Security Directory

M

Membrana Media

membrana.media

69

Membrana Media is a specialized technology company offering an AI-powered tech suite designed to maximize profit for digital publishers through video and banner monetization solutions. Their product portfolio includes Headline Video, Daily Highlights, Video Platform, AdWall, and White Label solutions, targeting media companies seeking to enhance audience engagement and monetization. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Webflow CMS, Google Tag Manager, and Microsoft Clarity for analytics and user behavior tracking. Privacy and cookie consent mechanisms are implemented, reflecting compliance with GDPR requirements. Security posture is solid with HTTPS enabled and no exposed sensitive data, though explicit security policies and incident response information are absent. WHOIS data is privacy protected, which is common for tech companies, and no suspicious patterns were detected. Overall, the site presents a credible and professional business presence with room for improvement in security transparency and direct contact information.

The website www.palautevayla.fi serves as a customer service and feedback platform for transportation services in Finland. It targets Finnish-speaking users seeking to provide feedback or obtain information related to public transportation. The site is positioned as an essential public sector service portal, offering key services such as customer feedback submission and information search. The business model is focused on public service facilitation rather than commercial activities. Technically, the website employs AngularJS and Bootstrap frameworks, indicating a moderately modern frontend infrastructure. The site is hosted securely with HTTPS and demonstrates good SSL configuration. Performance and mobile optimization are adequate, though accessibility features could be improved. SEO is basic but functional. From a security perspective, the site enforces HTTPS and includes some security headers, but lacks advanced headers like CSP and HSTS. No vulnerabilities or exposed sensitive data were detected. However, the absence of a security.txt file and explicit privacy or cookie policies indicates room for compliance improvement. Overall, the website is trustworthy and professionally maintained, but would benefit from enhanced privacy compliance and clearer contact information to improve user trust and regulatory adherence.

Oy Suomen Tietotoimisto operates the STT Info platform, a Finnish press release distribution service targeting media professionals and companies. The website facilitates the dissemination of over 17,000 press releases annually, positioning itself as a key player in the Finnish media communication sector. The business model centers on subscription and one-time purchase of press releases, serving a professional audience seeking timely and relevant news content. The company maintains a consistent brand presence and provides comprehensive contact and privacy information, reinforcing trust and professionalism. Technically, the website employs modern web technologies including React, Google Fonts, and Cloudflare for content delivery and security. It integrates Google Analytics and social media tracking tools while implementing a robust cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization and basic accessibility features, with a moderate performance profile. From a security perspective, the site enforces HTTPS, employs standard security headers, and manages session cookies securely. However, explicit security policies and incident response information are not published, representing an area for improvement. No vulnerabilities or suspicious patterns were detected, and WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include publishing detailed security and incident response policies, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security posture.

A

APERITIF

le-aperitif.com

62

APERITIF is a small creative studio based in Spain specializing in design, creativity, strategy, advertising, and illustration services. The website showcases a professional portfolio targeting brands, businesses, and individuals worldwide who value high-quality creative work. The company maintains an active social media presence across major platforms, reinforcing its market position as a niche creative agency. Technically, the website is built on the Portfoliobox CMS platform, leveraging AngularJS and jQuery, hosted on Amazon Cloudfront CDN, and includes Google Analytics for user tracking. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy compliance documentation. The absence of WHOIS data is a notable concern, reducing domain trustworthiness despite the professional site content. Overall, the site is functional and professional but would benefit from enhanced privacy, security policies, and transparent contact information.

E

Energylink s.r.o.

energylink.cz

48

Energylink s.r.o. is a Czech Republic-based company specializing in innovative energy technologies for buildings, including heating, cooling, hot water preparation, and electricity production. The company targets public administration, private firms, and residential building owners, positioning itself as a reliable provider of energy-efficient solutions. Their website reflects a professional and modern digital presence, utilizing Bootstrap and jQuery frameworks, with good mobile responsiveness and clear navigation. However, the absence of WHOIS data raises concerns about domain registration legitimacy, although the website content and contact details appear genuine and consistent with the business claims. Security posture is solid with HTTPS and no visible vulnerabilities, but the lack of security headers and privacy policies indicates room for improvement. Overall, the site is trustworthy and well-maintained but would benefit from enhanced compliance and transparency measures.

S

Speakeasy

speakeasygo.com

62

Speakeasy is a small hospitality-focused platform founded in 2022 that provides users access to top music venues, lounges, bars, and clubs, primarily targeting nightlife enthusiasts and entertainment venues. The website serves as a discovery and partnership platform, offering listings of nightlife events and venues. Technically, the site is built using modern frameworks such as Next.js and React, with integration of Google Fonts and Google Tag Manager for analytics. The site is mobile optimized and presents a professional design with consistent branding. Security posture is moderate with HTTPS enabled and domain registration protections in place, but lacks DNSSEC and explicit security policies. Privacy compliance is basic with privacy and terms pages present but no cookie consent mechanism. Overall, the site is trustworthy and functional with room for improvement in security and privacy transparency.

O

Opera Nazionale per i Figli degli Aviatori

onfa.org

44

ONFA (Opera Nazionale per i Figli degli Aviatori) is an Italian non-profit organization dedicated to providing social assistance and support to the children of aviators. The website serves as an informational and community platform targeting families connected to the aviation sector in Italy. The organization operates with a focused mission in the government and non-profit sectors, maintaining a small organizational size and a niche market position. The website is built on WordPress using the Divi theme, with integration of Iubenda for cookie consent management, reflecting a moderate level of digital maturity and compliance with privacy regulations such as GDPR. Technically, the website is hosted on a provider using Host Anycast DNS servers, secured with HTTPS, and employs modern web fonts and cookie consent scripts. Performance and mobile optimization are rated as moderate to good, with basic accessibility features. SEO practices appear adequate with proper meta tags and structured data. Security posture is decent with HTTPS enforced and domain transfer protections enabled, but could be improved by enabling DNSSEC and adding more comprehensive security headers and vulnerability disclosure mechanisms. Overall, the security posture is solid for a small non-profit, with no critical vulnerabilities detected. Privacy compliance is strong, supported by a comprehensive privacy and cookie policy with explicit consent mechanisms. However, the absence of terms of service, security policy, and incident response contact details indicates areas for improvement. The website content is safe and appropriate for a general audience, with no adult or questionable content. Strategically, ONFA should focus on enhancing security headers, publishing a security.txt file, and providing clearer contact information to improve trust and compliance. These steps will strengthen their security culture and better protect their community members.

M

MotoZem

motozem.cz

49

MotoZem.cz is a professional e-commerce retailer specializing in motorcycle apparel, accessories, and parts, targeting motorcycle enthusiasts primarily in the Czech Republic and neighboring countries. The website offers a broad catalog of products including clothing, helmets, gloves, and motorcycle parts, supported by physical stores in multiple cities. The company positions itself as a trusted regional player with a focus on secure and safe shopping experiences. Technically, the website employs modern web technologies including Google Tag Manager, Microsoft Clarity, and Luigisbox search tools, with responsive design and good SEO practices. Security posture is solid with HTTPS enforcement and secure form handling, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration transparency. Overall, the website is accessible, professional, and trustworthy with moderate risk due to missing domain registration details.

Sencor is a consumer electronics and household appliances brand offering a wide range of products including televisions, audio-video equipment, kitchen appliances, and health and beauty devices. The company targets consumers seeking quality and design in home and entertainment electronics, positioning itself as a medium-sized retail and manufacturing entity primarily serving the Czech Republic and surrounding European markets. The website demonstrates a good level of digital maturity with modern technologies such as Google Tag Manager, Bootstrap, and RequireJS, and provides a rich product catalog and news updates. However, the absence of visible privacy and terms of service pages, as well as missing WHOIS data, indicates areas for improvement in transparency and compliance. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but the lack of security headers and incident response information suggests room for enhancement. Overall, the website is professional and trustworthy, but the domain registration anomaly warrants monitoring.

Sencor is a consumer electronics and home appliance brand with a dedicated Russian language website offering a broad product catalog including televisions, audio-video equipment, kitchen appliances, health and beauty products, and office supplies. The site targets Russian-speaking consumers and provides dealer location and customer support information. Technically, the website is built on a modern stack with Google Tag Manager, slick slider, and likely Joomla CMS, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. The WHOIS data is missing, raising concerns about domain registration legitimacy, but the professional site and contact info mitigate some risk. Overall, the site is functional, trustworthy, and safe for general audiences.

R

Rieker Holding AG

remonte.us

62

Remonte Shoes operates as an e-commerce retailer specializing in footwear products, leveraging the Shopify platform for its online presence. The website is professionally designed with a focus on user experience and mobile optimization, targeting general consumers interested in shoes. The technical infrastructure is modern, utilizing Shopify's modular theme, Cloudflare DNS, and various third-party marketing and analytics tools. Security posture is adequate with HTTPS enabled and domain transfer protections in place; however, there is room for improvement in DNS security and HTTP security headers. Privacy and compliance documentation are notably absent or not easily discoverable, which may pose risks in regulatory adherence. Overall, the domain registration data aligns well with the business identity, supporting legitimacy. Strategic enhancements in privacy transparency and security hardening are recommended to bolster trust and compliance.

P

Private by Design, LLC

titcheck.org

61

Titcheck.org is a small US-based nonprofit organization focused on educating young adults about breast self-awareness and breast cancer risk reduction. The website promotes the #TitCheck concept, encouraging regular breast checks while getting dressed to empower early detection and advocacy. The site is professionally designed with modern frontend technologies including Bootstrap, jQuery, and animation libraries, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain locking, but lacks DNSSEC and comprehensive security headers. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanisms. The domain registration is consistent with the nonprofit mission and transparent. Overall, the website serves its educational purpose well but should improve privacy compliance and security disclosures to enhance trust and regulatory adherence.

M

MyBookings.com

mybookings.com

51

MyBookings.com is a well-established Dutch company specializing in integrated hotel marketing services, including branding, advertising, distribution management, integration services, and analytics. With over 18 years of experience and a domain age of more than 22 years, the company holds a strong market position serving hotels aiming to optimize their customer journey and increase direct bookings. The website reflects a professional and consistent brand image targeting hotel management professionals in the hospitality sector. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap and Helix Ultimate, leveraging Google Fonts, Font Awesome, and Google Analytics for enhanced user experience and tracking. Hosting and DNS are managed via Cloudflare, providing reliable performance and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and implements Google reCAPTCHA for form protection. However, it lacks DNSSEC, Content Security Policy headers, and other security headers like X-Content-Type-Options, which are recommended to enhance security posture. No vulnerability disclosure or incident response policies are publicly available, indicating room for improvement in transparency and security maturity. Overall, the website is trustworthy, professional, and safe for general audiences. It collects user data via contact forms with standard protections but lacks a cookie consent mechanism, which could be improved to enhance privacy compliance. The domain registration data aligns well with the business claims, supporting legitimacy and credibility.

E

Elima Pottery s.r.o.

elimashop.cz

56

Elima Pottery s.r.o. operates www.elimashop.cz, a small family-owned e-commerce business specializing in handcrafted Polish stoneware ceramics from Boleslawiec. The website targets a general audience interested in unique, traditional pottery products, offering multi-language and multi-currency support to serve international customers. The business model focuses on direct online retail of artisanal ceramic products, leveraging its expertise and unique product lineage to differentiate itself in the niche market. Technically, the website is built on the Upgates e-commerce platform, utilizing modern web technologies including JavaScript, Google Fonts, Google Analytics 4, and Facebook Pixel for marketing and analytics. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating awareness of privacy regulations. However, the absence of security headers and explicit privacy and terms of service pages suggests gaps in security best practices and compliance. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Overall, the website presents a professional and trustworthy front for a niche e-commerce business but would benefit from improved security practices, clearer privacy compliance documentation, and verification of domain registration details to enhance credibility and reduce risk.

I

Ilmatieteen laitos

ilmasto-opas.fi

54

Ilmasto-opas.fi is a Finnish government-backed climate information portal managed by Ilmatieteen laitos (Finnish Meteorological Institute). It provides authoritative, comprehensive climate change data, educational resources, and policy tracking tools aimed at the general public, policymakers, and researchers. The website is well-established with a domain age of over 14 years, reflecting its stable presence in the Finnish climate information ecosystem. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, hosted on AWS infrastructure, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response information could be enhanced. Privacy compliance is good with clear privacy and cookie policies, though consent mechanisms could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and alignment with government standards.

Sencor is a consumer electronics and home appliances brand offering a wide range of products including televisions, audio-video equipment, kitchen appliances, household devices, and health and beauty products. The company targets consumers looking for quality and design in their electronics and household goods. The website presents a professional and consistent brand image with detailed product categories and customer support information. Technically, the site uses modern web technologies such as Google Tag Manager, RequireJS, and Bootstrap, and appears to be built on Joomla CMS. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and explicit privacy and terms of service pages. WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and structure indicate a legitimate business presence. Overall, the site is well-designed and trustworthy for its target audience.

Sencor is a consumer electronics and home appliances brand targeting lifestyle-conscious consumers in Italy and broader European markets. The website showcases a broad product portfolio including televisions, audio-video equipment, kitchen appliances, health and beauty devices, and office supplies. The company provides customer support and dealer location services, indicating a retail and e-commerce business model. Technically, the website is built on the Kentico CMS platform, uses Bootstrap 4 for responsive design, and integrates Google Tag Manager for analytics and marketing. The site is well-structured with good navigation and mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms of service pages. WHOIS data aligns with the website's business claims, supporting legitimacy. Overall, the site is professional and trustworthy but could improve privacy and security transparency.

Sencor is a consumer electronics and home appliances brand offering a wide range of products including televisions, audio-video equipment, kitchen appliances, and health and beauty devices. The website serves as a retail and informational platform targeting general consumers primarily in the French language market, with multiple regional versions available. The company provides customer support, product downloads, and dealer location services, positioning itself as an established player in the retail electronics sector with a medium-sized market presence based in the Czech Republic. Technically, the website is built on modern web technologies including HTML5, CSS3, JavaScript, Bootstrap 4, and Kentico CMS. It employs structured data (JSON-LD) for enhanced SEO and contact information presentation. The site is mobile-optimized with good navigation and content quality, although some accessibility features are basic. Performance is moderate with use of Google Fonts and asynchronous JavaScript loading. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no explicit security headers were detected, and there is no visible cookie consent mechanism, which may impact GDPR compliance. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website presence. Overall, the website is functional, professional, and trustworthy in content and design but would benefit from improved security headers, cookie consent implementation, and verification of domain registration details to enhance trust and compliance.

V

VK Benátky nad Jizerou

vkbenatky.cz

42

VK Benátky nad Jizerou is a local volleyball sports club based in the Czech Republic, established since 2009. The website serves as a hub for club members, players, and fans, providing detailed information about various teams, schedules, news, and club management. The club targets youth and adult volleyball players and enthusiasts within the regional community. Technically, the website is built on WordPress using Elementor and integrates modern web technologies such as jQuery and Font Awesome, hosted by WEDOS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS with appropriate security headers, but lacks some privacy compliance features such as cookie consent mechanisms. Overall, the domain registration data aligns well with the website content, indicating a legitimate and trustworthy entity.

Simple Avia Solutions is a newly established ACMI provider operating on four continents, specializing in aircraft leasing with crew, maintenance, and insurance services. The company targets airlines and businesses requiring flexible capacity solutions globally, positioning itself as a reliable and well-distributed operator. The website reflects a basic but professional digital presence with clear contact information and consistent branding. Technically, the site uses standard web technologies such as Bootstrap and jQuery, hosted behind Cloudflare DNS, but lacks advanced security configurations like DNSSEC and security headers. No privacy or cookie policies are published, indicating gaps in compliance. The security posture is moderate with room for improvement, especially in implementing best practices and transparency. Overall, the website is safe, accessible, and credible but would benefit from enhanced security and privacy measures to strengthen trust and compliance.

I

Infrastructure Services for Open Access Danish Branch

doaj.org

65

The Directory of Open Access Journals (DOAJ) is a well-established non-profit organization founded in 2003, dedicated to indexing and providing free access to scholarly open access journals globally. The platform serves researchers, academic institutions, publishers, and the general public by offering a comprehensive and community-driven index of quality open access content. DOAJ operates on a donation-supported model, emphasizing transparency and accessibility. Technically, the website employs modern web technologies including jQuery, Bootstrap, Select2, and Google Fonts, hosted behind Cloudflare DNS and CDN services. The site is optimized for performance, mobile responsiveness, and accessibility, with a clean and professional design that supports excellent user experience and navigation clarity. Privacy is respected with a clear cookie consent mechanism and a comprehensive privacy policy. From a security perspective, the site enforces HTTPS with a strong SSL configuration and domain transfer protections. However, it lacks DNSSEC and explicit security headers, and does not publish a dedicated security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Analytics are handled via privacy-focused Plausible Analytics, ensuring minimal user tracking. Overall, DOAJ presents a high level of trustworthiness, professionalism, and compliance with privacy standards. The domain registration details align well with the organization's mission and history, reinforcing legitimacy. Strategic improvements could include enabling DNSSEC, adding security headers, and publishing a security policy to further enhance security posture.

B

Bez paragrafu s.r.o.

petradolejsova.cz

60

Petra Dolejšová operates a specialized legal consultancy and training business under the brand Bez paragrafu s.r.o., focusing on marketing law, e-commerce compliance, data protection, and brand protection. The company targets marketing professionals, e-commerce businesses, and firms requiring tailored legal training and consulting services. The website demonstrates a strong market position with over 500 companies trained and extensive client testimonials, supported by a professional and consistent brand presence. Technically, the website is built on the Webflow platform, leveraging modern web technologies including Google Fonts, Google Analytics, and a comprehensive cookie consent mechanism. The site is well-optimized for performance, mobile responsiveness, and accessibility, providing an excellent user experience. From a security perspective, the site enforces HTTPS and employs cookie consent with opt-in mechanisms, reflecting good privacy compliance. However, explicit security headers and a public security policy or incident response information are not evident, representing areas for improvement. The absence of WHOIS data for the domain limits the ability to fully verify domain legitimacy, though the professional content and business information mitigate some concerns. Overall, the website is a well-executed digital presence for a niche legal consultancy with strong content quality and privacy compliance, but would benefit from enhanced transparency in security policies and domain registration details.

T

TV – FOCUS – Regionální televize Chomutov, Jirkov, Kadaň a Klášterec

tv-focus.cz

38

TV - FOCUS is a small regional television broadcaster serving the Czech localities of Chomutov, Jirkov, Kadaň, and Klášterec. The website provides basic information about the station, including a YouTube channel for video archives and a service for LED screen advertising in Kadaň. The business model centers on regional media content delivery and local advertising. The website is built on WordPress with standard plugins and uses HTTPS for secure communication. However, it lacks comprehensive privacy, cookie, and terms of service policies, and no direct contact information is provided on the site. WHOIS data is unavailable, which reduces domain trustworthiness but does not necessarily indicate malicious intent.

Kamelot.cz operates as a regional cultural and advertising monthly magazine serving the Czech regions of Kladno, Karlovy Vary, and Liberec. The website provides information on local culture, sports, and services, with a business model centered on free distribution supported by advertising revenue. The site targets local residents and businesses seeking regional event information and advertising opportunities. Technically, the website employs common web technologies including jQuery, Bootstrap, FontAwesome, and Google Analytics, indicating a moderate level of digital maturity. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate; HTTPS is used, but security headers and privacy compliance elements such as privacy and cookie policies are missing, representing compliance gaps. The absence of WHOIS data limits domain legitimacy verification, though the website content and contact information suggest a legitimate business presence. Overall, the site is safe for general audiences and functions well as a regional media outlet.

S

Studio Fresh Net, s.r.o.

mediaas.cz

52

Mediaas.cz is a Czech advertising and publishing agency operating since 2013, offering comprehensive marketing services across the Czech Republic. The website presents a professional image with clear branding and a focus on various marketing disciplines including promotion, print, events, and social marketing. The technical infrastructure includes modern web technologies such as HTML5, CSS3, JavaScript, Google Fonts, and integration of marketing analytics tools like Google Analytics and Facebook Pixel. The site is mobile optimized and uses a cookie consent mechanism to comply with privacy regulations. Security posture is moderate with HTTPS implied but lacks explicit security headers and detailed privacy policies. No contact emails or phone numbers were found in the provided content, which limits direct communication channels. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and stability.

W

W&P - member of Euronova Group

wandp.cz

60

W&P, a member of the Euronova Group, is a leading outdoor advertising provider in the western Czech Republic, offering a broad portfolio of advertising spaces including billboards, public transport shelters, LED screens, and more. The company holds a significant market share in the Plzeň and Karlovy Vary regions and emphasizes community benefit alongside business growth. Technically, the website is built on WordPress using popular page builders and plugins, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks some security headers and explicit security policies. WHOIS data is missing, which reduces domain trustworthiness, but the website content and business information appear professional and credible. Overall, the site is well-structured and compliant with GDPR, with clear contact information and social media presence.

R

RádiaCZ 2025

hitradiofmplus.cz

54

Hitrádio FM Plus is a Czech media company operating an internet radio station with multiple streaming channels, podcasts, and interactive content such as contests. The website targets Czech-speaking audiences interested in music and entertainment, providing a professional and content-rich platform. The technical infrastructure leverages modern web technologies including Google Tag Manager, Facebook Pixel, and Foundation CSS framework, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforcement, security headers, and CSRF protection, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and compliance disclosures.

E

ESHA academy

eshacademy.eu

60

The website 'ESHA academy' represents a small sports education entity focused on summer hockey training programs affiliated with HC Energie Karlovy Vary. The site is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies. The content is primarily in Czech and targets local sports enthusiasts and youth interested in hockey training. The technical infrastructure is typical for Wix-hosted sites, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. The absence of privacy and cookie policies, contact information, and SEO optimization limits the site's professional credibility and discoverability. WHOIS data is not publicly available due to privacy protection, which is common for small businesses but slightly reduces trust. Overall, the site is functional and safe but would benefit from enhanced compliance and transparency.

F

FANSHOP BK Mladá Boleslav

fanshopbkboleslav.cz

53

FANSHOP BK Mladá Boleslav operates an e-commerce platform dedicated to selling fan merchandise for the BK Mladá Boleslav hockey team. The website offers a variety of products including apparel, accessories, and souvenirs targeted at fans and supporters. The business model is focused on niche retail e-commerce within the Czech Republic, catering to a specific sports fan base. The site demonstrates consistent branding and good content quality with clear product listings and pricing. Technically, the site uses a custom or proprietary e-commerce platform with JavaScript, CSS, and Matomo analytics integration. The website is mobile optimized and provides a cookie consent mechanism aligned with GDPR principles, although a formal privacy policy page is not clearly identified. Security posture is adequate with HTTPS enforced and secure form handling, but lacks some security headers and explicit security policies. WHOIS data is unavailable, which impacts domain trust and legitimacy assessment. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

G

GAPA CZ a.s.

gapa-vahy.cz

57

GAPA CZ a.s. operates a professional website specializing in the sale, service, and calibration of various weighing scales and related accessories. The company targets industrial and commercial customers in the Czech Republic, offering a broad product range including automotive, crane, laboratory, and retail scales. Their business model combines direct sales, service contracts, and rental of weights, positioning them as a specialist in the weighing equipment market. The website content is well-structured and professionally presented, supporting their market position effectively. Technically, the website is built on the EasyWeb CMS platform, utilizing common web technologies such as JavaScript, jQuery, Font Awesome, and Google Fonts. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Cookie consent mechanisms are implemented with detailed user controls, indicating attention to privacy compliance, albeit lacking a dedicated privacy policy page. From a security perspective, the site lacks visible security headers and publicly available security or incident response policies. The SSL configuration status is unknown from the provided data. No critical vulnerabilities or exposed sensitive data were detected, but improvements in security best practices are recommended to enhance protection and compliance. Overall, the website is professional and trustworthy in appearance, but the absence of WHOIS data and privacy policy reduces confidence in domain legitimacy and full compliance. Strategic improvements in security posture and transparency would benefit the company’s digital maturity and risk profile.

T

Michal Tučný revival

tucny-revival.cz

54

The website tucny-revival.cz represents a small Czech music band dedicated to the revival of Michal Tučný, a legend in Czech country music. The site provides information about band members, upcoming events, media galleries, and contact options primarily for fans and event organizers. The business model is focused on entertainment and local cultural promotion with a niche audience in the Czech Republic. The website is modest but functional, reflecting a small-scale operation with limited digital maturity.

U

Univerzita Hradec Králové

mojeuhk.cz

44

Univerzita Hradec Králové operates a well-structured and professionally designed website targeting prospective and current students interested in higher education in the Czech Republic. The site presents multiple faculties and study programs, enriched with student testimonials and social media integration, reflecting a strong engagement with its audience. The business model is that of a public university providing educational services with a medium-sized presence in the regional education sector. Technically, the website leverages modern web technologies including Bootstrap, jQuery, and Laravel framework, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, CSRF protection, and reCAPTCHA integration, though it lacks some advanced security headers and explicit incident response policies. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is trustworthy, safe, and professionally maintained.

B

BK Mladá Boleslav

bkboleslav.cz

46

BK Mladá Boleslav operates a professional and content-rich website serving as the official digital presence of the Czech ice hockey team. The site offers comprehensive information including team news, match schedules, ticket sales, merchandise, and fan engagement features. The business model focuses on sports entertainment and community engagement with a strong local and national fan base. Technically, the website employs modern web technologies such as Bootstrap and jQuery, integrates Google Analytics for user tracking, and maintains good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The WHOIS data aligns well with the website's identity, supporting legitimacy and trust. Overall, the site is professional, trustworthy, and well-maintained, serving its audience effectively.

H

Hostinec U Hubálků

uhubalku.cz

49

Hostinec U Hubálků is a Czech hospitality business specializing in traditional Czech cuisine, accommodation, event hosting, and catering services. The website presents a professional and comprehensive digital presence, showcasing menus, events, booking options, and an e-shop for homemade products. The business targets local and regional customers seeking quality dining and event experiences. Technically, the site is built on WordPress with the Divi theme and WooCommerce, integrating modern tools like Google Tag Manager and Facebook SDK for analytics and marketing. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers could be improved. Privacy compliance is strong with clear cookie consent and privacy policies. The absence of WHOIS data reduces domain trust but the website content and certifications support legitimacy. Overall, the site is well-designed, user-friendly, and trustworthy for its business domain.

SPORT PROFI spol. s r. o. operates the Deštné v Orlických horách recreational and ski center, providing winter and summer outdoor activities including ski lifts, trails, bike rentals, and disc golf. The company targets tourists and outdoor enthusiasts in the Czech Republic region, offering online skipass sales and comprehensive visitor information. The website reflects a well-established regional business with a domain age dating back to 1998, indicating a mature market presence. Technically, the site is built on Angular 19.1.4 with integration of Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics purposes. The design is professional, mobile-optimized, and content-rich, supporting a positive user experience. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers are not detected and no explicit security or incident response policies are published. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the site demonstrates a solid digital maturity with room for security enhancements.

U

U Rudolfa | Restaurant Hradec Králové

urudolfa.restaurant

44

The website www.urudolfa.restaurant represents a small hospitality business operating a restaurant named 'U Rudolfa' located in Hradec Králové, Czech Republic. The business offers restaurant dining services and catering for events, including romantic dinners. The website content is accessible and well-structured, with a professional design using modern front-end technologies such as Bootstrap and JavaScript libraries. However, the site lacks critical compliance documents such as privacy and cookie policies, and no explicit contact information is found on the site. The WHOIS data is unavailable or protected, which limits the ability to fully verify domain legitimacy and ownership details. HTTPS is enabled, but security headers are missing, which could be improved to enhance security posture.

S

STYLBAU, s.r.o.

stylbau.cz

57

STYLBAU, s.r.o. is a Czech Republic-based general contractor specializing in construction of residential, industrial, and civic buildings. The company presents itself as a reliable and professional construction firm with a medium-sized operation and a focus on delivering comprehensive building services including design, engineering, and post-construction support. Their website is well-designed, SEO-optimized, and mobile-friendly, reflecting a mature digital presence. The technical infrastructure is based on WordPress with modern plugins and frameworks, ensuring good performance and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data reduces domain trustworthiness, but the professional content and clear contact information support business credibility. Overall, the website is a strong digital asset for the company, with recommendations to enhance privacy policy visibility and security practices.

FOMA BOHEMIA spol. s r.o. is a well-established Czech manufacturer specializing in black and white photographic materials, radiodiagnostic films, and non-destructive testing (NDT) systems. Founded in 1921, the company has a long tradition and serves a niche market including photography professionals and industrial customers. Their business model includes manufacturing and direct sales through an e-shop partner site. The website reflects a consistent brand image and provides comprehensive product information and company history. Technically, the site is built on the EasyWeb CMS platform, utilizing modern JavaScript libraries and Google Analytics for user tracking. The site is mobile-optimized with good navigation and content quality. Security-wise, the site implements cookie consent mechanisms but lacks visible HTTP security headers and published security policies. The absence of WHOIS data reduces domain trust, though the website content and contact information appear legitimate. Overall, the site scores well on content and business credibility but could improve privacy compliance and security posture.

T

Tepelné hospodářství Hradec Králové, a.s.

thhk.cz

40

Tepelné hospodářství Hradec Králové, a.s. is a municipal energy company providing heating and hot water services primarily in the Hradec Králové region. The company is fully owned by the city and positions itself as a responsible distributor focused on price comfort and reliable supply. The website reflects a medium-sized enterprise with a clear business model centered on energy supply and community support. Technically, the site is built on ASP.NET Web Forms with Telerik UI components, indicating a somewhat dated but stable infrastructure. The site is accessible, mobile-optimized, and contains comprehensive business and legal information, including GDPR and ISMS policies. Security posture is moderate with HTTPS usage but lacks advanced security headers and modern vulnerability mitigations. No WHOIS data was retrievable, which limits domain legitimacy verification, but the website content and business information appear consistent and trustworthy. Overall, the site scores well on content quality and business credibility but could improve technical and security aspects.

C

Centralplast s.r.o.

centralplast.cz

59

Centralplast s.r.o. is a Czech manufacturing company specializing in custom plastic products, including luxury pools, rainwater tanks, boats, and industrial containers. With over 30 years of tradition, the company serves customers across Europe, positioning itself as a trusted provider of high-quality, tailor-made plastic solutions. The website reflects a professional and consistent brand image, targeting both B2B and B2C audiences interested in bespoke plastic manufacturing. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and popular libraries like Swiper.js for UI components. It integrates Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. From a security perspective, the site uses HTTPS and includes Google reCAPTCHA in its forms, enhancing protection against automated abuse. However, it lacks several important security headers such as X-Frame-Options and a robust Content-Security-Policy, which are recommended to improve security posture. Privacy compliance is partially addressed with a comprehensive privacy policy and GDPR consent on forms, but no explicit cookie consent mechanism was detected. Overall, Centralplast's website demonstrates a solid business credibility and technical foundation with room for security and privacy improvements. The domain registration data aligns well with the company's history and location, supporting legitimacy. No signs of malicious activity or content safety concerns were found.

N

Neznámé Krkonoše

neznamekrkonose.cz

46

Neznámé Krkonoše is a small regional tourism website focused on promoting lesser-known locations in the Krkonoše mountains of the Czech Republic. The site provides travel tips, accommodation listings, event information, and partners with regional organizations to enhance visitor experience. The business model centers on content provision and partner sponsorships, targeting tourists interested in exploring this specific region. Technically, the website is built on WordPress with common plugins such as Modern Events Calendar Lite and Contact Form 7, enhanced by Google reCAPTCHA and Google Analytics for security and analytics respectively. The site is hosted likely by WEDOS, a Czech hosting provider, and uses HTTPS with good SSL configuration. Security posture is moderate with HTTPS and spam protection but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with a cookie consent banner but no visible privacy policy or terms of service pages. Overall, the website is functional and professional for its niche but could improve in privacy and security transparency.

M

Město Mšeno

mestomseno.cz

46

Město Mšeno operates an official municipal website serving residents, visitors, and local businesses with comprehensive information about the town, local government, services, events, and tourism. The site is well-structured, professionally designed, and provides key services such as news updates, public notices, payment portals, and contact mechanisms. The target audience includes local citizens and tourists interested in the region. Technically, the website uses modern web technologies including Google Fonts, reCAPTCHA v3, and a proprietary CMS (Vizus CMS). It is mobile-optimized and employs HTTPS for secure communications. Security posture is solid with HTTPS and bot protection, but lacks some security headers and formal security policies. Privacy compliance is partially addressed with a cookie consent banner but lacks a dedicated privacy policy page. WHOIS data is unavailable, which reduces domain registration transparency and trustworthiness. Overall, the website is functional, trustworthy, and serves its government role effectively, but could improve in privacy and security documentation.

P

Plugo s.r.o.

plugo.cz

51

Plugo s.r.o. is a Czech-based digital marketing agency specializing in PPC campaigns, SEO, custom e-shop and website development, and content creation. With over 15 years of experience, they serve clients primarily in the Czech Republic and Austria, focusing on delivering tailored digital solutions that enhance online visibility and business growth. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the site employs modern web technologies including Google Tag Manager, GSAP, and cookie consent mechanisms, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS and cookie consent, but lacks explicit security headers and published privacy policies, which are areas for improvement. The absence of WHOIS data limits domain trust assessment, but the presence of detailed contact and company registration information supports business credibility. Overall, the site is safe, professional, and well-structured, though it would benefit from enhanced privacy compliance and security best practices.

A

as4u.cz, s.r.o.

mladoboleslavsko.eu

64

The website www.mladoboleslavsko.eu serves as the official regional tourism portal for the Mladá Boleslav area in the Czech Republic. It provides comprehensive information on tourist regions, nature, history, culture, sports, accommodation, events, and local attractions. The site targets tourists and visitors interested in exploring this region, offering services such as event calendars, photo galleries, a mobile app, and an e-shop. The business behind the site appears to be a small regional tourism promotion entity, operated by as4u.cz, s.r.o., a Czech company specializing in publishing and editorial systems.

J

JRWN

jerewan.cz

42

JRWN is a small, flexible web design and development agency based in Brno, Czech Republic, specializing in custom websites, e-shops, and graphic design. They emphasize a full-service approach including design, development, hosting, and automation using their own CMS platform. The website is professionally designed with clear navigation and good mobile optimization, targeting a broad client base from small to large businesses across various industries. Technically, the site uses modern web technologies including Google Tag Manager and Google Fonts, but lacks visible security headers and explicit privacy or terms of service pages. The security posture is moderate with cookie consent implemented but missing other key security policies and disclosures. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and contact information appear legitimate and professional. Overall, the site scores well on content quality and business credibility but should improve privacy compliance and security practices.

L

LK Brno-střed

kinobude.cz

42

The website kinobude.cz represents a local cultural event organizer operating an open-air summer cinema in Brno-střed, Czech Republic. The business focuses on providing outdoor film screenings during the summer season, targeting general audiences in the local community. The site is built on WordPress with a modern tech stack including Bootstrap and jQuery, and it supports multilingual content in Czech and English. The website is well-structured with good design quality and clear navigation, although it lacks some compliance documentation such as privacy and cookie policies. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but it lacks advanced security headers and incident response information. Overall, the domain registration is consistent with the business profile, indicating legitimacy and trustworthiness.

I

IDEAL GRAPHICS s.r.o.

ideal-studio.cz

40

Ideal Studio, operated by IDEAL GRAPHICS s.r.o., is a Czech-based creative agency established in 2003. The company offers a broad range of services including printing, web design, photography, graphic design, 3D visualization, corporate identity, and animation. Their market position is that of a small but established creative service provider with a diverse portfolio and a clear focus on quality and client satisfaction. The website reflects a professional and consistent brand image targeting businesses and individuals seeking creative branding and design solutions. Technically, the website uses modern JavaScript libraries such as jQuery, bxSlider, and Select2, along with Google Fonts, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. However, there is room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS and implements a cookie consent banner, demonstrating some privacy awareness. However, it lacks published privacy policies, security headers, incident response information, and vulnerability disclosure mechanisms. No obvious vulnerabilities or exposed sensitive data were found, but the absence of these security best practices suggests a moderate security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency. The domain's WHOIS data confirms a long-standing and consistent registration, supporting the legitimacy of the business. Strategic improvements in privacy policy publication, security headers, and incident response readiness would strengthen the site's security and compliance standing.

A

AAA Grafika

aaagrafika.sk

68

AAA Grafika is a small Slovakian business specializing in graphic design and promotional services. Established in 2011, the company maintains a professional online presence with a WordPress-based website optimized for SEO and mobile devices. The site uses modern technologies including WooCommerce for e-commerce capabilities and Cookiebot for comprehensive cookie consent management, reflecting a commitment to privacy compliance. The business targets general audiences seeking graphic and promotional design services within Slovakia. Technically, the website is hosted by Websupport and employs standard security practices such as HTTPS and DNSSEC, ensuring secure communications. However, explicit contact details like emails and phone numbers are not directly visible, with contact likely facilitated through forms.

I

INCORP a.s.

stars24.cz

66

stars24.cz is a Czech online media portal operated by INCORP a.s., focusing on celebrity news, lifestyle, and general current events including weather and crime. The website targets a general audience interested in entertainment and news within the Czech Republic. It maintains a consistent brand presence with active social media channels and provides a variety of news categories and regularly updated content. The business model is primarily advertising-driven, leveraging Google Adsense and MGID ad networks. Technically, the site uses modern web technologies including Google Tag Manager and asynchronous JavaScript for ads and analytics, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced, though some security headers could be improved. Privacy and cookie policies are present and indicate GDPR compliance, supporting user data protection. WHOIS data confirms legitimate ownership consistent with the business entity. Overall, the site is professional, trustworthy, and safe for general audiences.

A

AGENTURA VELRYBA s.r.o.

vizovicketrnkobrani.cz

46

Vizovické Trnkobraní is a well-established cultural and entertainment festival held in Vizovice, Czech Republic, organized by AGENTURA VELRYBA s.r.o. The website serves as the primary digital presence for the event, providing information about the festival, ticket sales, program details, and partner acknowledgments. The business model revolves around event organization, sponsorship, and ticketing, targeting a general audience with a focus on regional cultural engagement. The site reflects a medium-sized enterprise with a consistent brand and good content quality.