Security Directory

N

NATUR-PACK, a.s.

naturpack.sk

58

NATUR-PACK, a.s. is a leading Slovak organization specializing in recycling and waste management services, particularly focusing on packaging waste, electrical equipment, batteries, and non-packaging products. The company serves manufacturers, municipalities, and the general public, providing consultation, education, and compliance support within the framework of extended producer responsibility (OZV). Their market position is strong, being the largest OZV in Slovakia with a broad client base and extensive regional presence. Technically, the website employs modern web technologies including JavaScript, jQuery, Owl Carousel, and integrates Google Tag Manager and analytics tools such as Google Analytics and Fathom Analytics. The site is well-optimized for mobile devices, has good accessibility features, and demonstrates solid SEO practices. The cookie consent mechanism is comprehensive and GDPR-compliant, reflecting a mature approach to privacy. From a security perspective, the site enforces HTTPS and uses cookie consent to manage tracking scripts responsibly. However, some standard security headers like Content-Security-Policy and X-Frame-Options are not detected, representing an area for improvement. No vulnerabilities or exposed sensitive data were found. Incident response and explicit security policies are not publicly detailed, which could be enhanced. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. The domain registration data is consistent with the business claims, supporting legitimacy. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing security policies, and improving incident response transparency.

K

Kúpele Sliač

kupelesliac.sk

70

Kúpele Sliač is a historic spa and wellness center in Slovakia with over 200 years of tradition, offering therapeutic water treatments and professional hospitality services. The website presents the business as a nationally recognized cultural heritage site with a focus on high-quality spa services. Technically, the site is built on WordPress with a modern tech stack including popular plugins for e-commerce, event management, and photo galleries. The site integrates Cookiebot for GDPR-compliant cookie consent and uses Google Analytics and Facebook Pixel for analytics and marketing. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and well-optimized for users.

K

Krosapp s.r.o.

kroscloud.com

61

Kroscloud is a specialized web-based platform offering interactive 3D model viewing and hosting services, primarily targeting users who work with photogrammetry 3D scans and panoramic images. The platform supports advanced features such as multi-layer visualization, audio guides, multilingual interfaces, and protected content access, positioning itself as a niche SaaS provider in the 3D visualization technology sector. The website is professionally designed with clear navigation and good content relevance, supporting a positive user experience for its target audience. Technically, the site uses a modern technology stack including jQuery, Bootstrap, and various JavaScript libraries, with integration of Google Analytics and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and implements GDPR-compliant privacy and cookie policies with consent mechanisms. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS data for the domain is a notable concern, as it reduces transparency and trust from a domain registration perspective, despite the professional appearance and functionality of the website. Overall, the site scores well in content quality, technical implementation, and privacy compliance, but domain registration opacity and minor security header gaps moderate the overall trust score.

D

Díky, že můžem

dikyzemuzem.cz

59

Díky, že můžem is a Czech non-profit organization dedicated to fostering respectful dialogue and civic engagement among citizens, especially targeting young people. Founded in 2014, it operates various year-round projects, educational programs, and discussions across the Czech Republic to promote societal cohesion and democratic participation. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content aligned with its mission. Technically, the site is built on WordPress with modern plugins and integrations such as Yoast SEO, Google Analytics, and OneSignal for push notifications, hosted via WEDOS and utilizing Cloudflare DNS services. Security posture is strong with HTTPS enforcement, standard security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a solid balance of content quality, technical implementation, and privacy compliance, supporting the organization's credibility and trustworthiness.

C

Cykloserver.cz

cykloserver.cz

39

Cykloserver.cz is a well-established Czech cycling news and community platform founded in 2000, serving hobby cyclists and enthusiasts primarily in the Czech Republic and Slovakia. The site offers a variety of content including cycling news, event calendars, trip tips, and an online cycling atlas, supported by partnerships with relevant cycling organizations. The business model appears to be content-driven with advertising and partner promotions. Technically, the website uses standard web technologies with HTTPS and Google Analytics integration, hosted by a Czech hosting provider. While the site is functional and content-rich, it lacks formal privacy and cookie policies and does not implement advanced security headers, which are areas for improvement. The security posture is moderate with secure forms and HTTPS but missing some best practices. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

N

Novinykraje.cz

novinykraje.cz

50

Novinykraje.cz is a Czech regional news media website operated by Regionální vydavatelství s.r.o. It provides news, interviews, and reports focused on various Czech regions, targeting the general public interested in local news. The website is built on WordPress and uses a modern tech stack including Yoast SEO, Google Analytics, and Facebook SDK, indicating a mature digital infrastructure. The site is mobile optimized with good navigation and content relevance. Security posture is solid with HTTPS enforced, but lacks some security headers and visible privacy/cookie policies. No WHOIS data is publicly available, suggesting privacy protection, which is typical for media outlets. Overall, the site is professional and trustworthy with moderate risk due to missing privacy disclosures and security headers.

M

Monte Bú Restaurant a steakhouse

monte-bu.cz

42

Monte Bú Restaurant a steakhouse is a premium dining establishment located in Brno, Czech Republic, specializing in exclusive steaks from their own dry-aging cellar, grilling, and premium American and Mexican cuisine. The restaurant also offers a unique collection of exclusive rums and rum tastings led by a rum sommelier. The business operates under the Con Gusto Restaurant Group umbrella, indicating a solid partnership and brand backing. Their market position is that of a unique steakhouse with a focus on quality and gourmet experiences, targeting local residents and visitors seeking high-end dining. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, Facebook Pixel, and other JavaScript libraries to deliver a responsive and interactive user experience. The site is mobile-optimized and uses HTTPS with good SSL configuration, though it lacks some security headers and formal privacy documentation. The cookie consent mechanism is implemented, reflecting some level of privacy compliance. From a security perspective, the site benefits from HTTPS and no visible exposed sensitive data. However, the absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trust. No privacy policy or terms of service pages were found, which is a compliance gap. The site uses tracking and advertising tools with consent defaults denying ad and analytics storage, indicating some privacy awareness. Overall, Monte Bú presents a professional and trustworthy online presence for a small hospitality business, but improvements in transparency, security headers, and domain registration verification are recommended to enhance trust and compliance.

A

Aqualand Moravia

aqualand-moravia.cz

51

Aqualand Moravia operates the largest aquapark in the Czech Republic, offering a wide range of water attractions, wellness services, and accommodation options. The website presents a professional and user-friendly interface with multilingual support and comprehensive information about services, events, and ticketing. The business targets families, tourists, and wellness seekers, positioning itself as a leading leisure destination in the region. Technically, the site uses a custom CMS platform with modern JavaScript frameworks and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The lack of WHOIS data reduces domain trustworthiness but does not detract from the overall professional presentation. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details.

M

Miroslav Matyska

puzzle-puzzle.cz

59

Puzzle-puzzle.cz is a Czech Republic-based specialized e-commerce retailer focused on selling a wide variety of puzzles and related accessories for both children and adults. The website offers a broad assortment including 3D and 4D puzzles, baby puzzles, foam puzzle mats, and puzzle accessories. The business appears to have been established around 2011, as indicated by copyright metadata, and targets puzzle enthusiasts and families. The site is professionally designed with clear navigation and mobile optimization, providing a good user experience. However, the WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and trustworthiness. The website uses HTTPS and standard tracking technologies such as Google Analytics and Google Tag Manager, and it implements a cookie consent mechanism with granular user controls, indicating some level of privacy compliance. No explicit privacy policy or terms of service pages were found, and no direct contact information such as emails or phone numbers are provided on the main page, which limits transparency and user trust. Security headers are not detected, suggesting room for improvement in security posture. Overall, the website is safe, family-friendly, and functional but would benefit from enhanced transparency and security practices.

S

StaniOn

stanion.cz

37

StaniOn s.r.o. is a Czech Republic based medium-sized construction company specializing as a general contractor for various building projects including residential, industrial, and infrastructure developments. The company emphasizes quality, innovation, and environmental responsibility, holding ISO certifications and operating since 2009. Their website demonstrates a professional digital presence with clear service offerings, client testimonials, and partner affiliations. Technically, the site is built on WordPress with modern tracking and analytics tools, optimized for mobile and SEO. Security posture is good with HTTPS and no obvious vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data limits domain legitimacy verification but the business content and branding suggest a trustworthy entity. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and compliance.

S

Sdružení místních samospráv České republiky, z. s.

smscr.cz

49

Sdružení místních samospráv České republiky, z. s. is a Czech non-profit association representing local self-governments. The website serves as an official portal providing legislative information, working groups, member benefits, media relations, and conference organization. The target audience includes local government officials and municipalities within the Czech Republic. Technically, the website uses modern JavaScript libraries such as jQuery, Bootstrap, and Swiper.js, with a cookie consent mechanism and Google Analytics integration. Security posture is moderate with HTTPS usage and reCAPTCHA, but lacks visible security headers and explicit privacy policies. WHOIS data is unavailable, limiting domain trust verification. Overall, the site is professional, content-rich, and trustworthy for its intended audience.

L

Louda Holding a. s.

louda.cz

10

Louda Holding a. s. is a well-established Czech family-owned holding group founded in 1992, operating across six diverse sectors including automotive sales and service, mobility and financing, real estate development, manufacturing, glass production, and education. The company employs over 1,500 people and holds a strong market position as the largest ŠKODA and Hyundai car dealer in the Czech Republic and the largest carsharing provider. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting a general Czech audience. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Tag Manager, and Cookiebot, hosted via REG-ZONER, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA integration, and cookie consent management, though it lacks some advanced security headers and explicit security policies. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious content or blocking mechanisms.

Holidayinfo.cz is a Czech-focused online portal providing comprehensive information about holiday resorts, including ski areas, accommodation, webcams, weather forecasts, and related tourist services. The website targets tourists and visitors interested in Czech recreational destinations, offering seasonal content for both summer and winter activities. The business operates as an information service platform with a niche regional focus, leveraging partnerships with related service providers such as accommodation platforms and ski pass services. The domain's long registration history since 2000 supports its established presence in the market. Technically, the website employs a custom JavaScript-based platform with libraries such as jQuery and Modernizr, integrated with Google Tag Manager and Google Analytics for tracking. The site uses HTTPS and implements a cookie consent banner, indicating basic privacy compliance. However, it lacks visible privacy policy and terms of service pages, and no direct contact information is provided on the homepage. The design is professional and consistent, though mobile optimization and accessibility are basic. From a security perspective, the site benefits from HTTPS and cookie consent mechanisms but lacks published security policies, incident response contacts, and advanced security headers in the HTML content. No vulnerabilities or suspicious patterns were detected. The WHOIS data confirms domain legitimacy and consistency with the website's content and business focus. Overall, Holidayinfo.cz presents a trustworthy and functional information portal with room for improvement in privacy disclosures, security transparency, and contact availability. Strategic enhancements in these areas would strengthen user trust and compliance posture.

M

Město Frýdlant

mesto-frydlant.cz

61

Město Frýdlant operates an official municipal website serving residents, tourists, and local businesses by providing comprehensive information about local government, events, public notices, and community services. The site is positioned as the authoritative source for municipal information in the Frýdlant region of the Czech Republic. The business model is focused on public service and information dissemination, targeting a broad audience including citizens and visitors. Technically, the website uses a proprietary CMS called Public4u, supplemented by common JavaScript libraries such as jQuery and jQuery UI. It integrates analytics tools like Google Analytics and Smartlook for user behavior tracking. The site is served over HTTPS, ensuring encrypted communication, and includes a cookie consent mechanism aligned with GDPR requirements. However, mobile optimization and accessibility features are basic, and no advanced security headers were detected. From a security perspective, the website demonstrates a moderate security posture with HTTPS enforcement and privacy policies in place. There is no evidence of exposed sensitive data or vulnerable libraries, but the absence of security headers and incident response information indicates room for improvement. The lack of WHOIS data for the domain is a concern, reducing trust from a domain registration standpoint, though the website content and official contact details support its legitimacy. Overall, the website is functional, professional, and trustworthy for its intended municipal audience. Strategic improvements in security headers, mobile responsiveness, and transparency around security policies would enhance its security posture and user trust.

W

Worldloppet

worldloppet.com

67

Worldloppet is a global federation uniting 19 major cross-country ski marathons worldwide, fostering a large and active skiing community. The website serves as a comprehensive platform offering race calendars, results, rankings, and membership programs such as Passports and Masters. It targets skiing enthusiasts globally and operates primarily as a non-profit organization promoting the sport. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by plugins like Slider Revolution and GDPR compliance tools. It uses Google Analytics and Facebook Pixel for user tracking and marketing insights. The site is mobile-optimized with good SEO practices and a moderate performance profile. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and visible security policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content and social media presence indicate a professional and trustworthy organization. Overall, the site is well-structured and content-rich, serving its community effectively. However, it would benefit from improved transparency in domain registration, enhanced security headers, and explicit privacy and security policies to strengthen trust and compliance.

I

iLIBERECKO.cz - Zprávy z Libereckého kraje

iliberecko.cz

60

iLIBERECKO.cz is a Czech regional news portal delivering independent news and updates focused on the Liberec region. It covers a broad range of topics including education, culture, economy, politics, and sports, targeting residents and visitors interested in local affairs. The website operates on a business model primarily driven by advertising and premium content subscriptions, positioning itself as a key regional media outlet. Technically, the site employs modern web technologies such as Bootstrap, Laravel Livewire, and integrates Google Analytics and Adsense for analytics and monetization. The site is mobile responsive and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and includes CSRF tokens and cookie consent mechanisms, but lacks some recommended security headers. The absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective, though the website content and structure suggest legitimacy. Overall, the site scores well in content quality and technical implementation but could improve in security header implementation and explicit contact information to enhance trust and compliance.

Z

Zucchetti Hospitality s.r.l.

ovosodo.net

37

Ovosodo is a digital agency specializing in UI/UX, web design, and development services, operating as a business unit of Zucchetti Hospitality s.r.l., part of the larger Zucchetti Group. The company targets businesses seeking comprehensive digital solutions, emphasizing equal attention to code and design. Their market position is that of a specialized subsidiary within a reputable technology and hospitality group, founded in 2003. The website reflects a professional and consistent brand image with clear service offerings and recent project showcases. Technically, the website employs modern web technologies including jQuery, Vimeo Player integration, and Iubenda for cookie consent management, alongside Google Analytics and Tag Manager for tracking. The site is mobile optimized with good SEO and basic accessibility features. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, ensuring GDPR compliance. However, it lacks explicit security policies and incident response contacts, and no advanced security headers were detected. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content and business information are credible and professionally presented. Overall, the website presents a low risk with good privacy compliance and business credibility, but the missing WHOIS data and lack of explicit security policies suggest areas for improvement to enhance trust and security posture.

C

Cascade Rescue Company

cascade-rescue.com

60

Cascade Rescue Company is a specialized manufacturer and retailer of high-quality rescue equipment designed for professionals such as fire departments, air operations teams, helicopter rescue units, ski patrols, and military personnel. Established in 2008, the company operates a professional e-commerce platform offering a wide range of products and training services. Their market position is that of a trusted niche provider with strong industry certifications and partnerships. Technically, the website is built on the BigCommerce platform using modern web technologies and integrates multiple marketing and analytics tools, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and security headers could enhance it further. Privacy compliance is partial, with a privacy policy present but lacking explicit cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, with room for security and privacy enhancements.

E

Elevated Safety, LLC

elevatedsafety.com

55

Elevated Safety, LLC is a specialized provider of professional rope access, confined space, tower rescue, and rope rescue training courses, services, and rescue gear. Established in 2010, the company operates globally with training facilities across multiple U.S. states and Europe, targeting professionals and organizations in industrial safety and rescue sectors. Their business model combines training services with e-commerce sales of specialized safety gear, positioning them as a reputable niche player with strong industry partnerships. The website infrastructure is built on WordPress with integrated BigCommerce for e-commerce, supported by modern JavaScript libraries and analytics tools such as Google Analytics and Segment. Hosting is supported by Microsoft Azure DNS services. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility features are basic. Security posture is moderate; HTTPS is enforced with domain registration protections in place, but DNSSEC is not enabled and no explicit security headers or incident response policies are published. Privacy compliance is basic, with a privacy policy present but lacking a cookie consent mechanism despite use of tracking scripts. No vulnerabilities or malware indicators were detected. Overall, the website is professional and trustworthy with room for improvement in security hardening and privacy compliance. Strategic enhancements in DNS security, security headers, and privacy mechanisms would strengthen their digital maturity and trustworthiness.

N

Národní síť místních akčních skupin České republiky, z.s.

nsmascr.cz

42

Národní síť místních akčních skupin České republiky, z.s. is a Czech non-profit association uniting local action groups working on community-led local development using the LEADER method. The organization represents 178 member groups covering 91% of the Czech Republic, providing advocacy, training, and coordination services. The website is professionally designed, mobile-optimized, and regularly updated with news and events relevant to its audience. Technically, it uses modern JavaScript libraries and enforces HTTPS with appropriate security headers, indicating a good security posture. However, the absence of WHOIS data and lack of published security or incident response policies slightly reduce trustworthiness. Overall, the site is a credible resource for stakeholders in rural development in the Czech Republic.

B

Barion

barion.com

74

Barion is a payment service provider offering comprehensive payment solutions, programmatic advertising, and advanced analytics to help businesses grow. The company targets businesses and developers seeking efficient payment integration with competitive fees and insightful data. The website demonstrates a modern technical infrastructure using Next.js and Builder.io CMS, with integration of popular analytics and marketing tools such as Google Analytics and Facebook Pixel. The site is well-designed, mobile-optimized, and provides a professional user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are missing. WHOIS data is not available, which raises some concerns about domain registration transparency. Overall, the website is credible and trustworthy but would benefit from enhanced privacy and security disclosures.

J

JOHNNY SERVIS GmbH

johnnyservis.at

60

JOHNNY SERVIS GmbH is a medium-sized Austrian company specializing in the rental and sale of mobile toilets, sanitary and storage containers, mobile offices, and event infrastructure such as construction fences. With over 25 years of experience, the company serves businesses and institutions requiring tailored solutions for construction sites, cultural and sporting events, and private occasions. The website is professionally designed, multilingual, and features clear navigation and contact information, supporting a strong market presence in Austria and neighboring countries. Technically, the site runs on Joomla CMS with VirtueMart e-commerce, integrates Google Tag Manager and Analytics with GDPR-compliant cookie consent, and is mobile optimized with good performance. Security posture is solid with HTTPS and consent management, though it lacks advanced security headers and a public incident response policy. WHOIS data is unavailable due to NIC.AT restrictions, which slightly reduces trust but is mitigated by visible certifications and professional presentation.

J

JOHNNY SERVIS s.r.o.

johnnyservis.sk

54

JOHNNY SERVIS s.r.o. is a well-established Slovak company specializing in the rental and sale of mobile toilets, sanitary containers, mobile fencing, offices, and event equipment. With over 25 years of experience, it serves both business clients and the general public, positioning itself as a regional leader in its niche. The website reflects a professional and consistent brand image, supported by ISO certifications and clear contact information. Technically, the site is built on Joomla CMS with VirtueMart e-commerce, leveraging modern web technologies such as jQuery and Google Tag Manager. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. Overall, the site is trustworthy and compliant with GDPR, with no signs of malicious activity or content blocking.

D

Delirest services s.r.o.

ceskyobed.cz

66

Český oběd is a Czech-language website focused on industrial and school catering, providing recipes, sustainability guidance, and insights into the catering industry. It is operated under the brand umbrella of Compass Group, a global leader in food services, with visible partnerships to related Compass Group entities such as Eurest and Scolarest. The website targets professionals and stakeholders in the Czech catering sector, emphasizing practical and sustainable kitchen practices. Technically, the site is built on WordPress with modern SEO and analytics tools, including Yoast SEO and Google Analytics, and implements a cookie consent mechanism compliant with GDPR standards. Security posture is good with HTTPS enforced, but lacks explicit security headers and published security policies. WHOIS data is unavailable, likely due to privacy protection, which is common but reduces transparency. Overall, the site is professional, content-rich, and trustworthy within its niche.

T

TRIMA NEWS, s.r.o.

drbna.cz

49

Drbna.cz is a Czech regional news portal operated by TRIMA NEWS, s.r.o., delivering authentic local news and stories across multiple regional sub-portals. The website targets Czech-speaking audiences interested in regional news, offering a mix of news articles, blogs, weather updates, and premium ad-free subscriptions. The platform holds a strong market position in regional media within the Czech Republic. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Microsoft Clarity, and multiple advertising networks, ensuring a moderate to good performance and mobile optimization. Security-wise, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security.txt and incident response contacts. Privacy policies and terms of service are present and indicate GDPR compliance. Overall, the site is professional, content-rich, and trustworthy, though WHOIS data is unavailable, which slightly impacts domain trust assessment.

J

JOHNNY SERVIS s.r.o.

johnnyservis.cz

54

JOHNNY SERVIS s.r.o. is a well-established Czech company specializing in the rental and sale of mobile toilets, sanitary and storage containers, mobile fencing, and event equipment. With over 25 years of experience, it serves both business clients and the public for construction sites, cultural, sports, and social events primarily in the Czech Republic and neighboring countries. The company positions itself as a market leader with a comprehensive product portfolio and additional services such as express delivery through its GO1 platform. Technically, the website is built on Joomla CMS with VirtueMart e-commerce components, leveraging modern JavaScript libraries like jQuery and integrating marketing and analytics tools such as Google Tag Manager and Seznam.cz tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Privacy and cookie policies are implemented with consent mechanisms, reflecting GDPR compliance. From a security perspective, the site uses HTTPS and has basic security best practices in place, though explicit security policies and incident response details are not publicly available. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain reduces trustworthiness and should be investigated further to confirm domain legitimacy. Overall, JOHNNY SERVIS demonstrates a mature digital presence with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to improve trust and security assurance.

P

PIVOVAR SVIJANY, a.s.

pivovarsvijany.cz

49

Pivovar Svijany, a.s. is a historic Czech brewery established before 1564, specializing in traditional Czech beer production. The company operates a professional website showcasing its product range, events, and retail options including an e-shop. The site targets adult consumers with age verification and complies with relevant privacy and cookie regulations. Technically, the website employs modern tracking and analytics tools such as Google Analytics and Facebook Pixel, integrated via Google Tag Manager. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and branding consistency. Security posture is solid with HTTPS enforced and privacy mechanisms in place, though explicit security headers and incident response information are absent. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the company's established market presence and social media footprint.

S

Svaz lyžařů České republiky

czech-ski.com

17

Svaz lyžařů České republiky operates as the official national skiing association for the Czech Republic, providing comprehensive information on skiing disciplines, membership services, event updates, and partner promotions. The website targets the Czech skiing community including athletes, members, and fans, positioning itself as a trusted source for skiing-related activities and organizational information. The business model is non-profit and focused on community engagement and sport promotion. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI components, integrates social media SDKs, and uses Google Analytics for visitor tracking. The site is mobile-optimized with good SEO practices, though accessibility features are basic. The hosting provider and CMS are not explicitly identified. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published privacy or terms of service pages. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which reduces trustworthiness but the site content and business information appear legitimate. Overall, the website presents a professional and trustworthy front for the Czech skiing association, though improvements in privacy disclosures, security headers, and WHOIS transparency are recommended to enhance compliance and trust.

A

Active Radio ČR

evropa2.cz

43

Evropa 2 is a prominent Czech radio station offering a comprehensive digital platform that includes live streaming, music charts, articles, quizzes, videos, and contests. The website targets a broad audience interested in entertainment, lifestyle, and music, positioning itself as a leading media outlet in the Czech Republic. The business operates under the parent company Active Radio ČR, with a strong brand presence and consistent content quality. Technically, the site leverages modern web technologies including React (Next.js), integrates multiple advertising and analytics services, and employs consent management tools to comply with privacy regulations. Security posture is solid with HTTPS enforcement and security headers, though there is room for improvement in content security policies and incident response transparency. The absence of WHOIS data limits domain trust assessment but the website's professional presentation and legal disclosures support its legitimacy. Overall, Evropa 2 demonstrates a mature digital presence with good security and privacy practices, serving a large audience in the media sector.

K

Kup merch!

kupmerch.cz

55

Kup merch! is a Czech Republic based e-commerce platform specializing in the sale and production of merchandise across various projects. The website targets a general audience interested in branded merchandise, offering a range of products including clothing and accessories. The business operates primarily online with a niche market focus. Technically, the site uses a modern technology stack including jQuery, Google reCAPTCHA for bot protection, and Google Analytics for traffic analysis. The site is built on the Sirius CMS platform and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are not explicitly detected. Privacy compliance is partial, with no clear privacy policy or terms of service pages found, and no explicit contact information for security or business inquiries. WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

S

Ski Classics

skiclassics.com

53

Ski Classics is an established international series of long-distance cross-country ski races in classic style, operating since 2011 with a domain registered since 2003. The website serves as an information hub for the events, targeting skiing enthusiasts and athletes. The business is positioned as a niche sports event organizer with a medium-sized operational scale, primarily focused on transportation and sports sectors. Technically, the website is built on WordPress with WooCommerce, leveraging modern web technologies including Google Analytics, Tag Manager, and reCAPTCHA for bot protection. The site demonstrates good SEO and mobile optimization, though accessibility is basic. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and DNSSEC. No incident response or security policy is published, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, with room to enhance security and transparency.

4

4WORKS

posunemevasvys.cz

47

4WORKS is a Czech-based digital agency specializing in creating professional websites, e-commerce platforms, applications, and comprehensive online marketing services. With a decade of experience, they position themselves as a trusted partner for businesses seeking to enhance their online presence. The website showcases a modern, well-structured design with clear navigation and extensive service offerings, targeting primarily business clients in the Czech Republic. Technically, the site is built on WordPress using the Avada theme, integrating multiple analytics and marketing tools such as Google Analytics, Matomo, Hotjar, and Facebook Pixel, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and several security headers present, although explicit security policies and vulnerability disclosure mechanisms are absent. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the professional presentation and active content mitigate this risk. Overall, the site demonstrates a solid digital maturity with room for improvement in privacy compliance and security transparency.

S

Samosebou.cz

samosebou.cz

41

Samosebou.cz is an educational website dedicated to promoting waste sorting and recycling awareness primarily in the Czech Republic. The platform offers a variety of content including articles, infographics, interactive dictionaries, and competitions aimed at educating the general public about proper recycling practices. The site targets environmentally conscious individuals and communities interested in sustainable waste management. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies such as Bootstrap and jQuery. It integrates analytics and user behavior tracking tools like Google Analytics and Hotjar, and implements cookie consent mechanisms to comply with privacy regulations. Security-wise, the site enforces HTTPS and shows good SSL configuration but lacks explicit security headers and publicly available security policies. The absence of WHOIS data for the domain reduces the trustworthiness score, although the website content and technical setup appear professional and legitimate. Overall, the site provides valuable environmental education content with a moderate to good security posture and privacy compliance.

M

město Tábor

visittabor.eu

50

The website www.visittabor.eu serves as the official tourism portal for the city of Tábor, Czech Republic. It provides comprehensive information about the city's attractions, culture, accommodation, sightseeing, gastronomy, and practical visitor details. The site targets tourists and visitors interested in exploring Tábor and the South Bohemian region. The business model is government-supported tourism promotion, positioning itself as a key regional tourism information source with official city branding and certifications such as A.T.I.C. Technically, the website employs modern web technologies including JavaScript, jQuery, Bootstrap, and tracking tools like Google Analytics and Adform. It uses the Nette Framework CMS inferred from form structures and AJAX usage. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate, with room for improvement in security headers and accessibility. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are missing, and there is no explicit security policy or incident response information published. The use of third-party tracking scripts is transparent with user consent. Overall, the security posture is good but could be enhanced with additional headers and documented policies. The overall risk assessment is low, with the site demonstrating legitimacy through official contact information, consistent branding, and certifications. The lack of WHOIS data is due to registry privacy policies and does not detract from trustworthiness. Strategic recommendations include implementing security headers, publishing a security policy, enhancing accessibility, and adding a vulnerability disclosure mechanism to further strengthen security and compliance.

D

Dokempu.cz – Objevujte kempy v České republice i zahraničí

dokempu.cz

55

Dokempu.cz is an online guide specializing in campsites and glamping locations primarily in the Czech Republic, targeting outdoor enthusiasts and families seeking nature-based vacations. The website positions itself as the largest campsite directory in the region, offering categorized listings and user reviews to facilitate easy campsite discovery. Technically, the site is built on modern web technologies including React and Next.js, with integration of Google Analytics and Tag Manager for user tracking and marketing purposes. The site is mobile optimized and SEO friendly, providing a good user experience. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms but lacks several security headers and formal privacy and terms of service documentation, which are areas for improvement. The absence of WHOIS data limits the ability to fully verify domain legitimacy, although the site content and structure suggest a professional operation. Overall, the site is functional and trustworthy for its intended audience but would benefit from enhanced compliance and security transparency.

K

Karavanista.cz

karavanista.cz

56

Karavanista.cz is a specialized retailer and service provider focused on equipment and accessories for caravans and motorhomes, primarily serving customers in the Czech Republic. The company offers a comprehensive e-commerce platform alongside installation and repair services, positioning itself as a trusted niche player with over seven years of market presence. The website is professionally designed with clear navigation, detailed product categories, and active customer engagement through a blog and testimonials. Technically, the site leverages the Shoptet e-commerce platform with common web technologies such as jQuery and integrates multiple analytics and marketing tools including Google Analytics and Facebook SDK. Security posture is adequate with HTTPS enforced and CSRF protections in place, though improvements in security headers and library updates are recommended. Privacy compliance is strong, featuring GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy. Overall, the website presents a credible and professional business front with moderate technical maturity and a good security baseline.

T

THINline s.r.o.

websynergy.cz

66

WebSynergy, operated by THINline s.r.o., is a Czech-based technology service provider specializing in custom web design, e-commerce solutions, and digital marketing. With over 20 years of experience and more than 500 projects completed, the company targets businesses seeking modern, responsive websites and effective online marketing strategies. Their offerings include proprietary CMS technology, hosting services, and comprehensive website management. The website reflects a professional and trustworthy business with clear contact information and client testimonials, positioning them as a reputable player in the Czech web services market. Technically, the website employs modern JavaScript libraries, Google Tag Manager, Google Analytics, reCAPTCHA v3, and Visual Website Optimizer for marketing and analytics purposes. The site is hosted on a Czech hosting provider and uses a proprietary CMS platform. Performance and mobile optimization are excellent, with good SEO and accessibility features. However, some security headers are missing, and no explicit security policy or incident response information is published. Security posture is solid with HTTPS enforced and secure form handling via reCAPTCHA, but improvements are recommended in HTTP security headers and transparency around security policies. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned privacy policies. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy. Overall, WebSynergy demonstrates a mature digital presence with strong business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and security posture.

M

Mailchimp

mailchi.mp

80

Mailchimp is a leading marketing automation and email marketing platform, serving primarily small to medium businesses and marketers. Owned by Intuit Inc., it offers a SaaS-based subscription and freemium business model with a strong market position as a top email marketing solution. The platform leverages AI and real-time behavioral data to enhance customer conversion and engagement. The website reflects a mature digital infrastructure with integrations of advanced analytics and marketing tools, demonstrating high digital maturity and performance. Security posture is strong with HTTPS enforcement, security headers, and certifications such as SOC 2 Type II and ISO 27001, although minor improvements like enabling DNSSEC and publishing a security.txt file could enhance security transparency. Overall, the website is professional, privacy compliant, and trustworthy, supporting Mailchimp's reputation as a reliable enterprise-grade service.

W

WhitePress sp. z o.o.

whitepress.com

64

WhitePress sp. z o.o. operates an international content marketing platform that automates the creation, publishing, and analysis of content for marketers, publishers, and copywriters. The platform supports SEO and link building across thousands of portals worldwide and offers native copywriting services to ensure content quality. The website is professionally designed, supports multiple languages, and maintains active social media channels, positioning WhitePress as a reputable player in the digital marketing technology sector. Technically, the website uses modern JavaScript, Google Tag Manager, and Google Analytics for tracking and performance monitoring. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some accessibility features could be improved, and explicit cookie consent mechanisms are not detected. From a security perspective, the site enforces HTTPS and shows no visible vulnerabilities or exposed sensitive data. Security headers are not explicitly detected in the provided data, and no incident response or security policy information is published. The WHOIS data is unavailable, which limits domain registration transparency but does not detract from the site's professional appearance and trust signals. Overall, WhitePress presents a low-risk profile with a solid business model and technical foundation. Strategic improvements in security headers, privacy compliance transparency, and accessibility would enhance its security posture and user trust.

B

BR Numismatika v.o.s.

brnumismatika.cz

62

BR Numismatika v.o.s. operates a specialized e-commerce platform focused on numismatics and phaleristics, offering coins, medals, banknotes, orders, decorations, and antiques. The company targets collectors and investors interested in these collectibles, providing services such as authenticity assessment, expert consultation, coin cleaning, and certification mediation. The website is professionally designed with clear navigation and good content quality, supporting both Czech and English languages to reach a broader audience. Technically, the site is built on the Prestashop platform, leveraging modern web technologies including jQuery, Google Tag Manager, and Cloudfront CDN, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and cookie consent mechanisms to enhance privacy compliance. WHOIS data is not publicly available, likely due to privacy protection, which is common for small retail businesses. Overall, the website presents a trustworthy and professional front for its niche market.

E

ENVIPARTNER, s.r.o.

portalobce.cz

44

The website www.portalobce.cz serves as a comprehensive digital platform for municipal services in the Czech Republic, offering a suite of modules including flood management, GIS mapping, strategic planning, and citizen engagement tools. The business is positioned as an important player in the government sector, targeting both public administration and citizens with specialized digital solutions. The platform integrates multiple applications and services, some developed locally, enhancing municipal governance and public safety. Technically, the website employs a modern frontend stack with Bootstrap, jQuery, Font Awesome, and integrates third-party analytics tools such as Google Analytics and Hotjar. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, the absence of a CMS or hosting provider information limits deeper infrastructure insights. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks important security headers and explicit privacy and cookie policies, which are critical for GDPR compliance. The WHOIS data is unavailable, which raises concerns about domain transparency and trustworthiness. No direct contact information or incident response channels are provided, limiting user trust and security communication. Overall, the website is functional and professionally designed but requires improvements in privacy compliance, security best practices, and transparency to enhance trust and regulatory adherence.

H

Hasičský záchranný sbor Jihomoravského kraje

krizport.cz

47

The website www.krizport.cz serves as the official crisis management portal for the South Moravian Region in the Czech Republic, operated by the regional Fire Rescue Service. It provides timely and reliable information on emergency preparedness, current crisis situations, and public safety advice targeted at both the general public and professionals. The portal includes public and restricted sections, emphasizing its role as a trusted government resource. Technically, the site is built on Drupal 10 CMS, leveraging modern web technologies including Google Analytics for visitor tracking and the Foundation framework for responsive design. The site is well-structured, mobile-optimized, and accessible, with clear navigation and consistent branding. Cookie consent mechanisms are implemented, reflecting compliance with privacy regulations. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some advanced security headers and does not publish explicit security or incident response policies. The absence of WHOIS data for the domain is a notable gap, potentially impacting trust, though the official nature of the content mitigates concerns. No vulnerabilities or suspicious content were detected. Overall, the portal demonstrates a solid digital presence with good content quality and security posture suitable for a government information service. Strategic improvements include enhancing security headers, publishing security policies, and clarifying domain registration details to strengthen trust and compliance.

P

Pigeon Mountain Industries, Inc.

pmirope.com

72

PMI Rope, operated by Pigeon Mountain Industries, Inc., is a well-established manufacturer and retailer specializing in life safety ropes, gear, and equipment for vertical applications such as rescue, climbing, and rope access. With over 40 years of industry experience, the company serves a specialized audience including rescuers, climbers, and technicians. Their business model combines product manufacturing with e-commerce sales and training services, positioning them as a niche leader in safety and rescue equipment. The website reflects a professional and consistent brand image with comprehensive product offerings and educational resources. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern JavaScript libraries and marketing tools. It is hosted behind Cloudflare DNS and CDN services, ensuring good performance and availability. Security posture is solid with HTTPS and domain transfer protections, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is basic, lacking explicit privacy and cookie policies or consent mechanisms, which should be addressed to meet GDPR and other regulations. Overall, the site is trustworthy, professional, and well-positioned in its market niche.

H

Harken Safety & Rescue

harkenindustrial.com

64

Harken Safety & Rescue is a specialized division of Harken, Inc., focusing on manufacturing and distributing industrial safety and rescue equipment designed for rope access, fall protection, arborist work, commercial marine, and material handling sectors. The company leverages over 50 years of experience in sailing equipment technology to produce durable, lightweight, and efficient products that enhance safety and operational efficiency. Their market position is strong within niche industrial safety markets, supported by a portfolio of subsidiary brands and comprehensive product support resources. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, Google Analytics, and Iubenda for cookie consent management. The site is well-structured, mobile-optimized, and provides a professional user experience with clear navigation and rich content. Privacy compliance is robust with GDPR-aligned policies and explicit cookie consent mechanisms. Security posture is solid with HTTPS enforced, use of reCAPTCHA on forms, and anonymized analytics tracking. However, the absence of WHOIS transparency and lack of explicit security policies or incident response contacts are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for Harken Safety & Rescue, though enhancing WHOIS transparency and publishing security incident response information would further strengthen trust and compliance.

K

KONG spa

kong.it

50

KONG spa is a well-established Italian manufacturer specializing in personal protective equipment (PPE) such as carabiners, helmets, harnesses, and safety gear for outdoor activities, professional rescue, and work at height. With a history dating back to 1830, the company holds a strong market position supported by exclusive distribution partnerships and a comprehensive product catalog. The website reflects a mature digital presence with modern technologies, good mobile optimization, and clear navigation. Security posture is solid with HTTPS, form validation, and consent management, though some security headers could be enhanced. Privacy compliance is robust with clear policies and cookie consent mechanisms. Overall, KONG spa demonstrates high business credibility and professionalism.

Mammut is a well-established Swiss outdoor brand specializing in high-quality outdoor clothing, footwear, and equipment for activities such as hiking, climbing, skiing, and trail running. The website serves as an official e-commerce platform targeting outdoor enthusiasts and athletes, offering a broad product range and curated collections. The brand emphasizes Swiss design heritage dating back to 1862, positioning itself as a premium player in the outdoor retail market. Technically, the website is built on modern web technologies including Next.js and React, ensuring fast performance and excellent mobile optimization. It integrates consent management via Usercentrics and uses Google Tag Manager for analytics, reflecting a mature digital infrastructure. The site is well-structured with comprehensive metadata, structured data, and SEO best practices. From a security perspective, the site enforces HTTPS, implements multiple security headers, and manages user consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration details is notable and should be monitored, though it does not currently detract from the site's legitimacy. Overall, Mammut's website demonstrates a strong security posture, excellent user experience, and compliance with privacy regulations. Strategic recommendations include publishing explicit security and incident response policies, enhancing accessibility, and maintaining vigilance on third-party library updates to sustain security and compliance.

O

Onboard Systems International

onboardsystems.com

50

Onboard Systems International is a specialized manufacturer and supplier of aerospace cargo handling equipment, including cargo hooks and hoist and winch systems. The company targets businesses in the aerospace and transportation sectors, providing niche products for cargo operations. The website presents a basic but consistent brand image aligned with related sister companies in the aerospace industry. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and FontAwesome, and integrates common analytics tools like Google Analytics and Quantcast. However, the site lacks advanced SEO, accessibility features, and visible privacy or security policies. Security posture is moderate with HTTPS implied but no explicit security headers detected. The absence of WHOIS data raises concerns about domain legitimacy and trustworthiness, although the site content is professional and safe. Overall, the digital maturity is basic with room for improvement in privacy compliance, security best practices, and business transparency.

R

Recco

recco.com

62

Recco AB is a well-established technology company specializing in search and rescue technology, providing solutions that make individuals searchable by rescue professionals worldwide. The company operates a partner network integrating their technology into outdoor products, targeting outdoor enthusiasts and safety-conscious consumers. The website reflects a mature digital presence with a professional design, clear business messaging, and a focus on safety technology. Technically, the site is built on WordPress with WooCommerce and employs modern tracking and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Security posture is strong with HTTPS enforced, security headers present, and no exposed sensitive data detected. Privacy compliance is well addressed with comprehensive privacy and cookie policies and active consent mechanisms. Overall, the website and domain data indicate a legitimate, credible business with a solid market position in the technology sector.

The website www.parkovanivbrne.cz serves as the official information portal for the new parking system in Brno, Czech Republic. It provides comprehensive details about parking zones, regulations, payment options, and mobility funds targeted at residents, subscribers, and visitors. The site is positioned as a municipal service platform, aiming to simplify parking management and user experience in the city. Technically, the site employs modern web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, Smartlook, and Cookiebot for analytics and marketing purposes. The site is mobile optimized and features a cookie consent mechanism compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data reduces trust slightly but does not negate the official nature of the site. Overall, the website presents a professional, trustworthy, and user-friendly platform for parking information in Brno. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and providing clearer contact information to improve business credibility and user trust.