Security Directory

R

Recruiterflow

recruiterflow.com

69

Recruiterflow is a technology company specializing in AI-first applicant tracking and customer relationship management software tailored for recruiting and staffing agencies. Established in 2016, it positions itself as a leading SaaS provider in the recruitment technology market, offering integrated ATS, CRM, automation, and AI-driven capabilities. The website reflects a mature digital presence with professional design, clear messaging, and a focus on AI-enhanced recruitment workflows. The technical infrastructure leverages modern web technologies including Webflow CMS, HubSpot marketing tools, and extensive analytics and tracking services, indicating a high level of digital maturity and marketing sophistication. Security posture is solid with HTTPS enforced and domain registration protections, though there is room for improvement in DNS security and explicit security policies. Overall, the website and domain data suggest a credible and established business with a strong market position in recruitment technology.

H

Hanze Hogeschool Groningen

hanze.nl

75

Hanze Hogeschool Groningen is a well-established higher education institution in the Netherlands, offering a broad portfolio of academic programs, research initiatives, and professional collaborations. The website reflects a mature digital presence with comprehensive content targeting students, professionals, and organizations. Technically, the site employs modern web technologies including Google Tag Manager and image optimization services, with good mobile responsiveness and accessibility. Security posture is solid with HTTPS and CSRF protections, though explicit security headers and formal security policies are not evident. Privacy compliance is partial, lacking visible privacy and cookie policies or consent mechanisms. Overall, the site demonstrates high business credibility and professionalism but could improve transparency on privacy and security disclosures.

U

UAB "Detalita"

detalita.lt

41

Detalita is a Lithuanian-based B2B company specializing in automotive parts supply and vehicle servicing. Established in 1998, it holds a strong market position in Lithuania's transportation and retail sectors, offering a wide range of automotive components and related services. The website targets business clients and automotive professionals, providing product search by vehicle and brand, along with utilization services for batteries, oils, and tires. Technically, the site uses modern web technologies including OXID eShop CMS, jQuery, HTMX, and Hyperscript, delivering a responsive and user-friendly experience. Security-wise, the site enforces HTTPS and uses secure forms but lacks some advanced security headers and explicit privacy compliance mechanisms. Overall, the site is professional, trustworthy, and well-maintained, though improvements in privacy compliance and security policies are recommended.

A

Alio

alio.lt

56

Alio.lt is a Lithuanian online classifieds platform providing free advertisement listings across a wide range of categories including real estate, transport, jobs, electronics, and leisure. The website targets the general Lithuanian-speaking public and operates as a marketplace for buying, selling, and trading goods and services locally. It maintains a moderate market position with a significant volume of listings and a user-friendly interface. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and Google Ads for analytics and advertising, hosted likely behind Cloudflare infrastructure. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enforced, but the site lacks visible security headers and a cookie consent mechanism, which are recommended for GDPR compliance. WHOIS data is unavailable due to registry query failure, slightly impacting trust but the site shows legitimate business indicators such as privacy policy, terms of service, and contact email. Overall, the site is safe, professional, and functional with room for improvement in privacy compliance and security best practices.

A

Asociace inovativního farmaceutického průmyslu (AIFP)

lekarskekongresy.cz

50

The website lekarskekongresy.cz serves as a transparency platform managed by the Asociace inovativního farmaceutického průmyslu (AIFP), a Czech pharmaceutical industry association. It focuses on providing a database related to Continuing Medical Education (CME) disclosures, promoting transparency in financial support between pharmaceutical companies and healthcare professionals. The site targets medical professionals, pharmaceutical companies, and event organizers, positioning itself as a trusted resource within the Czech healthcare sector. The business model is non-commercial, emphasizing transparency and ethical collaboration in the pharmaceutical industry. The website content is professionally presented, consistent with the association's branding and mission. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Swiper.js for UI components. It integrates Google Analytics for visitor tracking and CookieHub for cookie consent management, reflecting a moderate level of digital maturity. The site is mobile-optimized with responsive design elements and provides a clear navigation structure. Hosting and domain registration are consistent with Czech providers, supporting the site's legitimacy. From a security perspective, the website uses HTTPS and implements a cookie consent mechanism, but lacks visible advanced security headers and explicit security or incident response policies. No critical vulnerabilities or suspicious patterns were detected. Privacy compliance is partial, with no dedicated privacy policy or terms of service pages found, which is a notable gap. Overall, the security posture is adequate but could be improved with formalized policies and enhanced header configurations. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and improving transparency around incident response and vulnerability disclosures to strengthen compliance and user trust.

Č

Česká advokátní komora

cak.cz

55

Česká advokátní komora is the self-governing professional organization representing all lawyers in the Czech Republic. It is the largest legal professional body in the country, responsible for public administration in the field of advocacy. The website provides a comprehensive directory of lawyers and trainees, legal news, educational and social events, and public legal information. The target audience includes legal professionals and the general public seeking legal assistance or information. Technically, the website uses modern JavaScript frameworks, Google Tag Manager for analytics, and Cookiebot for cookie consent management. The site is mobile-optimized with good navigation and professional design. Security posture is strong with HTTPS and cookie consent but lacks explicit security headers and published security policies. WHOIS data is unavailable, which limits domain trust assessment, but the website's professional appearance and content support its legitimacy. Overall, the site is a credible government-related legal portal with room for improvement in privacy and security disclosures.

P

PepiApp - Mobilní aplikace, vývoj mobilní aplikace pro Android a iOS

pepiapp.cz

60

PepiApp is a small technology service provider specializing in mobile application development for Android and iOS platforms, based in the Czech Republic. The website presents a professional image with a clear focus on their core services and target audience. The technical infrastructure leverages modern web technologies including Webflow CMS, Google Tag Manager for analytics, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and CSRF protection cookies in place, although some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is partially addressed through a detailed cookie consent mechanism, but the absence of a visible privacy policy and contact information limits full compliance assurance. Overall, the website is functional, well-designed, and trustworthy, but could benefit from enhanced transparency and security documentation.

M

Moravskoslezská filmová kancelář

filminnorthmoravia.com

53

The website represents the Moravskoslezská filmová kancelář, a regional film office supporting film productions in the Moravian-Silesian region of the Czech Republic. It offers services such as location scouting assistance and connecting filmmakers with local service providers. The site is built on the Wix platform, leveraging modern JavaScript frameworks and polyfills to ensure compatibility and responsiveness. However, the domain WHOIS data is missing, raising concerns about domain registration legitimacy. The website lacks explicit privacy, cookie, and terms of service policies, as well as contact information, which impacts its trustworthiness and compliance posture. Security-wise, the site uses HTTPS but lacks visible security headers and incident response details, indicating room for improvement in security best practices.

J

Jeseníky Sdružení cestovního ruchu

jeseniky-rodina.cz

44

Jeseníky.cz is a well-established regional tourism portal dedicated to the Jeseníky mountain region in the Czech Republic. Founded in 1998, it serves as an authoritative source of information for tourists, providing comprehensive details on tourist destinations, accommodation, dining, events, and recreational activities. The site is operated by Jeseníky Sdružení cestovního ruchu, a recognized tourism association, and features partnerships with multiple regional and national tourism organizations. The platform targets visitors interested in outdoor activities, cultural events, and wellness experiences in the Jeseníky area. Technically, the website employs a custom CMS called Noteo Engine, utilizes modern web technologies including HTML5, CSS, JavaScript, jQuery, and integrates third-party services such as Google Analytics and YouTube embeds. The site is hosted under a reputable registrar (REG-ZONER) with a domain age dating back to 1998, indicating a mature online presence. Mobile optimization and SEO practices are implemented at a good level, though accessibility features are basic. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms, but lacks visible advanced security headers and a dedicated security or privacy policy page. No critical vulnerabilities or WAF blocking were detected. Contact information is clearly provided, enhancing trustworthiness. The site does not contain any adult or questionable content, making it safe for general audiences. Overall, Jeseniky.cz demonstrates a solid business and technical foundation with room for improvement in security best practices and privacy compliance. Strategic enhancements in these areas would further strengthen its position as a trusted regional tourism resource.

V

visitostrava.eu

visitostrava.eu

60

VisitOstrava.eu is the official tourism guide website for the city of Ostrava, Czech Republic. It provides comprehensive information about local events, attractions, accommodation, and cultural activities, targeting tourists and visitors. The site also features an e-shop for souvenirs and promotes regional tourism partners, positioning itself as a key resource for exploring Ostrava. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates tracking tools such as Google Analytics and Facebook Pixel. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and asynchronous loading of tracking scripts but lacks some security headers and a published privacy policy, which are areas for improvement. The domain WHOIS data is privacy protected by EURid, which is typical for .eu domains, and does not reveal registrant details, but the website content and external partnerships indicate legitimacy. Overall, the website is professional, trustworthy, and serves its business purpose effectively, though it would benefit from enhanced privacy and security disclosures.

H

Hyve

hyve.com

75

Hyve is a professional managed hosting and cloud services provider with a global footprint, offering tailored IT infrastructure solutions including private cloud, dedicated servers, and colocation. The company positions itself as a customer-centric, secure, and reliable partner with over 35 global locations and multiple industry certifications. The website demonstrates a mature digital presence with modern technologies and strong SEO and accessibility features. Security posture is robust with HTTPS, security headers, and secure forms, although explicit security policies and incident response details are not publicly available. The absence of WHOIS registration data introduces some uncertainty about domain legitimacy, but the overall professional presentation and trust signals mitigate this risk. Strategic recommendations include publishing detailed security policies and monitoring domain registration status to enhance trust.

S

StanVision

stan.vision

64

StanVision is a specialized UI/UX agency focused on SaaS product and web design, targeting B2B SaaS companies and startups. The company offers a range of services including product design, website design, Webflow development, digital strategy, and support for growth. Their market position is that of a niche agency with a portfolio of startup success stories and recognized awards, indicating a strong reputation in their field. Technically, the website is built on Webflow CMS with modern JavaScript libraries and integrations such as Google Tag Manager and Hotjar, reflecting a mature digital infrastructure. The site is well-optimized for performance and mobile devices, with excellent design and user experience. Security posture is good with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and published security policies. Privacy compliance is basic with a cookie banner present but no detailed privacy policy found in the provided content. Overall, the website presents a professional and trustworthy front, though improvements in security transparency and privacy documentation are recommended.

T

Turistická oblast Opavské Slezsko, z.s.

opavskocard.cz

50

The website www.opavskocard.cz represents Turistická oblast Opavské Slezsko, a regional non-profit organization promoting tourism in the Opavské Slezsko region of the Czech Republic. The site offers information about a tourist card that provides discounts and benefits for visitors, supported by the Moravskoslezský kraj regional government. The business model focuses on enhancing regional tourism through partnerships and benefit offerings. The website is professionally designed with good content quality and clear navigation, targeting tourists and visitors interested in regional activities. Technically, the website employs modern JavaScript libraries such as Leaflet.js for mapping, Smartlook for user behavior analytics, and Google Tag Manager for tag management. The site is mobile optimized and uses HTTPS with a strong SSL configuration. However, some security best practices like security headers and cookie consent mechanisms are missing, which could be improved to enhance privacy compliance and security posture. From a security perspective, the site shows no critical vulnerabilities or exposed sensitive data. The lack of WHOIS data due to privacy protection is justified given the non-profit nature of the organization. The site does not provide direct contact emails or phone numbers but includes a physical address and social media links. Overall, the website is trustworthy and safe for general audiences, with no adult or questionable content. Strategically, the organization should focus on implementing security headers, explicit cookie consent, and publishing security and incident response policies to strengthen compliance and user trust. Enhancing transparency around data protection and vulnerability disclosure would further improve the security posture and credibility.

L

Lékaři bez hranic - Médecins Sans Frontières in Czech Republic, o.p.s.

lekari-bez-hranic.cz

50

Lékaři bez hranic (Médecins Sans Frontières in Czech Republic) is a well-established international humanitarian and medical aid organization providing neutral, independent, and impartial medical assistance worldwide. The organization is recognized with a Nobel Peace Prize and operates primarily through public donations, avoiding reliance on government funding to maintain independence. Their website targets donors, volunteers, and healthcare professionals interested in humanitarian missions. The site offers comprehensive information about their values, missions, donation options, and volunteer opportunities. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager and Cookiebot for analytics and GDPR-compliant cookie consent. The site is mobile-optimized, accessible, and SEO-friendly, with a professional and consistent design that enhances user experience. However, some security best practices such as explicit security headers and published security policies are missing. From a security perspective, the site enforces HTTPS and uses consent-based tracking mechanisms, but lacks visible incident response or vulnerability disclosure information. The absence of WHOIS data for the domain reduces trust from a domain registration standpoint, though the website content and branding strongly support legitimacy. Overall, the site demonstrates a mature digital presence with room for improvement in security transparency and domain registration clarity. The overall risk is moderate to low, with recommendations to enhance security headers, publish security policies, and clarify domain registration details to strengthen trust and compliance.

J

Jasyko s.r.o.

jasyko.cz

40

Jasyko s.r.o. is a Czech Republic-based company specializing in high-end audiovisual and smart home technology solutions for both domestic and professional markets. Established in 1998, the company offers a range of services including HI-FI equipment sales and smart home system integration, supported by physical showrooms in Brno and Prague. The website reflects a niche market position with a focus on quality and recognized brand partnerships. Technically, the website employs a custom or unknown CMS with technologies such as jQuery 3.1.1 and WOWSlider, hosted by Active24. While the site is accessible and professionally designed, it shows room for improvement in mobile optimization, accessibility, and SEO. Security posture is moderate with HTTPS usage and cookie consent implemented, but lacks explicit security headers and uses an outdated JavaScript library, which could pose risks. Privacy compliance is weak due to the absence of a privacy policy and terms of service. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

W

WWK Versicherungen

wwk.de

62

WWK Versicherungen is a well-established German insurance company founded in 1884, offering a broad range of insurance products including life, health, property, liability, and retirement solutions. The company positions itself as a strong community-focused insurer with a comprehensive portfolio targeting a wide audience. Their website reflects a mature digital presence with clear navigation, multiple customer and partner portals, and a strong emphasis on compliance and service quality. Technically, the site uses modern web technologies such as Vue.js and integrates privacy and consent management tools like OneTrust, alongside analytics via eTracker. Security posture is robust with HTTPS enforcement, security headers, and ISO 27001 certification, although explicit vulnerability disclosure and incident response contacts are not publicly detailed. Overall, the website is professional, secure, and compliant, supporting WWK's market position as a trusted insurer in Germany.

Citify Pro UAB operates an online platform focused on real estate development tracking primarily in the Baltic region. The website provides a real estate development map, project news, and business products such as Pro, Pulse, and Radar, targeting real estate professionals, developers, investors, and interested public users. The business model is subscription and data-driven, offering valuable market insights and contact information. The company maintains a consistent brand presence with active social media channels and structured data enhancing SEO and discoverability. Technically, the website is built on WordPress with Nuxt.js frontend components, leveraging modern JavaScript libraries and Google services for analytics and security. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and reCAPTCHA integration, but lacks explicit security policies and some recommended HTTP headers. Privacy and cookie policies are present and GDPR compliant, though cookie consent mechanisms are not evident. Overall, the site is professional, trustworthy, and well-positioned in its niche.

A

Aspironix - International Medtech Distributor

aspironix.com

58

The website www.aspironix.com appears to be either inactive or unregistered as indicated by the WHOIS data which returned 'No match for domain'. The site is built on the Wix platform and contains minimal content, mostly consisting of Wix's default scripts and styles. There is no meaningful business information, contact details, or privacy policies present. Technically, the site uses standard Wix technologies and polyfills but lacks advanced SEO, accessibility, or security features. The security posture is weak due to absence of security headers and no visible SSL configuration details. Overall, the site presents a high risk due to lack of verifiable business information and domain registration data.

P

ProProfs Chat

live2support.com

10

ProProfs Chat is a technology company offering AI-powered live chat software designed to enhance customer support and sales for businesses. Positioned as a mature SaaS provider, it offers a range of subscription plans including a free tier, targeting small to medium businesses seeking real-time customer engagement solutions. The company is a subsidiary of ProProfs, with a strong brand presence and positive customer ratings. Technically, the website employs modern JavaScript libraries, analytics tools, and is optimized for mobile devices, reflecting a good level of digital maturity. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response details are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but the absence of WHOIS domain registration data introduces some uncertainty regarding domain legitimacy. Strategic recommendations include verifying domain registration, publishing detailed security and incident response policies, and enhancing transparency around data protection roles.

C

Care Comm

carecomm.cz

59

Care Comm is a small Czech healthcare service provider specializing in publishing professional medical journals, website development, and organizing medical congresses. The company targets healthcare professionals and organizations within the Czech Republic. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies such as JavaScript, CSS, and HTML5. The site demonstrates good design quality and mobile optimization but lacks advanced accessibility and SEO features. Security posture is weak due to absence of security headers and no visible privacy or cookie policies. WHOIS data is unavailable, limiting trust assessment. Overall, the website is functional and professional but requires improvements in security and compliance to enhance trustworthiness.

AMCA, spol. s r. o. operates the website cslr.cz, serving as the online presence for the Czech Society for Wound Healing (ČSLR). The organization focuses on providing professional resources, organizing congresses, and offering educational courses related to wound care. The website targets healthcare professionals and members of the wound care community primarily in the Czech Republic. The business model is that of a professional society supported by memberships, events, and partnerships. The domain has been active since 2003, indicating a well-established presence in the healthcare sector. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and cookie consent mechanisms compliant with GDPR. The site is mobile optimized and uses structured data (JSON-LD) to enhance search engine understanding. Performance is moderate with good SEO and accessibility basics, though some improvements could be made in accessibility and security policy disclosures. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. Cookie consent is implemented properly, but there is no explicit security policy or incident response information published. The WHOIS data is consistent with the website content and business claims, supporting legitimacy. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website presents a professional and trustworthy image with good content quality and technical implementation. Recommendations include publishing a security policy, adding incident response contacts, and improving accessibility features to enhance compliance and user experience further.

W

Whow Games GmbH

merkur24.com

69

Merkur24 is a social casino gaming platform operated by Whow Games GmbH, offering free-to-play casino games such as slots, blackjack, and roulette. The platform targets adult users across multiple European languages and markets, emphasizing entertainment without real money gambling. The website demonstrates a solid technical infrastructure with modern web technologies, fast performance, and mobile optimization. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR standards. Security posture is good with HTTPS enforcement and secure login forms, though explicit security policies and incident response details are absent. The absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, but overall business credibility is supported by consistent branding and privacy practices.

A

adSYSTEM

adsystem.eu

51

adSYSTEM is a Czech-based technology company specializing in the design and implementation of internet e-shops, websites, CMS, and CRM systems with rental options. The company targets businesses and organizations seeking integrated administration and publication systems for internet and intranet applications. Their market position is niche-focused within the Czech Republic, offering a proprietary CMS platform and related modules such as e-shop management, CRM, cash register integration, and SEO optimization. The website content is professional, well-structured, and optimized for mobile devices, reflecting a good level of digital maturity. Technically, the website employs standard web technologies including HTML5, CSS3, and jQuery 3.2.1, hosted by a reputable Czech registrar and hosting provider (INTERNET CZ, a.s.). The site enforces HTTPS with strong SSL configuration and basic security headers, though there is room for improvement by adding advanced security headers and publishing a security policy. The cookie consent mechanism and privacy policy indicate awareness of GDPR compliance, enhancing the site's privacy posture. From a security perspective, the site demonstrates good practices such as secure login forms and no visible vulnerabilities or exposed sensitive data. However, the absence of a formal security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for maturity growth. Overall, the risk level is low with no critical issues detected. Strategically, adSYSTEM should focus on enhancing security transparency, expanding accessibility features, and maintaining up-to-date technical components to sustain trust and compliance. The website's professional presentation and clear contact information support strong business credibility within its market segment.

W

WWK Lebensversicherung a. G.

wwkarena.com

65

WWK Lebensversicherung a. G. operates the WWK ARENA official website, providing comprehensive information about the stadium in Augsburg, Germany. The site serves fans and visitors with details on ticketing, hospitality, sustainability, and visitor services, positioning itself as a key digital touchpoint for the stadium experience. The business model focuses on information dissemination and enhancing visitor engagement, supported by strong branding aligned with the parent insurance company WWK. Technically, the website employs modern web technologies including JavaScript, CSS, and integrates third-party services like YouTube and eTracker analytics, with a cookie consent mechanism ensuring GDPR compliance. Accessibility is enhanced by tools such as Eye-Able, reflecting a commitment to inclusive design. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though improvements like enabling DNSSEC and adding security headers are recommended. Overall, the website is professional, trustworthy, and well-structured, supporting the business's digital presence effectively.

P

Pedro's Foodtruck

pedrosfoodtruck.cz

42

Pedro's Foodtruck is a small hospitality business operating a street food truck and bistro in the South Moravia region of the Czech Republic. They specialize in American-style comfort food such as pulled meat burgers, hot dogs, tacos, and quesadillas, emphasizing local ingredients and homemade sauces. The business has a strong local presence with positive customer reviews and media recognition, positioning itself as a leader in the regional street food market. Technically, the website is built on Joomla CMS using the UIkit framework, offering a visually appealing and mobile-optimized experience. However, the site lacks critical privacy and cookie policies, which impacts compliance and trust. Security posture is moderate with HTTPS usage but missing security headers and incident response information. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

A

Agentura Osma a.s.

nutrivino.cz

51

Nutrivino.cz is a specialized digital platform launched in 2023 by Agentura Osma a.s. to assist wine producers in the Czech Republic with compliance to new EU legislation requiring detailed nutritional and ingredient labeling on wine products. The platform offers QR code management, label design integration, and online presentation of mandatory information, targeting wine producers and distributors. The website is professionally designed using modern web technologies like Bootstrap and provides clear contact information for sales and technical support. However, it lacks privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS implied but no visible security headers or incident response contacts. Overall, the domain registration aligns well with the business claims, indicating legitimacy.

A

ANYCARE s.r.o.

anycare.cz

50

ANYCARE s.r.o. is a Czech healthcare company specializing in telemedicine services by providing remote medical examination devices (TytoCare) and online doctor consultations. The company targets patients, healthcare professionals, organizations, and social care institutions, addressing the shortage of practical doctors in the Czech Republic. The website is professionally designed, mobile-optimized, and uses modern analytics and tracking tools such as Google Tag Manager and Hotjar. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is good with HTTPS and secure forms, but could be improved by adding security headers and publishing incident response information. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the website is trustworthy and provides clear contact information and business details, but should address compliance and transparency gaps to enhance trust and security.

Oborová zdravotní pojišťovna zaměstnanců bank, pojišťoven a stavebnictví (OZP) is the third largest employee health insurance company in the Czech Republic. The company offers a broad range of benefits including free preventive check-ups, financial contributions to preventive programs, and discount programs. OZP emphasizes convenience by enabling clients to handle basic administrative tasks online, supported by their VITAKARTA online service and mobile applications. The website reflects a mature digital presence with comprehensive content, clear navigation, and multiple client engagement channels including a chatbot and online appointment booking. Technically, the site employs modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Smartlook, all integrated with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be explicitly confirmed. The absence of WHOIS data limits domain trust analysis, but the website's professional presentation, clear business information, and social media presence strongly support legitimacy. Overall, OZP demonstrates a well-established healthcare insurance business with a solid digital infrastructure and compliance focus.

WWW.KOTVA.CZ, a.s. operates a real estate rental business specializing in office, residential, storage, and parking spaces located in a historic building in the center of Prague. The company targets businesses and individuals seeking premium rental spaces in Prague 1, leveraging the unique architectural and historical value of their property. The website presents a professional image with clear descriptions of services and contact information, positioning the company as a niche local real estate provider with a small but stable tenant community. Technically, the website uses modern web technologies including Google Analytics for tracking and Google Maps API for location services. The site is mobile responsive and well-structured, though it lacks some advanced accessibility features and explicit security headers. The absence of a CMS or hosting provider information limits deeper infrastructure insights. Performance is moderate with good SEO practices evident through meta tags and structured content. From a security perspective, the website uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency and readiness. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is not uncommon for small businesses. Overall, the website is safe, professional, and functional with moderate risk due to missing privacy and security policy disclosures. Strategic improvements in compliance and security posture would enhance trust and reduce potential regulatory risks.

E

EUC

euc.cz

69

EUC.cz is the largest outpatient healthcare provider in the Czech Republic, operating clinics, mamocenters, pharmacies, and laboratories serving approximately one million patients annually. The website presents a professional and consistent brand image targeting Czech healthcare consumers. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Facebook Pixel, and Cookiebot for GDPR-compliant cookie consent management. The site is mobile optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and cookie consent denying tracking by default, though security headers and explicit incident response policies are absent. No contact emails or phone numbers are directly visible, and no terms of service page was found. Overall, the site is trustworthy and well-positioned in its market segment.

The website www.vci-protection.cz is a minimal WordPress site with default placeholder content and no substantive business information or services described. The lack of WHOIS data suggests the domain is either privacy protected or unregistered, which combined with minimal content, indicates the site may be under development or inactive. Technically, the site uses WordPress with the Twenty Twenty-One theme and basic modern web technologies. HTTPS is enabled, but no advanced security headers or policies are present. There is no evidence of privacy, cookie, or terms of service policies, nor any contact or incident response information, which limits compliance and trust. Overall, the site has a low security posture and minimal business credibility.

O

Ooni USA

ooni.com

64

Ooni USA operates a professional e-commerce website specializing in the sale of pizza ovens, including outdoor wood-fired, gas, and electric indoor models. The company targets consumers interested in outdoor cooking and pizza making, positioning itself as a leading niche brand in this market segment. The website is built on the Shopify platform, leveraging modern web technologies and integrations to provide a smooth shopping experience. The site includes comprehensive privacy and cookie policies, indicating GDPR compliance and a commitment to user privacy. However, explicit contact information and detailed security policies are not prominently published on the main site. The domain is well-established since 2002, with strong domain status protections, supporting the legitimacy of the business.

F

Finvalda

finvalda.lt

51

Finvalda is a Lithuanian company specializing in financial management software solutions for businesses of various sizes, offering modular products, integrations, and data protection features. Established in 2004, it holds a stable market position with a focus on serving small to large enterprises. The website is built on WordPress and incorporates modern technologies such as Google Tag Manager, reCAPTCHA, and Cookiebot for analytics and privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site reflects a professional and trustworthy business presence with good technical and privacy compliance maturity.

Edisoft Group OU operates as the largest EDI (Electronic Data Interchange) operator in the Baltic states, providing electronic document exchange services to over 2500 clients. Their website, primarily in Lithuanian, showcases a comprehensive portfolio of EDI-related services including integration solutions, B2B order systems, and international EDI connections. The company emphasizes automation and efficiency in commercial document exchange, targeting businesses in Lithuania, Latvia, Estonia, and beyond. The market position is strong within the Baltic region, supported by certifications such as PEPPOL and a significant volume of processed documents annually.

SEB bankas is a leading Lithuanian financial institution offering a wide range of banking and financial services to private individuals, businesses, and large enterprises. The website demonstrates a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. The technical infrastructure is modern, leveraging Drupal 10 CMS and standard web technologies, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Overall, the website reflects a professional and trustworthy financial services provider with room for improvement in transparency around security and domain registration details.

P

Paysera LT, UAB

paysera.lt

65

Paysera LT, UAB operates a comprehensive financial services platform primarily targeting private individuals and businesses in Lithuania and surrounding regions. The company offers a wide range of services including IBAN accounts, currency exchange at competitive rates, payment collection solutions for e-commerce, contactless Visa cards with mobile wallet integration, and additional services such as event ticketing and gold trading. The website reflects a mature business with a strong regional presence and multiple localized versions for different countries and languages. Technically, the site employs modern web technologies including AngularJS, Bootstrap, and lazy loading techniques to optimize user experience and performance. Security is a clear priority, with HTTPS enforced and a dedicated security information page, although some security headers and incident response disclosures could be improved. The absence of WHOIS data limits domain registration verification, but the overall business credibility is supported by licensing references and customer testimonials. Privacy compliance is mostly addressed with a comprehensive privacy policy, though cookie consent mechanisms are not explicitly visible. Overall, the site presents a professional, trustworthy, and functional digital presence for a large financial services provider.

R

Revolut

revolut.com

73

Revolut is a leading global fintech company providing a comprehensive suite of financial services including personal and business accounts, international money transfers, currency exchange, savings, investments, cryptocurrency, and insurance products. With over 65 million customers worldwide and strong regulatory authorizations from the UK's Financial Conduct Authority, Revolut holds a significant market position in the digital banking and fintech space. The website reflects a mature digital presence with excellent content quality, user experience, and mobile optimization. Technically, the website leverages modern web technologies such as React and Next.js, delivering fast performance and strong SEO optimization. Security measures are robust, including HTTPS enforcement and multiple security headers, alongside a proactive fraud detection team and a responsible disclosure program. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR adherence is evident. Overall, Revolut demonstrates a strong security posture with no critical vulnerabilities detected. The absence of WHOIS data is likely due to privacy protection, which is common for fintech companies to mitigate spam and abuse risks. The website is trustworthy, professional, and well-aligned with industry best practices, making it a reliable platform for financial services users.

Virgin Media operates a dedicated abuse reporting portal at netreport.virginmedia.com, providing a structured form for reporting internet security issues related to their IP addresses and accounts. The site is clearly branded and targets users needing to report abuse, phishing, or security threats. The business is a major UK telecommunications provider with a large customer base. The portal supports reporting various abuse types and provides guidance on child abuse image reporting via the Internet Watch Foundation. The site content is professional but basic, focusing on functionality over design. Technically, the site uses standard HTML, CSS, and JavaScript with no advanced frameworks or CMS detected. The performance and mobile optimization are basic, with no visible analytics or tracking scripts. Security posture is moderate but could be improved; no HTTPS enforcement or security headers were detected in the provided content, and no privacy or cookie policies are linked. The form includes client-side validation and warnings about phishing and abuse reporting. Security-wise, the portal facilitates incident response by providing a contact email for phishing reports and options to report various abuse types. However, the absence of a published security policy or vulnerability disclosure document limits transparency. WHOIS data for the subdomain is unavailable, which is typical for subdomains, but the branding and content align with Virgin Media's official services, supporting legitimacy. Overall, the site is functional for its purpose but would benefit from enhanced security and privacy compliance measures.

M

Mölnlycke Health Care

molnlycke.com

70

Mölnlycke Health Care is a globally recognized MedTech company specializing in innovative and sustainable solutions for wound care and surgical procedures. The company positions itself as a leader in healthcare technology, targeting healthcare professionals and institutions with a strong emphasis on improving patient outcomes and operational efficiency. The website reflects a mature digital presence with comprehensive corporate information, product offerings, and sustainability initiatives. Technically, the site employs modern JavaScript frameworks, Google Tag Manager, and Microsoft Application Insights for analytics and telemetry, indicating a commitment to performance monitoring and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. The WHOIS data is unavailable, which slightly reduces trust but the website's professional presentation and consistent branding support legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility, making it a reliable and professional corporate web presence.

S

Schindlerova pletárna s.r.o.

schindlerovapletarna.cz

10

Schindlerova pletárna s.r.o. is a Czech manufacturer specializing in knitted clothing with a rich tradition dating back to 1854. The company produces a variety of knitted garments including sweaters, cardigans, hats, scarves, and socks, serving both retail and custom order markets. Their website reflects a medium-sized manufacturing business with a strong emphasis on heritage and quality craftsmanship. The company maintains an active online presence with e-commerce capabilities and social media engagement. Technically, the website is built on the Upgates e-commerce platform using modern web technologies such as Bootstrap and jQuery, with integrations for Facebook Pixel and Smartlook for analytics and marketing purposes. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though it lacks advanced security headers and published security policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear professional and legitimate. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations, targeting general audiences interested in quality knitted apparel.

V

VITAPUR spol. s r.o.

teplodomova.cz

49

VITAPUR spol. s r.o. operates the website teplodomova.cz, a Czech family-owned business specializing in manufacturing and retailing wool products since 1990. The company positions itself as a trusted specialist with a WOOLMARK license, targeting general consumers interested in high-quality woolen goods. Their business model combines direct manufacturing with e-commerce sales, supported by a professional website featuring product catalogs, customer service, and clear contact channels. Technically, the site uses modern web technologies including Upgates e-commerce platform, Google Analytics 4, Facebook Pixel, and Smartlook for analytics and marketing, ensuring a responsive and user-friendly experience.

V

VITAPUR spol. s r.o.

vitapur.sk

50

VITAPUR spol. s r.o. is a family-owned Czech company established in 1990, specializing in manufacturing and supplying healthcare products such as anti-decubitus mattresses and bed equipment. The company serves both professional healthcare institutions and end consumers through wholesale and retail e-commerce channels. Their market position is solid within the Czech and Slovak healthcare sectors, supported by ISO 9001 certification and active participation in healthcare associations. Technically, the website is built on the Upgates e-commerce platform, utilizing modern JavaScript libraries, Google Analytics 4, and Facebook Pixel for marketing and analytics. The site is well-optimized for mobile and SEO, with good user experience and clear navigation. Security posture is strong with HTTPS, cookie consent, and form validation, though additional security headers could enhance protection. Privacy compliance is robust, with clear policies and consent mechanisms. Overall, the website reflects a professional and trustworthy business with a good digital maturity level.

H

HARTMANN – RICO a.s.

zivotsestomii.cz

10

The website www.zivotsestomii.cz represents a healthcare-focused business under the brand Dansac, operated by HARTMANN – RICO a.s. It specializes in the development, manufacturing, and distribution of ostomy care products, targeting stomy patients and their families in the Czech Republic. The site offers comprehensive educational content, product information, and customer support, positioning itself as a trusted resource in the stomy care market. Technically, the site employs modern JavaScript frameworks, cookie consent management via Cookiebot, and analytics tools including Google Analytics and Sitecore Engagement Analytics. The site is well-structured, mobile-optimized, and SEO-friendly, providing a professional user experience. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers are missing and should be implemented to enhance protection. Privacy compliance is robust with clear cookie and privacy policies and consent mechanisms in place. However, the WHOIS data for the domain is unavailable, limiting the ability to fully verify domain legitimacy and registration details. Overall, the site is a credible and professional platform with minor technical and security improvements recommended.

H

HARTMANN

hartmanndirect.com

9

HARTMANN direct is a healthcare-focused business providing wound care, incontinence, disinfection, and surgical efficiency products globally through a network of distributors and country-specific websites. The company positions itself as a professional partner with a strong international presence. Technically, the website uses Cloudflare for CDN and security, employs basic JavaScript and CSS, and has moderate performance and mobile optimization. However, the site lacks comprehensive metadata, structured data, and visible privacy or cookie policies, which limits its compliance posture. Security-wise, HTTPS is enabled and Cloudflare provides protection, but the absence of security headers and incident response contacts indicates room for improvement. Overall, the website is functional but basic, with moderate trustworthiness and a need for enhanced privacy and security features.

H

HARTMANN

linkforwoundhealing.info

10

LINK for Wound Healing is a professional educational platform operated by HARTMANN, dedicated to providing medical professionals with comprehensive wound care knowledge through e-learning, webinars, scientific content, and events. The platform is positioned as a global hub for wound care expertise, supported by partnerships such as Wounds International. The website demonstrates a high level of digital maturity with modern technologies including Sitecore CMS, Cloudflare security, and integrated analytics tools like Google Analytics and Hotjar. Security posture is strong with HTTPS enforcement, CSRF protection, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the site is well-designed, accessible, and trustworthy, serving a specialized healthcare audience effectively.

I

Invoice123

invoice123.com

51

Invoice123 is a well-established SaaS platform specializing in online invoicing and accounting automation tailored for freelancers, self-employed individuals, and small to medium businesses. Founded in 2014 and operating primarily in the European market, it offers a comprehensive suite of services including invoice generation, VAT reporting, expense tracking, and integrations with popular e-commerce and accounting software. The platform emphasizes ease of use, cost-effectiveness, and continuous feature enhancements, supported by a strong user base of over 30,000 customers. Technically, Invoice123 leverages modern web technologies with a focus on performance, mobile responsiveness, and user experience. The site is hosted behind Cloudflare DNS services, uses Google Tag Manager for analytics, and integrates Crisp Chat for customer support. The website is well-structured with clear navigation, professional design, and SEO optimization, reflecting a mature digital presence. From a security perspective, the platform enforces HTTPS with SSL encryption and holds ISO 9001 certification, indicating adherence to quality management standards. However, there is room for improvement in DNS security (lack of DNSSEC) and implementation of security headers. Privacy compliance is generally good with a comprehensive privacy policy and terms of use, but lacks an explicit cookie consent mechanism. Contact information is transparent and readily available, enhancing trust. Overall, Invoice123 presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, DNSSEC, and privacy consent mechanisms would further strengthen its security posture and compliance standing.

C

Cookienovo

cookienovo.com

65

Cookienovo.com is a website with a focus likely related to cookie management or privacy tools, as inferred from the domain name and minimal content. The site is relatively new, registered in 2022, and hosted with Cloudflare DNS services. The technical infrastructure includes modern JavaScript frameworks and Google Tag Manager for analytics, indicating a moderate level of digital maturity. However, the website lacks critical privacy and cookie policies, contact information, and security headers, which are essential for compliance and trust. The security posture is basic with HTTPS enabled but missing advanced security headers and DNSSEC. Overall, the site is accessible and safe but requires significant improvements in privacy compliance and security best practices to enhance trustworthiness and regulatory adherence.

U

Ukrainian Independent Information Agency UNIAN

unian.info

60

UNIAN is a well-established Ukrainian independent news agency founded in 1993, providing comprehensive news coverage on politics, economy, society, and world events. The website targets a broad audience interested in Ukrainian and international news, offering content in multiple languages and maintaining a strong presence across major social media platforms. The business model revolves around news reporting, advertising, subscriptions, and media services such as image banks and monitoring. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, Matomo and Gemius analytics, and header bidding for advertising. The site is mobile-optimized, SEO-friendly, and performs moderately well. Security best practices are implemented with HTTPS, security headers, and secure forms, although explicit security policies and incident response contacts are not published. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms in place. WHOIS data is unavailable or malformed, likely due to privacy protection, but this is common for media organizations and does not detract from the site's legitimacy. Overall, UNIAN presents a professional, trustworthy, and content-rich platform with a strong market position in Ukrainian media. Strategic recommendations include publishing a dedicated security policy, incident response information, and vulnerability disclosure to enhance transparency and trust.

1

1+1 video: Популярні серіали, шоу та ТВ онлайн

1plus1.video

60

1+1 video is a Ukrainian online media streaming platform offering popular TV shows, series, movies, cartoons, and live TV channels such as 1+1, 2+2, TET, and others. It serves a broad general audience interested in Ukrainian and international entertainment content. The platform is well-branded and integrates multiple popular TV channels, positioning itself as a leading video archive and streaming service in Ukraine. Technically, the website uses modern JavaScript frameworks, Google Analytics, Facebook Pixel, and a consent management platform to handle cookies and user tracking. The site is mobile-optimized with good SEO and user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks some security headers and explicit privacy and terms of service documentation. WHOIS data is privacy protected, which is common for media platforms, and no suspicious patterns were detected. Overall, the site is professional and trustworthy but could improve transparency and security practices.

The analyzed content corresponds to an internal Chrome browser error page (chrome-error://chromewebdata/) rather than an externally hosted website. This page is displayed when the browser cannot load a requested webpage, showing a default offline or error interface including the Chrome dinosaur game. Consequently, there is no actual business or organizational content, no contact or policy information, and no external links or social media references. The technical infrastructure is limited to embedded Chromium UI scripts and styles, with no hosting or CMS details applicable. Security posture is minimal due to the nature of the page being a local browser resource rather than a public website. Overall, this content does not represent a legitimate business website and cannot be evaluated for compliance, security, or business credibility.