Security Directory

S

Společnost všeobecného lékařství

svl.cz

56

Společnost všeobecného lékařství (SVL) is a well-established Czech professional medical society focused on general practitioners. Founded in 1999, it operates under the umbrella of the Czech Medical Society J. E. Purkyně (ČLS JEP). The organization provides its members with recommended medical procedures, educational events such as webinars, seminars, and conferences, specialist training, and publishes a professional monthly journal called Practicus. The website targets healthcare professionals, offering specialized content and resources to support their practice and professional development. The business model is non-profit and educational, emphasizing professional collaboration and knowledge dissemination within the Czech healthcare sector. Technically, the website is built using modern web standards including HTML5, CSS, and JavaScript, with Google Fonts and Google Analytics integrated for typography and analytics respectively. The site is generated using Websy 4 CMS and hosted by WEDOS, a reputable Czech hosting provider. The website demonstrates good mobile optimization and SEO practices, with clear navigation and professional design. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and includes a cookie consent mechanism, indicating basic privacy compliance. However, it lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms domain registration consistency and legitimacy, with a domain age appropriate for the organization's history. Overall, SVL's website is a credible, professional platform serving the Czech medical community with relevant content and services. Security and privacy practices are adequate but could be improved by adding formal security policies and headers. The site is safe, free from adult or questionable content, and demonstrates a high level of trustworthiness suitable for its professional audience.

Ú

Ústav zdravotnických informací a statistiky ČR

novorozeneckyscreening.cz

61

The website novorozeneckyscreening.cz serves as the official national portal for newborn screening programs in the Czech Republic, operated by the Ústav zdravotnických informací a statistiky ČR (Institute of Health Information and Statistics of the Czech Republic). It provides comprehensive information about various newborn screening programs including laboratory screening, hearing screening, congenital cataract screening, and hip dysplasia screening. The site targets healthcare professionals, parents, and public health stakeholders, positioning itself as a key resource in the national healthcare infrastructure for early disease detection in newborns. Technically, the website employs modern web technologies including JavaScript and the Foundation CSS framework, hosted on websupport.cz. It features responsive design and accessibility considerations, with a cookie consent mechanism linking to the parent institution's privacy and cookie policies. While no explicit security headers were detected in the HTML, HTTPS is implied by canonical URLs, and no blocking or WAF mechanisms interfere with content access. From a security perspective, the site demonstrates good baseline practices such as cookie consent and HTTPS usage, but lacks visible advanced security headers and explicit incident response or security policies on the site. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain registration consistency and legitimacy, with a domain age appropriate for the institutional nature of the site. Overall, the website is a trustworthy, professionally maintained public health resource with good content quality and technical implementation. Strategic improvements could include enhancing security headers, publishing explicit security and incident response policies, and expanding privacy disclosures directly on the site to further strengthen compliance and trust.

Ú

Ústav zdravotnických informací a statistiky ČR

mamo.cz

53

The website mamo.cz represents the National Breast Cancer Screening Program in the Czech Republic, operated by the Ústav zdravotnických informací a statistiky ČR (Institute of Health Information and Statistics of the Czech Republic). It serves as an authoritative public health resource providing information on breast cancer screening, prevention, and related epidemiological data. The site targets Czech women, healthcare professionals, and institutions, offering services such as online counseling, appointment scheduling, and educational content. It holds a strong market position as a government-supported program with EU funding and partnerships with multiple official health organizations. Technically, the website employs modern web technologies including HTTPS, JavaScript, and the Foundation CSS framework. It integrates Google Tag Manager for analytics and implements a cookie consent mechanism, indicating a moderate level of digital maturity. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and secure form handling but lacks explicit security headers and published privacy or incident response policies. No WHOIS data was retrievable, which slightly reduces trustworthiness, though the website's content and official partnerships strongly indicate legitimacy. No vulnerabilities or suspicious content were detected. Overall, the website is a credible, well-maintained public health portal with room for improvement in transparency around privacy policies and security disclosures. Strategic recommendations include publishing detailed privacy and security policies, adding incident response information, and enhancing security headers to strengthen trust and compliance.

H

HOSTINGER operations, UAB

akcijos.lt

51

Akcijos.lt is a Lithuanian-based online platform specializing in aggregating promotional leaflets and discount catalogs from popular retail stores. It serves consumers seeking to find the best deals and discounts conveniently in one place, covering a wide range of retail sectors including food, household goods, electronics, and health products. The platform is positioned as a popular and trusted aggregator within the Lithuanian retail market, supported by a medium-sized business entity founded in 2018 and hosted by HOSTINGER operations, UAB. Technically, the website leverages modern web technologies including Vue.js with Nuxt.js framework, Google Tag Manager, and Google Adsense for advertising. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although accessibility could be further enhanced. Hosting and DNS are managed by reputable providers, and the site enforces HTTPS with strong security headers, contributing to a solid security posture. From a security perspective, the site follows best practices such as HTTPS enforcement, use of security headers, and secure form inputs. However, it lacks explicit security policies and incident response contact channels, which are recommended for improved transparency and readiness. Privacy and cookie policies are present and indicate GDPR compliance, with consent mechanisms implemented. No critical vulnerabilities or suspicious content were detected. Overall, Akcijos.lt presents a trustworthy and professional online presence with a good balance of content quality, technical implementation, and security. Strategic improvements could focus on publishing detailed security policies, enhancing accessibility, and formalizing incident response procedures to further strengthen trust and compliance.

Č

Česká odborná společnost klinické farmacie, z.s.

coskf.cz

58

Česká odborná společnost klinické farmacie, z.s. (ČOSKF) is a professional non-profit organization dedicated to setting standards and methodologies for clinical pharmacists in the Czech Republic. Founded in 2011, it serves a specialized audience of clinical pharmacy professionals and healthcare providers, offering education, working groups, and published guidelines to advance clinical pharmaceutical care. The organization maintains a professional web presence with active content updates and social media engagement, positioning itself as a key player in the Czech healthcare sector focused on clinical pharmacy. Technically, the website is built on the Webnode platform and hosted via AWS Cloudfront, leveraging modern web technologies including HTML5, CSS3, and JavaScript with Google APIs integration. The site demonstrates good performance, mobile optimization, and basic accessibility features. However, it lacks some advanced security headers and explicit privacy policy documentation, which are areas for improvement. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism with advanced user controls, indicating awareness of privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data reduces transparency and trustworthiness somewhat, but the professional content and organizational details support legitimacy. Overall, the website is a well-maintained, professional resource for clinical pharmacy professionals in the Czech Republic, with a solid technical foundation and moderate security posture. Strategic improvements in security headers, privacy policy publication, and domain registration transparency would enhance trust and compliance.

C

Clyde s.r.o.

clyde.cz

57

Clyde s.r.o. is a Czech Republic-based small technology company specializing in custom website creation, SEO optimization, and internet marketing services. Established in 2013, the company positions itself as a local expert in building effective web presences for businesses seeking to increase online sales and visibility. Their offerings include web design, programming, domain registration, hosting, and campaign management. The website is professionally designed with clear navigation and relevant content targeting Czech-speaking business clients. Technically, the site uses basic web technologies with Google Analytics integration but lacks modern frameworks or CMS identification. Security posture is moderate with HTTPS implied but missing explicit security headers and policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Contact information is limited to a single company email address without phone or physical address details. Overall, the site is trustworthy and legitimate, supported by consistent WHOIS data and business references.

O

Omny Studio

omnystudio.com

73

Omny Studio is an enterprise-focused podcasting platform providing comprehensive audio management solutions tailored for podcast creators and radio stations. The website presents a professional and consistent brand image, targeting media industry professionals seeking scalable podcast hosting and management services. The technical infrastructure leverages modern web technologies including Cloudflare DNS, Google Fonts, and OneTrust for cookie consent, indicating a moderate level of digital maturity and compliance awareness. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks advanced security headers and DNSSEC, suggesting room for improvement in hardening the platform. Overall, the site is trustworthy and functional, though it would benefit from explicit privacy policies, contact information, and vulnerability disclosure mechanisms to enhance transparency and compliance. Strategic recommendations include enabling DNSSEC, publishing security policies, and improving privacy documentation to strengthen user trust and regulatory adherence.

H

HOTEL HORAL

hotel-horal.cz

49

Hotel Horal is a well-established hospitality business located in Rožnov pod Radhoštěm, Czech Republic, offering a comprehensive range of services including accommodation, wellness and spa facilities, dining, and event hosting. The hotel is positioned as a 4-star certified establishment with multiple awards, targeting tourists and wellness seekers in the Beskydy region. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and popular libraries like jQuery and Tiny Slider. It is mobile-optimized and includes interactive booking forms integrated with a secure external booking platform. However, the CMS appears custom or proprietary, and there is room for improvement in security headers and explicit incident response documentation. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and detailed security policies. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is good with GDPR-related pages and cookie mechanisms present. The absence of WHOIS data reduces domain trust signals but is mitigated by strong on-site trust indicators. Overall, the website and business present a low-risk profile with solid market positioning and digital maturity. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and compliance further.

Zdravotnické nakladatelství Galén is a Czech-based medical publishing company specializing in medical literature and related health content. Established since 1998, it operates an online bookstore and supports medical professionals, students, and the general public interested in healthcare. The website offers a catalog of books, music projects, and medical resources, positioning itself as a niche player in the Czech healthcare publishing market. Technically, the site uses legacy JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. The hosting is managed by REG-ZONER, consistent with the domain's WHOIS data. Security posture shows room for improvement, with session IDs exposed in URLs and lack of security headers. Privacy compliance is partial, with a GDPR page present but no cookie consent mechanism. Overall, the site is functional and trustworthy but would benefit from modern security and privacy enhancements.

A

AV MEDIA SYSTEMS, a.s.

avmedia.cz

44

AV MEDIA SYSTEMS, a.s. is a well-established Czech company specializing in audiovisual solutions and event technical services, with over 30 years of experience. The company serves a diverse clientele including businesses, educational institutions, government bodies, and cultural organizations. Their offerings include design, implementation, rental, and servicing of audiovisual technologies, as well as event production and creative audiovisual projects. The website reflects a mature digital presence with comprehensive content, clear navigation, and active engagement through social media and partnerships.

V

Videris s.r.o.

videris.cz

60

Videris s.r.o. operates a website focused on ophthalmology products and services, targeting healthcare professionals and customers primarily in the Czech Republic. The company appears to be a small local supplier in the healthcare sector, with a business model likely involving both B2B and B2C sales. The website is built on the Wix platform, leveraging Wix's hosting and content management capabilities, which provides moderate performance and good mobile optimization. However, the site lacks comprehensive privacy and cookie policies, and no contact information or social media presence is explicitly provided, which limits user trust and compliance with privacy regulations. Security posture is basic with HTTPS enabled but missing important security headers and incident response information. The absence of WHOIS data reduces domain transparency and trustworthiness, although the website content and branding suggest a legitimate business presence. Overall, the site is functional but requires improvements in privacy compliance, security best practices, and business transparency to enhance credibility and user trust.

N

NORTH MED spol. s r.o.

northmed.cz

44

NORTH MED spol. s r.o. is a Czech Republic-based company specializing in the sale, installation, and servicing of advanced medical technologies primarily in neurosurgery, radiology, and cardiology. Established in 1991, the company has built a strong market position as an exclusive partner for several leading global medical equipment manufacturers. Their website reflects a professional and focused business model targeting healthcare providers and medical institutions. Technically, the website uses modern front-end technologies such as Bootstrap and Animate.css, providing a good user experience with responsive design and clear navigation. However, there are gaps in privacy and cookie policy disclosures, and no visible security headers, which could be improved to enhance compliance and security posture. Overall, the site is trustworthy and well-maintained, with comprehensive contact information and clear business legitimacy.

P

PharmAround

pharmaround.cz

48

PharmAround is an interactive educational platform focused on collaboration, education, and experience sharing in the field of drug development. The platform targets medical students as well as professional and lay audiences interested in pharmaceutical development. The website is built on the Wix platform, indicating a small to medium-sized business with moderate digital maturity. The technical infrastructure relies on Wix's hosting and standard web technologies such as JavaScript, HTML5, and CSS3. Security posture is basic with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. No WHOIS data is available, suggesting privacy protection on domain registration, which is reasonable for this type of educational platform. Overall, the website is functional and professionally presented but would benefit from enhanced privacy compliance and security practices.

N

Nadační fond AKUTNĚ.CZ

akutne.cz

61

AKUTNĚ.CZ is an established Czech educational and publishing portal focused on acute medicine, targeting pre- and post-graduate medical students and healthcare professionals. The platform offers a variety of educational resources including medical algorithms, publications, webinars, and conferences, positioning itself as a key player in the Czech medical education sector. The website is professionally designed with consistent branding and strong partnerships with reputable medical organizations and companies, enhancing its credibility. Technically, the website employs modern web technologies including JavaScript, CSS, and SVG graphics, with Google Analytics integrated for traffic monitoring. The site is mobile-optimized and accessible, with a cookie consent mechanism in place, though it lacks explicit privacy and terms of service documentation. Performance is moderate, and SEO practices are good, supporting user engagement and discoverability. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks advanced security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust assessment, but the website content and business information suggest legitimate and professional operation. Overall, AKUTNĚ.CZ presents a trustworthy, well-maintained educational platform with room for improvement in privacy documentation and security best practices. Strategic enhancements in these areas would strengthen compliance and user trust.

E

EMBITRON s.r.o.

embitron.cz

56

EMBITRON s.r.o. is a Czech Republic-based company specializing in the research, development, manufacturing, sale, and servicing of medical and physiotherapy equipment including surgical monitors, endoscopy devices, digital operating room solutions, and embedded IT medical solutions. The company targets healthcare providers and OEM/ODM partners, positioning itself as a niche player in the healthcare technology sector. The website reflects a professional and consistent brand image with multilingual support and participation in industry events, indicating active market engagement. Technically, the website is built on the Webnode CMS platform, leveraging AWS Cloudfront CDN for hosting and performance. It uses modern JavaScript libraries and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic accessibility features. However, some SEO and accessibility improvements could be made. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism with advanced user controls. No security headers were detected, and no explicit privacy policy or terms of service pages were found, which are areas for improvement. The absence of WHOIS data for the domain reduces trustworthiness, although the website content and business information appear legitimate and professional. Overall, the website scores moderately well in content quality, technical implementation, security posture, privacy compliance, and business credibility. Strategic recommendations include publishing clear privacy and terms policies, enhancing security headers, providing explicit contact information, and verifying domain registration details to improve trust and compliance.

L

LAMOMEDIC, s.r.o.

peptys.cz

61

LAMOMEDIC, s.r.o. operates the PEPTYS website, offering an innovative medical device focused on treating joint pain and degenerative changes by stimulating natural collagen production. The company targets patients with osteoarthritis and sports injuries, positioning itself as a niche healthcare innovator with clinical support and a clear product offering. The website is well-structured, professionally designed, and provides comprehensive business and contact information, enhancing trust and credibility. Technically, the site uses modern React-based technologies hosted on Websupport infrastructure, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. No blocking or WAF challenges were detected, allowing full content access and analysis.

A

Arjo

arjo.com

73

Arjo is a global supplier specializing in medical devices and solutions aimed at improving the lives of people affected by reduced mobility and age-related health challenges. The company targets healthcare providers and caregivers, offering products such as patient handling and hygiene solutions. The website reflects a professional and consistent brand presence with multi-language support and embedded multimedia content to enhance user engagement. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as Azure Application Insights for telemetry, Cookiebot for cookie consent management, and Wistia for video hosting. The site is hosted on Azure infrastructure, indicating a robust and scalable platform. Performance and mobile optimization are good, though accessibility features could be improved. From a security perspective, the site enforces HTTPS, uses security headers, and implements anti-CSRF cookies, demonstrating adherence to best practices. However, the absence of a publicly available security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for enhancement. Privacy compliance is strong, with comprehensive cookie consent and GDPR-aligned policies. Overall, the website is trustworthy and professional, though the lack of WHOIS registration data and visible contact information slightly detracts from business credibility. Strategic improvements in transparency and accessibility would further strengthen the security posture and user trust.

S

společnost Madisson, s.r.o

madisson.cz

42

Společnost Madisson, s.r.o is a well-established Czech company specializing in the supply and servicing of medical, rehabilitation, and wellness equipment. With over 30 years of experience, it serves a broad audience including physiotherapists, doctors, wellness centers, and healthcare institutions across the Czech Republic. The company offers a comprehensive product range, expert consulting, training, and reliable technical support, positioning itself as a trusted partner in healthcare and rehabilitation sectors. Technically, the website is built on OctoberCMS and employs modern front-end technologies such as jQuery, AOS animations, Select2, and Google Fonts, delivering a responsive and user-friendly experience. The site is well-structured with good SEO practices, though some accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses secure form practices but lacks visible security headers and formal privacy or cookie policies, which are important for GDPR compliance. No vulnerabilities or exposed sensitive data were found, but the absence of WHOIS data for the domain raises concerns about domain registration transparency. Overall, the website is professional and trustworthy in content and presentation but would benefit from enhanced privacy compliance and improved domain registration transparency to strengthen its security posture and user trust.

I

Incsub

incsub.com

65

Incsub is a technology company specializing in WordPress-related products and services, operating well-known brands such as WPMU DEV, CampusPress, and Edublogs. The company focuses on hosting, performance optimization, multisite plugins, and security solutions for WordPress users, educational institutions, and businesses. The website reflects a mature digital presence with professional design, clear branding, and comprehensive content describing their business and subsidiaries. Technically, the site is built on WordPress 6.8.3, hosted with Amazon Registrar and AWS DNS, and employs modern analytics and consent management tools like Matomo and Cookiebot. Security posture is strong with HTTPS and consent-based tracking, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Overall, the domain age and WHOIS data align with the business history, indicating legitimacy and trustworthiness.

R

RENOCAR a.s.

renocar.cz

52

RENOCAR a.s. is an established authorized dealer and service provider for BMW, MINI, and BMW Motorrad vehicles operating primarily in the Czech Republic with multiple physical branches. The company offers a comprehensive range of services including new and used vehicle sales, authorized servicing, financial services, insurance, and test drives. Their market position is strong within the automotive retail sector, supported by consistent branding and a professional online presence. The website is well-designed, mobile-optimized, and integrates modern tracking and marketing tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response contacts are missing. The absence of WHOIS registration data is a notable gap, reducing domain registration trustworthiness but not detracting from the overall legitimacy indicated by the website content and structured data. Strategic recommendations include enhancing security headers, publishing a security policy, and improving incident response transparency to further strengthen trust and compliance.

K

Korken Schiesser Ges.m.b.H.

korken.at

57

Korken Schiesser Ges.m.b.H. is a small manufacturing company based in Vienna, Austria, specializing in natural cork products including technical cork and wine corks. The company maintains a professional online presence through a Wix-built website that clearly communicates its business focus and contact information. The website is well-structured, mobile-optimized, and provides a good user experience, although it lacks some privacy and cookie policy disclosures. Technically, the site uses Wix's Thunderbolt framework and is hosted on Wix infrastructure, ensuring reliable performance and HTTPS security. However, the absence of security headers and privacy compliance documentation indicates areas for improvement in security posture and regulatory adherence. Overall, the website reflects a legitimate and established business with a solid market position in the cork manufacturing sector.

A

AGROTEC a.s.

eagrotec.cz

61

AGROTEC a.s. is the largest supplier of ground machinery in the Czech Republic, specializing in agricultural machinery, construction equipment, and personal and commercial vehicles. The company targets farmers, agricultural businesses, and construction companies with a comprehensive product catalog and after-sales services. The website reflects a mature digital presence with a structured product offering and partner branding such as New Holland. Technically, the site is built on ASP.NET WebForms with Kentico CMS, integrating modern marketing tools like Google Tag Manager and reCAPTCHA for security and analytics. Security posture is moderate with HTTPS and form protections but lacks visible security headers and explicit privacy policies. The absence of WHOIS data due to privacy protection slightly reduces trust but is common for commercial entities. Overall, the site is professional, content-rich, and safe for general audiences.

N

Národní vinařské centrum, o.p.s.

narodnidenvina.cz

55

The website narodnidenvina.cz represents a Czech national project focused on promoting wine culture, health benefits of moderate wine consumption, and charitable activities supporting pediatric cardiology. It is organized by the Národní vinařské centrum, o.p.s., a recognized organization in the Czech wine sector. The site targets wine enthusiasts, health-conscious individuals, and the general public interested in cultural and charitable wine-related events. The business model is non-profit and awareness-driven, with a focus on education and charity fundraising. Technically, the website is built on the Webnode CMS platform, leveraging modern web technologies including HTML5, CSS3, JavaScript, and Amazon Cloudfront CDN for content delivery. Google Tag Manager is used for analytics and tracking. The site is mobile-optimized and performs moderately well, though SEO and accessibility features are basic. No advanced frameworks or platforms are detected. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options. There are no visible vulnerabilities or exposed credentials. Privacy and cookie policies are missing, and no contact information for security incidents is provided, indicating gaps in compliance and incident response readiness. Overall, the website is legitimate and professionally presented but would benefit from enhanced privacy compliance, improved security headers, and clearer contact information. The lack of WHOIS data limits domain ownership transparency but does not detract significantly from trust given the site's content and organizational backing.

N

National Heritage Institute

zamek-valtice.cz

45

The website represents the official online presence of Valtice Castle, a significant cultural heritage site managed by the Czech National Heritage Institute. It provides comprehensive visitor information, including tours, events, and historical context, targeting tourists and cultural enthusiasts. The site is well-positioned as a government-operated heritage site with UNESCO World Heritage status, enhancing its credibility and trustworthiness. Technically, the website employs modern web technologies such as Leaflet.js for mapping, Google Analytics for visitor tracking, and asynchronous script loading to optimize performance. The site is mobile-optimized and accessible, with a clear navigation structure and consistent branding. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies or incident response information. WHOIS data confirms the domain's legitimacy and appropriate age for the business history. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, suitable for its government and cultural heritage context.

R

Regionální muzeum v Mikulově, p. o.

pronajmisizamek.cz

41

The website pronajmisizamek.cz is operated by the Regionální muzeum v Mikulově, a regional museum organization in the Czech Republic. It offers rental services for various historic halls and spaces within the Mikulov castle, targeting individuals and organizations seeking venues for social events, corporate celebrations, weddings, and cultural activities. The site is well-structured with detailed descriptions of each rental space and includes reservation forms for direct booking requests. Multilingual support is provided via partner domains in English and German. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, and integrates Google Analytics and Tag Manager for visitor tracking. The design is professional and mobile-optimized, providing a good user experience. However, the site lacks explicit privacy and cookie policies, and no cookie consent mechanism is present, which are compliance gaps under GDPR. Security headers are not detected, though HTTPS is used, indicating room for improvement in security posture. WHOIS data is unavailable, likely due to privacy protection, but the website content and external references support legitimacy. Overall, the site is a credible small-scale venue rental platform with moderate technical maturity and some compliance and security improvements recommended.

Č

Český zahrádkářský svaz, z.s.

zahradkar.org

41

The website zahradkar.org represents a well-established Czech gardening hobby magazine published by Český zahrádkářský svaz, z.s. It targets gardening enthusiasts, seniors, and hobbyists with content including gardening tips, plant care, and related events. The business model relies on print and digital magazine sales, subscriptions, and advertising. The domain is mature and consistent with the organization's profile. Technically, the site uses common tracking and advertising technologies such as Google Tag Manager, Facebook Pixel, and Adform, but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, indicating compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional with moderate technical sophistication but requires improvements in security and privacy compliance.

W

www.kvety.cz

kvety.cz

58

Květy.cz is a Czech language modern news and infotainment website targeting families, providing articles on current topics, trends, economy, and profiles of notable personalities. The site offers rich multimedia content including images and podcasts, supported by newsletter subscriptions. Technically, the website employs modern web technologies such as HTMX, Tailwind CSS, and integrates multiple third-party marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Gemius. The site is hosted likely on AWS Cloudfront CDN, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit privacy and cookie policies are not clearly found in the provided content. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy indicated by the website's professional presentation and technical setup. Overall, the site is a credible media outlet with moderate to good compliance and security maturity.

I

International SOS

internationalsos.com

76

International SOS is a globally recognized leader in international health and security risk management, providing comprehensive services to protect business travellers and international assignees from health and security threats worldwide. The company offers tailored solutions including travel risk management aligned with ISO 31030, executive protection, and a proprietary assistance app. Their market position as a pioneer and their 40 years of operational history underscore their expertise and reliability in this niche. Technically, the website is built on modern web technologies such as React and JavaScript, with a responsive design optimized for mobile devices. The site integrates multiple analytics and marketing tools, including Google Tag Manager, Microsoft Clarity, and LinkedIn Insight, reflecting a mature digital marketing strategy. Performance is moderate with good SEO and accessibility features. From a security perspective, the site enforces HTTPS, implements key security headers, and uses secure forms with consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public vulnerability disclosure or security.txt file and incident response contact details suggests room for improvement in transparency and security communication. Overall, the website presents a professional, trustworthy, and well-maintained digital presence. The lack of WHOIS data reduces some trustworthiness but is likely due to privacy protection or domain management practices. Strategic recommendations include publishing vulnerability disclosure information, enhancing incident response transparency, and maintaining rigorous security practices to uphold their market leadership.

E

Emco spol s.r.o.

myslinazdravi.cz

46

Emco spol s.r.o. operates a website focused on promoting its food products that are free from palm oil, including musli, mysli, oat porridges, cookies, bars, and other cereal products. The company emphasizes health benefits and sustainability by replacing palm oil with domestic rapeseed oil since 2014. The website targets health-conscious consumers in the Czech Republic and positions Emco as a reputable brand in the retail food sector. The domain is well-established since 2008, consistent with the company's history. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Google Tag Manager for analytics. The site is moderately optimized for mobile devices and SEO but lacks advanced accessibility features. Hosting appears to be with REG-ZONER, a Czech registrar and hosting provider. Performance is moderate with no critical technical issues detected. From a security perspective, the site uses HTTPS (assumed from URL), but no explicit security headers were detected in the provided data. There are no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies, as well as contact information, reduces the site's compliance with GDPR and general transparency. No incident response or vulnerability disclosure information is provided. Overall, the website is professional and trustworthy in terms of content and business legitimacy but lacks important privacy and security disclosures. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and compliance posture.

B

Baji Live

federacion-matronas.org

55

Baji Live is a recently established online gambling platform launched in 2024, focusing on sports betting and casino games primarily for users in Bangladesh and Southeast Asia. The platform offers a wide range of betting options including cricket, football, and live casino games, supported by a dedicated Android app. The business positions itself as a trusted and innovative player in the regional online betting market, emphasizing user satisfaction and secure gaming experiences. Technically, the website uses standard web technologies such as HTML5, CSS3, and JavaScript, with moderate performance and good mobile optimization. The domain is registered with NETIM SAS and uses DNS parking services. However, there is no evidence of advanced security headers or DNSSEC implementation, which are recommended for enhanced security. The website lacks visible cookie consent mechanisms and comprehensive privacy compliance features. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which lowers its security posture. No direct contact emails or phone numbers are provided, limiting transparency. The WHOIS data aligns well with the business claims, indicating legitimacy, but the domain's recent creation suggests the business is new and still maturing. Overall, the website is functional and professionally designed but requires improvements in security best practices and privacy compliance to enhance trust and regulatory adherence. Strategic recommendations include implementing DNSSEC, adding security headers, establishing cookie consent, and improving privacy disclosures.

M

Malta Midwives Association

maltamidwivesassociation.com

61

Malta Midwives Association is a professional healthcare organization dedicated to advancing midwifery practice and providing exceptional care to women and families in Malta and Gozo. The website serves as an informational and service booking platform targeting midwives and clients. Technically, the site is built on GoDaddy Website Builder, employs modern web fonts, and integrates Google Analytics and Adsense for tracking and advertising. The security posture is moderate with HTTPS enabled but lacks security headers and explicit privacy policies. No contact emails or phone numbers are directly visible, which limits direct communication channels. Overall, the domain registration is consistent with the business claims, indicating legitimacy. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

A

Association Luxembourgeoise des Sages-femmes a.s.b.l.

sages-femmes.lu

60

The Association Luxembourgeoise des Sages-femmes is a small non-profit professional organization based in Luxembourg dedicated to supporting midwives, informing parents, and representing midwives at the national level. The website serves as an information hub for both parents and healthcare professionals, providing resources such as a directory of midwives and news updates. It also highlights the cultural recognition of midwifery as a national and UNESCO intangible cultural heritage. The association maintains partnerships with major Luxembourg hospitals and international midwife organizations, reinforcing its authoritative position in the healthcare sector. Technically, the website is built on the Webnode CMS platform and leverages Amazon Cloudfront CDN for content delivery. The site is well-structured with responsive design, good SEO practices, and a cookie consent mechanism compliant with GDPR. While the site uses HTTPS and Google Tag Manager for analytics, it lacks advanced security headers and explicit security policies, which could be improved to enhance its security posture. From a security perspective, the site shows a solid baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data due to a malformed domain query limits the ability to fully verify domain registration legitimacy. The website content and business information appear trustworthy and professional, mitigating some concerns. Overall, the site scores well on content quality, technical implementation, and privacy compliance but could benefit from enhanced security policies and transparency. Strategically, the association should focus on improving its security headers, publishing a formal security policy, and establishing an incident response contact to strengthen trust and compliance. These steps will support its role as a professional body and safeguard its digital presence against emerging threats.

S

Scientifica ostetrica neonatale ginecologia genere | Syrio

syrio.org

59

The website www.syrio.org is built using the Wix platform, leveraging Wix's Thunderbolt framework and standard JavaScript polyfills. The site content appears minimal and lacks critical business and security information. No WHOIS data or registrant details are available due to a malformed WHOIS response, which limits the ability to verify domain legitimacy. The absence of privacy, cookie, and terms of service policies, as well as contact information, further reduces trust and compliance posture. Technically, the site uses modern JavaScript libraries but lacks visible security headers or SSL configuration details in the provided data. Overall, the website's security posture is weak, with no evident best practices implemented. The content is safe for general audiences but is sparse and lacks professionalism.

The website fnopo.it currently serves a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is registered since 2017 with DNSSEC enabled and is valid until late 2025, suggesting a legitimate registration. However, the website itself lacks accessible business information, contact details, or privacy and cookie policies, which limits the ability to assess its business operations or compliance posture. The presence of outdated CMS versions such as Joomla 1.5 and WordPress 2.5 raises significant security concerns due to known vulnerabilities in these legacy platforms. The site uses a security check powered by BitNinja.IO, which adds a layer of protection but also restricts content visibility for analysis.

The website semma.gr is currently inaccessible due to a Cloudflare Turnstile CAPTCHA security challenge, which blocks direct access to the site's content. As a result, no business information, contact details, or policies are available for analysis. The site appears to be protected by Cloudflare's security services, indicating an intent to mitigate automated access or attacks. However, this also limits the ability to assess the site's content quality, technical infrastructure, and security posture comprehensively. The lack of accessible content and metadata suggests the site is either under maintenance, protected against bots, or experiencing access restrictions.

B

Belgian Midwives Association

belgianmidwivesassociation.be

51

The Belgian Midwives Association website serves as the official online presence for a professional healthcare organization representing midwives in Belgium. The site provides resources and information targeted at midwives and related stakeholders. The organization has been established since 2009, supported by a domain registration of the same age, indicating a stable and legitimate presence. The website is built on WordPress using the Divi theme and supports multiple languages via WPML, reflecting a commitment to accessibility for Belgium's multilingual population. The site employs a comprehensive cookie consent mechanism, aligning with GDPR requirements, although explicit privacy and terms of service pages are not detected in the provided content. Technically, the website uses a broad range of third-party advertising and tracking services, which may impact user privacy and should be carefully managed. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit security policies. Overall, the website is professional and functional but would benefit from enhanced privacy disclosures and security hardening.

Ö

Österreichisches Hebammengremium

hebammen.at

51

The Österreichisches Hebammengremium (ÖHG) website serves as the official online presence of the Austrian Midwives Association, representing midwives and providing information to parents about pregnancy, birth, and baby care. The site targets a German-speaking Austrian audience and positions itself as a trusted non-profit organization in the healthcare sector. The business model focuses on advocacy and education rather than commercial activities. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, incorporating modern web technologies such as jQuery, FontAwesome, and third-party tools like Doofinder for search and Borlabs Cookie for cookie consent management. The site demonstrates good mobile optimization and SEO practices but lacks some advanced accessibility features. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but it lacks visible security headers and explicit privacy or terms of service policies. No direct contact information or incident response channels are found in the provided content, which could be improved to enhance trust and compliance. The domain registration data aligns well with the organization's identity, indicating legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy disclosures, security headers, and clearer contact information to improve compliance and user trust.

M

Ministerstvo financí ČR

fondyehp.cz

76

The website www.eeagrants.cz is an official online presence of the Czech Ministry of Finance dedicated to managing and communicating about the EEA and Norway Grants. It serves as a government portal providing information on grant programs, updates, and resources for stakeholders in the Czech Republic. The site targets public sector entities, grant applicants, and interested citizens. The business model is government-funded and focused on grant administration and transparency. Technically, the site employs modern web technologies including HTML5, CSS3, JavaScript, and integrates analytics tools such as Google Analytics and Matomo. Cookiebot is used for comprehensive cookie consent management, reflecting a moderate level of digital maturity. Hosting is inferred to be on Microsoft Azure, supporting scalability and reliability. The site is mobile-optimized and accessible with clear navigation. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is basic, with no explicit privacy policy page found in the provided content. Overall, the website is legitimate, professional, and trustworthy, consistent with a government entity. Recommendations include publishing a detailed privacy policy, adding security headers, providing contact information for data protection and incident response, and implementing a vulnerability disclosure policy to enhance security posture and compliance.

N

Nadační fond rodiny Malých

nfrmalych.cz

47

Nadační fond rodiny Malých is a Czech non-profit foundation established in 2021, continuing over 20 years of philanthropic history by its founders. The foundation supports public benefit organizations focused on nature protection, cultural heritage, disadvantaged groups, and cultural and artistic projects. The website is professionally designed, mobile-optimized, and uses modern JavaScript libraries such as Swiper.js and Google Tag Manager for analytics. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit privacy or terms of service documentation. No direct contact information or incident response contacts are visible, which could be improved for transparency and compliance. The domain registration data is consistent with the foundation's claims and location, indicating legitimacy.

K

Kancelária prezidenta Slovenskej republiky

prezident.sk

54

The website www.prezident.sk is the official online presence of the President of the Slovak Republic, currently Peter Pellegrini. It serves as a comprehensive portal providing official information about the president, his biography, official program, press releases, speeches, and contact options primarily through forms. The site targets Slovak citizens, media, and international visitors seeking authoritative information about the presidency. The business model is that of a government institution providing public services and information. The site is well-branded, consistent, and professionally maintained. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Google Analytics, Hotjar, and Facebook SDK for social media integration. It uses Google Fonts and FontAwesome for styling and icons. The site appears to be built on TYPO3 CMS, common for Slovak government sites. Performance is moderate with good mobile optimization and accessibility features. SEO is well implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes important security headers such as HSTS, X-Frame-Options, and Content-Security-Policy. The cookie consent mechanism is robust, allowing granular user control and compliance with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available. Overall, the website is a trustworthy, professional government portal with strong privacy and security postures. It is safe for general audiences and free from adult or questionable content. Strategic recommendations include publishing explicit security and incident response policies, adding vulnerability disclosure information, and maintaining regular audits of third-party scripts to ensure ongoing security.

The website ediweb.eu/edi/ serves as an Electronic Data Interchange (EDI) platform, primarily targeting business users who require secure document exchange services. The site features a login form for authenticated access and a news iframe for updates, indicating a B2B service model. The business appears to be small-scale with a focus on technology services related to EDI, though detailed company information and market positioning are not publicly disclosed. From a technical perspective, the site uses basic HTML, CSS, and JavaScript without modern frameworks or CMS platforms. The design and user experience are functional but basic, with limited mobile optimization and accessibility features. No analytics or advertising technologies are detected, suggesting a minimalistic approach to tracking and marketing. Security posture shows some basic best practices such as password input masking and hidden form fields, but lacks visible security headers and explicit HTTPS confirmation in the provided data. No privacy, cookie, or terms of service policies are found, indicating compliance gaps. No contact or incident response information is publicly available, which may impact trust and user support. Overall, the site is accessible without WAF or blocking mechanisms and contains safe, business-oriented content. However, improvements in security, privacy compliance, and transparency are recommended to enhance trust and operational security.

Affidea Praha s.r.o. is a private healthcare provider based in Prague, specializing in ambulatory care and advanced diagnostic services such as sonography, CT, MRI, and densitometry. The company operates with contracts across all insurance providers and has over 20 years of experience conducting clinical trials. Their website reflects a professional healthcare service targeting patients in the Czech Republic, offering a broad range of medical specialties and preventive services. Technically, the website uses legacy technologies including an outdated jQuery version and Bootstrap 3, with moderate performance and basic mobile optimization. The site lacks modern security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. No advanced analytics or tracking scripts were detected, indicating minimal user tracking. Security posture is moderate but weakened by the use of outdated libraries and missing security headers. The absence of WHOIS data limits domain trust verification, although the website content and contact information appear legitimate and consistent with a professional healthcare provider. Overall, the website is functional and informative but requires updates in security practices, privacy compliance, and technical modernization to improve trustworthiness and user safety.

Globesystem s.r.o. is a Czech-based IT company founded in 2018, specializing in the supply of IT hardware and software, authorized computer repair services, and comprehensive IT service management including server and network infrastructure, IT security, and monitoring. The company targets both private sector businesses and public institutions, positioning itself as a regional IT service provider with certified specialists and a focus on quality and customer support. The website reflects a professional and consistent brand image with clear contact information and business registration details, supporting its credibility. Technically, the website is built using the WebEditor CMS platform hosted by Webglobe, employing modern web technologies such as JavaScript and WebFontLoader. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Analytics tracking is implemented via yolacdn.net, indicating moderate user tracking practices. However, security headers and explicit security policies are absent, representing an area for improvement. From a security perspective, the site uses HTTPS (implied by domain and hosting provider), and a cookie consent banner is present, indicating some privacy compliance efforts. There is no dedicated security policy or incident response information, and no vulnerability disclosure or security.txt file was found. The WHOIS data is consistent with the business information, showing a domain age appropriate for the company’s history and no privacy protection, enhancing trustworthiness. Overall, the website is functional, professional, and trustworthy with room for enhancement in security posture and privacy transparency. Strategic recommendations include implementing security headers, publishing detailed privacy and security policies, and improving accessibility and SEO to strengthen digital maturity and compliance.

P

PC Financial

pcfinancial.ca

51

PC Financial is a Canadian financial services brand offering banking and credit card products integrated with the PC Optimum loyalty rewards program. The website presents a professional and modern digital presence, leveraging advanced web technologies such as Next.js and React, and integrates multiple marketing and analytics tools to optimize user engagement and business insights. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website reflects a mature, trustworthy financial brand with a strong focus on customer rewards and digital banking convenience.

The Slovenská hepatologická spoločnosť (Slovak Hepatological Society) is a well-established professional organization dedicated to uniting the hepatology community in Slovakia since 1968. The society focuses on providing modern, quality, and accessible treatment and preventive care for liver disease patients and the general population. Their website serves as a platform for members and the public to access educational resources, event information, and membership benefits. The organization maintains partnerships with pharmaceutical companies and participates in European research consortia such as Liver Aim.

The website omniva.lt is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to content. This prevents extraction of meaningful business, contact, or policy information from the site. The domain is registered since 2018 with a reputable registrar and appears legitimate. The business likely operates in the transportation sector, consistent with the domain name and country of registration (Lithuania). The technical infrastructure includes Cloudflare protection and JavaScript-based captcha verification, indicating a focus on security and bot mitigation. However, the lack of accessible content limits the ability to assess the website's design, user experience, and compliance posture. Security posture is difficult to evaluate fully, but the presence of Cloudflare WAF is a positive indicator. Overall, the site is protected but currently not analyzable beyond the security challenge.

Ú

Ústav zdravotnických informací a statistiky ČR

kolorektum.cz

52

Kolorektum.cz is the official website for the National Colorectal Cancer Screening Program in the Czech Republic, managed by the Institute of Health Information and Statistics of the Czech Republic (ÚZIS ČR). The site provides comprehensive educational and organizational materials aimed at both the general public and healthcare professionals to promote early detection and prevention of colorectal cancer. It is well-branded with official logos from multiple Czech health institutions, reinforcing its authoritative position in the healthcare sector. The website targets Czech residents and medical practitioners involved in colorectal cancer screening, offering detailed program descriptions, data, and contact information.

S

Společnost klinické výživy a intenzivní metabolické péče

skvimp.cz

56

SKVIMP is a specialized professional society in the Czech Republic dedicated to clinical nutrition and intensive metabolic care. The organization serves healthcare professionals including doctors, pharmacists, nurses, and nutrition therapists by providing expert recommendations, organizing international congresses, and offering educational resources. The website reflects a well-established entity with a domain age since 2001, consistent with its professional stature. Technically, the site is built on WordPress using a modern theme and integrates Google Tag Manager for analytics, indicating a moderate level of digital maturity. The site is mobile optimized and offers good user experience with clear navigation and relevant content updates. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security practices.

M

Masarykova univerzita

svod.cz

50

The SVOD portal is an academic and governmental platform providing epidemiological data and analyses on cancer incidence and related statistics in the Czech Republic. It is developed in collaboration with Masaryk University, the Czech oncological society, and national health institutions, positioning it as an authoritative source for healthcare professionals and researchers. The portal offers interactive analyses, reports, and open data access, supporting public health monitoring and research. Technically, the website employs modern web technologies including JavaScript, CSS frameworks like Foundation, and integrates Google Analytics for user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. However, some technical improvements such as enhanced security headers and explicit privacy documentation are recommended. From a security perspective, the site uses HTTPS and a cookie consent mechanism, but lacks visible security headers and formal incident response contacts. The absence of WHOIS data reduces domain trustworthiness, though the institutional backing and content quality mitigate concerns. No vulnerabilities or sensitive data exposures were detected. Overall, the portal is a reliable and professional resource with moderate technical maturity and a good security posture. Strategic improvements in privacy compliance and security best practices would enhance trust and resilience.

I

Institut biostatistiky a analýz LF MU

onconet.cz

53

NOP Online is a Czech national oncology portal providing comprehensive information and resources related to cancer care, screening programs, and epidemiological data. It is supported by academic and governmental institutions, notably the Institut biostatistiky a analýz LF MU and the Ministry of Health of the Czech Republic. The portal targets patients, healthcare professionals, and researchers within the Czech Republic, offering interactive maps, data visualizations, and up-to-date news on oncology programs. Technically, the website employs modern web technologies including Leaflet.js for mapping and Google Analytics for user tracking, with a responsive and accessible design. Security posture is moderate with HTTPS usage and cookie consent implemented, but lacks visible security headers and formal privacy or terms of service documentation. WHOIS data confirms the domain's legitimacy and long-term registration consistent with the academic institution managing the site. Overall, the website is professional, trustworthy, and serves an important healthcare informational role in the Czech Republic.