Security Directory

M

Movisio s.r.o.

ctech.cz

70

Movisio s.r.o. is a medium-sized technology company based in Prague, Czech Republic, specializing in digital business solutions including 2D and 3D graphic solutions, interactive 3D, software development, linear constructions, and BIM. With over 20 years of experience and a team of more than 50 employees, Movisio serves corporations and large to medium-sized companies globally. The website reflects a professional and modern digital presence with clear navigation and comprehensive service offerings. Technically, the website employs a modern tech stack including Google Tag Manager, Google Analytics, Facebook Pixel, Smartlook, and Piwik/Matomo for analytics and marketing. The site is mobile optimized and performs moderately well, though accessibility features are basic. The CMS appears custom-built, and the hosting provider is not explicitly identified. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR compliance. However, it lacks visible security headers and explicit security or incident response policies. No vulnerability disclosure or security.txt files are present. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, Movisio presents a trustworthy and professional digital business front with room for improvement in security transparency and domain registration clarity. Strategic recommendations include enhancing security headers, publishing security policies, and addressing WHOIS data inconsistencies to strengthen trust and compliance.

M

MerkurXtip.CZ | Sázková Kancelář Online | Sportovní Výsledky a Kasino

merkurxtip.cz

66

MerkurXtip.cz is an online betting and casino platform targeting Czech-speaking users interested in sports betting and casino games. The website offers a variety of casino games and sports results, positioning itself as a regional player in the Czech Republic's online gambling market. The business model revolves around online gambling services, catering to a mature audience. Technically, the site uses modern web technologies including JavaScript frameworks (likely Vue.js), Google Tag Manager for analytics, and responsive design for mobile users. However, the site lacks visible security headers and privacy policies, which are critical for user trust and regulatory compliance. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trustworthiness but is common in the gambling industry. Overall, the site is functional and professional but could improve in security and privacy transparency.

L

Loterie Maxa s.r.o.

korunka.eu

66

Loterie Maxa s.r.o. operates a Czech lottery and gambling platform offering a variety of games including lotteries, online scratch cards, bingo, and Vegas-style casino games. The company targets adult users interested in gaming and gambling, providing daily opportunities to win significant prizes. The website demonstrates strong branding and partnerships with established Czech betting companies such as Tipsport and Chance, enhancing its market position. The business model revolves around online and physical lottery services with promotional bonuses and a partner program to expand reach. Technically, the website is built using modern web technologies including React and JavaScript, with integrations for analytics and performance monitoring via Google Tag Manager and Dynatrace. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, some accessibility features could be improved. The website enforces HTTPS and implements cookie consent mechanisms, reflecting a good level of privacy compliance. From a security perspective, the site uses HTTPS and consent management but lacks visible security headers and explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS data for the domain is a concern for trust and legitimacy verification, although the website content and partnerships suggest a legitimate operation. Overall, the website presents a professional and trustworthy platform for lottery gaming in the Czech Republic, but improvements in transparency regarding domain registration, security policies, and contact information would enhance trust and compliance.

M

Mad Blue s.r.o.

detail.cz

52

Detail.cz is a Czech Republic-based business data aggregation platform operated by Mad Blue s.r.o. The website offers comprehensive company profiles, financial analyses, risk scoring, and relationship tracking services aimed at business users seeking detailed information on Czech companies. The platform integrates multiple data sources to provide enhanced business intelligence and supports CRM and API integrations for marketing and sales purposes. The site is professionally designed with good content quality and clear navigation, targeting primarily B2B users within the Czech market. Technically, the website employs modern JavaScript libraries and third-party marketing and tracking tools such as Google Tag Manager, Salespanel.io, and Leadinfo. It uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, no CMS or hosting provider information is explicitly detected, and some security best practices like security headers are not evident. The site performs moderately well with good mobile optimization and basic accessibility features. From a security perspective, the site benefits from HTTPS and CSRF protection in forms but lacks visible security headers and published security policies or incident response contacts. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and business information appear credible and professional. No critical vulnerabilities or adult content are detected, and privacy compliance is adequately addressed through cookie consent and a GDPR policy page. Overall, Detail.cz presents a solid business intelligence service with a good digital presence but should improve transparency regarding domain registration, security policies, and contact information to enhance trust and compliance. Strategic recommendations include implementing security headers, publishing terms of service and security policies, and verifying domain registration details.

N

NextPage Media, s.r.o.

penize.cz

58

NextPage Media, s.r.o. operates Peníze.cz, the largest Czech website dedicated to personal finance. The site offers comprehensive financial news, advice, product comparisons, calculators, and market data targeting Czech internet users interested in managing their finances. The company is a subsidiary of Partners HoldCo and manages several related media properties, positioning itself as a key player in the Czech financial media sector. Technically, the website employs a modern JavaScript stack with multiple third-party advertising and analytics integrations, including consent management to comply with privacy regulations. Security posture is solid with HTTPS and some security headers, though additional enhancements are recommended. The absence of WHOIS data reduces domain trust but the business information and content quality support legitimacy. Overall, the site is professional, content-rich, and well-optimized for users.

A

Allwyn

allwynentertainment.com

75

Allwyn is a global lottery-led entertainment company that operates across multiple countries including the United Kingdom, Austria, Czech Republic, Greece, Cyprus, and the United States. The company offers a diverse portfolio of gaming products such as lottery games, instant win games, scratch cards, iGaming, retail casinos, and sports betting. Their business model centers on creating engaging play experiences that bring hope and excitement to players while emphasizing social responsibility and community impact. The website reflects a strong market position with partnerships including Formula 1 and McLaren, highlighting their brand strength and global reach. Technically, the website is built using modern web technologies including React and Next.js, optimized for performance and mobile responsiveness. It employs Google Tag Manager and reCAPTCHA for analytics and security respectively. The site demonstrates good SEO practices, accessibility, and fast loading times, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and includes standard security headers, indicating a solid baseline security posture. However, there is no publicly available security policy or incident response information, and no vulnerability disclosure program is evident. The absence of WHOIS data for the domain is a notable transparency gap, although the website content and branding suggest legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but improvements in transparency around security policies and domain registration details are recommended to enhance trust and credibility.

V

Vodafone

sazkamobil.cz

65

Vodafone.cz is the official website for Vodafone's prepaid SIM service 'Oskarta' in the Czech Republic. The site offers prepaid SIM cards with customizable packages, initial credit, and rewards for top-ups and referrals. Vodafone is a major telecommunications provider with a strong market presence in the region. The website is professionally designed, mobile-optimized, and uses modern web technologies including jQuery, Omniture analytics, and Google reCAPTCHA for security. The site is secured with HTTPS and implements standard security headers, reflecting a good security posture. However, explicit privacy and cookie policies were not found in the provided content, which is a compliance gap. WHOIS data for the domain is unavailable, likely due to registry policies or privacy protection, but this does not detract from the site's legitimacy given Vodafone's brand recognition. Overall, the site is trustworthy and well-maintained, serving a broad consumer audience in the Czech Republic.

The website tipsport.org currently presents minimal content consisting solely of a single image and a Cloudflare analytics beacon script. There is no visible business description, contact information, or legal policies such as privacy or cookie policies. The domain is registered since 2009 under Gransy, s.r.o., a Czech registrar, which aligns with the Czech language detected in the HTML. The website uses Cloudflare as a CDN and for analytics but does not show any active WAF challenge or blocking mechanisms. The lack of substantive content and absence of security and privacy policies indicate a low digital maturity and poor user experience. Security posture is weak due to missing security headers and no visible incident response or vulnerability disclosure information. Overall, the site appears legitimate based on WHOIS data but lacks essential business and compliance information, resulting in a low trust and credibility score.

K

Kajot Games

kajotgames.com

63

Kajot Games is a Malta-based B2B gaming software provider specializing in the development and integration of casino games and gaming solutions. Established in 2011 and operating under Development MT Limited, the company holds reputable certifications including the Malta Gaming Authority license and Gaming Labs certification, positioning it as a trusted partner in the gaming industry. Their website showcases a portfolio of games, integration services, and strong partnerships with notable gaming operators. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a good user experience across devices. Security measures include HTTPS enforcement and Google reCAPTCHA on contact forms, though some security headers are missing and DNSSEC is not enabled. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanisms. Overall, Kajot Games demonstrates a solid digital presence and trustworthy business operations with room for security enhancements.

D

DEBANT, s.r.o.

reklamauceskoj.cz

41

The website reklamauceskoj.cz operates as an online advertising platform specializing in the promotion of private accommodation and tourist objects primarily targeting the Czech, Polish, Slovak, and other European markets. With over 20 years of experience, the company DEBANT, s.r.o. offers a multi-lingual catalog presence, enabling property owners to advertise their apartments and rooms without commission fees, facilitating direct contact with potential guests. The platform emphasizes extensive reach through multiple regional portals and languages, supported by a moderate technical infrastructure including Google Analytics and live chat support.

C

CHORVATSKO UBYTOVÁNÍ | dovolená a zájezdy do Chorvatska ●

chorvatska.cz

48

The website chorvatska.cz is a Czech-language travel accommodation portal specializing in affordable apartments and travel packages in Croatia. It offers a large catalog of properties with direct owner contacts, emphasizing commission-free bookings. The site targets Czech tourists planning holidays in Croatia, providing detailed regional information and accommodation options. The business appears to be a small, established player in the hospitality sector, with a domain registered since 2007, indicating longevity and market presence. Technically, the website uses standard HTML, CSS, and JavaScript with integrations such as Google Analytics and Google Custom Search Engine. Hosting is likely provided by Coolhosting.cz, with domain registration via REG-WEDOS. The site has a basic but functional design, moderate performance, and basic mobile optimization. SEO is adequately addressed through meta tags and structured navigation. From a security perspective, the site uses HTTPS but lacks visible security headers like CSP or HSTS in the provided content. No explicit privacy or cookie consent mechanisms are present despite having a privacy policy page, indicating partial GDPR compliance. No contact emails or phone numbers are directly available on the main page, which may affect user trust and support accessibility. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the site is functional and relevant for its target audience but would benefit from enhanced security practices, improved privacy compliance, and clearer contact information to strengthen trust and compliance posture.

The website chorvatsko-dovolena.info operates as a Czech-language online catalog specializing in affordable private accommodation in Croatia. It targets Czech tourists seeking direct owner contacts for holiday rentals across multiple Croatian regions. The business is operated by Debant s.r.o., a small company established in 2006, positioning itself as the largest Czech internet catalog for Croatian private accommodation. Technically, the site uses basic HTML, CSS, and JavaScript with monetization through Google Adsense and tracking via Google Analytics. The design and user experience are functional but basic, with limited mobile optimization and accessibility features. Security posture is moderate; HTTPS is used but lacks advanced security headers and policies. Privacy compliance is weak, with no visible privacy or cookie policies, which may pose regulatory risks. Overall, the domain is privacy-protected in WHOIS, which is typical for small businesses, and no suspicious patterns were detected. Strategic improvements in privacy compliance and security headers are recommended to enhance trust and regulatory adherence.

D

Debant, s.r.o.

dovolenachorvatsko.cz

41

Dovolenachorvatsko.cz is an established Czech-based online platform specializing in vacation rentals and accommodation listings across Croatia. The website offers direct contact to property owners, bypassing travel agencies to provide affordable holiday options. It targets primarily Czech tourists but supports multiple languages through related domains. The business operates with a small company size and has been active since 2007, indicating a stable market presence. Technically, the site uses standard web technologies with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, which are compliance gaps. The site integrates advertising and affiliate marketing, leveraging Google Analytics and AddThis for tracking and social sharing. Overall, the website is safe for general audiences and maintains a moderate trust level, though improvements in privacy compliance and security practices are recommended.

D

Delta Digital s.r.o.

promestaobce.cz

56

The website 'Pro města a obce' is a Czech-language news portal and magazine focused on public administration and local government topics. It targets municipal representatives, officials, and key actors in public administration, providing current news, in-depth analyses, and inspirational content. The business model revolves around content publication, newsletter distribution, and advertising services. The site is operated by Delta Digital s.r.o., a Czech company, and holds a strong market position as a leading information source in its niche. Technically, the website is built on WordPress with modern web technologies including Bootstrap, JavaScript libraries, and Google Tag Manager for analytics and marketing. It employs a cookie consent mechanism compliant with GDPR principles, and the site is mobile-optimized with good SEO practices. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and has implemented cookie consent with granular user controls. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a concern, limiting the ability to fully verify domain legitimacy. Overall, the website presents a professional and trustworthy front for its business, but improvements in transparency regarding privacy, security policies, and domain registration information are recommended to enhance trust and compliance.

Střední podnikatelský stav, z.s. is a Czech non-profit organization established in 2001 focused on supporting medium-sized businesses through lobbying, organizing competitions such as Exportér roku and Talenty pro firmy T-PROFI, and promoting vocational education initiatives. The organization targets medium-sized entrepreneurs in the Czech Republic, aiming to improve the business environment and workforce qualifications. The website reflects a consistent and professional brand image with clear business information and contact details. Technically, the site is built on WordPress with common JavaScript libraries and moderate performance and mobile optimization. Security posture is basic with HTTPS usage but lacks advanced security headers and privacy compliance mechanisms such as privacy and cookie policies. Analytics tools like Google Analytics and Tag Manager are used, indicating moderate user tracking without explicit consent mechanisms. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

L

Meteorologická stanice Sehradice

luhamet.cz

47

Luhamet.cz operates a local meteorological station located in Sehradice, Czech Republic, providing real-time weather data, forecasts, and environmental monitoring services since 2015. The website targets general public and weather enthusiasts interested in detailed local meteorological information. The business model centers on data provision and community engagement through webcams, radar, and video content. Technically, the site uses modern frontend technologies including Bootstrap 5, jQuery, and FontAwesome, hosted likely by WEDOS, a Czech hosting provider. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is moderate; HTTPS is presumed but no advanced security headers or policies are detected. Privacy compliance is lacking due to absence of privacy and cookie policies. Contact information is transparent and includes email, phone, and physical address, enhancing business credibility. Overall, the site is trustworthy but would benefit from improved privacy and security practices.

V

Výlety s tátou

vyletystatou.cz

9

Výlety s tátou is a Czech-language travel blog focused on providing tips and guides for family-friendly trips, outdoor activities, and nature excursions primarily in the Czech Republic and some international destinations. The website targets families with children, adults interested in nature, and tourists seeking practical travel advice. It operates as a content publishing platform monetized through advertising and possibly affiliate marketing, with a niche market position in family and outdoor travel content. The site was established in 2018 and maintains a consistent brand presence with active social media channels on Facebook, Instagram, and YouTube. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript, with integrations of Google Custom Search Engine, Google Analytics, and Google Tag Manager for search and analytics functionality. Hosting is provided by cesky-hosting.eu. The site is mobile-optimized with good SEO practices but lacks advanced accessibility features. Performance is moderate, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site has HTTPS enabled but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible cookie consent mechanism or comprehensive privacy compliance features, which may pose GDPR compliance risks. No contact information or incident response channels are clearly provided, limiting transparency for security or privacy concerns. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is a moderately secure and professionally presented travel blog with good content quality and user experience. However, it should improve privacy compliance, security headers, and contact transparency to enhance trust and regulatory adherence.

J

Kavárna

jtcafe.cz

61

J&T café is a stylish local café located in Brno, Czech Republic, offering breakfast, brunch, coffee, and event hosting services. The website presents a professional and elegant atmosphere targeting general audiences seeking a quality café experience. The business model focuses on hospitality with additional services such as meeting room rental and event hosting. The website is well-structured with clear navigation, a reservation form, and contact information, supporting good user experience and business credibility. Technically, the site uses a modern CMS (Solidpixels) and integrates multiple marketing and analytics tools including Microsoft Clarity, Facebook Pixel, and Google Tag Manager. The site is mobile optimized and performs moderately well. However, some security best practices such as security headers are missing, and no privacy policy or terms of service pages were found, which could impact compliance and user trust. Security posture is generally good with HTTPS enforced and secure form handling, but the absence of WHOIS data limits domain legitimacy verification. No signs of malware or phishing were detected. The site employs cookie consent mechanisms aligned with GDPR principles but lacks explicit privacy documentation. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security measures. Strategic improvements in privacy policy publication, security headers implementation, and WHOIS data availability would strengthen its security and compliance posture.

W

Wirtschaftsförderung Erzgebirge GmbH

wfe-erzgebirge.de

52

Wirtschaftsförderung Erzgebirge GmbH is a regional economic development agency serving the Erzgebirge region in Germany. The organization acts as a flexible and reliable service provider for entrepreneurs, businesses, startups, and municipalities, offering expertise and targeted services to support regional economic growth. Their key services include workforce development, business founding and funding support, innovation and technology transfer, rental and event offerings, regional marketing, and tourism infrastructure development. The website is built on TYPO3 CMS and demonstrates a moderate level of digital maturity with good content quality and navigation. Security posture is adequate with HTTPS and a Content-Security-Policy header, though the CSP could be hardened. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is professional and trustworthy, reflecting a legitimate government/non-profit entity focused on regional economic development.

D

Danske Bank

danskebank.com

81

Danske Bank is a well-established Nordic banking institution with a strong presence in Denmark and other Nordic countries, as well as Northern Ireland. The website reflects a mature enterprise with comprehensive investor relations, sustainability initiatives, and corporate governance information. The digital infrastructure uses modern web technologies and provides a good user experience with multi-language support and mobile optimization. Security posture is solid with HTTPS enabled and domain registration protections, though there is room for improvement in DNS security and security headers. Privacy and cookie policies are not explicitly found in the provided content, indicating a potential compliance gap. Overall, the website is professional, trustworthy, and serves a broad audience of corporate, institutional, and personal banking customers.

V

Vereinigung Schweizerischer Assetmanagement- und Vermögensverwaltungsbanken (VAV - ABG)

vav-abg.ch

47

The Vereinigung Schweizerischer Assetmanagement- und Vermögensverwaltungsbanken (VAV - ABG) is a Swiss financial industry association representing asset management and wealth management banks. The website serves as an information and advocacy platform, providing publications, event information, and industry insights primarily in German with multilingual support. The organization positions itself as a key stakeholder in shaping regulatory and market conditions for Swiss financial institutions. Technically, the website employs modern web technologies including JavaScript libraries and Google Analytics for tracking, with a responsive design optimized for mobile devices. Security posture is solid with HTTPS enforced and email obfuscation implemented, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive privacy policy. Overall, the website is professional, trustworthy, and well-aligned with its business purpose.

C

Chart.js | Open source HTML5 Charts for your website

chartjs.org

55

Chart.js is an open source JavaScript charting library designed for modern web development, offering flexible and simple charting solutions. It enjoys a strong community presence with contributions hosted on GitHub, positioning itself as a popular tool for developers and designers needing data visualization capabilities. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site leverages modern web technologies including HTML5 Canvas, Google Analytics, and Typekit fonts, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and Content-Security-Policy headers present, although there is room for improvement in privacy compliance and incident response transparency. Overall, the site is trustworthy and well-maintained, suitable for its target audience of developers and technical users.

K

Katalog.cz

katalog.cz

55

Katalog.cz is a Czech online product catalog and e-shop comparison platform that aggregates a wide range of product categories including furniture, electronics, clothing, toys, and cosmetics. The site provides users with price comparisons, promotional offers, and a magazine/blog section with lifestyle and business articles. It targets Czech consumers interested in online shopping and product discovery. The platform demonstrates a professional and consistent brand presence with good content quality and user experience. Technically, the site uses modern web technologies such as Bootstrap, Font Awesome, FancyBox, and Google Tag Manager for analytics. HTTPS is properly implemented, ensuring secure data transmission. However, the site lacks explicit privacy and cookie policies, which impacts its privacy compliance score. No WHOIS data is available, likely due to privacy protection, but the website's professional appearance and active content suggest legitimacy. Security best practices could be improved by adding security headers and publishing incident response information.

I

IAG

iagparts.com

57

The website www.iagparts.com serves as a multilingual country selection landing page for an automotive parts e-commerce platform, redirecting users to localized subdomains tailored for various European countries. The business model focuses on localized e-commerce shops targeting automotive parts customers in Central and Eastern Europe. The site content is minimal, primarily providing navigation to country-specific shops without direct business or contact information on the main domain. Technically, the site uses basic HTML, CSS, and JavaScript with a simple client-side language detection and redirect mechanism. There is no evidence of advanced frameworks, CMS, or analytics tools. The site disables caching via HTTP headers but lacks comprehensive security headers and privacy or cookie policies. Mobile optimization appears adequate given the responsive design elements. From a security perspective, the site lacks visible HTTPS confirmation in the provided data and does not implement common security headers beyond cache control. No forms or data collection mechanisms are present, reducing attack surface but also limiting user engagement. The absence of WHOIS data for the domain is a significant concern, as it impairs trust and transparency. No privacy, cookie, or terms of service policies were found, indicating poor compliance posture. Overall, the site presents a low-complexity e-commerce gateway with moderate technical implementation but weak security and privacy practices. The lack of registrant information and domain registration data reduces trustworthiness. Strategic improvements in security headers, privacy compliance, and transparency are recommended to enhance credibility and user trust.

L

L7 GROUP a.s.

l7group.cz

59

L7 Group is a Czech transportation and logistics company established in 2016, operating multiple subsidiaries specializing in automotive services, freight transport, and logistics solutions. The company targets business clients within the Czech Republic and maintains a professional online presence with clear branding and subsidiary links. Technically, the website employs modern JavaScript frameworks and Google Tag Manager for analytics, hosted on Webglobe infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies and headers. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

H

Helicar, a.s.

helicar.cz

61

Helicar, a.s., operating under the L7 ATG brand, is a well-established logistics and vehicle transport company based in the Czech Republic with a history dating back to 1999. The company offers comprehensive services including vehicle transport across Europe, storage solutions near Prague, and sustainable logistics practices. The website reflects a professional and modern digital presence with good content quality and user experience. Technically, the site uses modern JavaScript frameworks, Google Tag Manager for analytics, and is hosted by Webglobe. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The domain is very recently registered, which may indicate a rebranding or new domain launch, but the business information is consistent and credible. Overall, the website is trustworthy and well-positioned in its market niche.

The website cda.pl is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks access to the actual site content. This prevents direct analysis of the business offerings, contact information, and policies. The domain is registered since 2004 with Aftermarket.pl Limited, a reputable registrar, indicating a legitimate and established presence. However, the lack of accessible content limits the ability to assess the website's business model, technical maturity, and security posture comprehensively. The technical infrastructure includes Cloudflare protection, which is a positive security measure but also restricts content visibility. Due to the WAF challenge, the overall AI score is low, reflecting the inability to verify critical compliance and business credibility aspects.

E

EVici webdesign s.r.o.

upgates.com

57

Upgates is a well-established e-commerce platform provider based in the Czech Republic, offering customizable online store solutions with a strong focus on multi-language and multi-store management. With over 15 years in the market and more than 4,200 customers, it positions itself as a reliable SaaS provider for businesses seeking to launch and grow their online presence. The platform includes extensive add-ons, marketplace integrations, and automation features to streamline e-commerce operations. Technically, the website employs modern web technologies including Google Analytics, Bing UET, reCAPTCHA, and the Nette framework for form validation, ensuring a robust and user-friendly experience. The site is mobile-optimized and provides clear navigation and professional design, enhancing user engagement and trust. Security-wise, the site enforces HTTPS and uses CAPTCHA for forms, but lacks explicit HTTP security headers and published security policies, which are areas for improvement. The absence of WHOIS domain registration data is a significant concern, potentially indicating domain registration issues or privacy protection not reflected in the raw data. Overall, the website is professional and trustworthy, but domain legitimacy verification and enhanced security practices are recommended to strengthen its security posture and business credibility.

P

Parco Avventura Lao

parcoavventuralao.com

64

Parco Avventura Lao is a small regional adventure park located in Santa Domenica Talao, Calabria, Italy, offering outdoor recreational activities and entertainment primarily targeting families and tourists. The website is built on the Italiaonline CMS platform, utilizing modern web technologies including JavaScript, Google Tag Manager, and Cookiebot for GDPR-compliant cookie management. The site is accessible, mobile-optimized, and provides essential business information including contact phone and physical address embedded in structured data. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. WHOIS data is missing or unavailable, raising concerns about domain registration legitimacy, which should be further investigated. Overall, the website presents a professional and trustworthy front for a local hospitality business but would benefit from enhanced security policies and clearer domain registration transparency.

S

speedlo s.r.o.

speedlo.cz

57

Speedlo.cz is a Czech-based company founded in 2018 that operates an online food ordering platform and provides restaurant order management systems. The company targets both consumers seeking convenient food ordering options and restaurants looking for efficient order processing solutions. Their market position is that of an established local player with a focused hospitality and technology business model. Technically, the website uses modern JavaScript technologies, Cloudflare DNS services, and service workers, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms but lacks explicit security headers and detailed security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained, with room for improvement in security best practices and transparency around incident response.

V

Víkendové pobyty

vikendovepobyty.com

60

The website vikendovypobyt.webnode.cz is a Czech language travel and hospitality platform focused on offering weekend stay packages primarily for couples and families within the Czech Republic. It provides curated recommendations and links to partner accommodation providers specializing in romantic, wellness, family, and last-minute stays. The site is built on the Webnode CMS platform and leverages Cloudfront CDN for content delivery. It integrates Google Analytics with IP anonymization to track user engagement. Contact information including phone, email, and physical address is clearly presented, enhancing business credibility. However, the absence of privacy and cookie policies indicates potential compliance gaps with GDPR regulations. The WHOIS lookup failed to return domain registration details, which raises concerns about domain legitimacy and trustworthiness. No social media presence or security policies are evident, and security headers are not detected, suggesting room for improvement in security posture. Overall, the site is content-rich, well-structured, and user-friendly, but would benefit from enhanced privacy, security, and transparency measures.

L

Nejlepší křížovkářský slovník online | Lustilek.cz

lustilek.cz

52

Lustilek.cz is a Czech language online crossword dictionary offering a comprehensive collection of over 150,000 hints and words for crossword puzzles, scrabble, and other word games. The website targets Czech-speaking puzzle enthusiasts and provides free access to its resources, monetized primarily through Google Adsense advertising. The site is relatively new, established in 2021, and positions itself as a niche resource within the Czech puzzle community. Technically, the website uses standard web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Analytics and Adsense for tracking and monetization. The site is hosted likely by Wedos, a Czech hosting provider, consistent with the domain registration data. Security posture is adequate with HTTPS enabled and secure form inputs, but lacks advanced security headers and formal privacy or terms of service documentation. Cookie consent is implemented, indicating some level of privacy compliance. Overall, the website is functional, well-structured, and provides relevant content for its audience.

E

Evaluate Dynamics s.r.o.

weathersunshine.com

59

WeatherSunshine.com is a specialized weather forecasting website operated by Evaluate Dynamics s.r.o., providing detailed meteorological data and forecasts for over 150,000 locations globally, with a particular focus on the Czech Republic. The site offers hourly and long-term weather outlooks, satellite and radar imagery, and weather-related news articles. It targets a broad audience including general public and weather enthusiasts, monetizing primarily through Google Adsense advertising and newsletter subscriptions. The website demonstrates consistent branding and good content quality, with clear privacy and cookie policies aligned with GDPR requirements. Technically, the site uses modern web technologies including Google Fonts, Adsense, Tag Manager, and service workers, ensuring good mobile optimization and accessibility. SEO practices are well implemented with appropriate meta tags and structured content. Security posture is generally good with HTTPS enforced and privacy-conscious analytics settings; however, the absence of security headers and explicit incident response contacts are areas for improvement. The WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency despite the website's apparent legitimacy and operational history since 2010. This discrepancy suggests possible WHOIS privacy or data unavailability rather than malicious intent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, but could enhance security transparency and domain legitimacy disclosures.

M

Ministerstvo spravodlivosti Slovenskej republiky

slov-lex.sk

58

Slov-Lex is the official Slovak government portal operated by the Ministry of Justice of the Slovak Republic, providing comprehensive access to legal regulations, EU law, court decisions, and related legal information. It serves a broad audience including legal professionals, government officials, and the general public seeking authoritative legal data. The portal is positioned as the primary national legal information system for Slovakia, offering key services such as eLegislation, a legal thesaurus, and court decision databases. Technically, the website employs modern JavaScript frameworks, likely React, and integrates Google Tag Manager for analytics. The design follows a government-mandated design manual ensuring consistent branding and accessibility. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, with chunked CSS and JS assets indicating a single-page application architecture. From a security perspective, the site enforces HTTPS and uses sandboxed iframes for third-party cookie checks, reflecting good security hygiene. However, explicit security headers are not evident, and there is no published security policy or incident response information. Privacy compliance is basic, with a cookie policy present but lacking a consent mechanism. Contact information is clearly provided, enhancing trust and credibility. Overall, Slov-Lex is a trustworthy, well-maintained government portal with strong business credibility and good technical implementation. Strategic improvements could focus on enhancing privacy compliance, publishing security policies, and implementing cookie consent mechanisms to further strengthen user trust and regulatory adherence.

G

GTO Solutions s.r.o.

sedesatka.cz

51

Sedesatka.cz is a Czech-language news and lifestyle portal operated by GTO Solutions s.r.o., offering a broad range of content including verified reviews, user guides, horoscopes, financial and political news, and cultural topics. The site targets Czech internet users seeking trustworthy and diverse information. Technically, the website employs modern web technologies such as Google Fonts, Google Tag Manager, Google Analytics, and Google Adsense for content delivery, analytics, and monetization. The site is well-structured, mobile-optimized, and includes a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and no critical vulnerabilities detected, though additional security headers could enhance protection. The absence of WHOIS data for the domain is a notable concern, reducing domain registration trustworthiness, but the website content and business information appear professional and credible. Overall, the site presents a reliable and user-friendly experience with moderate to good technical and security maturity.

M

Miroslav Macko

bagr-pardubice.cz

57

Miroslav Macko operates a small local business specializing in earthworks and excavation services primarily in the Pardubice, Chrudim, and Hradec Králové regions of the Czech Republic. The company offers services such as digging pits and trenches, soil relocation using specialized equipment like the JCB 3CX tractor excavator and Barford SX6000 dumper, foundation trenching, and minor crane work. The website reflects a focused service provider with a long history dating back to 1994, targeting local construction and property clients. Technically, the website is built on the Webnode CMS platform and leverages Amazon Cloudfront CDN for content delivery. It uses standard web technologies including HTML5, CSS3, and JavaScript, with integration of Facebook SDK and Google Tag Manager for social and analytics purposes. The site is mobile optimized and has good SEO practices but lacks some advanced accessibility features and security headers. From a security perspective, the site enforces HTTPS and implements a cookie consent banner with advanced user controls, indicating some attention to privacy compliance. However, the absence of a privacy policy, terms of service, and security headers reduces the overall security posture. No WHOIS data is available, which limits domain trust assessment and raises concerns about domain registration transparency. Overall, the website is functional and professional for a small local business but would benefit from enhanced security practices, formal privacy documentation, and improved domain registration transparency to strengthen trust and compliance.

N

Nomads.com

nomadlist.com

63

Nomads.com is a well-established online platform dedicated to digital nomads and remote workers, providing comprehensive data on the best places to live and work remotely worldwide. The platform offers city rankings based on cost of living, internet speed, weather, safety, and other relevant metrics, alongside community features such as meetups, chat, and nomad insurance. It has a strong market position as a leading nomad community since 2014, supported by extensive user reviews and media recognition. Technically, the website is custom-built with modern web technologies including jQuery and Cloudflare services for hosting and streaming. It demonstrates good performance, mobile optimization, and SEO practices. However, there is room for improvement in privacy compliance, particularly regarding cookie consent mechanisms and explicit security policies. From a security perspective, the site uses HTTPS with a good SSL configuration and domain transfer protection. No major vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a long-standing domain registration consistent with the business's legitimacy. Nonetheless, enabling DNSSEC and publishing security policies would enhance the security posture. Overall, Nomads.com presents a professional, trustworthy, and content-rich platform with moderate privacy compliance and solid security foundations. Strategic improvements in privacy and security transparency would further strengthen its risk profile and user trust.

The website hoch.cz represents a small, established Czech company specializing in advertising manufacturing and services, including neon and light advertising, sports sponsorship, and advertising spaces. The company also operates a restaurant, HochŠpalíček, indicating a diversified business model. The website content is basic and primarily image-based, with limited textual information and no modern interactive features. The technical infrastructure is outdated, notably using deprecated Flash technology, lacking mobile optimization, and missing modern SEO and accessibility standards. Security posture is weak, with no HTTPS enforcement or security headers detected, and no privacy or cookie policies present. Contact information is not explicitly provided, reducing user trust and compliance with privacy regulations. Overall, the site reflects a legacy web presence that requires modernization and security improvements to meet current standards.

O

O2 Czech Republic a.s.

o2tvproduction.cz

66

O2TV Production, a division of O2 Czech Republic a.s., specializes in professional content production services including sports broadcasting, television shows, and wireless solutions. The company operates state-of-the-art broadcast facilities and OB trucks across Europe, serving a broad audience of broadcasters and media companies. The website reflects a well-established market position with trusted partnerships and a clear service offering. Technically, the site employs modern JavaScript libraries, video streaming technologies, and a robust consent management platform, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and captcha-protected forms, though explicit security policies and headers could be improved. The domain WHOIS data shows an unusual future creation date, which is a concern but likely a data anomaly. Overall, the site is professional, GDPR compliant, and trustworthy with room for security enhancements.

D

Debant s.r.o.

holidaycz.com

51

HolidayCZ.com is an established online accommodation directory focused on the Czech Republic tourism market, operated by Debant s.r.o. The site offers listings of apartments, hotels, spa resorts, and mountain accommodations, targeting tourists seeking holiday options in various Czech regions. The business model centers on advertising and accommodation promotion, with a niche market position supported by a domain age of over 15 years. Technically, the site uses standard web technologies with Google Fonts, Adsense, and Analytics integrations, but lacks advanced CMS or frameworks. The site implements GDPR-compliant consent management but lacks a dedicated privacy policy page. Security posture is moderate with HTTPS usage but missing DNSSEC and security headers. Overall, the site is functional and moderately professional but could improve in privacy transparency and security hardening.

D

Debant s.r.o.

dovolenavcr.cz

51

Dovolenavcr.cz is a Czech Republic focused travel and accommodation portal operated by Debant s.r.o., established in 2007. It provides comprehensive listings of accommodation options across Czech regions, including last minute offers and travel information such as weather forecasts. The site targets tourists and travelers seeking lodging within the Czech Republic, leveraging advertising revenue primarily through Google Adsense. Technically, the site uses a custom-built platform with standard web technologies and integrates Google Fonts, Analytics, and a GDPR-compliant consent management platform. Security posture is moderate with HTTPS enabled but lacks advanced security headers. Privacy compliance is good with visible privacy and cookie policies. Business credibility is supported by clear company identification and domain longevity. Overall, the site is functional and serves its niche well but could improve in mobile optimization and security hardening.

N

Nederlandse Vereniging van Banken

nvb.nl

70

The Nederlandse Vereniging van Banken (NVB) is a Dutch banking industry association representing both Dutch and foreign banks active in the Netherlands. The organization focuses on fostering a prosperous, sustainable, and inclusive society, maintaining strong connections with Europe and the global financial community. Their key services include industry representation, public awareness campaigns such as fraud prevention, policy advocacy, and providing information resources to stakeholders and the public. The NVB holds a leading market position as the primary banking sector association in the Netherlands. Technically, the NVB website employs modern web technologies including Vue.js, Google Tag Manager, and Cookiebot for consent management. The site is mobile-optimized with good SEO practices and moderate performance. The infrastructure is secure with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. From a security perspective, the NVB website demonstrates a mature security posture with good privacy compliance, including GDPR adherence and cookie consent. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which could enhance trust and preparedness. The domain registration data aligns well with the organization's claims, indicating a legitimate and consistent online presence. Overall, the NVB website is professional, trustworthy, and well-aligned with its business objectives. Strategic recommendations include enhancing security headers, publishing a security policy and vulnerability disclosure, improving accessibility, and providing direct security contact information to strengthen the security culture and stakeholder trust.

D

Danske Bank

danskebank.dk

70

Danske Bank is a leading Danish financial institution offering a comprehensive range of retail banking services including housing loans, investment products, pensions, insurance, and daily banking. The website targets private customers in Denmark and presents a professional, well-structured digital presence with clear navigation and modern design. The technical infrastructure employs standard web technologies such as JavaScript, SVG, and CSS, with secure HTTPS connections and multiple secure login portals for various banking services. Security posture is solid with no critical vulnerabilities detected, though minor improvements such as enabling DNSSEC and adding security headers are recommended. Privacy and cookie policies are not explicitly found in the provided content, indicating an area for compliance enhancement. Overall, the website reflects a mature enterprise-grade digital platform with high business credibility and trustworthiness.

A

Association for Financial Markets in Europe (AFME)

afme.eu

75

The Association for Financial Markets in Europe (AFME) is a prominent trade association representing over 150 leading global and European banks and market participants. It serves as the voice of these institutions in Europe’s financial markets, focusing on advocacy, policy development, research, and events. The organization plays a critical role in underwriting a significant portion of European corporate and sovereign debt as well as equity issuances, positioning itself as a key influencer in the financial ecosystem. The website reflects this stature with professional design, comprehensive content, and clear navigation tailored to financial professionals and regulators. Technically, the website is built using modern technologies such as React and Umbraco CMS, with integrations for cookie consent (Cookiebot) and analytics (Google Analytics). The site is mobile-optimized, accessible, and performs moderately well. Security best practices are observed, including HTTPS enforcement and appropriate security headers, although some security policy and incident response information could be more transparent. From a security perspective, the site demonstrates a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with GDPR-aligned cookie consent and privacy policies. However, the lack of publicly available WHOIS data due to privacy protection limits domain registration transparency. Despite this, the website’s content quality, trust signals, and industry alignment support its legitimacy. Overall, AFME’s website is a well-constructed, secure, and professional platform that effectively supports its role as a leading financial markets association in Europe. Strategic recommendations include enhancing public security policy disclosures, incident response contacts, and vulnerability disclosure mechanisms to further strengthen trust and compliance.

The website cyrrus.cz is currently inaccessible due to a Cloudflare Turnstile security challenge that requires human verification before access. This prevents any meaningful content analysis or extraction of business, contact, or policy information. The domain is registered since 1998 with a Czech registrar, indicating a potentially established entity. However, the lack of accessible content and absence of visible contact or compliance information limits the ability to assess the business model, services, or security posture comprehensively. The technical infrastructure includes Cloudflare protection with Turnstile captcha, indicating a focus on mitigating automated threats but also restricting automated analysis. Overall, the site’s security posture is strong in terms of WAF protection, but the lack of accessible content and policies results in a low overall assessment score.

Energetická bilance a poradenství s.r.o. is a Czech energy consulting company specializing in new energy solutions and subsidy consulting with 18 years of experience. Their website targets municipalities, companies, and private homeowners, offering tailored energy advisory services. The company presents itself professionally with clear contact information and a consistent brand image. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, jQuery, Google reCAPTCHA, and a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of WHOIS data and security headers limits the ability to fully verify domain legitimacy and security posture. The site is accessible without WAF or blocking mechanisms, and content is safe and appropriate for general audiences.

A

Ayurveda Days

ayurvedaspace.com

9

Ayurveda Days is a small-scale regional event focused on Ayurveda, held in Vienna, Austria. The website promotes the event with information about exhibitors, lectures, and wellness services such as vegetarian food and Ayurvedic treatments. The site is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and some script-based hardening, but lacks explicit security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website presents a professional and trustworthy image for a niche event but could improve in compliance and security transparency.

A

Ayurveda Days

ayurveda-days.at

9

Ayurveda Days is a specialized event organizer hosting an Ayurveda trade fair in Vienna, Austria, targeting both Ayurveda professionals and newcomers. The website provides information about the event, including exhibitors, lectures, and wellness services such as vegetarian food and Ayurvedic treatments. The business operates primarily as an event platform within the health and wellness sector. Technically, the website is built on the Wix platform, leveraging Wix's hosting and content management capabilities. The site is moderately optimized for mobile devices and has a good design quality, though accessibility and SEO optimizations are basic. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy compliance features. No WHOIS data is available, indicating privacy protection for the domain registration, which is typical for event websites. Overall, the site appears legitimate and professionally maintained but would benefit from enhanced privacy and security practices.

M

Mironet.cz a.s.

mironet.cz

69

Mironet.cz a.s. operates a well-established e-commerce platform in the Czech Republic, specializing in consumer electronics, household items, and hobby products. The website offers a broad product catalog, seasonal promotions, and customer services such as PC configuration and support. The company targets general consumers primarily in the Czech market and neighboring countries. Technically, the site uses modern JavaScript libraries and tracking tools, with a focus on user experience and mobile optimization. Security measures include HTTPS and content security policies, though some security headers could be enhanced. Privacy compliance is addressed with clear policies and consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further investigation. Overall, the site presents a professional and trustworthy e-commerce presence with room for security and transparency improvements.

The website www.onlineshop.cz is currently inaccessible due to a Cloudflare Turnstile CAPTCHA security challenge, which prevents direct content access and analysis. No business information, metadata, or contact details are available on the page. The domain WHOIS query returned no registration data, indicating privacy protection or unregistered status, which further limits trust and legitimacy verification. Technically, the site uses Cloudflare's security services but no other detectable frameworks or CMS. The security posture cannot be fully assessed due to the blocking mechanism. Overall, the site appears to be protected by a strong WAF, but this also hinders transparency and analysis.