Security Directory

R

Rekreační středisko Rybník

rybnik-ceskyles.cz

44

Rekreační středisko Rybník is a small hospitality business located in the Český les region of the Czech Republic, offering accommodation, wellness, sports facilities, and event hosting primarily targeting families, schools, sports clubs, and corporate groups. The website presents a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site uses common JavaScript libraries such as jQuery and Flexslider, Google Fonts, and integrates social media and analytics tools. Hosting appears to be provided by ŠumavaNet.CZ. Security posture is moderate with HTTPS in use but lacks advanced security headers and cookie consent mechanisms. The absence of WHOIS data limits domain trust assessment, though the site content and contact information appear legitimate. Overall, the website is functional and suitable for its business purpose but would benefit from enhanced security and privacy compliance measures.

P

Penzion Arnika

penzion-arnika.cz

44

Penzion Arnika is a small hospitality business operating a guesthouse and restaurant in the Šumava National Park region of the Czech Republic. The website presents a professional and well-structured digital presence, offering accommodation details, restaurant menus, photo galleries, and an online reservation form. The business targets tourists, cyclists, families, and seniors seeking a nature-focused stay in a family-friendly environment. Technically, the website uses modern JavaScript libraries such as jQuery, Flexslider, and Fancybox, and is mobile responsive with good navigation clarity. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy. Security posture is moderate with HTTPS usage and form validation but lacks explicit security headers and published privacy or cookie policies. Tracking technologies like Google Analytics and Facebook SDK are present without visible consent mechanisms, indicating privacy compliance gaps. Overall, the website is functional and trustworthy from a user perspective but would benefit from improved transparency and security practices.

H

Hotel Čertův Mlýn

hotelcertuvmlyn.cz

45

Hotel Čertův Mlýn is a small hospitality business located in the Šumava region of the Czech Republic, offering accommodation, restaurant services, a swimming pool, and facilities for corporate and school events. The website presents a professional and content-rich experience with multimedia elements and social media integration, targeting tourists, families, schools, and corporate clients. Technically, the site uses modern JavaScript libraries and is mobile responsive, though some accessibility features could be improved. Security posture is moderate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, indicating compliance gaps. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information support legitimacy. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

C

Chata U Tří sluk

chata-modrava.cz

44

Chata U Tří sluk is a small hospitality business operating a pension and restaurant in the Šumava National Park region of the Czech Republic. The website provides detailed information about accommodation options, pricing, restaurant services, and reservation capabilities, targeting tourists, cyclists, families, and groups seeking a nature-focused vacation. The business emphasizes ecological practices and local cultural heritage. Technically, the website uses common JavaScript libraries such as jQuery, Flexslider, and Fancybox, and is hosted by ŠumavaNet.CZ. It integrates Google Analytics and Facebook SDK for tracking and social media presence. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published privacy or cookie policies, indicating compliance gaps. WHOIS data is unavailable, which reduces domain trustworthiness but the website content and contact information appear professional and consistent with a legitimate small hospitality business.

M

MVM Zrt.

mvm.hu

66

MVM Zrt. is a leading Hungarian energy group with a long-established presence since 1996. The company operates across multiple sectors of the energy industry including production, storage, transmission, retail, and related services. The website reflects a mature corporate digital presence with detailed information about the group and its subsidiaries, targeting a broad audience including customers, investors, and partners. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Analytics, and is well optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit incident response contact channels. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

Správa jeskyní České republiky

jeskynecr.cz

63

Správa jeskyní České republiky operates as the official government entity responsible for managing caves across the Czech Republic. The organization provides comprehensive visitor services including ticketing, educational programs, and conservation efforts. Their website serves as a central portal for cave information, visitor updates, and online resources, targeting tourists, schools, and researchers. The site is well-branded and consistent with government and scientific partners, reinforcing its authoritative position in the market. Technically, the website is built on Drupal 10 with modern frameworks like Bootstrap and jQuery UI, ensuring a responsive and accessible user experience. The site demonstrates good SEO practices and mobile optimization, though performance is moderate. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks some advanced security headers and explicit incident response contacts. The absence of WHOIS data limits domain transparency and trust assessment, but the presence of official contact details, government affiliations, and partner endorsements mitigate concerns. Overall, the site is professional, secure, and compliant with privacy regulations, making it a reliable resource for its audience.

G

GRENA, a.s.

grenamat.cz

44

GRENA, a.s. is a Czech Republic-based medium-sized manufacturing company specializing in non-flammable and fire-resistant materials such as vermiculite boards and acoustic panels. Established in 2009, the company serves industrial clients and construction sectors with a broad product portfolio and maintains a professional web presence with multi-language support. The website is well-structured, providing clear navigation and contact options, including phone, email, and contact forms, alongside active social media channels. Technically, the site uses modern JavaScript libraries and frameworks like jQuery, Bootstrap, and Owl Carousel, hosted likely on Czech infrastructure consistent with the domain's WHOIS data. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and published security policies. Privacy compliance is partial due to the absence of a dedicated privacy policy page. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

S

Státní zemědělská a potravinářská inspekce

potravinynapranyri.cz

59

Potravinynapranyri.cz is an official Czech government website operated by the Státní zemědělská a potravinářská inspekce (State Agricultural and Food Inspection Authority). The platform provides transparent public information about non-compliant, adulterated, and unsafe food products identified through official inspections, as well as details on closed food establishments and risky websites. It serves consumers and regulatory bodies by offering searchable data and thematic reports to enhance food safety awareness and consumer protection in the Czech Republic. Technically, the website uses a custom CMS with jQuery and bxSlider libraries, and integrates a government-standard cookie consent mechanism. The site is mobile-optimized, accessible, and performs moderately well. Hosting is consistent with Czech domain registration and uses HTTPS securely. Privacy and cookie policies are comprehensive and GDPR compliant, with no detected tracking or advertising services. Security posture is solid with HTTPS and secure form handling, though HTTP security headers are not explicitly detected. No vulnerabilities or WAF blocking were found. The domain WHOIS data aligns with the website's government affiliation and long-standing operation since 2012, indicating high legitimacy and trustworthiness. Overall, the site is a credible, well-maintained government resource with good privacy and security practices, serving an important public safety function.

A

Asociace muzeí a galerií České republiky, z. s.

cz-museums.cz

48

Asociace muzeí a galerií České republiky (AMG) is a prominent non-profit professional association dedicated to museums and galleries in the Czech Republic. It serves as the largest professional body in the museology sector, providing services such as promotion, education, event organization, and publishing. The website reflects a well-maintained digital presence with clear navigation and regularly updated content, targeting museum professionals and cultural institutions. Technically, the site employs modern JavaScript libraries and frameworks including jQuery, Bootstrap, and JSF, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and implements cookie consent mechanisms but lacks explicit security headers and privacy policies, which are recommended for enhanced compliance and protection. Overall, the website is trustworthy and professional, though improvements in privacy disclosures and security hardening would strengthen its posture.

S

Správa jeskyní České republiky

caves.cz

63

Správa jeskyní České republiky is the official governmental entity responsible for managing and promoting caves in the Czech Republic. The website provides comprehensive visitor information, educational resources, online ticketing, and event services. It serves a broad audience including tourists, schools, and researchers, positioning itself as the authoritative source for cave-related activities and conservation in the country. The site is well-branded and consistent with government standards, featuring multiple language options and partner affiliations with recognized organizations. Technically, the website is built on Drupal 10 with modern frameworks like Bootstrap and jQuery UI, ensuring good mobile responsiveness and accessibility. The site loads at a moderate speed and includes SEO best practices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which is unusual but may be due to CZ NIC policies. Despite this, the website's content, official contact information, and partner links strongly indicate legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant. No incident response or vulnerability disclosure information is published, which could be improved. Overall, the website is professional, trustworthy, and serves its governmental and public service role effectively. Strategic improvements in security headers and transparency around incident response would enhance its security posture further.

The website www.kacr.cz represents the Komora Auditorů České Republiky, a professional self-regulatory organization established by Czech law to oversee the auditing profession. It serves auditors, accounting professionals, and members of the auditing community in the Czech Republic by providing services such as auditor registries, professional education, publications, conferences, and quality control. The site is well-branded and consistent with its government and professional positioning. Technically, the website employs modern JavaScript libraries including jQuery, jQuery UI, and Slick Carousel, and integrates Google Tag Manager and Google Analytics with a privacy-conscious default denial of tracking until consent is given. The site is mobile responsive, accessible, and SEO optimized, though it lacks some advanced security headers and a published privacy policy. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but does not expose security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. The absence of WHOIS data limits domain trust assessment, but the professional presentation and clear contact details support legitimacy. Overall, the site is a credible and professional resource for the auditing community in the Czech Republic, with moderate technical maturity and good security posture. Recommendations include publishing a privacy policy, adding security headers, and clarifying domain registration details to enhance trust and compliance.

S

Správa železnic, státní organizace

spravazeleznic.cz

60

Správa železnic is a Czech state organization responsible for managing the national railway infrastructure. The website serves multiple audiences including passengers, suppliers, contractors, and job seekers, providing comprehensive information about projects, services, and organizational structure. The site is well-structured with clear navigation and multilingual support, reflecting a mature digital presence. Technically, the website is built on the Liferay CMS platform and utilizes modern JavaScript libraries such as jQuery, Slick Carousel, and Unite Gallery. It integrates analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook Pixel, indicating a focus on user engagement and data-driven insights. The site is mobile-optimized and performs moderately well. From a security perspective, the site enforces HTTPS and includes privacy and cookie policies compliant with GDPR. However, no explicit security headers were detected in the provided data, and no vulnerability disclosure or security.txt files were found. The absence of WHOIS data limits domain trust verification, but the official nature and content quality suggest legitimacy. Overall, the website presents a professional and trustworthy digital front for a major government transportation entity, with room for improvement in security header implementation and domain registration transparency.

U

Unie zaměstnavatelských svazů ČR

uzs.cz

49

Unie zaměstnavatelských svazů ČR is a major Czech employers' association representing a broad spectrum of sectors including public services, healthcare, energy, education, and finance. The organization serves over 20,000 member organizations and nearly a million employees, positioning itself as a dominant voice in the Czech Republic's employer landscape. The website reflects this professional stature with clear navigation, sector-specific content, and partnership references. Technically, the site employs common web technologies such as jQuery, Google Tag Manager, and ShareThis for social sharing and analytics, indicating a moderate level of digital maturity. However, the absence of WHOIS data and lack of explicit privacy and security policies suggest areas for improvement in transparency and compliance. Security posture is moderate with HTTPS implied but missing explicit security headers and vulnerability disclosures. Overall, the site is safe, professional, and targeted at a general audience of employers and stakeholders.

G

GEOFUN, s.r.o.

geofun.cz

57

GEOFUN, s.r.o. operates a Czech-language platform offering mobile geolocation games designed for educational and recreational purposes. The website targets a broad audience including children, families, and educational institutions, providing games that encourage outdoor exploration and learning. The company maintains a moderate market presence with active user engagement and social media integration. Technically, the website employs a modern tech stack including jQuery, Leaflet.js for mapping, and video playback technologies, supporting both web and mobile platforms. While the site is well-designed and content-rich, it lacks some advanced accessibility features and comprehensive cookie consent mechanisms. Security-wise, the site uses HTTPS and anonymizes IPs in analytics but lacks visible security headers and formal vulnerability disclosure policies. The absence of WHOIS data limits domain trust assessment, though the business information and content quality suggest a legitimate operation. Overall, the site is professional and trustworthy but could improve in privacy compliance and security transparency.

I

INET-SERVIS.CZ, s.r.o.

dobraprace.cz

54

Dobrá práce.cz is a Czech job portal operated by INET-SERVIS.CZ, s.r.o., providing a comprehensive platform for job seekers and employers. The site offers job listings categorized by region and industry, CV submission services, email job alerts, and employer advertising options. It targets primarily the Czech job market with some international listings. Technically, the site uses modern web technologies including Bootstrap, jQuery UI, Google Analytics, and Microsoft Clarity, with a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS and secure cookie flags, though some security headers could be improved. The absence of WHOIS data due to privacy protection slightly impacts trust but is common for this business type. Overall, the site is professional, user-friendly, and trustworthy for its audience.

Č

Český plynárenský svaz

eshopcps.cz

56

Český plynárenský svaz operates an e-commerce platform focused on selling gas industry publications, subscriptions, and technical standards primarily for professionals in the Czech gas sector. The website is built on the PrestaShop CMS platform and provides a clear, professional user experience with good mobile optimization and navigation. Contact information and cookie consent mechanisms are properly implemented, supporting compliance with EU privacy regulations. However, the absence of WHOIS registration data reduces domain trustworthiness and warrants further verification. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and incident response information.

B

BDO

ethicshotline.eu

60

BDO Ethics Hotline is a specialized platform designed to facilitate whistleblower notifications in compliance with the EU Directive on whistleblower protection. The service is primarily targeted at organizations and individuals within the European Union seeking a secure and anonymous channel to report unethical or illegal activities. The website leverages the reputable BDO brand, a well-known international network of independent accounting and consulting firms, enhancing its credibility and trustworthiness in the compliance sector. Technically, the website employs modern web technologies including jQuery, Bootstrap, and CKEditor, ensuring a responsive and user-friendly interface. The presence of CSRF tokens in forms indicates attention to security in data submission processes. However, the site lacks visible security headers and cookie consent mechanisms, which are important for comprehensive security and privacy compliance. The hosting and domain registration are consistent with the Czech Republic location and BDO's regional presence. From a security perspective, the site enforces HTTPS and includes basic protections but could improve by implementing additional security headers and publishing clear security policies and incident response contacts. No vulnerabilities or malicious content were detected. Overall, the website presents a professional and trustworthy platform for whistleblower reporting, though enhancements in privacy compliance and security transparency are recommended.

Č

Česká unie sportu z.s.

lazadov.cz

52

Lyžařský areál Zadov is a regional ski and outdoor recreational area located in the Šumava region of the Czech Republic. The website provides information about ski lifts, bike rentals, accommodation options, webcams, and upcoming events. The business operates seasonally with a focus on winter sports and summer outdoor activities, targeting tourists and sports enthusiasts. The site is professionally designed with consistent branding and offers multilingual support (Czech and German). The parent organization is Česká unie sportu z.s., indicating a formal sports union affiliation. Technically, the website uses common JavaScript libraries such as jQuery, Flexslider, and Fancybox, along with Google Analytics and a cookie consent mechanism. The site is mobile-optimized and includes social media integration via Facebook, Twitter, and Instagram. However, no CMS or hosting provider details are explicitly identified. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks advanced security headers and a public vulnerability disclosure policy. WHOIS data is unavailable, which reduces transparency and trustworthiness. The expired certification shown on the site should be updated or removed to avoid confusion. Overall, the security posture is adequate but could be enhanced with additional best practices. The overall risk assessment is moderate. The site appears legitimate and serves a clear business purpose, but the lack of WHOIS transparency and some security best practices suggest areas for improvement. Strategic recommendations include implementing security headers, publishing a security.txt file, updating certifications, and enhancing privacy and accessibility compliance.

The Deutscher Wetterdienst (DWD) is Germany's national meteorological service, providing comprehensive weather and climate data, forecasts, warnings, and environmental consulting. The website serves both professional users and the general public with detailed meteorological information and research insights. It holds a strong market position as a government authority in weather and climate services. Technically, the site uses a government-specific CMS with modern web technologies, ensuring good performance, accessibility, and mobile optimization. Security posture is solid with HTTPS and privacy-conscious features, including consent mechanisms for third-party content. However, explicit security headers and a published security policy could enhance the security maturity. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations.

S

Studio Virtualis s.r.o.

virtualis.cz

47

Studio Virtualis s.r.o. is a small, family-owned web and graphic design studio based in Olomouc, Czech Republic, operating since 2000. The company specializes in professional web design, e-commerce solutions, branding, marketing, and web hosting services, targeting small and medium-sized businesses primarily in the local region. Their website reflects a consistent and professional brand image with clear service offerings and client references. Technically, the site uses a modern but somewhat dated technology stack including jQuery 1.11.3, Bootstrap, and Google services for analytics and tag management. Security posture is generally good with HTTPS enforced and reCAPTCHA integration; however, the absence of advanced security headers and use of an older jQuery version present moderate risks. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a detailed privacy policy in Czech. The lack of WHOIS data for the domain reduces trustworthiness and suggests a need for further verification of domain registration status. Overall, the website is professional, user-friendly, and compliant with privacy regulations, but could improve security hardening and transparency around domain registration.

A

Akademie věd České republiky

avcr.cz

59

Akademie věd České republiky is a prominent public non-university research institution in the Czech Republic, focusing on scientific research, public education, and technology transfer. The website serves as a comprehensive portal for news, events, publications, and multimedia content related to the academy's activities. It targets scientists, educators, students, media, and the general public interested in science and research. The institution holds a leading position in the Czech scientific community, offering a broad range of services including research support, international cooperation, and public outreach.

Q

QUANDA

onquanda.com

59

Quanda operates a marketing tools platform focused on survey and marketing automation services, targeting marketing professionals and businesses. The website analyzed is a login portal for users to access these services. The technical infrastructure includes legacy JavaScript libraries such as jQuery 1.7.2, modern tools like TinyMCE for content editing, and Sentry for error tracking. While the site is functional and professionally designed, it lacks modern security headers and uses outdated libraries that could expose it to vulnerabilities. Privacy and cookie policies are absent on this login page, indicating potential compliance gaps. Overall, the security posture is moderate but requires improvements to meet best practices. The domain WHOIS data for the subdomain is unavailable, which is typical for subdomains, but limits trust verification. The site is accessible without WAF or blocking mechanisms.

M

Město Frýdlant

enjoyfrydlant.cz

61

The website www.enjoyfrydlant.cz serves as the official tourist information portal for the city of Frýdlant, Czech Republic. It provides comprehensive information about local events, cultural activities, services, and city history, targeting tourists and residents interested in exploring the region. The site is operated under the auspices of the local government, as evidenced by official contact details and municipal branding. The business model focuses on promoting tourism and local culture through an accessible online platform. Technically, the website is built on the Public4u CMS platform and utilizes common web technologies such as jQuery and JavaScript. The site is served over HTTPS, ensuring encrypted communication, but lacks advanced security headers which could enhance protection. The design is professional with good navigation and multilingual support, though mobile optimization and accessibility are basic. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site maintains a good baseline with HTTPS but could improve by implementing security headers and publishing explicit privacy and security policies. The absence of WHOIS data for the domain is a concern, as it limits the ability to verify domain ownership and age, slightly reducing trustworthiness. However, the presence of official contact information and consistent branding supports legitimacy. Overall, the website is a reliable and informative resource for visitors to Frýdlant, with moderate technical sophistication and a solid security posture. Strategic improvements in security headers, privacy documentation, and domain registration transparency would enhance trust and compliance.

ANTEE s.r.o. is a well-established Czech company specializing in comprehensive web services including custom website creation, online marketing, hosting, and content management via their proprietary IPO system. With over 20 years of experience and more than 3000 regular customers, they hold a strong market position in the Czech Republic's digital services sector. Their offerings target businesses, municipalities, schools, and organizations seeking professional web and marketing solutions. Technically, the website employs a mature technology stack with modern analytics and marketing tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and reCAPTCHA usage, though some security headers and explicit policies could be improved. The absence of WHOIS data reduces domain trustworthiness but does not detract from the professional presentation and clear contact information. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance.

M

Ministerstvo dopravy ČR

mdcr.cz

62

The website md.gov.cz is the official online presence of the Ministry of Transport of the Czech Republic, serving as a comprehensive portal for transport-related news, documents, statistics, and public services. It targets Czech citizens, transport professionals, government officials, and media, providing authoritative information on vehicle registration, driver licensing, traffic safety, and infrastructure projects. The site is well-branded and consistent with government standards, reflecting a large-scale government entity. Technically, the site is built on ASP.NET WebForms with Kentico CMS, leveraging modern JavaScript libraries such as jQuery, SweetAlert, and Hotjar for user interaction and analytics. The site is mobile-optimized with good SEO and accessibility features, though some improvements in security headers could be made. HTTPS is enforced, and cookie consent mechanisms are implemented, indicating a mature digital infrastructure. From a security perspective, the site demonstrates good practices including CSRF protection and secure form handling. However, no explicit security policy or incident response information is published, and security headers are not explicitly detected. The absence of WHOIS data is noted but likely due to CZ NIC registry policies rather than malicious intent. No vulnerabilities or suspicious domains were found. Overall, md.gov.cz presents a trustworthy, professional government website with a solid security posture and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to further strengthen security and trust.

T

Tým silniční bezpečnosti

dopravnivychova.cz

54

Markétina dopravní výchova (MDV) is a Czech educational initiative focused on experiential traffic safety education for children, teachers, and parents. It provides a variety of educational resources including videos, interactive games, e-tests, downloadable teaching aids, and accredited seminars for educators. The project is supported by multiple government ministries and safety organizations, positioning it as a trusted resource in the Czech Republic's traffic safety education sector. The website is well-structured, visually consistent, and targets a broad audience involved in traffic education and safety awareness. Technically, the website employs a modern JavaScript stack including jQuery, Bootstrap, and Slick Slider, with integration of Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile responsive and uses HTTPS, but lacks some advanced security headers and explicit privacy and terms of service pages. Cookie consent is implemented with detailed user options, reflecting a moderate level of privacy compliance. From a security perspective, the site shows good practices such as HTTPS enforcement and no visible sensitive data exposure. However, the absence of WHOIS data and lack of explicit contact information or security policies reduce overall trustworthiness. No vulnerabilities or malware indicators were detected in the provided content. Overall, MDV presents a credible, well-maintained educational platform with strong institutional partnerships but would benefit from enhanced transparency in privacy policies, contact information, and security disclosures to improve trust and compliance.

E

eUbytko.cz

eubytko.cz

55

eUbytko.cz is an established online accommodation booking platform focused on the Czech Republic market. It offers a wide range of lodging options including apartments, pensions, hotels, cottages, and wellness resorts, targeting tourists and travelers seeking vacation stays within the country. The website features rich content, including categorized accommodation listings, travel guides, and blog articles, enhancing user engagement and decision-making. Technically, the site employs modern JavaScript libraries such as jQuery, Owl Carousel, and Google Tag Manager, with asynchronous script loading to optimize performance. SEO is supported through structured data (JSON-LD) and Open Graph metadata, improving search engine visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit privacy and terms of service pages are not clearly found. The WHOIS data is privacy protected, which is common and justified for this business type. Overall, the site demonstrates a mature digital presence with good usability and trust indicators.

H

Hotel Kraví Hora

kravihora.cz

49

Hotel Kraví Hora is a small hospitality business located in Bořetice, Czech Republic, specializing in accommodation, dining, conference hosting, wellness, and wine tourism services. The website presents a professional and consistent brand image targeting corporate teams, sports clubs, couples, families, and groups interested in wine and leisure experiences in the South Moravian region. The business leverages partnerships with local wine producers and regional tourism organizations to enhance its market position. Technically, the website uses a custom CMS by ActiveMedia and incorporates modern JavaScript libraries such as jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Cookie consent and privacy policies are implemented in compliance with GDPR, reflecting a good level of digital maturity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms but lacks publicly available security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to privacy protection limits transparency but is typical for small hospitality businesses. Overall, the website is trustworthy and professionally maintained, with recommendations to enhance security posture by publishing security policies, incident response information, and adding security headers. Continued monitoring of third-party scripts and compliance with privacy regulations is advised.

M

Restaurace, obědy, polední a denní menu v Praze 1 | Meníčka.cz

menicka.cz

56

Menicka.cz is an online platform specializing in providing daily and lunch menus, restaurant event promotions, job offers in hospitality, and discount deals primarily focused on Prague 1 and other Czech cities. The website targets general consumers looking for dining options and hospitality job seekers. Technically, the site employs a variety of modern web technologies including Google Analytics, Microsoft Clarity, Google Maps API, and several JavaScript libraries to enhance user experience and track engagement. The security posture is adequate with HTTPS enforced and reCAPTCHA implemented on forms, but could benefit from additional security headers and updating legacy libraries. Privacy compliance is limited as no explicit privacy policy or terms of service were found, though a cookie policy with consent mechanism is present. The absence of WHOIS data reduces domain transparency and trustworthiness, but the website content and structure appear professional and legitimate. Overall, the site is functional and serves its niche well but should improve transparency and security practices to enhance trust and compliance.

O

OSIGENO s.r.o.

profilzadavatele-vz.cz

44

The website profilzadavatele-vz.cz serves as a certified electronic tool for public procurement tenders in the Czech Republic, operated by OSIGENO s.r.o. It provides a platform for public contracting authorities and suppliers to manage and access public tenders, with a focus on compliance with Czech procurement laws. The site targets government entities, suppliers, and the general public interested in public contracts. The business is positioned as a trusted provider of electronic tendering services with official certifications and audit compliance. Technically, the site uses legacy JavaScript libraries such as jQuery and CKEditor, with a custom CMS and basic mobile and accessibility features. Security posture is moderate, with password-protected login forms but lacking advanced security headers and cookie consent mechanisms. No blocking or WAF challenges were detected, and the domain is well established since 2011, consistent with the business history. Overall, the site is functional and trustworthy but could improve in security and privacy compliance aspects.

Z

ZONER a.s.

zonerama.com

67

Zonerama is a technology company operating an online photo and video gallery platform offering unlimited free hosting with no limits on photo quantity or quality. It targets photographers and enthusiasts globally, providing privacy controls and integration with Zoner Studio photo editing software. The website demonstrates a mature digital infrastructure using modern web technologies and social media integration. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not found. WHOIS data for the subdomain is unavailable but consistent with normal subdomain usage under the main zonerama.com domain. Overall, the platform is professional, trustworthy, and well-positioned in the niche market of unlimited photo hosting.

A

as4u.cz, s.r.o.

poznejlitovel.cz

61

Poznej Litovel is an official city tourism and information portal for Litovel, Czech Republic, providing comprehensive details on local culture, tourism, accommodation, services, and events. The website targets tourists and local visitors, serving as a regional hub for promoting the city's attractions and activities. The business model appears to be supported by local government or municipal funding, focusing on community engagement and tourism promotion. Technically, the website employs a custom CMS called Public4u, leveraging common JavaScript libraries such as jQuery and Swiper.js for interactive elements. The site includes a Google Translate widget for multilingual support and demonstrates moderate performance with good mobile optimization. However, accessibility features are basic, and SEO optimization is minimal. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. No advanced security headers or explicit security policies were detected, and no vulnerability disclosure or incident response information is provided. The absence of WHOIS data reduces domain transparency and trustworthiness, although the website content and social media presence support its legitimacy. Overall, the website is professionally designed with good content quality and user experience but would benefit from enhanced security practices and improved transparency regarding domain registration and contact information.

Městská knihovna Litovel operates as a public library serving the Litovel community in the Czech Republic. The website provides comprehensive information about library services, including lending for children and adults, electronic books, internet access, regional functions, and cultural events. The target audience primarily consists of local readers and visitors interested in library resources and activities. The business model is that of a public institution focused on education and cultural enrichment. Technically, the website is built on the Public4u CMS platform and utilizes jQuery and JavaScript for interactive features. While the site is functional and moderately optimized, mobile responsiveness and accessibility could be improved. The site enforces HTTPS and includes cookie consent mechanisms, indicating a baseline of privacy compliance. From a security perspective, the site lacks advanced security headers and does not expose sensitive data or vulnerable libraries. No security incidents or policies are publicly documented. The absence of WHOIS data limits domain trust assessment, but the website content and external links suggest legitimacy. Overall, the site maintains a good security posture for a small public institution but could benefit from enhanced security best practices. The overall risk is low given the nature of the business and content, but improvements in technical implementation and security hardening are recommended to maintain trust and compliance.

Městský klub Litovel is a small, community-focused cultural institution based in Litovel, Czech Republic. It provides a variety of cultural events, including concerts, theater performances, exhibitions, and educational programs, targeting local residents and visitors interested in cultural activities. The website serves as an information portal and ticket sales platform, reflecting its role as a local cultural hub. The organization appears to be non-profit and closely linked with local government and cultural partners, as evidenced by partner logos and contact information.

M

Mikroregion Litovelsko

litovelsko.eu

66

Mikroregion Litovelsko is a regional governmental association representing 23 municipalities in the Czech Republic, focused on promoting local tourism, culture, and community engagement. The website serves as an information hub for residents and visitors, providing news, event calendars, official documents, and regional highlights. The organization positions itself as a key local government entity with a strong community orientation. Technically, the website is built on the Public4u CMS platform, utilizing jQuery, Mapy.cz APIs for interactive maps, and other JavaScript libraries to enhance user experience. The site is mobile-optimized with good navigation and content structure, although some accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating compliance with GDPR. However, no advanced security headers or incident response information is present, suggesting room for improvement in security posture. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the website is trustworthy, professionally maintained, and aligned with its governmental purpose. The lack of WHOIS data is due to privacy protection by the registry, which is common for such entities. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.

M

Město Frýdlant

mesto-frydlant.cz

61

Město Frýdlant operates an official municipal website serving residents, tourists, and local businesses by providing comprehensive information about local government, events, public notices, and community services. The site is positioned as the authoritative source for municipal information in the Frýdlant region of the Czech Republic. The business model is focused on public service and information dissemination, targeting a broad audience including citizens and visitors. Technically, the website uses a proprietary CMS called Public4u, supplemented by common JavaScript libraries such as jQuery and jQuery UI. It integrates analytics tools like Google Analytics and Smartlook for user behavior tracking. The site is served over HTTPS, ensuring encrypted communication, and includes a cookie consent mechanism aligned with GDPR requirements. However, mobile optimization and accessibility features are basic, and no advanced security headers were detected. From a security perspective, the website demonstrates a moderate security posture with HTTPS enforcement and privacy policies in place. There is no evidence of exposed sensitive data or vulnerable libraries, but the absence of security headers and incident response information indicates room for improvement. The lack of WHOIS data for the domain is a concern, reducing trust from a domain registration standpoint, though the website content and official contact details support its legitimacy. Overall, the website is functional, professional, and trustworthy for its intended municipal audience. Strategic improvements in security headers, mobile responsiveness, and transparency around security policies would enhance its security posture and user trust.

The website mojdelirest.sk serves as a dining portal login platform primarily targeting users who require access to dining services, likely employees or corporate clients. The business appears to be relatively new, founded in 2022, and operates within the hospitality sector in Slovakia. The portal provides a straightforward login interface with multi-language support but lacks visible comprehensive business or contact information on the login page. Technically, the site uses standard web technologies including jQuery, Bootstrap, and Chart.js, hosted on servers with name servers indicating Hungarian hosting providers. The site is mobile optimized and has basic accessibility features but lacks advanced SEO and security headers. Security posture is moderate with no visible vulnerabilities but missing key security headers and explicit HTTPS confirmation in the provided data. Privacy compliance is limited; while a cookie consent mechanism is present with a link to a GDPR document, no privacy policy or terms of service are found on the login page. Overall, the site is functional but could benefit from enhanced security, privacy disclosures, and richer business information to improve trust and compliance.

The website mujdelirest.cz serves as a multilingual dining portal login page, primarily targeting users who require access to dining services, likely employees or customers within the hospitality sector in the Czech Republic. The business appears to be relatively new, with domain registration dating back to early 2022. The portal provides a straightforward login interface with support for multiple languages, indicating an intent to serve a diverse user base. However, the site lacks visible business contact information, privacy policies, and terms of service on the login page, which limits transparency and user trust. Technically, the website employs common and reliable web technologies including jQuery, Bootstrap, Chart.js, and TinyMCE, suggesting a moderate level of digital maturity. The site is mobile-optimized and includes a cookie consent banner compliant with basic GDPR requirements, though no detailed privacy or security policies are presented. Performance appears moderate with no evident blocking or WAF interference. From a security perspective, the site uses secure form submission methods and password input types but lacks explicit security headers such as Content-Security-Policy or HSTS, which are recommended for enhanced protection. The absence of privacy and security policies, as well as contact information for incident response, indicates gaps in compliance and user assurance. The WHOIS data is transparent and consistent with the website's regional focus, supporting legitimacy. Overall, the website is functional and moderately secure but would benefit from improved transparency, enhanced security headers, and published privacy and security policies to strengthen user trust and compliance posture.

Č

Český hydrometeorologický ústav

chmi.cz

61

The Český hydrometeorologický ústav (ČHMÚ) is the Czech Republic's national meteorological and environmental authority, providing comprehensive weather forecasts, hydrological data, and air quality monitoring. The website serves a broad audience including the general public, government bodies, media, and business partners, offering detailed environmental data, news, and specialized services such as mobile applications. The organization holds ISO 9001 certification, reinforcing its credibility and commitment to quality. Technically, the website employs traditional web technologies including jQuery and JavaScript, with a moderate performance profile and basic mobile optimization. The site implements a robust cookie consent mechanism aligned with GDPR requirements, denying marketing and analytics cookies by default. While HTTPS is used, explicit security headers are not detected in the provided data, suggesting room for improvement in security hardening. Security posture is solid with no visible vulnerabilities or exposed sensitive data, but the absence of detailed incident response contacts and security headers indicates potential gaps. Privacy compliance is strong, supported by comprehensive privacy and cookie policies. The domain WHOIS data is unavailable due to CZ.NIC policies, but the domain usage and content strongly indicate legitimacy as a government entity. Overall, the website is professional, trustworthy, and content-rich, with recommendations to enhance security headers, mobile responsiveness, and incident response transparency to further strengthen its security and user trust.

K

Kup merch!

kupmerch.cz

55

Kup merch! is a Czech Republic based e-commerce platform specializing in the sale and production of merchandise across various projects. The website targets a general audience interested in branded merchandise, offering a range of products including clothing and accessories. The business operates primarily online with a niche market focus. Technically, the site uses a modern technology stack including jQuery, Google reCAPTCHA for bot protection, and Google Analytics for traffic analysis. The site is built on the Sirius CMS platform and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are not explicitly detected. Privacy compliance is partial, with no clear privacy policy or terms of service pages found, and no explicit contact information for security or business inquiries. WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

S

Samosebou.cz

samosebou.cz

41

Samosebou.cz is an educational website dedicated to promoting waste sorting and recycling awareness primarily in the Czech Republic. The platform offers a variety of content including articles, infographics, interactive dictionaries, and competitions aimed at educating the general public about proper recycling practices. The site targets environmentally conscious individuals and communities interested in sustainable waste management. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies such as Bootstrap and jQuery. It integrates analytics and user behavior tracking tools like Google Analytics and Hotjar, and implements cookie consent mechanisms to comply with privacy regulations. Security-wise, the site enforces HTTPS and shows good SSL configuration but lacks explicit security headers and publicly available security policies. The absence of WHOIS data for the domain reduces the trustworthiness score, although the website content and technical setup appear professional and legitimate. Overall, the site provides valuable environmental education content with a moderate to good security posture and privacy compliance.

M

Město Čelákovice

celakovice.cz

56

Město Čelákovice operates as the official municipal government website for the town of Čelákovice in the Czech Republic. It provides residents and visitors with comprehensive information about city administration, public services, events, and contact details. The website is positioned as a trusted local government resource with a focus on transparency and community engagement. The business model is public service oriented, targeting local citizens and stakeholders. Technically, the website uses the Public4u CMS platform with common JavaScript libraries such as jQuery and Swiper.js for UI enhancements. The site is mobile optimized and provides a moderate performance experience. SEO and accessibility are basic but functional. The site employs HTTPS and a cookie consent mechanism, reflecting awareness of privacy regulations. From a security perspective, the site has a good SSL configuration but lacks explicit security headers and published security policies. No vulnerabilities or tracking scripts were detected, indicating a privacy-conscious approach. The absence of WHOIS data reduces domain trust slightly, but the official nature and content quality support legitimacy. Overall, the site is a well-maintained municipal portal with good content quality and user experience. Strategic improvements in security headers, incident response transparency, and WHOIS data clarity would enhance trust and compliance.

The website www.tpcr-turnov.cz serves as an informational portal focused on promoting local landmarks and tourism in Turnov, Czech Republic. It provides links to partner sites such as the Valdštejn Castle, Synagogue Turnov, and the local information center. The site uses the Public4u CMS platform and relies on traditional web technologies like jQuery and CSS. The content is primarily in Czech with language options for English, German, and Polish, targeting a general audience interested in cultural and historical tourism. The site lacks detailed business information and contact data, which limits its business credibility.

V

Vydavatelství KAM po Česku s.r.o.

kampocesku.cz

63

KAM po Česku is a Czech Republic-based tourism media portal offering comprehensive travel information, event calendars, magazines, and e-commerce services focused on domestic tourism. The website targets a general audience interested in cultural events, family activities, and travel within the Czech Republic and neighboring regions. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Google Analytics, and reCAPTCHA, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement and CAPTCHA protections on forms, though some security headers and explicit incident response policies are absent. Overall, the site demonstrates good digital maturity and compliance with GDPR, supported by visible privacy and cookie policies. The domain registration is consistent and transparent, reinforcing trustworthiness.

M

Městský úřad Litovel

litovel.eu

59

The website www.litovel.eu serves as the official digital portal for the city of Litovel, Czech Republic. It provides comprehensive municipal information, citizen services, event calendars, official announcements, and tourism-related content. The site targets residents and visitors, positioning itself as a trusted local government resource. The business model is that of a government municipal service portal, focusing on transparency and community engagement. Technically, the site employs a modern yet straightforward technology stack including jQuery, Google Tag Manager, and a custom CMS named Public4u. It integrates accessibility features such as a voice assistant and supports multiple languages via Google Translate. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and a published security policy or vulnerability disclosure program. Cookie consent and privacy policies are implemented, indicating basic GDPR compliance. The absence of WHOIS data limits transparency but does not detract from the site's legitimacy given its official nature. Overall, the site presents a low-risk profile with a solid foundation for municipal digital services. Strategic improvements in security headers, incident response transparency, and enhanced privacy disclosures would further strengthen its posture.

Synagoga Turnov is a cultural heritage website dedicated to the Jewish synagogue and related historical sites in Turnov, Czech Republic. The site provides information on exhibitions, cultural programs, educational offers, and fundraising activities. It targets tourists, local visitors, and educational institutions, operating primarily as a non-profit cultural institution. The website is built on the Public4u CMS platform and uses jQuery libraries, offering a moderate level of technical sophistication with basic mobile optimization and accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and anti-CSRF protections. Privacy compliance is good with a visible cookie consent mechanism and privacy policy in Czech. The absence of WHOIS data reduces domain trustworthiness, but the website content and external references support legitimacy. Overall, the site is professional, informative, and trustworthy for its cultural mission.

M

Město Turnov

hrad-valdstejn.cz

63

Hrad Valdštejn is a cultural heritage and tourism website representing a historic castle located in the Český ráj region of the Czech Republic. The site is operated by the municipal government entity Město Turnov and offers visitors information about the castle's history, exhibitions, events, and visitor services. The website targets tourists, families, and cultural visitors interested in regional heritage and events. The business model is primarily tourism and cultural promotion supported by local government funding. Technically, the website uses a custom CMS called Public4u, with frontend technologies including jQuery, jQuery UI, and Google Web Fonts. The site is moderately optimized for performance and mobile devices, with good SEO practices and clear navigation. Cookie consent mechanisms are implemented, but no explicit privacy policy page was found. Security headers are not evident in the provided HTML content, and WHOIS data for the domain is missing, which limits trust verification. From a security perspective, the site uses HTTPS and has a cookie consent banner, but lacks visible security headers and documented incident response or vulnerability disclosure policies. No critical vulnerabilities or adult content were detected. The absence of WHOIS data and privacy policy are notable gaps that reduce overall trust and compliance scores. Overall, the website is a well-structured, content-rich portal for a regional cultural site with moderate technical maturity and some security and compliance improvements recommended. Strategic focus should be on enhancing security headers, publishing privacy policies, and verifying domain registration details to improve trustworthiness and compliance.

Regionální turistické informační centrum Turnov operates as a regional tourism information portal focused on the city of Turnov and the Český ráj region. The website provides comprehensive information about local tourist destinations, cultural events, sports, services, and photo/video galleries, targeting tourists and visitors interested in exploring the area. The business model centers on promoting regional tourism and supporting visitor engagement through event calendars and partner collaborations. Technically, the website is built on the Public4u CMS platform, utilizing jQuery, jQuery UI, and Leaflet.js for interactive maps. The site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, no explicit security headers were detected, and there is no visible incident response or vulnerability disclosure information. The absence of WHOIS data limits domain registration insights, but the website's professional presentation and valid contact details support its legitimacy. Overall, the website is a well-maintained regional tourism portal with a solid content offering and acceptable security posture. Strategic improvements in security headers, incident response transparency, and WHOIS data availability could enhance trust and compliance.

C

CGI IT Czech Republic s.r.o.

jiz50.cz

50

The website jiz50.cz represents the official platform for the 59th edition of the ČEZ Jizerská 50, a prestigious cross-country skiing race in Central Europe. The event is organized by CGI IT Czech Republic s.r.o. and targets both professional and hobby skiers. The site provides comprehensive information about the races, registration, results, partners, and charity initiatives, positioning itself as a leading event in the regional winter sports calendar. The business model revolves around event management, sponsorship, merchandise sales, and community engagement.

D

Destinační společnost Hradecko, z. s.

hkinfo.cz

45

The website www.hkinfo.cz serves as the official tourist information center for Hradec Králové, Czech Republic, operated by Destinační společnost Hradecko, z. s. It provides comprehensive local cultural event calendars, ticket sales, guided tours, souvenirs, and regional products, targeting tourists and local residents interested in cultural and leisure activities. The site is well-branded, consistent, and integrates multiple partner organizations, enhancing its credibility within the local tourism ecosystem. Technically, the site uses a variety of JavaScript libraries and frameworks including jQuery, Bootstrap, and Google Analytics, with a CMS identified as Mijahoo 2.05. The site is moderately optimized for performance and mobile use, with good SEO practices evident.