Security Directory

Texsite.info is an educational and informational website focused on international textile trade terminology and e-learning. It offers multilingual content in 16 languages, including 2000 terms and multimedia resources, targeting professionals and learners in the textile industry. The project is funded by the European Commission, lending credibility and trust to its mission. The website is small in scale and primarily serves as a specialized resource rather than a commercial enterprise. Technically, the website uses standard web technologies including jQuery 1.12.4, Google Analytics, and Google Tag Manager for tracking. The site is accessible with no WAF or blocking mechanisms detected. However, the technical stack is somewhat outdated, and there is room for improvement in mobile optimization, accessibility, and SEO practices. The website lacks modern security headers and privacy-related policies, which are important for compliance and user trust. From a security perspective, the site uses HTTPS but does not implement additional security headers or provide incident response contacts. No forms or user input fields were detected on the homepage, reducing attack surface but also limiting interactivity. The absence of privacy and cookie policies indicates a gap in GDPR compliance. WHOIS data is unavailable due to privacy protection, which is common for small educational sites but limits transparency. Overall, the website is a legitimate, niche educational resource with moderate technical maturity and basic security posture. Strategic improvements in privacy compliance, security headers, and technology updates would enhance trust and resilience.

V

Vitální senior

vitalnisenior.cz

59

Vitální senior is a Czech-language online media platform focused on providing lifestyle content tailored for seniors, covering health, finance, housing, travel, and legal advice. The website operates on WordPress CMS and leverages common plugins for SEO, forms, and cookie consent. It monetizes primarily through advertising networks such as Google AdSense and Seznam SSP, and engages users via newsletter subscriptions. The content is well-structured, relevant, and updated regularly, targeting older adults in the Czech Republic. Technically, the site uses modern web technologies including HTTPS, Google Analytics, Facebook Pixel, and reCAPTCHA for form security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and some best practices, but lacks explicit security headers and incident response contacts. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service. Overall, the domain registration data is consistent and supports legitimacy. No WAF or blocking mechanisms interfere with access, and content is safe for general audiences.

A

APAČ - Asociace čistíren a prádelen

apac.cz

42

APAČ is a Czech Republic based association representing laundries, dry cleaners, and their suppliers. Established in 2001, it serves as a national industry body providing certification, education, events, and a marketplace for used equipment. The website reflects a professional and consistent brand presence with a clear focus on industry members and stakeholders. Technically, the site is built on WordPress with modern plugins for SEO, multilingual support, and membership management. Security posture is adequate with HTTPS and cookie consent implemented, though privacy policy and incident response contacts are missing. Overall, the site is trustworthy and well-positioned within its niche, but could improve compliance and security transparency.

E

EURATEX

euratex.eu

66

EURATEX is the leading European confederation representing the apparel and textile industry. The organization focuses on advocacy, innovation, sustainability, and trade facilitation within the EU textile sector. Their website is professionally designed using WordPress CMS, hosted by OVH SAS, and includes comprehensive content targeting industry stakeholders and EU institutions. The site demonstrates good GDPR compliance with a privacy policy and cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though additional security headers and incident response information could enhance trust. Overall, EURATEX presents a credible and authoritative online presence aligned with its business mission.

R

RIX, s.r.o.

madambusiness.cz

48

MadamBusiness.cz is a Czech media portal focused on businesswomen and successful women, providing daily news, interviews, and lifestyle content. It complements the print edition of Prosperity Madam Business and offers advertising, newsletters, and PDF editions. The site uses Joomla CMS with a modern tech stack including Google Analytics and advertising integrations. Security posture is good with HTTPS and cookie consent, but lacks published security policies and incident response contacts. WHOIS data is unavailable, which slightly reduces trustworthiness. Overall, the site is professional, content-rich, and well-optimized for users.

R

RF-Hobby.cz

rf-hobby.cz

50

RF-Hobby.cz is a Czech Republic based media website specializing in hobby magazines and subscriptions. The site targets general hobby enthusiasts with content primarily in Czech. The business operates in a niche media sector with a small scale footprint. Technically, the website is built on WordPress 6.4.3, utilizing common web technologies such as jQuery, Bootstrap 3, Font Awesome, and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and Gemius Audience. The site is served over HTTPS, indicating a baseline of security, but lacks some advanced security headers and explicit privacy and cookie policies, which are important for GDPR compliance and user trust. No contact emails or phone numbers were found in the provided content, limiting direct communication channels. Overall, the website presents a professional and consistent brand image with good content quality and user experience, but improvements in privacy compliance and security posture are recommended.

A

AGENTURA HELAS, s.r.o.

hnec.cz

39

AGENTURA HELAS, s.r.o. operates a Czech entrepreneurial platform focused on connecting business personalities, supporting business development, and fostering networking among Czech companies. The platform offers membership programs, events, webinars, and verified business contacts, positioning itself as a trusted network for Czech entrepreneurs since 1997. The website is professionally designed, mobile-optimized, and provides comprehensive privacy and cookie policies with user consent mechanisms. Technically, it employs modern web technologies including Bootstrap, jQuery, and Google Analytics, ensuring a moderate performance and good user experience. Security posture is adequate with HTTPS enforced and secure login, though security headers and explicit incident response policies are absent. WHOIS data is unavailable, limiting domain trust verification, but the website content and business information appear legitimate and consistent with a medium-sized Czech business platform.

A

ANTECOM s.r.o.

tradenews.cz

49

Trade News is a well-established Czech bimonthly magazine and online portal focused on trade and export, published by ANTECOM s.r.o. It serves a niche audience of small and medium enterprises, government bodies, and educational institutions, providing valuable insights, market analysis, and practical advice. The website reflects a professional media outlet with strong partnerships including Czech ministries and financial institutions, and recognized industry awards. Technically, the site uses a traditional tech stack with jQuery and Google Analytics, hosted on VAS Hosting. While the site is accessible and well-structured with cookie consent mechanisms, it lacks explicit privacy and terms of service pages, and uses an outdated jQuery version, which poses some security concerns. Security headers are not evident, suggesting room for improvement in security posture. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. The site content is safe for general audiences with no adult or questionable material detected.

Vinařství Maláník-Osička s.r.o. is a small family-owned winery based in Mikulčice, Czech Republic, specializing in the cultivation of grapevines and production of quality wines. The business leverages a long-standing family tradition and offers products through an e-shop, wine tastings, and accommodation services. The website is well-structured, mobile-optimized, and provides clear contact information and legal compliance pages such as GDPR and terms of service. The presence of an age verification modal aligns with the nature of the business selling alcoholic beverages. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and Lightbox2, with integration of Google Analytics and Seznam retargeting scripts for marketing and analytics purposes. The site performance is moderate with good mobile responsiveness and basic accessibility features. SEO practices are evident with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS but lacks explicit security headers such as Content-Security-Policy and HSTS, which are recommended to enhance protection. No vulnerability disclosure or incident response contacts are provided, which could be improved. The site does not expose sensitive data and implements an age verification modal, but some hidden SEO spam links to suspicious replica product domains were detected, which could impact trust. Overall, the website presents a legitimate and professional business with moderate security posture and privacy compliance. Strategic improvements in security headers, transparency on security policies, and removal of suspicious hidden links would enhance trust and security posture.

Z

Zámek Loučeň

zamekloucen.cz

51

Zámek Loučeň is a well-established cultural and hospitality business operating a historic baroque castle in the Czech Republic. It offers a variety of services including guided tours, accommodation in castle apartments and a hotel, gastronomy, event hosting such as weddings and corporate events, and an e-commerce platform for gift vouchers. The website positions itself as the 4th most visited castle in the country, targeting families, children, and adults with a strong focus on tourism and cultural heritage. Technically, the website uses modern web technologies including Google Tag Manager, Facebook Pixel, and a CMS likely based on the Nette framework. It is mobile-optimized, accessible, and SEO-friendly with structured data enhancing search visibility. Security posture is good with HTTPS enforced and no visible critical vulnerabilities, though some security headers could be improved. Privacy compliance is basic with a privacy policy and cookie consent mechanism present, but no explicit security or incident response policies. Overall, the website is professional, trustworthy, and provides a positive user experience with clear contact information and social media integration.

P

PHOTODIENST BRNO, spol. s r.o.

photodienst.cz

54

PHOTODIENST BRNO, spol. s r.o. operates a Czech e-commerce website specializing in personalized photo gifts such as mugs, photo prints, and photo stones, alongside professional children's school and preschool photography services. The company positions itself as a market leader with over 30 years of experience and a strong local presence in Brno, Czech Republic. Their business model focuses on retail sales of photo products and photography services targeting families and schools. The website is well-branded, professionally designed, and provides clear contact information and social media engagement. Technically, the website employs modern tracking and marketing technologies including Google Analytics, Facebook Pixel, and Ecomail, served via Amazon Cloudfront CDN. The site is mobile-optimized with good SEO practices, though accessibility features are basic. The absence of explicit cookie consent mechanisms and security headers suggests room for improvement in privacy and security compliance. Security posture is moderate with HTTPS usage implied but no visible security headers or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The lack of WHOIS data limits domain trust assessment, though the website content and business details appear legitimate and professional. Overall, the website presents a credible and professional e-commerce platform with solid business credibility but would benefit from enhanced security headers, explicit privacy and cookie consent, and verified domain registration details to improve trust and compliance.

K

Kv.Řezáč, s.r.o.

kvrezac.cz

57

Kv.Řezáč, s.r.o. is a leading Czech manufacturer specializing in knotted nets for sports, industrial, protective, and recreational uses. With over 30 years of experience, the company offers custom net manufacturing and operates an e-commerce platform for direct sales. Their market position is strong within the Czech Republic, targeting both B2B and B2C customers requiring high-quality nets. The website reflects a professional and well-structured digital presence with clear product categories and comprehensive contact options. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and various tracking services. It is mobile-optimized and provides a good user experience with fast loading times and clear navigation. However, no CMS or hosting provider details were identified. The site uses HTTPS and has implemented cookie consent mechanisms, indicating a good level of privacy compliance. From a security perspective, the site enforces HTTPS and secure login forms but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, though the website content and contact information support legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations, but improvements in security headers, incident response transparency, and domain registration verification are recommended to enhance trust and security posture.

M

Marcela Hrubošová

financeproradost.cz

58

Finance pro radost, operated by Marcela Hrubošová, is a Czech Republic-based financial education and consulting website established in 2012. The site aims to simplify complex financial topics for a general audience, providing guidance and insights into personal finance. The business operates as a small entity with a focused niche in financial advisory and education. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Fonts, Font Awesome, and Google Analytics for tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security measures include HTTPS and Google reCAPTCHA for form protection, alongside a GDPR-compliant cookie consent mechanism. However, explicit privacy and terms of service pages are missing, which could be improved to enhance compliance and user trust. Overall, the website demonstrates a moderate to good security posture with room for improvement in formal security policies and incident response readiness.

E

Englishka.cz

englishka.cz

61

Englishka.cz is a Czech Republic based online English language education platform led by Petra Šolcová. The website offers various English courses, coaching, and language clubs targeting Czech speakers from beginners to advanced learners, including seniors. The business model focuses on online course delivery and e-commerce for language learning materials. The site is professionally designed using WordPress and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. Hosting and DNS are managed via Active24 and Cloudflare, ensuring good performance and security. Security posture is strong with HTTPS and security headers implemented, though explicit privacy and terms policies are missing, representing compliance gaps. Overall, the website is trustworthy, with consistent WHOIS data and a clear business focus on education.

A

ALUKOV a.s.

alukov.cz

70

ALUKOV a.s. is a well-established Czech manufacturer specializing in custom aluminum enclosures for pools, whirlpools, terraces, and solar roofing solutions. With over 30 years of experience and a presence in more than 40 countries, the company emphasizes modern design, safety, and quality. Their business model focuses on bespoke manufacturing, direct customer engagement, and comprehensive after-sales service including warranty and maintenance. The website demonstrates a mature digital infrastructure with modern technologies such as Google Tag Manager, Google Analytics, and reCAPTCHA for form security. Privacy and cookie policies are robust and GDPR compliant, reflecting a strong commitment to user data protection. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are absent. Overall, the site is professional, user-friendly, and trustworthy, supporting ALUKOV's market position as a leading manufacturer in their sector.

E

Ecovis FACTA

facta.cz

52

Ecovis FACTA is a small consultancy firm based in Prague, Czech Republic, specializing in financial accounting, payroll and HR, economic and tax consulting, and mergers and acquisitions advisory. The company positions itself as experienced, flexible, and offering a personal approach to clients. The website is professionally designed using the Wix platform and includes structured data confirming the business address and identity. Technically, the site uses modern web technologies and includes analytics and error monitoring tools such as Google Analytics and Sentry. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for small businesses. Overall, the website is functional and professional but could improve privacy compliance and security transparency.

A

Agentura Helas, s.r.o.

helas.org

51

Agentura Helas is a Czech-based event management and business networking agency established in 1997. The company specializes in organizing unique social business meetings, connecting prominent Czech business personalities, and providing services such as online expert advice, marketing, media visibility, event organization, and venue rental. The website reflects a professional and consistent brand image targeting Czech entrepreneurs and business owners. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS and CAPTCHA protections, though it lacks some security headers and explicit security policies. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. The absence of WHOIS data transparency slightly reduces trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility.

W

Webaz s.r.o.

webaz.cz

43

Webaz s.r.o. is a Czech digital agency specializing in the creation of modern websites, e-commerce platforms, and online marketing services. With over 10 years of experience, they serve B2B and B2C clients, offering custom web solutions built on their proprietary NetPublisher CMS. The website demonstrates a professional design with clear navigation and relevant content showcasing client references and testimonials. Technically, the site uses common JavaScript libraries and Google services for analytics and marketing, with a cookie consent mechanism ensuring user privacy choices. Security posture is solid with HTTPS and reCAPTCHA integration, though additional security headers and explicit privacy policies are lacking. The absence of WHOIS data reduces domain trustworthiness, but the website content and client references support legitimacy. Overall, the site is well-positioned as a reliable digital agency in the Czech market.

R

Roklen360 a.s.

roklenfx.cz

59

RoklenFx is an online currency exchange and payment service operated by Roklen360 a.s., a regulated financial institution under the supervision of the Czech National Bank. The company offers currency exchange in over 30 currencies with competitive rates and no fees, targeting entrepreneurs, companies, and individuals. The website demonstrates a strong market position with over 20,000 clients and more than 300,000 transactions valued at 120 billion CZK. Key services include online currency exchange, foreign payments, currency rate monitoring, and currency hedging. The business model focuses on providing fast, secure, and cost-effective currency exchange solutions through a modern online platform.

M

mBank S.A.

mbank.pl

71

mBank S.A. is a major Polish retail bank offering a comprehensive range of financial products including personal accounts, loans, deposits, insurance, and investment services. The website targets individual customers in Poland and presents a professional, well-structured digital presence with strong branding and consistent messaging. The bank leverages modern web technologies such as React and Next.js to deliver a fast, mobile-optimized experience. Security is robust with HTTPS, security headers, and privacy policies in place, although WHOIS data is unavailable which is unusual but likely due to registry policies. Overall, the site reflects a mature digital infrastructure and a strong market position in the Polish banking sector.

T

Tatry mountain resorts, a.s.

skiareal.cz

55

Špindlerův Mlýn is a prominent ski resort in the Czech Republic, operated by Tatry mountain resorts, a.s., offering extensive winter and summer tourism services including skiing, accommodation, ski school, and events. The website is well-structured, professionally designed, and provides comprehensive information and online services such as skipass purchasing via GOPASS. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and integrates cookie consent and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site presents a trustworthy and professional digital presence for a large hospitality business.

M

Mekr´s

mekrsgroup.cz

43

Mekr´s Group is a Czech-based parent company overseeing several subsidiary brands specializing in various industrial and commercial sectors. The company positions itself as an innovative leader providing high-quality products and services, fostering long-term partnerships. The website is professionally designed with clear navigation and multilingual support, targeting industrial and commercial customers primarily in the Czech Republic. The business model focuses on B2B supply and service provision across manufacturing, retail, and transportation sectors. Technically, the website leverages WordPress with Elementor, Yoast SEO, and Google Analytics, reflecting a modern and mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and incident response details are absent. Overall, the site demonstrates good compliance with GDPR and privacy standards, though WHOIS data is unavailable, limiting full domain legitimacy verification.

L

Leoš Kohoutek

sur-ron-moto.cz

52

The website www.sur-ron-moto.cz represents a small Czech business specializing in the retail and servicing of SUR-RON electric motorcycles, including models such as Light Bee, Ultra Bee, and Storm Bee. It provides product information, parts and service options, downloadable documents, dealer locations, rental services, and an integrated e-commerce shop hosted on a related subdomain. The business appears to be an authorized importer or dealer for SUR-RON motorcycles in the Czech market, targeting consumers interested in electric off-road motorcycles. The website content is professionally presented with consistent branding and good navigation, supporting a positive user experience.

L

Luděk Vašek

bike-sport-shop.cz

58

Bike Sport Shop is a Czech Republic-based retail business specializing in cycling, running, cross-country skiing, and outdoor equipment. With over 25 years of experience, the company operates both a well-stocked physical store in Chrudim and an e-commerce platform offering a wide range of bicycles, e-bikes, sportswear, and accessories. The business emphasizes customer service, professional advice, and after-sales support including servicing and repairs. Their market position is that of a trusted local specialist with a loyal customer base and positive reputation as evidenced by external review platforms like Heureka.cz. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and responsive design frameworks such as Foundation. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Payment processing is handled securely via GoPay with multiple payment options displayed. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. From a security perspective, the site uses HTTPS and enforces cookie consent but lacks visible security headers such as CSP or HSTS, which could be improved. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain reduces the trust score somewhat, but the website content and business information appear legitimate and professional. Overall, the website is a solid e-commerce platform with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and domain registration transparency would enhance trust and security posture further.

Město Milevsko operates an official municipal website serving residents and visitors with comprehensive information about local government services, events, public notices, and administrative contacts. The site features a reservation system for official documents and maintains active social media channels. The presence of ISO 50001 certification indicates a commitment to energy management standards. Technically, the website employs modern frameworks such as Foundation and jQuery, integrates Google Analytics for visitor tracking, and enforces HTTPS with a Content Security Policy header. Accessibility and mobile responsiveness are well addressed, providing a good user experience. Security posture is solid but could be enhanced with additional headers and policies. Privacy compliance is supported by a cookie consent banner and a privacy statement, though no terms of service or vulnerability disclosure policies are found. The absence of WHOIS data limits domain transparency but does not detract from the site's apparent legitimacy as a government entity. Overall, the website is professional, trustworthy, and well-suited to its public service role.

B

BAKALÁŘI software s.r.o.

digiskolka.cz

40

Digiškolka is a Czech Republic based digital management platform tailored for kindergartens, developed by BAKALÁŘI software s.r.o., a company with over 30 years of experience in educational information systems. The platform aims to simplify kindergarten administration and enhance communication with parents, supported by a strong market presence in Czech educational institutions. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting educational organizations. Technically, the site is built on WordPress with UIkit framework, integrates Google Analytics and reCAPTCHA for analytics and security, and is hosted by Forpsi. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with comprehensive policies and user consent options. Overall, the website is trustworthy and well-positioned in its niche.

D

Darkmay s.r.o.

cestovnisystem.cz

56

Darkmay s.r.o. operates the CeSYS platform, a comprehensive SaaS solution for travel agencies primarily in the Czech Republic and neighboring countries. The platform offers multiple products including search engines, web design, sales management, and marketing tools tailored for travel agencies. With over 16 years of market presence and partnerships with major travel industry players, CeSYS holds a strong position in its niche. The website demonstrates a mature technical infrastructure leveraging modern web technologies and analytics tools with user consent mechanisms. Security posture is generally good with HTTPS and consent-based tracking, though explicit privacy and security policies are lacking. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

NAVRCHOLU.cz is a Czech web traffic monitoring and ranking platform operated by Internet Info s.r.o., established in 1997. The service provided rankings and visitor statistics for Czech websites but ceased active measurement as of January 31, 2021, now offering only historical data. The website targets Czech internet users, website owners, and digital marketers interested in web traffic insights. The business model focused on providing traffic analytics and rankings, positioning itself as a long-standing player in the Czech digital media space. Technically, the site uses standard web technologies including JavaScript, jQuery, Google Tag Manager, and Google Analytics, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is partial, with privacy and cookie policies present but no explicit consent mechanisms. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

W

Webnode AG

webnode.cz

69

Webnode AG operates a multilingual SaaS platform enabling users to create websites easily, including AI-assisted website generation. The company targets small businesses, individuals, and hobbyists with a freemium model and premium services such as domain registration, e-commerce, and email hosting. The platform is well-established with over 50 million websites created. Technically, the website leverages modern web technologies including AngularJS, Google Analytics, Google Ads, and Cloudfront CDN, ensuring fast performance and good mobile optimization. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, which slightly impacts trust but the overall brand presence and content quality indicate legitimacy. Strategic recommendations include publishing security policies, improving WHOIS transparency, and enhancing vulnerability disclosure.

G

GO Česká republika, s.r.o.

sumavago.cz

44

ŠUMAVAGO is a regional tourism portal operated by GO Česká republika, s.r.o., providing comprehensive information and booking services for accommodation and activities in the Šumava region of the Czech Republic. The website targets tourists and visitors interested in outdoor activities, lodging, and local events. It offers a variety of services including hotel and pension bookings, maps, galleries, and event calendars, positioning itself as a key regional tourism resource. Technically, the site uses a traditional web stack with HTML, CSS, JavaScript, jQuery, and integrates Google Analytics and Facebook SDK for marketing and tracking. However, it still relies on deprecated Flash content, which impacts modern compatibility and security. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal privacy or cookie policies, indicating compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but would benefit from modernization and improved privacy and security practices.

U

UNIWEB s.r.o.

regionplzen.cz

51

REGIONPLZEN.CZ is a well-established regional news and information portal serving the Plzeňský kraj region in the Czech Republic. Operated by UNIWEB s.r.o., the portal offers daily news, a business directory, event calendars, job listings, and regional advertising services. The website targets local residents and businesses, providing relevant and timely regional content. The portal has a consistent brand presence and is supported by a parent media group, REGION24.CZ.

The WST Group is a Hungarian technology company specializing in custom software and web development services, including business integration and EDI solutions. Established with a business history dating back to 1997, the company positions itself as a reliable partner for businesses seeking tailored digital solutions to grow and engage their customers. Their website reflects a professional and consistent brand image with clear service offerings and contact channels. Technically, the site employs modern web technologies such as Google Fonts, Google Analytics, reCAPTCHA, and Hotjar for analytics and security. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. Security posture is solid with HTTPS and form protections, but lacks explicit security headers and published security policies. Privacy compliance is evident through a comprehensive privacy policy, though cookie consent mechanisms are missing. Overall, the website is trustworthy and professionally maintained, with room for enhancements in security transparency and privacy controls.

Obec Kubova Huť operates as the official municipal government office for the village of Kubova Huť in the Czech Republic. The website serves as a public information portal providing residents and visitors with essential contact details, official documents, local news, and administrative information. The site targets local citizens and tourists interested in the municipality's governance and community updates. The business model is purely governmental, focusing on public service and transparency. Technically, the website employs standard web technologies including HTML, CSS, and JavaScript, with integration of Google Analytics for visitor tracking and CookieScript for cookie consent management. The hosting appears to be provided by a regional service provider, ŠumavaNet.CZ. The site shows basic mobile optimization and accessibility features but lacks advanced modern frameworks or CMS indications. From a security perspective, the site uses cookie consent mechanisms and does not expose sensitive data. However, no security headers or explicit HTTPS enforcement details were found in the provided data. The absence of WHOIS registration data is a concern for domain legitimacy verification, although the website content and official nature suggest it is a legitimate local government site. Overall, the website is functional and serves its purpose as a municipal information portal but would benefit from enhanced security practices, explicit privacy policies, and improved technical modernization to increase trust and compliance.

S

Statutární město České Budějovice

c-budejovice.cz

51

The website www.c-budejovice.cz serves as the official online presence of the statutory city of České Budějovice, Czech Republic. It provides comprehensive information about city governance, public services, news, cultural events, and municipal resources targeted at residents, visitors, and local businesses. The site is well-branded with official logos and maintains consistent messaging aligned with its government function. The presence of social media links and a cookie consent mechanism indicates a commitment to user engagement and regulatory compliance. Technically, the site is built on the Drupal CMS platform, leveraging common web technologies such as jQuery, Google Analytics, and JW Player for multimedia content. The site is mobile-optimized with a moderate performance profile and basic accessibility features. However, some security best practices such as HTTP security headers are not visibly implemented, and WHOIS data for the domain is missing, which raises some concerns about domain registration transparency. From a security perspective, the site uses HTTPS and anonymizes IP addresses in analytics, which are positive indicators. The cookie consent banner complies with EU regulations, but there is no visible security policy or incident response information. No vulnerabilities or malware indicators were detected in the content. Overall, the site presents a moderate security posture with room for improvement in transparency and technical security controls. The overall risk assessment is moderate with a recommendation to verify domain registration details, implement additional security headers, and publish clear security and privacy policies. These steps would enhance trust and compliance, supporting the city’s digital service delivery and citizen engagement objectives.

F

FT Sun s.r.o.

chciwwwstranky.cz

36

FT Sun s.r.o. is a Czech-based digital agency specializing in data-driven digital marketing, application development, and creative services such as photo and video production. The company positions itself as a pragmatic and experienced partner for businesses seeking to leverage internet technologies effectively. Their website reflects a professional and modern digital presence with clear service offerings and a focus on client engagement through contact forms and marketing tools. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA for security and marketing purposes. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, the absence of certain security headers and lack of visible hosting or CMS details suggest room for technical improvements. From a security perspective, the site demonstrates good practices such as GDPR-compliant privacy and cookie policies and spam protection on forms. The lack of WHOIS data is a notable concern, as it impairs domain legitimacy verification. No critical vulnerabilities or exposed sensitive data were detected, but the site would benefit from enhanced security headers and published incident response information. Overall, FT Sun's website is a solid representation of a small technology service provider with good digital maturity and compliance posture. The main risk lies in the missing WHOIS information, which should be addressed to improve trust and transparency.

O

Obec Borová Lada

borova-lada.cz

37

Obec Borová Lada operates an official municipal government website serving the local community and visitors. The site provides comprehensive information about the municipal office, local services, tourism, public notices, and contact details. It targets residents and entrepreneurs in the Borová Lada area, positioning itself as a trusted local government resource. The business model is public sector focused, delivering essential civic information and services online. Technically, the website employs standard web technologies including jQuery, Google Analytics, Google Tag Manager, and Fancybox for UI enhancements. Hosting and web design are provided by ŠumavaNet.CZ. The site is moderately performant, mobile-optimized, and accessible with good SEO practices. Cookie consent mechanisms are implemented, though a dedicated privacy policy page is missing. From a security perspective, the site uses HTTPS and includes cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain legitimacy verification, but the website content and structure indicate a legitimate municipal entity. Overall, the website is professional, trustworthy, and serves its public sector purpose well. Strategic improvements include publishing a privacy policy, enhancing security headers, and providing incident response information to strengthen compliance and security posture.

T

TUI Poland Sp. z o.o.

tui.cz

66

TUI Poland Sp. z o.o. operates the website www.tui.cz as a leading travel agency offering a wide range of all inclusive and last minute vacation packages, tours, and charter flights to popular destinations worldwide. The company positions itself as the number one travel agency in Europe, targeting general consumers seeking organized travel experiences. The website is professionally designed with good content quality and consistent branding, supported by official social media channels and a clear customer service contact number. Technically, the website leverages modern web technologies including React and Next.js frameworks, with integrations for Cookiebot for cookie consent management, Google Analytics, and Hotjar for analytics and user behavior tracking. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be improved. Performance is moderate, with a comprehensive set of meta tags and structured data enhancing search engine visibility. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes standard security headers. Cookie consent mechanisms are implemented in compliance with GDPR, and privacy policies are comprehensive and accessible. However, the absence of WHOIS data and lack of explicit security policy or incident response information represent gaps in transparency and trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance. Improving accessibility and adding a terms of service page would further strengthen the user experience and legal posture.

F

Fischer

fischer.cz

55

CK FISCHER is a prominent Czech travel agency specializing in holiday packages, including last minute and first minute offers, with a strong loyalty program (DERCLUB). The company operates under the parent company DER Touristik CZ a.s., part of the REWE Group. The website targets general consumers seeking quality vacation services primarily in the hospitality sector. Technically, the site uses modern JavaScript frameworks (Vue.js), integrates Google Analytics, Google Tag Manager, Usercentrics for consent management, and reCAPTCHA for bot protection. The site is mobile optimized and has good SEO practices. Security posture is solid with HTTPS and consent mechanisms, but lacks some advanced security headers and explicit security policies. WHOIS data is missing, which reduces domain trust assessment confidence but the business presence and branding indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

P

PANKREA s.r.o.

pankrea.cz

54

PANKREA s.r.o. is a small creative PR agency based in the Czech Republic specializing in public relations, corporate identity, web design, marketing, and custom programming services. The company targets businesses seeking to build and promote their brand identities through professional web presence and marketing communication. The website presents a professional image with clear service offerings and client references, positioning PANKREA as a creative and expert partner in the media and marketing sector. Technically, the website uses modern tools such as Google Analytics, Google Tag Manager, and Google reCAPTCHA, and is built on the Estofan CMS platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site employs reCAPTCHA and cookie consent mechanisms but lacks visible security headers and publicly disclosed security policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality and technical implementation but has room for improvement in security posture and privacy transparency.

O

ONLINE HOLDING s.r.o.

hotel.cz

63

Hotel.cz is an established online hotel booking platform primarily serving the Czech Republic and Slovakia markets. Operated by ONLINE HOLDING s.r.o., it offers a wide selection of hotels and accommodation options with a focus on competitive pricing and direct hotel payments. The website positions itself as a market leader with over 10 years of experience, targeting travelers seeking convenient and reliable hotel reservations. The platform provides multilingual support and extensive filtering options to enhance user experience. Technically, the website employs modern tracking and analytics tools including Google Analytics, Microsoft Clarity, Bing UET, and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized and features a responsive design, although accessibility features are basic. Performance is moderate with room for improvement in security header implementation. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks visible security policies, incident response contacts, or vulnerability disclosure information. The absence of WHOIS data for the domain is a notable concern, limiting the ability to fully verify domain legitimacy and ownership. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, Hotel.cz presents a professional and trustworthy front for hotel bookings, but would benefit from enhanced transparency in privacy and security policies, as well as domain registration clarity to strengthen trust and compliance posture.

L

Lesy České republiky, s.p.

vracimevodulesu.cz

68

The website 'Vracíme vodu lesu' represents a large-scale governmental forestry and environmental conservation program managed by Lesy České republiky, s.p. It focuses on water retention and revitalization of small watercourses across the Czech Republic, positioning itself as the largest program in the history of Czech forestry. The site targets the general public and stakeholders interested in environmental sustainability and forestry management. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with integrations such as Cookiebot for cookie consent, Google Analytics, and Facebook Pixel for analytics and marketing. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with visible cookie consent and a comprehensive privacy policy. Overall, the website demonstrates a mature digital presence with a strong focus on compliance and user trust.

L

Lesy České republiky

kladska.com

64

Lovecký zámeček Kladská is a small hospitality business operating a hotel and offering recreational services such as hunting and fishing in Mariánské Lázně, Czech Republic. The website is professionally designed with clear navigation and multilingual support, targeting tourists and nature enthusiasts. The business is owned by Lesy České republiky, a reputable organization, which adds credibility and trust. The website uses WordPress CMS with SEO and multilingual plugins, hosted on Azure DNS infrastructure. Cookie consent is implemented with detailed user controls, and privacy policies are linked to the parent company site, indicating good GDPR compliance. Security posture is generally good with HTTPS and no exposed sensitive data, but could be improved by enabling DNSSEC and adding security headers. No incident response or vulnerability disclosure information is published, which is a gap. Overall, the site is trustworthy, compliant, and professionally maintained, suitable for its business purpose.

L

Lesy České Republiky, s. p.

parcour.cz

32

The website www.parcour.cz represents a government-operated shooting range facility located in the Czech Republic, specifically serving the Lesní závod Konopiště region. It provides services related to shooting sports, including training, registration, and hosting of shooting competitions such as the Lovecký brokový parkúr. The site is modest in size and targets a niche audience of hunters and shooting sports enthusiasts. The business model is focused on government service provision rather than commercial enterprise. Technically, the website uses standard web technologies including JavaScript, jQuery, and Google Analytics for tracking. The site is accessible over HTTPS but lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. The WHOIS data is missing, which raises concerns about domain registration transparency but does not necessarily indicate illegitimacy given the government affiliation. Overall, the site is functional with basic content quality and moderate technical implementation.

L

Lesy České republiky, s.p. Semenářský závod

semenarskyzavod.cz

65

Semenářský závod Lesů České republiky is a medium-sized, state-owned enterprise specializing in forestry seed production and related laboratory services. Established in 1971, it serves forest owners and nurseries with a range of products including forestry and ornamental seeds, wood products, and accredited laboratory testing. The website reflects a professional and consistent brand presence, targeting primarily forestry professionals and registered customers. The business holds ISO/IEC 17025:2018 accreditation, underscoring its commitment to quality and standards. Technically, the website is built on WordPress with modern SEO and multilingual support via WPML. It uses Google Analytics and Facebook Pixel for analytics and marketing, integrated with a GDPR-compliant cookie consent mechanism. Hosting is supported by Microsoft Azure DNS infrastructure. The site demonstrates good mobile optimization and accessibility, though some improvements in security headers and incident response transparency could be made. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy or vulnerability disclosure mechanism is noted. Privacy compliance is strong, with clear privacy and cookie policies and user consent management. Business credibility is high, supported by clear contact details, certifications, and professional content. Overall, the website is trustworthy, well-maintained, and compliant with relevant regulations, making it a reliable digital presence for the organization.

L

Lesy České republiky, s.p.

sazimelesynovegenerace.cz

59

The website 'Sázíme lesy nové generace' represents Lesy České republiky, a government-affiliated forestry management entity in the Czech Republic. It focuses on sustainable forest management, watercourse restoration, and public engagement through educational events such as 'Den lesů nové generace'. The site targets the general public interested in environmental conservation and sustainable wood use. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, and Cookiebot for consent management, ensuring GDPR compliance. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website's branding and social media presence support its legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

L

Lesy ČR

klubnoveholesa.cz

69

Klub nového lesa is a community engagement platform operated under the auspices of Lesy ČR, the Czech Republic's national forestry organization. It focuses on organizing outdoor events related to forest renewal, environmental education, and public participation. The website provides event information, a mobile app for registration and rewards, and an e-shop for merchandise. The target audience includes nature enthusiasts, families, and volunteers interested in forestry and environmental stewardship. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, Cookiebot for consent management, and Google Maps API for interactive maps. The site is mobile optimized and uses HTTPS, ensuring secure communication. Security posture is solid with cookie consent and CSRF protections, though some security headers could be improved. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR adherence. The WHOIS data is privacy protected, which is common and justified for this type of organization. Overall, the website is professional, trustworthy, and serves its community-oriented mission effectively.

H

HUMLNET CREATIVE s.r.o.

hucr.cz

43

HUMLNET CREATIVE s.r.o. is a Czech Republic-based small web development agency specializing in creating custom, modern, and professional websites tailored to client needs. Their market position is that of a regional service provider with a portfolio of local clients including schools, companies, and organizations. The company emphasizes a collaborative and tailored approach to web design and development, offering multilingual and responsive websites. Technically, the website is built on a modern stack including Bootstrap, jQuery, and OctoberCMS, with integration of Facebook SDK and Google Analytics for marketing and analytics purposes. The site is mobile-optimized and features a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and secure form handling, though additional security headers could improve defenses. The absence of WHOIS data reduces transparency but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, privacy compliance, and business credibility, with moderate security maturity.

P

Práce na horách. najděte si brigádu a zažijte zimu snů - Práce na horách

pracenahorach.cz

43

The website pracenahorach.cz is a niche job listing platform focused on seasonal winter employment opportunities in Czech mountain resorts, primarily targeting students and seasonal workers interested in ski instruction and related hospitality roles. The site offers curated job offers, course information, and location details, supported by partner ski schools and mountain activity providers. Technically, the site uses modern web technologies including HTML5, CSS, JavaScript, Google Analytics, Google Tag Manager, reCAPTCHA, and Smartsupp live chat, delivering a responsive and user-friendly experience. Security posture is generally good with HTTPS enforced and anti-bot measures on contact forms, though it lacks some security headers and formal privacy/cookie policies, which are compliance gaps. The absence of WHOIS data limits domain transparency but does not detract from the site's apparent legitimacy. Overall, the site is professionally designed, content-rich, and safe for general audiences.

T

Tourist Board Špindlerův Mlýn, z.s.

touristboard.cz

49

Tourist Board Špindlerův Mlýn, z.s. is a non-profit destination management organization dedicated to promoting tourism in the Špindlerův Mlýn area and the broader Krkonoše region. Supported by the city and key tourism operators, it focuses on marketing, tourism projects, and event organization to enhance the visitor experience and regional development. The website is professionally designed, mobile-optimized, and provides clear information about the organization's mission and activities, targeting tourists and local stakeholders.