenders, beer specialists, and beverage gastronomy enthusiasts across the Czech Republic. The website serves as the official portal for the association, providing information on competitions, educational courses, events, and member services. It holds official membership in the International Bartenders Association, positioning it as a recognized authority in the hospitality sector within the region. The site features rich content including news, event calendars, partner information, and specialized sections for different beverage disciplines. Technically, the website employs a mix of legacy and modern web technologies including AngularJS and jQuery, along with FontAwesome for icons and Google Analytics for visitor tracking. While the site is mobile-optimized and well-structured for user navigation, some outdated libraries (notably jQuery 1.9.1) present potential security risks. The site implements GDPR-compliant cookie consent mechanisms and maintains a basic privacy policy, reflecting awareness of data protection requirements. From a security perspective, the site uses HTTPS and has secure login forms, but lacks visible security headers and uses outdated JavaScript libraries, which could expose it to vulnerabilities. The absence of WHOIS registration data limits domain trust assessment, though the professional presentation and partner affiliations support legitimacy. Overall, the site demonstrates a moderate security posture with room for improvement in modernizing its tech stack and enhancing security controls. The overall risk assessment indicates a trustworthy and professionally managed site with minor technical and security concerns. Strategic recommendations include updating legacy libraries, implementing comprehensive security headers, and conducting regular security audits to maintain compliance and protect user data.

A

Age Co Limited

ageukmobility.co.uk

62

Age Co Limited, operating in partnership with Handicare Accessibility Limited, provides mobility products including stairlifts, homelifts, and walk-in baths and showers primarily targeting older adults and people with limited mobility in the UK. The company benefits from a strong market position supported by over 100 years of combined experience and trusted brand associations such as Age UK. The website reflects a professional and customer-focused business model emphasizing safety, reliability, and customer service with warranties and money-back guarantees. Technically, the website employs modern web technologies including Google Tag Manager, Visual Website Optimizer, and live chat support, ensuring a good user experience with mobile optimization and accessibility considerations. Security posture is strong with HTTPS enforcement and secure form handling, although there is room for improvement in publishing explicit security policies and enhancing HTTP security headers. The WHOIS data is incomplete and shows an error from the UK registry, which is unusual but does not detract significantly from the overall legitimacy given the professional web presence and trust signals. Overall, the website is well-designed, trustworthy, and compliant with privacy regulations, making it a reliable resource for its target audience.

C

Central Médiacsoport Zrt.

mc.hu

50

Magazin Centrum, operated by Central Médiacsoport Zrt., is a leading Hungarian magazine publisher offering a comprehensive subscription platform for both print and digital magazines. The website mc.hu provides a user-friendly interface with clear navigation, multiple subscription options, and promotional offers, targeting Hungarian magazine readers. The technical infrastructure leverages modern web technologies including Next.js, Google Analytics, Hotjar, and a GDPR-compliant consent management platform, ensuring a mature digital presence. Security posture is strong with HTTPS enforcement, reCAPTCHA integration, and privacy policies in place, although some security headers could be enhanced. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with data protection regulations.

Ú

Ústav zemědělské ekonomiky a informací

akvanavigator.cz

65

Akvanavigator.cz is an official Czech government-related portal operated by the Ústav zemědělské ekonomiky a informací, providing comprehensive information and data collection services related to freshwater aquaculture in the Czech Republic. The site supports EU fisheries policy data collection and is co-financed by the EU's Operational Program for Fisheries. It targets fish farmers, aquaculture producers, and related stakeholders with resources including legislation, subsidies, statistics, and event information. The website is built on Joomla CMS with UIkit and jQuery, featuring good mobile optimization and structured data for SEO. Privacy and cookie policies are implemented with GDPR compliance, and Google Analytics is used for visitor tracking. Security posture is good with HTTPS and CSRF protections, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business profile.

Č

Česká asociace pracovišť linek důvěry z.s.

capld.cz

41

Česká asociace pracovišť linek důvěry z.s. (ČAPLD) is a Czech non-profit organization established in 1995 that supports accredited crisis helpline providers across the Czech Republic. The association offers professional support, organizes educational events, and promotes ethical standards for telephone crisis intervention services. The website is well-structured, professionally designed, and targets both the general public seeking crisis support and professionals in the field. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Google Analytics integration, ensuring good SEO and moderate performance. Security posture is adequate with HTTPS enforced and use of Cloudflare Turnstile captcha, but lacks some security headers and formal privacy/cookie policies. WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency, though the website content and structure indicate legitimacy. Overall, the site is safe, trustworthy, and serves an important social function.

Č

ČEZNET s.r.o.

ceznet.tv

47

ČEZNET s.r.o. operates the ČEZNET TV internet television service, offering a variety of HD TV program packages and additional content bundles tailored to different user preferences. The service targets residential customers in the Czech Republic and the EU, providing flexible IPTV solutions accessible on multiple devices including smart TVs, set-top boxes, and mobile devices. The website demonstrates a professional digital presence with clear branding, comprehensive content about service offerings, and user-friendly navigation. Technically, the site uses modern JavaScript libraries and Google Analytics for tracking, with HTTPS enforced and cookie consent mechanisms implemented, reflecting a mature digital infrastructure. Security posture is solid with no visible vulnerabilities, though the absence of security headers and explicit security policies suggests room for improvement. The lack of WHOIS registrant data reduces transparency but does not significantly detract from the overall trustworthiness given the professional presentation and active domain maintenance. Overall, the site is well-positioned in its market niche with a good balance of content quality, technical implementation, and privacy compliance.

L

LPP

lp-praha.cz

49

LPP is a Czech-based technology company specializing in the design and development of autonomous defense systems and AI-powered platforms to support modern military and security operations. The company operates as part of the LPP holding, leveraging expert teams and advanced manufacturing capabilities to deliver innovative solutions such as UAVs, UGVs, and inertial navigation systems. Their market position is that of a specialized defense technology provider targeting military and security sectors globally. Technically, the website is built on WordPress with Elementor and Yoast SEO plugins, indicating a modern and maintainable digital infrastructure. The site uses HTTPS and integrates Google Analytics for visitor tracking. Performance and mobile optimization are good, though accessibility features are basic. SEO is well implemented with structured data and meta tags. From a security perspective, the site employs HTTPS but lacks visible security headers and does not provide explicit privacy or cookie policies, which are compliance gaps. No incident response or vulnerability disclosure information is present. The site does not expose sensitive data and uses no known vulnerable libraries, indicating a moderate security posture. Overall, the website is professional and trustworthy with clear business information and contact details. However, improvements in privacy compliance, security headers, and incident response transparency are recommended to enhance trust and regulatory adherence.

AXIOM TECH s.r.o. is a well-established Czech company specializing in digital transformation solutions for the engineering and manufacturing sectors. With 30 years of experience, they provide a comprehensive portfolio of Siemens and CGTech software products, including PLM Teamcenter, NX CAD/CAM, Solid Edge, Tecnomatix, and Vericut. Their services include training, consulting, technical audits, and custom application development, targeting engineering firms and manufacturing companies seeking to optimize production and design processes. The company maintains a strong market position as a Siemens Solution Partner Gold Expert and demonstrates a professional online presence with detailed content and customer testimonials. Technically, the website employs modern web technologies such as jQuery, Tiny Slider, Google Fonts, and Google Analytics, with good mobile optimization and accessibility. The site uses HTTPS with a valid SSL certificate, though it lacks some recommended security headers. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Contact information is transparent and easily accessible, enhancing business credibility. From a security perspective, the site shows good practices like HTTPS enforcement and no visible sensitive data exposure. However, the absence of security headers and a vulnerability disclosure policy are areas for improvement. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the company's evident legitimacy and partnerships. Overall, the website is professional, secure, and compliant, serving its target audience effectively.

S

StudyCheck

studycheck.de

49

StudyCheck.de is a well-established German educational platform providing extensive independent student reviews and rankings for over 22,000 study programs and 600 universities. It serves primarily students and prospective students in Germany and Austria, helping them find suitable study options through comprehensive content and interactive features. The platform leverages modern web technologies including multiple analytics and tracking tools, with a consent management platform to comply with privacy regulations. The website is professionally designed, mobile-optimized, and offers a good user experience with clear navigation and rich multimedia content. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and vulnerability disclosure information. Overall, the domain and website appear legitimate and trustworthy, though improvements in privacy and security transparency would enhance compliance and user trust.

A

Aftermarket.pl

aftermarket.pl

67

Aftermarket.pl operates as the largest domain name marketplace in Poland, providing a comprehensive platform for buying, selling, and auctioning internet domains. The company extends its services to include hosting, SSL certificates, website building, SEO, and affiliate programs, targeting businesses and individuals interested in domain trading and related web services. The website demonstrates a mature market position with strong trust indicators such as high Google and Trustpilot ratings and active social media presence. Technically, the site employs modern web technologies including service workers, Google Analytics, and secure login mechanisms, ensuring a responsive and user-friendly experience across devices. Security posture is solid with HTTPS enforcement and CSRF protections, although there is room for improvement in implementing additional security headers and publishing explicit security policies. Privacy compliance is robust, featuring comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, the platform presents a trustworthy and professional digital presence suitable for its business model and audience.

S

San Diego State University

sdsu.edu

65

San Diego State University (SDSU) is a large, well-established public research university founded in 1897, serving a diverse student body with over 202 degree programs and extensive student organizations. The website reflects a mature digital presence with consistent branding, comprehensive academic and campus life information, and active engagement through multiple official social media channels. Technically, the site employs modern JavaScript libraries, analytics tools, and a CMS platform (OmniUpdate), delivering a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are not publicly documented. Privacy compliance is partial, with a comprehensive digital privacy statement but lacking a cookie consent mechanism. WHOIS data for the domain is unavailable, likely due to querying the subdomain 'www.sdsu.edu' or .edu WHOIS restrictions, but the website content and external references strongly support legitimacy. Overall, SDSU's website is professional, trustworthy, and well-maintained, serving its educational mission effectively.

Č

Česká asociace umělé inteligence

asociace.ai

11

Česká asociace umělé inteligence is a leading national non-profit organization in the Czech Republic dedicated to fostering the development and adoption of artificial intelligence across multiple sectors including business, healthcare, public administration, and academia. The association acts as a multi-disciplinary platform providing members with exclusive content, legal assistance, training, networking events, and media support. It holds a strong market position supported by partnerships with major technology companies and academic institutions. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile devices, and employs standard security practices including HTTPS and cookie consent management. Security posture is solid with no critical vulnerabilities detected, though explicit security and incident response policies are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR regulations.

L

Látky Mráz

latky.cz

51

Látky Mráz is a well-established Czech retailer specializing in fabrics, textiles, haberdashery, sewing patterns, and related accessories. With approximately 33 years in the market and eight physical stores, the company also operates an e-commerce platform primarily through a partner domain (dumlatek.cz). The website presents a professional and consistent brand image, targeting sewing enthusiasts and professionals. The business model combines retail and wholesale services, supported by a loyalty discount program and active social media presence. Technically, the website uses modern web technologies including Google Analytics with consent management, FontFaceObserver for fonts, and Swiper.js for product carousels. The site is mobile-optimized with good SEO practices and basic accessibility features. However, no CMS or hosting provider details were detected, and some security headers are missing. From a security perspective, the site enforces HTTPS and provides cookie consent mechanisms aligned with GDPR. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data for the domain reduces trustworthiness and suggests possible privacy protection or registration issues. No explicit security or incident response policies are published, which could be improved. Overall, the website is functional, trustworthy, and professionally maintained, but domain registration transparency and enhanced security headers would strengthen its security posture and credibility.

A

ACTIVA spol. s r.o.

bibelot.cz

57

Bibelot.cz is an established Czech e-commerce retailer specializing in luxury writing instruments, branded diaries, and notebooks. Operated by ACTIVA spol. s r.o., a company with a history dating back to 1992, the site targets B2C customers and business partners seeking premium stationery products. The business maintains a strong market position with multiple physical stores and a broad product portfolio including engraving services and gift sets. The website demonstrates a mature digital presence with modern JavaScript frameworks, structured data, and comprehensive SEO optimizations. Privacy and cookie policies are clearly implemented, reflecting GDPR compliance. Security posture is solid with HTTPS enforced and secure forms, though some security headers could be improved. Overall, Bibelot.cz presents a professional, trustworthy, and user-friendly platform for its niche market.

K

KELLO Könyvtárellátó Nonprofit Kft.

kello.hu

10

KELLO Könyvtárellátó Nonprofit Kft. is a Hungarian nonprofit organization focused on the distribution of textbooks, educational materials, and cultural products. It serves a broad audience including students, parents, schools, publishers, and libraries, positioning itself as a key national distributor and retailer in Hungary's educational sector. The website supports this mission by providing access to a webshop, library professional portal, and cultural magazine, all integrated under the KELLO brand. Technically, the website employs modern web technologies including jQuery, Bootstrap Icons, and ES modules, with Google Analytics for visitor tracking and Usercentrics for GDPR-compliant cookie consent management. The site is mobile-optimized and presents a consistent, professional design with clear navigation. However, some accessibility and SEO optimizations could be improved. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's nonprofit educational claims, supporting high legitimacy and trustworthiness. Overall, the website presents a secure, professional, and compliant online presence for KELLO, with room for enhancements in security policy transparency and accessibility. The risk level is low, but strategic improvements in security headers and incident response disclosures are recommended.

M

Modio.cz - vyhledávač módy a sportovního vybavení | Módní inspirace, novinky i slevy na jednom místě

modio.cz

46

Modio.cz operates as a Czech language online aggregator platform specializing in fashion and sports equipment. It aggregates products from hundreds of e-shops, providing users with a centralized search and browsing experience for clothing, shoes, accessories, and sports gear. The platform targets consumers interested in fashion and sports products, offering inspiration, news, and discount information. The website demonstrates a consistent brand presence with a professional design and clear navigation structure, supporting a medium-sized retail e-commerce business model focused on aggregation rather than direct sales. Technically, the website employs a traditional web stack including jQuery, jQuery UI, and various third-party analytics and advertising scripts such as Google Analytics and Facebook Pixel. The site uses HTTPS and lazy loading for images, contributing to moderate performance and good mobile optimization. However, the use of an outdated jQuery version and absence of explicit security headers indicate areas for technical improvement. SEO practices appear solid with proper meta tags and Open Graph data. From a security perspective, the site benefits from HTTPS encryption and standard tracking protections but lacks visible security headers and explicit privacy or cookie policies. No contact or incident response information is provided, which limits transparency and user trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the site itself appears operational and professional. Overall, Modio.cz presents a functional and user-friendly platform with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and domain registration transparency would enhance trust and compliance. The business is well positioned in the Czech retail e-commerce aggregation market but should address technical and compliance gaps to reduce risk and improve user confidence.

N

NEXTUP s.r.o.

nextup.cz

45

NEXTUP s.r.o. is a Czech-based technology company specializing in custom software development and IT solutions with over 20 years of market presence. The company serves business clients with tailored e-commerce platforms, mobile applications for Android and iOS, and system integration services. Their portfolio includes notable clients such as Activa, Bank of Georgia, and Blue Sky Media, reflecting a strong market position in the technology sector. The website presents a professional image with clear project showcases and comprehensive contact information, supporting their credibility and business maturity. Technically, the website employs modern web standards and Google Analytics for user tracking, with good mobile optimization and SEO practices. However, it lacks published privacy and cookie policies, which are critical for GDPR compliance. Security-wise, HTTPS is enforced, but the absence of security headers and incident response contacts indicates room for improvement. Overall, the site is trustworthy and well-structured but should enhance privacy and security transparency to align with best practices.

ORLEN Asfalt sp. z o.o. operates a professional website focused on providing technological consulting services in asphalt pavement construction, primarily targeting local government and related sectors in Poland. The company is positioned as a specialized entity within the ORLEN group, leveraging its expertise to support innovative road construction solutions. The website reflects a medium-sized enterprise with a clear business model centered on B2B consulting and advisory services. Technically, the site employs modern frontend technologies including Bootstrap 4 and integrates Cookiebot for GDPR-compliant cookie management, alongside Google Analytics for user behavior insights. The platform is built on ASP.NET WebForms, hosted under a reputable registrar, and uses HTTPS to secure communications. Security posture is solid with encrypted connections and consent mechanisms, though improvements are recommended in HTTP security headers and DNSSEC implementation. The website provides a contact form with explicit data protection notices and a designated data protection officer contact, demonstrating compliance with GDPR requirements. No critical vulnerabilities or suspicious patterns were detected, and the domain registration data aligns well with the business profile, enhancing trustworthiness. Overall, the site presents a professional, secure, and compliant digital presence suitable for its industry and audience.

K

Kreativní Praha, z.ú.

kreativnipraha.eu

58

Kreativní Praha, z. ú. is a non-profit organization dedicated to fostering cultural development and supporting the creative sector in Prague. The website serves as a platform to showcase their projects, events, and initiatives aimed at enhancing the cultural landscape of the city. Their key services include data analysis for cultural development, mapping creative industries, activating public spaces with cultural activities, and organizing conferences and networking events. The organization targets cultural professionals, community members, and stakeholders within Prague's creative ecosystem. Technically, the website is built on the Webflow CMS platform, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for interactive elements. Google Analytics is implemented for user tracking, complemented by a cookie consent banner that respects user privacy preferences. The site is mobile-optimized and demonstrates good SEO practices, although some security headers are missing which could enhance the security posture. From a security perspective, the site enforces HTTPS and includes anti-spam measures in its newsletter form. However, the absence of explicit security headers and lack of visible incident response or vulnerability disclosure policies suggest areas for improvement. The WHOIS data is privacy protected by EURid, which is typical for .eu domains and does not raise immediate concerns. Overall, the site presents a professional and trustworthy front consistent with a legitimate cultural non-profit. The overall risk assessment is low, with recommendations focusing on enhancing security headers, formalizing security policies, and maintaining compliance with privacy regulations. These steps will strengthen the organization's digital trustworthiness and resilience against potential threats.

G

GASK

gask.cz

58

GASK (Galerie Středočeského kraje) is a regional art gallery based in the Central Bohemian Region of the Czech Republic, established in 2009. It offers art exhibitions, educational programs, and cultural events, targeting the general public interested in arts and culture. The website serves as an information portal and ticket sales platform, positioning GASK as a key cultural institution in its region. Technically, the site is built on WordPress with WooCommerce, leveraging modern web technologies and CDNs for performance and scalability. It supports multilingual content via WPML and integrates various marketing and analytics tools such as Google Analytics, Adform, and Ecomail. Security-wise, the site enforces HTTPS, uses security headers, and implements GDPR-compliant cookie consent mechanisms, though it lacks a dedicated security policy or incident response page. Overall, the site is professional, trustworthy, and well-optimized for its audience and purpose.

Magyar Földgáztároló Zrt. is Hungary's largest commercial underground natural gas storage company, operating four storage facilities with significant capacity. The company plays a critical role in ensuring the country's winter gas supply and aims to strengthen Hungary's position in the Central European energy market. The website reflects a professional corporate presence with clear navigation, regulatory information, and customer engagement features such as newsletter subscription. Technically, the site uses standard web technologies including Bootstrap and jQuery, with Google Analytics for visitor tracking. Security practices include HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not evident. Overall, the site is well-maintained, trustworthy, and compliant with GDPR requirements.

M

MVM Oroszlányi Távhőtermelő és Szolgáltató Zrt.

mvmtavho.hu

61

MVM Oroszlányi Távhőtermelő és Szolgáltató Zrt. is a regional energy company specializing in district heating services for the Oroszlány and Szolnok areas in Hungary. The website acts as a portal directing users to localized district heating service sites, reflecting a focused business model in the energy utility sector. The company appears to be a medium-sized entity founded in 2020, likely part of the larger MVM group, a major Hungarian energy provider. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics for tracking, and uses responsive design techniques to ensure usability across devices. However, the site lacks advanced SEO and accessibility features and does not appear to use a CMS or complex frameworks. Performance is moderate with no critical errors detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data or forms on the landing page, which is positive. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency. Overall, the website is functional and consistent with its business purpose but requires enhancements in privacy compliance, security best practices, and user contact information to improve trust and regulatory adherence.

Baltic Power sp. z o.o. is a medium-sized energy company focused on developing Poland's first offshore wind farm with a capacity of up to 1.2 GW. The company is a joint venture between the ORLEN Group and Northland Power, positioning itself as a key player in the Polish renewable energy market. The website reflects a professional corporate presence with detailed project information, community engagement initiatives, and supplier outreach. Technically, the site uses modern frameworks like Bootstrap and jQuery, integrates Cookiebot for GDPR-compliant cookie consent, and employs Google Analytics for visitor tracking. Security practices include HTTPS usage and CSRF protection, though DNSSEC is not enabled and some security headers are missing. Overall, the site demonstrates good privacy compliance and business credibility, with clear contact information and legal disclosures.

V

VLTAVA LABE MEDIA a.s.

estranky.cz

55

eStránky.cz is a Czech website builder platform operated by VLTAVA LABE MEDIA a.s., offering free and paid plans for individuals, hobbyists, non-commercial groups, entrepreneurs, and e-commerce businesses. The platform emphasizes ease of use, quick setup, and a variety of templates, supported by phone and online assistance. The company holds a solid market position in the Czech Republic with over one million users. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and a consent management platform, ensuring a responsive and user-friendly experience. Security measures include HTTPS, Google reCAPTCHA, and user consent for tracking, though explicit security headers are not visible in the HTML source. The absence of WHOIS data reduces transparency but does not negate the professional presentation and trust signals on the site. Overall, the website is well-structured, compliant with GDPR, and provides clear contact and business information.

T

TestLine Clinical Diagnostics s.r.o.

testlinecd.com

46

TestLine Clinical Diagnostics s.r.o. is a Czech-based company specializing in the development, production, and distribution of laboratory diagnostics for both human and veterinary use. It operates as part of the BioVendor Group, a recognized international biotechnology group. The company targets healthcare professionals and laboratories, offering a range of in vitro diagnostic products and innovative diagnostic solutions. The website reflects a professional and consistent brand image with clear business information and contact channels. Technically, the website employs a modern but somewhat dated technology stack including jQuery 1.11.1, ResponsiveSlides, and Google Analytics for tracking. The site is mobile-optimized and features good SEO practices, though some accessibility features are basic. Performance is moderate, and the site uses HTTPS with a secure login form and cookie consent mechanisms, indicating a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses cookie consent compliant with GDPR. However, it lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms. The WHOIS data for the domain is missing, which raises some concerns about domain registration transparency, though the website’s professional appearance and association with BioVendor Group mitigate this risk somewhat. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced security disclosures and updated technical components. The absence of WHOIS data is a notable gap that should be investigated further to ensure full legitimacy and compliance.

A

AliaWeb, spol. s r.o.

bydlet.cz

47

Bydlet.cz is a Czech online media portal operated by AliaWeb, spol. s r.o., focusing on modern living, housing news, real estate, and lifestyle content. The website offers a variety of articles, photo galleries, expert advice, and real estate listings targeting Czech-speaking audiences interested in home improvement and related topics. The site is affiliated with the larger kurzy.cz network, enhancing its market presence. Technically, the site uses common web technologies including jQuery, Google Tag Manager, and multiple advertising and tracking services, with a basic but functional mobile experience. Security posture is moderate, with HTTPS implied but lacking visible security headers and no explicit incident response or security policy pages. Privacy compliance is supported by cookie consent mechanisms and a privacy policy page. The absence of WHOIS data limits domain trust assessment, but the website's professional content and affiliation suggest legitimacy. Overall, the site scores well in content quality and business credibility but could improve technical security and contact transparency.

S

Sport v okolí

sportvokoli.cz

44

Sport v okolí is a Czech Republic-based sports information portal that helps users find sports clubs and events. It is a collaborative project between Sazka a.s. and the Czech Olympic Committee, positioning itself as a trusted resource in the Czech sports community. The website offers a comprehensive searchable database of sports clubs, a calendar of sports events, and relevant articles to engage its audience. The target audience is the general public interested in sports activities within the Czech Republic. Technically, the website uses modern JavaScript libraries such as jQuery, Choices.js, and Google Analytics for tracking. It is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements a cookie consent mechanism with granular user controls, but lacks explicit privacy policy and terms of service pages, as well as security headers, which are areas for improvement. The WHOIS data is missing, which reduces trustworthiness from a domain registration perspective, but the website's partnerships and content quality support its legitimacy. Overall, the site scores well in content quality and business credibility but should enhance its security posture and privacy compliance to improve trust and compliance.

W

web4ukraine.org | STOP Russian military aggression against Ukraine

web4ukraine.org

53

The website web4ukraine.org is a small-scale advocacy platform focused on opposing Russian military aggression against Ukraine. It provides a JavaScript tool that is actively used on over 9,000 websites to delay Russian user visits, demonstrating a niche but impactful service. The site is hosted via Cloudflare and uses modern front-end technologies such as Bootstrap and Google Fonts, with Google Analytics integrated for visitor tracking. The content is clear, relevant, and professionally presented, targeting website owners and administrators who wish to participate in the campaign. From a technical perspective, the website employs a modern tech stack with good mobile optimization and moderate performance. However, it lacks some security best practices such as DNSSEC and security headers, which could be improved. The site uses HTTPS properly, ensuring encrypted communication. Privacy compliance is weak due to the absence of privacy and cookie policies, and no consent mechanisms are present. Security posture is moderate; no critical vulnerabilities or exposed sensitive data were detected, but the lack of security headers and DNSSEC reduces the overall security score. The WHOIS data is consistent with the website's origin and purpose, with no suspicious patterns. Overall, the website is trustworthy but could benefit from enhanced privacy and security measures. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies with consent mechanisms, and establishing incident response contacts to improve compliance and trustworthiness.

G

Gemeinde Bayerisch Eisenstein

bayerisch-eisenstein.de

54

The website www.bayerisch-eisenstein.de serves as the official municipal portal for the community of Bayerisch Eisenstein, Germany. It provides comprehensive information and services for residents and tourists, including local government details, tourism highlights, event listings, and accommodation options. The site leverages TYPO3 CMS and integrates accessibility tools to enhance user experience. Social media channels are actively linked, supporting community engagement and tourism promotion. The content is well-structured, professionally presented, and localized in German, targeting both local citizens and visitors to the Bavarian Forest region. Technically, the site employs modern web technologies such as TYPO3 CMS, Owl Carousel, PhotoSwipe, and Google Analytics for tracking. Hosting is managed via agenturserver, with proper HTTPS encryption and cookie consent mechanisms in place, reflecting good digital maturity. Accessibility features and mobile optimization are well implemented, contributing to a positive user experience. From a security perspective, the website demonstrates a solid posture with HTTPS enabled, cookie consent, and no visible vulnerabilities or exposed sensitive data. However, some recommended security headers like Content-Security-Policy and X-Content-Type-Options are not explicitly detected and could be added to enhance security. No explicit security policies or incident response contacts are published, which could be improved to increase transparency and readiness. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. It effectively supports the municipality's communication and tourism objectives while maintaining a good security and privacy baseline.

T

TestLine Clinical Diagnostics s.r.o.

testlinecd.cz

41

TestLine Clinical Diagnostics s.r.o. is a Czech-based company specializing in the development, manufacturing, and distribution of human and veterinary laboratory diagnostic products. It operates as part of the BioVendor Group, a recognized international biotechnology conglomerate. The company targets healthcare and veterinary laboratories, providing innovative in vitro diagnostic solutions and related services. The website reflects a professional and consistent brand presence with multilingual support and comprehensive product information.

W

WPCodeBox

wpcodebox.com

58

WPCodeBox is a specialized WordPress plugin and cloud service that enables developers and agencies to efficiently manage, share, and deploy code snippets across multiple WordPress sites. The company positions itself as a leading solution in the WordPress developer tools market, emphasizing performance, organization, and ease of use. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site leverages modern web technologies including React for UI, WordPress CMS, and integrates multiple analytics and advertising platforms such as Google Analytics, Facebook Pixel, and Paddle for payments. Security posture is solid with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms despite extensive tracking. Overall, WPCodeBox demonstrates a strong market presence with good technical and security foundations but could improve transparency and compliance aspects.

The website uzs-konference.cz represents the Unie zaměstnavatelských svazů ČR, a Czech non-profit organization focused on employer associations and professional development through conferences and events. The site provides event listings with detailed information such as dates, locations, and participation fees, targeting professionals and organizations in the Czech Republic. The business model centers on organizing educational conferences with paid participation, positioning itself as a niche player in the non-profit sector. The domain age and WHOIS data support the legitimacy and consistency of the organization. Technically, the website uses a basic but functional tech stack including jQuery, Google Analytics, and CSS libraries for UI elements. Hosting is provided by Gransy, a Czech hosting provider. The site is accessible, uses HTTPS, and includes a cookie consent banner, but lacks advanced security headers and comprehensive privacy or terms of service documentation. Mobile optimization and accessibility are basic, and SEO practices are minimal. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but no advanced security headers were detected. There are no visible vulnerabilities or exposed sensitive data. However, the absence of a privacy policy and terms of service pages, as well as missing contact information, represent compliance and trust gaps. The use of Google Analytics indicates moderate user tracking. Overall, the website is functional and moderately secure but would benefit from improved privacy compliance, enhanced security headers, and clearer contact and policy documentation to increase trust and regulatory adherence.

HugeDomains.com operates as a reputable domain marketplace specializing in premium domain name sales, including UberMenu.com. The platform offers flexible purchasing options such as outright buy and payment plans, supported by a 30-day money back guarantee and secure transaction methods including PayPal and Escrow.com. The website is professionally designed, mobile-optimized, and provides comprehensive customer support and FAQs, targeting entrepreneurs and businesses seeking valuable domain assets. Technically, the site employs modern JavaScript libraries, Google Analytics, and cookie consent mechanisms, ensuring a good user experience and compliance with privacy regulations. Security posture is strong with HTTPS and SSL encryption, though explicit security headers could be improved. WHOIS data for the domain is unavailable, limiting full trust verification, but the marketplace itself is established and trustworthy.

R

Regzone

regzone.de

75

Regzone is a domain registration and hosting service provider operating primarily in the Czech Republic and Germany, offering a wide range of over 800 TLDs including popular domains like .com, .cz, and .eu. The company provides additional services such as free SSL certificates, DNS management with DNSSEC, email hosting, and domain parking. Their market position is supported by accreditation from multiple registries and a global presence with offices in key regions. Technically, the website uses modern frameworks like Bootstrap 5 and jQuery, integrates Google Tag Manager and Analytics for tracking, and offers a responsive, well-structured user experience. Security posture is strong with HTTPS enforced, DigiCert SSL certificates, and DNSSEC support, though some security headers are missing and no explicit security policy page is found. Privacy compliance is robust with GDPR-aligned cookie consent and a comprehensive privacy policy. Overall, the site is professional, trustworthy, and well-maintained, with clear contact information and positive customer testimonials.

W

Web4Ukrajina.cz | Nesouhlasíme s agresí Ruské federace vůči Ukrajině

web4ukrajina.cz

41

Web4Ukrajina.cz is a small non-profit advocacy website established in 2022, focused on opposing the aggression of the Russian Federation towards Ukraine. It provides embeddable JavaScript code snippets that other websites can use to display anti-war appeals specifically targeting Russian visitors. The site has a clear mission and a network of over 9,000 participating websites, indicating a moderate market presence within its niche. Technically, the site uses modern frontend technologies including Bootstrap 5 and Google Fonts, and is hosted behind Cloudflare DNS services, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms, despite usage of Google Analytics. Contact information is limited to a single email address, with no phone or physical address provided. Overall, the site is trustworthy for its advocacy purpose but would benefit from improved compliance and security practices.

Gjirafa Tech operates the VP platform, an end-to-end OTT video and audio solution designed to empower content creators and media companies with tools for content management, monetization, and user engagement. The platform offers advanced features including AI recommendations, subscription management, and ad integration, positioning it as a competitive player in the OTT technology market. The website demonstrates a modern technical infrastructure leveraging popular frameworks such as Bootstrap and Vue.js (Nuxt.js), with integrations for analytics and cookie consent, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of explicit privacy policies, terms of service, and security incident response documentation indicates areas for improvement. Overall, the site is professional and trustworthy, but enhancing transparency around privacy and security policies would strengthen user confidence and compliance standing.

P

Pojizeří a Polabí - turistická oblast

pojizeriapolabi.cz

41

The website www.pojizeriapolabi.cz serves as an informational portal for the Pojizeří and Polabí tourist regions in the Czech Republic, highlighting attractions, accommodations, and cultural sites. The site targets tourists and visitors interested in exploring these areas. The technical infrastructure includes modern web technologies such as jQuery, GLightbox, Google Fonts, Font Awesome 6 Pro, and Google Analytics for visitor tracking. The site appears to be mobile-optimized with good design quality and navigation clarity. However, the absence of WHOIS data limits the ability to fully verify domain legitimacy and ownership. Security posture is moderate, with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site provides useful regional tourism information but would benefit from enhanced security and compliance measures.

The website www.kacr.cz represents the Komora Auditorů České Republiky, a professional self-regulatory organization established by Czech law to oversee the auditing profession. It serves auditors, accounting professionals, and members of the auditing community in the Czech Republic by providing services such as auditor registries, professional education, publications, conferences, and quality control. The site is well-branded and consistent with its government and professional positioning. Technically, the website employs modern JavaScript libraries including jQuery, jQuery UI, and Slick Carousel, and integrates Google Tag Manager and Google Analytics with a privacy-conscious default denial of tracking until consent is given. The site is mobile responsive, accessible, and SEO optimized, though it lacks some advanced security headers and a published privacy policy. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but does not expose security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. The absence of WHOIS data limits domain trust assessment, but the professional presentation and clear contact details support legitimacy. Overall, the site is a credible and professional resource for the auditing community in the Czech Republic, with moderate technical maturity and good security posture. Recommendations include publishing a privacy policy, adding security headers, and clarifying domain registration details to enhance trust and compliance.

P

P&F Company s.r.o.

pfcompany.cz

46

P&F Company s.r.o. is a Czech-based professional services company specializing in outsourcing solutions related to event management, car fleet management, and human resources resourcing. The company positions itself as a trusted partner offering senior expertise to improve business operations, targeting corporate clients requiring reliable outsourcing services. The website reflects a mature digital presence with a professional design, responsive layout, and clear navigation, supporting a positive user experience. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and PhotoSwipe, alongside Google Analytics for visitor tracking. The site is served over HTTPS with good SSL configuration, although explicit security headers are not detected. Cookie consent mechanisms are implemented, indicating awareness of privacy compliance, but a dedicated privacy policy page is missing. From a security perspective, the company demonstrates strong information security management through certifications like ISO 27001 and TISAX. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. No critical vulnerabilities or exposed sensitive data were identified in the website content. Overall, the security posture is good but could be improved with enhanced security headers and published incident response contacts. The overall risk assessment suggests a generally trustworthy and professional business website with minor gaps in privacy documentation and domain registration transparency. Strategic recommendations include publishing a privacy policy, adding security headers, and providing clear contact information to enhance trust and compliance.

D

Dutch Cycling Embassy

dutchcycling.nl

44

Dutch Cycling Embassy is a medium-sized organization established in 2011, dedicated to sharing Dutch cycling expertise and technology globally to promote cycling as a sustainable and efficient mode of transport. The website positions the organization as a leading authority in cycling infrastructure, behavior, and policy, targeting governments, urban planners, and cycling advocates worldwide. The business model focuses on knowledge dissemination, consultancy, and networking through various programs and expertises. Technically, the website is built on WordPress with modern SEO and cookie compliance plugins, featuring good mobile optimization and moderate performance. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though lacks published security policies and advanced security headers. Overall, the site is professional, trustworthy, and content-rich, but could improve privacy transparency and incident response readiness.

M

Město Moravské Budějovice

mbudejovice.cz

50

The website mbudejovice.cz serves as the official online portal for the town of Moravské Budějovice in the Czech Republic. It provides residents and visitors with comprehensive information about municipal services, local news, events, and administrative resources. The site targets local citizens, businesses, and tourists seeking official information and services. The business model is that of a government municipal service provider, focusing on transparency and citizen engagement. Technically, the website employs a mix of legacy and modern web technologies including jQuery 1.8.3, Bootstrap 4.3.1, Google reCAPTCHA v2, and Google Analytics. It is built on the Vismo CMS platform, which is common for Czech municipal websites. The site is mobile optimized with good navigation and accessibility features, though some libraries could be updated for security and performance improvements. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and advanced security headers. No vulnerabilities or suspicious content were detected. The WHOIS data confirms the domain is legitimately registered to the municipal authority, enhancing trust. Overall, the website is a well-maintained government portal with good content quality, privacy compliance, and a solid security posture. Recommendations include updating legacy libraries, adding security headers, and publishing security and incident response policies to further strengthen trust and compliance.

W

Webglobe

webglobe.sk

48

Webglobe is a well-established Slovak technology company specializing in domain registration, web hosting, email services, and server infrastructure solutions. The company targets both individual and business customers seeking reliable online presence services. Their market position is strong, supported by over 120,000 satisfied clients and positive testimonials. The website reflects a professional and modern digital presence with comprehensive service offerings and clear navigation. Technically, the site leverages WordPress CMS with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools, including Google Analytics, Matomo, and VWO, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security headers and policies are absent. Privacy compliance is minimal, lacking visible privacy or cookie policies. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

K

Kulturní zařízení města Jičína

kzmj.cz

46

Kulturní zařízení města Jičína (KZMJ) is a public cultural institution serving as a key component of the cultural and social life in the city of Jičín, Czech Republic. Founded in 2006, it operates venues such as Masarykovo divadlo and Biograf Český ráj, offering theater performances, cinema screenings, and various cultural events. The website reflects its role as a municipal organization with a focus on community engagement and event promotion. Technically, the site is built on WordPress with modern front-end libraries and integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized and provides clear navigation and event information. Security posture is moderate with HTTPS enabled but lacks some advanced security headers and explicit incident response policies. Privacy compliance is basic with a cookie consent mechanism and a privacy policy page, though GDPR compliance details are limited. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and trustworthiness. Strategic improvements in security headers, privacy transparency, and incident response documentation would enhance the site's security and compliance standing.

Protext.cz is a professional PR and press release distribution platform operated by the Czech News Agency (ČTK), established in 1998. It offers services including press release distribution within the Czech Republic and internationally, video streaming, and PR article placements on major Czech news portals. The website targets companies and individuals seeking to disseminate their news and PR content efficiently. The platform is well-positioned in the Czech media market with a strong brand association to ČTK. Technically, the website uses legacy JavaScript libraries such as jQuery 1.7.1 and Modernizr 2.5.3, along with Google Analytics for tracking. The site implements cookie consent mechanisms compliant with GDPR and provides a responsive design optimized for mobile devices. However, some technical debt is evident due to outdated libraries and lack of visible modern security headers. From a security perspective, the site uses HTTPS (assumed from Google Analytics integration and modern standards), has cookie consent with granular controls, and employs AJAX-based login forms. However, the use of outdated JavaScript libraries and absence of explicit security headers indicate areas for improvement. No incident response or vulnerability disclosure information is publicly available, which could be enhanced to improve trust. Overall, Protext.cz is a credible and professional platform with good business credibility and privacy compliance. The main risks relate to technical modernization and enhanced security practices. Strategic recommendations include updating libraries, implementing security headers, and publishing security policies to strengthen the security posture and user trust.