Security Directory

P

PFP s.r.o.

povinne-ruceni.com

65

Povinne-ruceni.com is an established Czech online insurance comparison portal specializing in compulsory vehicle insurance and related insurance products. Operating since 1999 under PFP s.r.o., it offers users fast, online tools to compare and purchase insurance policies from multiple providers. The website is well-positioned in the Czech market as a trusted intermediary with a strong reputation, supported by thousands of positive reviews and comprehensive service offerings including calculators, guides, and customer support. Technically, the site is built on WordPress with modern frameworks such as Bootstrap and enhanced by performance and SEO plugins like WP Rocket and Yoast SEO. It integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, and PostHog, alongside advertising networks like Google Ads and Bing Ads. The site is mobile-optimized, fast-loading, and accessible, providing a professional user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security headers and a public security policy or vulnerability disclosure page suggests room for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with GDPR-aligned policies and clear contact information. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The main concern is the lack of WHOIS registration data, which slightly impacts trust but is mitigated by the site's transparency and regulatory disclosures. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

S

SerialZone.cz

serialzone.cz

45

SerialZone.cz is a Czech entertainment website specializing in TV series information, news, and community engagement. Established in 2007, it serves as a comprehensive portal offering series calendars, watchlists, subtitles databases, articles, and forums targeting a general audience interested in television content. The site maintains a consistent brand presence and offers a variety of user-centric features supported by advertising revenue.

G

GOFIS, s.r.o.

banky.cz

52

Banky.cz is a Czech Republic-based financial services portal operated by GOFIS, s.r.o. The website offers comprehensive comparison tools for a wide range of financial products including loans, mortgages, accounts, savings, investments, and insurance. It also provides expert articles, reviews, and a free advisory service, positioning itself as a trusted resource for consumers seeking financial guidance. The site demonstrates a mature digital presence with extensive content, structured data, and strong SEO practices. Technically, it integrates multiple analytics and marketing technologies such as Google Analytics, Microsoft Clarity, Datadog RUM, and a consent management platform, ensuring robust data collection and user tracking compliant with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data limits domain registration trust verification, but the professional content and business transparency strongly support legitimacy. Overall, Banky.cz is a well-established, trustworthy financial information and comparison platform serving the Czech market.

T

Týdeník Policie

tydenikpolicie.cz

56

Týdeník Policie is a Czech Republic-based media outlet specializing in police news, public safety, and related events. Established in 2015, it serves a general audience interested in law enforcement news and public safety updates. The website offers news articles, video content, and an e-commerce shop for related merchandise, positioning itself as a trusted source within the Czech media landscape. The site maintains a consistent brand presence and leverages social media channels with significant follower counts to extend its reach. Technically, the website is built on WordPress with WooCommerce integration, utilizing modern web technologies including jQuery, Google Tag Manager, Facebook Pixel, and various advertising and tracking scripts. Hosting and DNS services are provided by reputable providers including Active24 and Cloudflare, ensuring good performance and security. The site is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS and employs standard security headers, with no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not present, indicating room for improvement in transparency and security governance. The site uses a cookie consent mechanism compliant with GDPR requirements, but lacks a clearly accessible privacy policy and terms of service. Overall, the website is professionally maintained with good content quality and technical implementation. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing accessibility, and providing clear contact channels for security incidents to strengthen trust and compliance.

B

Babyweb.cz - těhotenství, porod, děti a jejich maminky

babyweb.cz

41

Babyweb.cz is a well-established Czech online magazine focused on pregnancy, childbirth, childcare, and parenting. It offers a wide range of content including articles, blogs, calculators, and a community forum, targeting pregnant women, mothers, and women planning pregnancy. The website is professionally designed with consistent branding and good content quality, serving a medium-sized audience in the Czech Republic. Technically, the site runs on WordPress with modern frameworks like Bootstrap and integrates multiple advertising and analytics services such as Google Analytics, Gemius, and Adform. It is mobile-optimized and implements structured data for SEO. Security posture is good with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit security policies. Privacy compliance is basic with no clear privacy or cookie policy pages detected in the provided content, though a consent mechanism is present. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is common for content publishers. Overall, the site is trustworthy and professional with moderate risk.

Ž

Žena-in s.r.o.

zena-in.cz

60

Žena-in.cz is a well-established Czech women's internet magazine operated by Žena-in s.r.o., active since 2000. The site offers a broad range of lifestyle content including articles on relationships, fashion, health, family, cooking, and travel, targeting primarily women interested in these topics. It maintains a strong market position as a trusted media outlet in the Czech Republic with a medium-sized operation. Technically, the website employs a modern tech stack including Google Tag Manager, Google Analytics, Facebook Pixel, and a consent management system (Didomi), ensuring compliance with GDPR to some extent. The site is hosted securely with HTTPS and uses various advertising and tracking technologies integrated with user consent mechanisms. Security posture is good with no critical vulnerabilities detected, though some improvements are recommended such as publishing explicit privacy and terms of service pages and updating outdated libraries. Overall, the website is professional, trustworthy, and provides a positive user experience with good content quality and navigation.

E

Echo24.cz

echo24.cz

45

Echo24.cz is a Czech opinion daily news website offering a broad range of content including news articles, opinion pieces, podcasts, and subscription services. It operates under the Echomedia brand and maintains a consistent and professional online presence targeting the Czech-speaking general public interested in current affairs and commentary. The website integrates multiple advertising and analytics platforms to support its business model, which relies on advertising revenue and subscriptions. Technically, the site employs modern JavaScript libraries and tracking tools, with good SEO and mobile optimization, though some accessibility features could be improved. Security posture is solid with HTTPS and consent management in place, but security headers are not explicitly detected and should be enhanced. WHOIS data is not publicly available, indicating privacy protection, which is typical for media companies. Overall, the site is trustworthy, professional, and safe for general audiences.

R

Rohlik.cz

rohlik.cz

66

Rohlik.cz is a leading online supermarket in the Czech Republic, specializing in fast delivery of fresh and quality groceries directly to consumers' homes. The website demonstrates a strong market position with a focus on convenience and product variety, supported by promotional campaigns and a user-friendly interface. Technically, the site is built on modern frameworks such as Next.js and integrates advanced analytics and consent management tools, reflecting a mature digital infrastructure. Security measures are robust, with HTTPS enforced and multiple security headers present, although explicit privacy and terms of service documentation are not clearly accessible, which could be improved. Overall, the site presents a professional and trustworthy e-commerce platform with moderate risk due to missing WHOIS transparency and contact details.

T

TISCALI MEDIA, a.s.

tiscalimedia.cz

52

TISCALI MEDIA, a.s. is a well-established Czech media company operating a broad portfolio of internet media and services that reach over 6.7 million users monthly. Their offerings include news portals, specialized content sites in gaming, finance, science, and entertainment, as well as email and file storage services. The company is part of the Dignity group and includes subsidiaries such as ARBOmedia, a media representation firm. Technically, the website employs modern web technologies including Bootstrap, Google Analytics, and Google Maps API, delivering a responsive and professionally designed user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit privacy/cookie policies are absent. WHOIS data is missing, which slightly impacts trust but the business information and contact details are clear and professional. Overall, the website is safe, well-maintained, and credible, serving a broad general audience with no adult or questionable content.

M

MAFRA, a.s.

mafra.cz

62

MAFRA, a.s. is a large, established media group based in the Czech Republic, offering a broad portfolio of traditional and digital media services including printed newspapers, internet media, television, radio, and printing services. The company targets a general audience with a focus on quality journalism and entertainment, leveraging a strong market position in the Czech media landscape. The website reflects a professional and consistent brand image with comprehensive content about the company and its offerings. Technically, the site employs a mature technology stack including jQuery, Google Analytics, Gemius tracking, and advanced consent management tools such as Didomi and Piano for subscription services. The site is mobile optimized and demonstrates good SEO and accessibility practices. Security-wise, the site uses HTTPS and consent mechanisms but lacks explicit security headers and published incident response policies, indicating room for improvement in security transparency and hardening. The absence of WHOIS data reduces domain trust slightly, but the overall business credibility and website professionalism remain high.

I

Internet Info

iinfo.cz

62

Internet Info is a Czech media company specializing in providing high-value content related to IT and business sectors. The company offers expertise through its web portals, conferences, seminars, and professional magazines targeting IT professionals, CIOs, CEOs, financial directors, and senior managers. The website presents a professional and consistent brand image, positioning itself as a reputable source of industry knowledge and events in the Czech Republic. The business model revolves around content provision, event organization, and publishing specialized magazines, serving a medium-sized enterprise audience.

H

Havas Worldwide Prague a.s.

havas.cz

59

Havas Worldwide Prague a.s. is a well-established advertising and media agency based in the Czech Republic, founded in 2005. The company focuses on creating meaningful connections between brands and consumers through creativity, innovation, and media. The website reflects a professional and consistent brand image, targeting primarily businesses and marketing professionals. Technically, the site is built on WordPress with modern plugins and analytics tools, hosted via Gandi, and optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS, cookie consent, and bot management, though explicit security policies and incident response contacts are not published. Overall, the domain registration data supports the legitimacy and stability of the business.

A

Active Radio a.s.

activegroup.cz

64

Active Radio a.s. is a prominent multimedia group in the Czech Republic, owning leading radio stations such as EVROPA 2 and Frekvence 1. The company operates a diverse portfolio of online media, streaming audio services, and event production, targeting a broad audience of radio listeners and digital media consumers. It is part of the larger Czech Media Invest holding, which enhances its market position and resource base. The website reflects a professional and comprehensive digital presence with clear business information and user engagement features. Technically, the website employs modern web technologies including Bootstrap, jQuery, and integrates popular analytics and consent management platforms such as Google Analytics, Facebook SDK, and Didomi CMP. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some technical improvements could be made in security headers and incident response transparency. From a security perspective, the site uses HTTPS and implements GDPR-compliant privacy and cookie consent mechanisms, indicating a mature approach to data protection. The absence of WHOIS data reduces domain trustworthiness from a registration standpoint, but the website content and business details strongly support legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, Active Radio a.s. presents a strong business and digital profile with good security and privacy practices. Strategic improvements in security policy publication, vulnerability disclosure, and domain registration transparency would further enhance trust and compliance.

S

Softmedia s.r.o.

softmedia.cz

58

Softmedia s.r.o. is a Czech-based small technology company specializing in WordPress website creation, management, and hosting services. Established in 2015, the company has built a solid reputation with over 500 websites developed and a strong 5-star customer rating. Their services include WordPress web development, e-shop creation, hosting, maintenance, and AI chatbot implementations, targeting businesses and individuals seeking professional web solutions. The website reflects a mature digital presence with professional design, clear navigation, and compliance with GDPR and cookie regulations. Technically, the site runs on WordPress with common plugins and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Smartlook, all activated with user consent. Security posture is good with HTTPS enforced, but some improvements are recommended in security headers and updating legacy libraries. Overall, the domain registration data aligns well with the website claims, indicating a trustworthy and legitimate business.

I

Incomaker s.r.o.

incomaker.com

61

Incomaker s.r.o. operates a sophisticated AI-driven marketing and sales automation platform targeting e-commerce, online media, travel agencies, and non-profit sectors. The company leverages machine learning to personalize marketing content and automate multi-channel campaigns, positioning itself as a competitive player in the marketing technology space since 2015. Their platform integrates with numerous popular e-commerce and CMS platforms, enhancing their market reach and usability. Technically, the website is built on Drupal CMS with Bootstrap for responsive design, incorporating modern analytics and tracking tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Smartlook session recording. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security practices include HTTPS enforcement and domain status protections, but DNSSEC is not enabled and security headers are not explicitly detected. Security posture is solid but could be improved by enabling DNSSEC and implementing comprehensive security headers. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR compliance indicators, and visible contact information. The business credibility is high, supported by testimonials, media mentions, and EU funding acknowledgments. Overall, the website presents a professional, trustworthy, and technically competent digital presence with minor areas for security enhancement. The risk level is low, and the platform is suitable for business users seeking marketing automation solutions.

M

Městský úřad Znojmo

muznojmo.cz

36

The website www.znojmocity.cz serves as the official online presence of the city of Znojmo, Czech Republic. It provides comprehensive information about the city administration, cultural events, tourism, social services, and public notices. The site targets residents, visitors, and local businesses, offering a broad range of municipal services and news updates. The business model is that of a government entity focused on public service and information dissemination. The site maintains a consistent brand identity aligned with official city symbols and includes active social media channels to engage the community. Technically, the website is built on a proprietary CMS platform (vismo) and leverages modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Analytics and Google Translate for accessibility and analytics. The site is mobile optimized and includes accessibility features, providing a good user experience. Performance is moderate, with embedded multimedia content and external scripts. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, no explicit security policy or incident response contact information is published, and security headers are not visibly configured. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits domain legitimacy verification, but the official nature of the content and branding strongly support its authenticity. Overall, the website is a well-maintained municipal portal with good content quality, technical implementation, and privacy compliance. Strategic improvements include publishing a security policy, adding security headers, and providing incident response contacts to enhance trust and security posture.

M

Město Poděbrady

reusepodebrady.cz

44

The website represents the Reuse Centrum of the city of Poděbrady, Czech Republic, providing municipal services focused on sustainability and reuse of items. It serves local residents with information, contact details, and operational hours. The site is professionally designed with clear navigation and multilingual support via Google Translate. Technically, it uses a CMS platform (Vismo), modern web technologies, and integrates Google Analytics with a privacy-conscious default consent setting. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, but lacks explicit security headers and published security policies. WHOIS data is unavailable, limiting domain registration trust analysis, but the official municipal content and domain usage support legitimacy. Overall, the site is functional, trustworthy, and compliant with GDPR, serving its public service role effectively.

E

Eternal s.r.o.

eternal.cz

42

Eternal s.r.o. is a Czech technology company specializing in the development of mobile applications and web portals, with over 10 years of experience. The company serves a diverse clientele including municipalities, universities, and insurance companies, offering services such as mobile app development, interior navigation solutions, and data analysis. Their website reflects a professional and consistent brand image, targeting businesses and organizations seeking custom software solutions. Technically, the site is built on WordPress with Bootstrap and integrates modern tools like Google Analytics and reCAPTCHA, indicating a moderate level of digital maturity. Security measures include HTTPS enforcement and spam protection, though the absence of security headers and privacy policies suggests room for improvement. The missing WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall business presentation and contact transparency support a credible profile. Strategic recommendations include enhancing compliance documentation, improving security headers, and verifying domain registration details to strengthen trust and security posture.

The website skolnibudovy.npmk.gov.cz is an official Czech government subdomain dedicated to a project by the National Pedagogical Museum and Library of J. A. Komenský. The project focuses on documenting the historical evolution of school buildings in the Czech Republic through community contributions and educational initiatives. The site targets educators, historians, students, and the general public interested in cultural heritage. It offers an interactive map and encourages public participation by submitting photographs and historical data. Technically, the site uses standard web technologies including Bootstrap, jQuery, and Google Analytics for tracking. The design is professional and mobile-optimized with clear navigation and relevant content. Security posture is moderate with HTTPS implied but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. WHOIS data is unavailable, which reduces trustworthiness but the official government domain and content authenticity mitigate concerns. Overall, the site is a niche educational resource with good content quality and moderate technical maturity.

N

Národní pedagogické muzeum a knihovna J. A. Komenského

historiascholastica.com

58

Historia scholastica is a specialized international academic journal focused on the history of pedagogy and education, published biannually since 2015 by the National Pedagogical Museum and Library of J. A. Komenský in the Czech Republic. The journal operates under an open access model with Creative Commons licensing and is indexed in several reputable academic databases, establishing a strong niche market position within educational research. The website is built on Drupal 7 and hosted via Active24, with moderate performance and basic mobile and accessibility features. Google Analytics and Tag Manager are used for visitor tracking, but no visible cookie consent or privacy policies are present, indicating compliance gaps. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, which are recommended for improvement. Overall, the site is professional and trustworthy, but could benefit from enhanced privacy compliance and updated security practices.

N

Nadační fond P. Pittra a O. Fierzové

pitter.eu

51

The website 'Archiv Přemysla Pittra a Olgy Fierzové' serves as an archival and educational platform preserving the legacy of two notable humanists. It is managed by a foundation and affiliated with the National Pedagogical Museum and Library in the Czech Republic. The site targets researchers, students, and the general public interested in historical and pedagogical content. The business model is non-profit, focusing on archival preservation, research facilitation, and educational outreach. Technically, the site runs on Drupal 7 with standard web technologies and includes Google Analytics for visitor tracking. While the site is functional and content-rich, it lacks modern privacy and cookie policies and uses an outdated CMS version, which may pose security risks. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site is trustworthy and professionally presented but would benefit from enhanced compliance and security measures.

S

Sbírka Viléma Trmala

trmal.cz

34

The website www.trmal.cz is dedicated to the legacy and collection of Vilém Trmal, a Czech lawyer and antiquarian who co-founded the Český antikvariát ATA. It serves as a cultural and historical repository showcasing auctions, exhibitions, and publications related to Czech art and bibliofilia, particularly focusing on artists like Josef Váchal. The site targets collectors, art historians, and enthusiasts of Czech cultural heritage. Technically, the site uses standard web technologies including jQuery and Google Analytics, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage but lacks advanced security headers and visible privacy compliance measures. The absence of WHOIS data reduces domain trustworthiness, though the site content and presentation are professional and consistent with a legitimate cultural institution. Overall, the site is a valuable resource for its niche audience but would benefit from improved privacy and security transparency.

S

Státní fond životního prostředí ČR

sfzp.cz

67

Státní fond životního prostředí ČR is a Czech government fund established in 1992 to support environmental projects through grants, loans, and financial instruments. The website serves as an official portal providing information on funding programs, news, events, and contact details. It targets Czech residents, municipalities, and organizations involved in environmental protection and energy efficiency. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses common libraries such as jQuery and Smart Slider 3. It implements HTTPS and security best practices, including cookie consent and privacy policies compliant with GDPR. However, the absence of WHOIS data and explicit security or incident response policies slightly reduces trustworthiness. Overall, the site is professional, well-structured, and trustworthy, serving as a key national resource for environmental funding in the Czech Republic.

N

Národní park Šumava

npsumava.cz

57

Národní park Šumava operates as the official authority managing the Šumava National Park and its protected landscape area in the Czech Republic. The website serves as a comprehensive information portal for visitors, environmental researchers, and the general public interested in the park's natural heritage, events, and conservation efforts. It offers resources such as visitor centers, ecological education, maps, webcams, and an e-shop. The site is positioned as a trusted governmental and non-profit entity in the environmental conservation sector within the Czech Republic. Technically, the website is built on WordPress using modern plugins like Elementor for design, WPML for multilingual support, and performance optimizations via WP Rocket. It integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook SDK, and OneSignal for push notifications. The site is mobile-optimized, accessible, and SEO-friendly, with appropriate meta tags and structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS and includes several security headers, indicating a good baseline security posture. Cookie consent mechanisms and privacy policies demonstrate GDPR compliance. However, the absence of WHOIS registration data and lack of explicit security policies or incident response contacts represent areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a professional and trustworthy digital presence for the Šumava National Park authority, with recommendations to enhance transparency around security policies and domain registration details to further strengthen trust and compliance.

S

Správa Krkonošského národního parku

krnap.cz

59

Správa Krkonošského národního parku operates as the official administrative body responsible for managing the Krkonošský národní park in the Czech Republic. The website serves as a comprehensive resource for visitors, researchers, and the general public, offering information on park regulations, nature conservation efforts, events, and educational programs. The organization positions itself as a government entity focused on environmental protection and sustainable tourism. Technically, the website employs modern web technologies including Google Analytics and Tag Manager for tracking, and Swiper.js for interactive content. The site is well-structured, mobile-optimized, and includes accessibility features, reflecting a mature digital infrastructure. However, the absence of CMS identification and hosting details limits deeper technical profiling. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. While no critical vulnerabilities or exposed sensitive data were detected, the lack of explicit security policies and incident response contacts suggests room for improvement in transparency and preparedness. The missing WHOIS data introduces some uncertainty regarding domain registration legitimacy, although the official nature of the content and government affiliations mitigate this concern. Overall, the website presents a trustworthy and professional front for the national park administration, with strong content quality and user experience. Strategic enhancements in security documentation and domain registration transparency would further strengthen its risk posture and stakeholder confidence.

S

Svaz podnikatelů ve stínicí technice - SPST

svt-magazin.cz

61

The website www.svt-magazin.cz serves as a specialized industry magazine focused on shading and gate technology, operated by the Svaz podnikatelů ve stínicí technice (SPST), a professional association established in 2009. It provides news, articles, event calendars, and advertising opportunities targeted at both professionals and laypersons interested in this niche sector. The site maintains a professional and consistent brand presence with clear business information and GDPR compliance. Technically, the site is built on WordPress with common plugins for advertising, GDPR cookie management, and user interface enhancements. It uses HTTPS with good SSL configuration and includes structured data for SEO benefits. Performance is moderate with good mobile optimization and basic accessibility features. The site integrates Google Analytics for user tracking and SmartEmailing for newsletter management. From a security perspective, the site enforces HTTPS and cookie consent but lacks advanced security headers and explicit incident response or security policy disclosures. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data due to privacy protection slightly reduces trust but is consistent with a small professional publication. Overall, the website presents a low-risk profile with good privacy compliance and professional content. Strategic improvements in security headers and transparency around security policies would enhance its posture further.

P

PKS okna

pksokna.cz

44

PKS okna is a traditional Czech manufacturer specializing in the production of plastic, wooden, wood-aluminum, and aluminum windows and doors. With over 34 years of experience, the company positions itself as a reliable and quality-focused supplier serving customers primarily in the Czech Republic. The business operates as part of the larger PKS group, which includes several subsidiaries and partner companies, enhancing its market presence and operational capabilities. The website reflects a professional and consistent brand image, providing comprehensive product information, customer service contacts, and showcases completed projects to build trust. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and PhotoSwipe, alongside Google Tag Manager and Analytics for tracking and marketing purposes. The site is mobile-optimized with good SEO practices and basic accessibility features. Privacy and cookie policies are implemented with consent management, reflecting awareness of GDPR requirements. However, no explicit security policies or incident response information is publicly available. From a security perspective, the site uses HTTPS with a good SSL configuration, but lacks visible security headers and formal vulnerability disclosure mechanisms. No WHOIS data is available for the domain, which raises concerns about domain registration transparency and slightly impacts trustworthiness. Overall, the security posture is moderate with room for improvement in policy transparency and technical hardening. The overall risk assessment is moderate-low, with the primary concern being the absence of WHOIS data and limited security policy disclosures. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to improve trust and compliance.

T

Tylex Letovice s.r.o.

tylex.cz

47

Tylex Letovice s.r.o. is a traditional Czech textile manufacturer with a history dating back to 1832. The company specializes in producing custom-made curtains, jacquard curtains, voiles, bed linen, and 3D knits, serving both retail consumers and B2B customers. Their market position is that of a well-established, quality-focused textile producer emphasizing Czech origin and craftsmanship. The website reflects a professional business with clear product offerings and a user-friendly interface. Technically, the website employs common web technologies such as jQuery and Google Analytics, with proper HTTPS encryption and consent management for tracking. The site is moderately optimized for performance and mobile devices, though some SEO and accessibility improvements are possible. No CMS or hosting provider details were identified. From a security perspective, the site uses HTTPS and secure login forms but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with privacy and cookie policies accessible. The absence of WHOIS data for the domain reduces trust in domain legitimacy, though the website content and business information appear credible. Overall, the website is safe, professional, and trustworthy for its intended audience, but domain registration transparency should be verified. Strategic improvements in security headers, incident response documentation, and enhanced privacy compliance would strengthen the security posture and trustworthiness.

S

STAVOSPOL s. r. o.

stavospol.cz

47

STAVOSPOL s. r. o. is a Czech Republic-based company established in 1991 specializing in the retail and distribution of building materials and related services. The company operates a network of four stores in key Moravian cities, offering a comprehensive range of construction supplies and tools. Their website reflects a regional retail business with a focus on construction materials and customer service. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, uses HTTPS, and includes basic SEO and accessibility features. However, the absence of WHOIS data and explicit security headers suggests areas for improvement in transparency and security. The site includes privacy and cookie policies with consent mechanisms, indicating compliance with GDPR requirements. Overall, the business presents a professional online presence with clear contact information and social media engagement, but would benefit from enhanced security practices and domain registration transparency.

H

Habitat, a.s.

habitat-cz.cz

44

Habitat, a.s. is a Czech Republic-based retailer specializing in home textiles, flooring, garden furniture, and related products. The company operates both an online store and a physical retail location in Náměšť nad Oslavou, targeting general consumers seeking quality home decor and furnishings. Their product range includes carpets, beds, mattresses, and garden accessories, supported by a wholesale business segment. The website demonstrates a professional and consistent brand presence with clear contact information and social media engagement. Technically, the website employs a modern tech stack including jQuery, Modernizr, Google Fonts, and integrates marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mailchimp. The site is mobile-optimized with good SEO practices and a cookie consent mechanism, indicating compliance with GDPR requirements. However, no explicit CMS or hosting provider information is discernible, and some security headers appear to be missing. From a security perspective, the site uses HTTPS and includes cookie consent, but lacks visible security headers and a vulnerability disclosure policy. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and contact details appear legitimate. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, Habitat's website is a well-structured and trustworthy retail platform with moderate technical maturity and good privacy compliance. The main risk lies in the opaque domain registration information, which should be addressed to enhance trustworthiness and security posture.

T

TRANS – TECHNIK spol. s r.o.

trans-technik.cz

44

TRANS – TECHNIK spol. s r.o. is a Czech-based supplier specializing in parts for truck bodies, fastening materials, riveting tools, adhesives, and industrial chemicals. The company targets B2B customers in the transportation and manufacturing sectors, offering a comprehensive product catalog and multilingual website support. Their market position appears stable within the Czech Republic and neighboring countries, supported by partner sites in Romania and Poland. The website is professionally designed with clear navigation and product categorization, supporting a good user experience.

A

Albi

albi.cz

54

Albi.cz is a well-established Czech e-commerce retailer specializing in board games, children's educational products, gifts, and premium scented candles. The company has a strong market presence in the Czech Republic with a domain registered since 1998, indicating long-term business operations. The website targets a general audience including families and gift buyers, offering a broad product catalog with clear navigation and professional design. Technically, the website employs modern tracking and analytics technologies such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Smartlook. Hosting is provided by Active24, a known Czech hosting provider. The site is mobile optimized and performs moderately well, though explicit CMS or frameworks are not detected, suggesting a custom or proprietary platform. From a security perspective, the site uses HTTPS and implements reCAPTCHA for bot protection. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, and no public security policy or incident response contacts are provided. Cookie consent mechanisms are present, but no formal privacy policy or terms of service links were found in the analyzed content, indicating room for improvement in privacy compliance. Overall, the website is trustworthy and professional with a solid business foundation. Strategic improvements in privacy documentation, security header implementation, and incident response transparency would enhance the security posture and compliance standing.

Č

Česká národní banka

cnb.cz

63

Česká národní banka (ČNB) is the central bank of the Czech Republic, serving as the primary authority for monetary policy, financial market supervision, issuance of currency, and crisis resolution. The website reflects its authoritative role with comprehensive information on monetary policy, financial stability, regulatory oversight, statistics, and public education. It targets a broad audience including the general public, financial institutions, media, and researchers. The business model is governmental and regulatory, positioning ČNB as a key institution in the Czech financial ecosystem. Technically, the website is built on the OpenCms platform, utilizing modern web technologies such as jQuery, Google Analytics, and Google reCAPTCHA Enterprise for security and analytics. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and bot protection, though explicit security headers could be more visible. The security evaluation shows no critical vulnerabilities or exposed sensitive data. Privacy compliance is robust with detailed privacy and cookie policies, GDPR adherence, and user consent management. Business credibility is high, supported by clear contact information, official branding, and trust signals such as social media presence and legal disclosures. Overall, the website is a secure, professional, and trustworthy digital presence for the Czech National Bank, effectively supporting its mission and stakeholder engagement.

F

Foursquare

swarmapp.com

62

Swarm by Foursquare is a well-established location-based social networking service that enables users to check in and track places. The company has a strong market presence with a mobile app available on iOS and Android platforms. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress and Yoast SEO. Privacy and terms of service pages are present and comprehensive, indicating good compliance with data protection regulations such as GDPR. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers are missing. No incident response or vulnerability disclosure policies are publicly available. Overall, the website is trustworthy, safe, and provides a good user experience.

H

Hodslavice

hodslavice.cz

46

The website www.hodslavice.cz serves as the official online presence of the municipality of Hodslavice in the Czech Republic. It provides residents and visitors with comprehensive information about local government services, news, events, and community organizations. The site is well-structured with clear navigation and includes contact details prominently in the header. Technically, the site employs HTTPS, uses Google Analytics for traffic analysis, and integrates an accessibility toolbar to enhance usability for users with disabilities. However, the absence of WHOIS data and lack of explicit privacy and cookie policies indicate areas for improvement in transparency and compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site is professional and trustworthy for its intended audience but would benefit from enhanced privacy disclosures and security best practices.

V

Via Aurea, s.r.o.

cityone.cz

49

CityOne is a Czech Republic-based platform operated by Via Aurea, s.r.o., focused on smart city solutions, projects, and expert networking. The website serves as a marketplace and information hub for smart city initiatives, covering sectors such as energy, transportation, ICT, and public services. It targets municipalities, urban planners, technology providers, and citizens interested in smart city development. The platform offers project showcases, product listings, expert profiles, news articles, and event calendars, facilitating collaboration and knowledge sharing in the smart city ecosystem. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, Google reCAPTCHA, and Google Maps API. The site is mobile-optimized with good navigation and content structure, though it appears to use a custom or proprietary CMS. Performance is moderate, and accessibility features are basic. Security best practices such as HTTPS and cookie consent mechanisms are implemented, but security headers are not detected, indicating room for improvement. From a security perspective, the site shows a good posture with encrypted connections and form protections via reCAPTCHA. However, the absence of WHOIS registrant data and lack of explicit privacy and security policies reduce overall trust. No vulnerabilities or malicious content were detected. Privacy compliance is partially addressed through cookie consent, but no dedicated privacy policy page was found. Overall, CityOne presents a professional and trustworthy platform for smart city stakeholders, but it would benefit from enhanced transparency in domain registration, explicit privacy and security policies, and improved security header implementation to strengthen its security posture and compliance.

S

Správa železnic, státní organizace

spravazeleznic.cz

60

Správa železnic is a Czech state organization responsible for managing the national railway infrastructure. The website serves multiple audiences including passengers, suppliers, contractors, and job seekers, providing comprehensive information about projects, services, and organizational structure. The site is well-structured with clear navigation and multilingual support, reflecting a mature digital presence. Technically, the website is built on the Liferay CMS platform and utilizes modern JavaScript libraries such as jQuery, Slick Carousel, and Unite Gallery. It integrates analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook Pixel, indicating a focus on user engagement and data-driven insights. The site is mobile-optimized and performs moderately well. From a security perspective, the site enforces HTTPS and includes privacy and cookie policies compliant with GDPR. However, no explicit security headers were detected in the provided data, and no vulnerability disclosure or security.txt files were found. The absence of WHOIS data limits domain trust verification, but the official nature and content quality suggest legitimacy. Overall, the website presents a professional and trustworthy digital front for a major government transportation entity, with room for improvement in security header implementation and domain registration transparency.

I

INPRO

i2000.cz

45

INPRO is a Czech Republic-based education and training service provider specializing in courses, seminars, and consultancy. The website presents a professional and consistent brand image focused on expanding educational opportunities beyond traditional schooling. The target audience includes individuals and organizations seeking professional development and training services. Technically, the website is built on WordPress using the Avada theme and supports multilingual content via WPML. It employs Google Analytics and Tag Manager for user tracking and includes Google reCAPTCHA for form security. Security posture is moderate with HTTPS enabled and some security best practices observed, but lacks comprehensive security headers and a visible privacy policy. The absence of WHOIS data limits domain trust assessment, but the website content and structure suggest a legitimate business. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms pages. Overall, the site is safe, well-designed, and functional, but could improve transparency and security practices.

D

David Navrátil

younick.cz

49

The website www.younick.cz represents a small-scale freelance business operated by David Navrátil, specializing in graphic design, including logo creation, print materials, and website development. The site is professionally designed using modern web technologies such as Webflow and integrates Google Analytics for visitor tracking. The business targets clients seeking personalized design and web services primarily in the Czech Republic. Contact information is clearly provided, enhancing business credibility. Technically, the site is built on a modern platform with good mobile optimization and basic SEO practices. However, the absence of security headers and privacy policies indicates room for improvement in security and compliance. The WHOIS data is unavailable, which limits the ability to verify domain registration legitimacy and age, slightly reducing trustworthiness. Security posture is moderate with HTTPS enabled but lacking advanced security headers and privacy compliance mechanisms. No critical vulnerabilities were detected in the visible content. Overall, the site is safe for general audiences and does not contain any adult or questionable content. Recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and improving WHOIS transparency to enhance trust and compliance.

C

Center for Economic Research and Graduate Education – Economics Institute

cerge-ei.cz

64

CERGE-EI is a reputable academic institution specializing in graduate economics education and research based in Prague, Czech Republic. It offers PhD and Master's programs and is affiliated with Charles University and the Czech Academy of Sciences, positioning itself as a leading center for economic research and graduate education in the region. The website reflects a strong academic focus with extensive research publications, events, and educational resources targeting graduate students, researchers, and academics worldwide. Technically, the site is built on Joomla CMS with modern libraries such as jQuery and Bootstrap, and integrates Google Analytics and Tag Manager for tracking. It features a cookie consent mechanism and privacy policy aligned with GDPR requirements. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy, with no signs of malicious content or blocking mechanisms.

A

AUTONOVA BRNO s.r.o.

autonova.cz

48

AUTONOVA BRNO s.r.o. is an established automotive dealership and service provider based in Brno, Czech Republic, specializing in Škoda and Volkswagen vehicles as well as KTM and GasGas motorcycles. With over 50 years of experience and integration into the VIG group, the company offers a comprehensive range of services including new and used vehicle sales, servicing, financing, insurance, and vehicle inspections. The website reflects a professional and consistent brand image targeting consumers and businesses in the transportation sector within the Czech market. Technically, the website is built on WordPress with modern SEO and analytics tools, providing a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site demonstrates high trustworthiness and business credibility, though WHOIS data is unavailable, limiting domain registration verification.

S

SportAccord

sportaccord.sport

52

SportAccord is a globally recognized organization dedicated to connecting International Sport Federations, cities, right holders, and businesses to shape the future of sport. The website reflects a professional and well-established entity with a strong market position in organizing major sports business conferences and events such as the SportAccord Convention and the International Federation Forum. The content is rich, relevant, and targeted towards sports industry stakeholders and leaders worldwide. Technically, the website is built on WordPress with modern plugins and integrates advanced analytics and consent management tools, indicating a mature digital infrastructure. Security posture is good with HTTPS and monitoring tools in place, though explicit security headers and a public security policy could enhance trust further. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website presents a credible and trustworthy digital presence for SportAccord.

E

Expediční kamera 2025 - Zažij dobrodružství na plátně tvého kina!

expedicnikamera.cz

41

Expediční kamera is a niche film festival focused on travel, adventure, and nature films, operating since 2009 primarily in the Czech Republic and Slovakia. It is organized by the website HedvabnaStezka.cz and features screenings at over 150 locations including cinemas, clubs, and cultural venues. The website presents a professional and consistent brand image with good content quality and user experience. Technically, it is built on WordPress with modern tools like Yoast SEO, Google Analytics, and Leaflet.js for maps. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy and cookie policies, which are compliance gaps. No direct contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is trustworthy and well-positioned in its niche but could improve privacy compliance and security transparency.

S

Snow Film Fest

snowfilmfest.cz

41

Snow Film Fest is a well-established film festival focused on winter sports and outdoor adventure films, operating since 2011 and presented by the Czech magazine Svět outdooru. The website serves as a platform to showcase festival films, schedules, and locations, targeting enthusiasts of winter sports and outdoor activities primarily in the Czech Republic and neighboring regions. The festival has a stable market position with a network of local co-organizers and a consistent brand presence. Technically, the website is built on WordPress, leveraging common tools such as Google Analytics and MailerLite for marketing and analytics. The site is moderately optimized for performance and mobile devices, with good SEO practices implemented via Yoast SEO. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit privacy and cookie policies, which are compliance gaps. Overall, the site is professional and trustworthy but could improve privacy compliance and security transparency.

F

Festival Obzory – Největší víkendová outdoorová akce v Praze! 2025

festivalobzory.cz

40

Festival Obzory is a prominent outdoor and travel festival held annually in Prague, Czech Republic, with the next event scheduled for November 7-9, 2025. The festival offers a rich program of 80 lectures, workshops, and films, targeting outdoor enthusiasts, travelers, students, and families interested in hiking, climbing, and adventure. The website serves as the main information and ticket sales platform, showcasing partners and sponsors, and providing event details. The business model centers on event organization and collaboration with partners and exhibitors.

I

International Board on Books for Young People

ibby.org

51

The International Board on Books for Young People (IBBY) is a well-established non-profit organization dedicated to promoting children's literature and reading worldwide. The website reflects a professional and consistent brand presence, offering information about awards, activities, and global partnerships. The organization targets an international audience of educators, authors, and reading promoters. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and is mobile-optimized, though performance is moderate. Security posture is adequate with HTTPS and IP anonymization in analytics, but lacks explicit security headers and privacy/cookie policies. Overall, the site is trustworthy and credible, with clear contact details and social media presence, though improvements in privacy compliance and security hardening are recommended.

A

Asociace institucí vzdělávání dospělých ČR, z.s.

aivd.cz

38

Asociace institucí vzdělávání dospělých ČR, z.s. is a leading professional association dedicated to the adult education sector in the Czech Republic. The organization focuses on uniting adult education institutions, advocating for their interests, and promoting quality standards in lifelong learning. Their services include membership management, organizing educational events and conferences, expert consulting, and publishing informational resources. The website reflects a medium-sized non-profit entity with a clear mission and target audience within the education sector. Technically, the website is built on an ASP.NET platform with a custom CMS provided by FlexiSystems s.r.o. It employs modern front-end libraries such as jQuery, Bootstrap, and Owl Carousel for UI components and Google Analytics for visitor tracking. The site is moderately optimized for performance and mobile responsiveness, though accessibility features are basic. SEO practices are present but could be enhanced. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and user trust. The absence of WHOIS data limits domain trust verification, although the website content and contact information appear professional and legitimate. Overall, the site presents a trustworthy and professional image suitable for its sector, but improvements in privacy compliance, security headers, and WHOIS transparency are recommended to strengthen its security posture and regulatory adherence.

A

Asociace malých a středních podniků a živnostníků České republiky (AMSP ČR)

amsp.cz

49

AMSP ČR is a well-established, politically independent association founded in 2001 that represents small and medium-sized enterprises, tradesmen, and professional groups in the Czech Republic. It serves as a key advocate and support organization for SMEs, providing consulting, legislative feedback, research, education, and networking services. The association operates multiple projects targeting digital transformation, family businesses, crafts, women entrepreneurs, and other SME-related themes. The website is professionally designed, content-rich, and targets Czech-speaking business audiences. Technically, the website employs modern web technologies including Google Tag Manager, Bootstrap, and Cookie Script for privacy compliance. It is mobile-optimized and uses HTTPS with strong security headers, indicating a good security posture. Analytics and tracking are implemented with user privacy considerations, including cookie consent mechanisms. Security-wise, the site demonstrates good practices such as HTTPS enforcement and security headers, but lacks publicly available security policies or incident response information. No vulnerabilities or suspicious content were detected. The absence of WHOIS data reduces trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and clear contact information. Overall, AMSP ČR's website is a credible, secure, and well-maintained platform supporting Czech SMEs with comprehensive resources and partnerships. Strategic recommendations include publishing explicit security policies, incident response details, and enhancing accessibility features to further strengthen trust and compliance.

A

Agentura pro sociální začleňování

socialni-zaclenovani.cz

41

The website www.socialni-zaclenovani.cz represents the Agentura pro sociální začleňování, a government agency under the Ministry of Regional Development of the Czech Republic. It focuses on social inclusion and combating social exclusion in Czech municipalities. The site provides extensive information on projects, news, and localities involved in social integration efforts. Technically, the site is built on WordPress using the Avada theme and includes common plugins such as Slider Revolution and Ajax Search Lite. It integrates Google Analytics and Google Tag Manager for user tracking. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit incident response contacts. Privacy and cookie policies are not explicitly found, which may impact compliance. WHOIS data is unavailable, limiting domain legitimacy verification, but the content and government affiliation suggest a legitimate entity. Overall, the site is professional, content-rich, and serves a specialized government function.