Security Directory

J

J&T FINANCE GROUP SE

jtfg.com

66

J&T FINANCE GROUP SE is a well-established European financial group operating primarily in Central and Eastern Europe, offering a broad range of financial services including private and retail banking, asset management, investment banking, and project finance. The group has a significant market presence with subsidiaries across multiple countries and a history dating back to 1994. The website reflects a professional and consistent brand image with comprehensive information about its services and leadership. Technically, the website is built on modern web technologies such as Next.js and React, supported by a headless CMS (Kentico Kontent). It demonstrates good mobile optimization, accessibility, and SEO practices. Analytics and marketing tools like Google Tag Manager are in use, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and publicly available security policies or incident response contacts. The absence of WHOIS data for the domain is a concern, though the website content and structure suggest legitimacy. Privacy compliance is partially addressed with a cookie policy and consent mechanism, but a clear privacy policy is not prominently found. Overall, the website presents a low risk with strong business credibility but would benefit from enhanced transparency in security and privacy policies, and verification of domain registration details.

R

Remembership

remembership.cz

57

Remembership is a Czech-based design studio specializing in product design, UX, and customer experience services. The company targets business leaders such as CEOs, Heads of Product, and internal teams, offering tailored design and facilitation services to improve digital products and services. Their client portfolio includes notable companies in fintech, insurtech, and SaaS sectors, indicating a strong market position within the Czech technology industry. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Webflow CMS and Splide.js for interactive elements. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and privacy/cookie policies suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the website content and client testimonials provide strong legitimacy signals. Overall, the site demonstrates a mature digital presence with minor compliance gaps.

Č

Český rozhlas

mujrozhlas.cz

9

The website www.mujrozhlas.cz serves as the official audio portal for Český rozhlas, the Czech public radio broadcaster. It offers a wide range of audio content including podcasts, interviews, audiobooks, fairy tales, sports, radio plays, and historical recordings, positioning itself as the largest audio portal on the Czech internet. The site targets Czech-speaking audiences interested in diverse spoken-word content. Technically, the site is built on Drupal 10 and integrates modern analytics and tracking tools such as Google Tag Manager, Microsoft Clarity, and Gemius. The design is professional, mobile-optimized, and provides a good user experience with clear navigation and relevant content.

S

Salinger, z.s.

salinger.cz

46

Salinger, z.s. is a Czech non-profit organization dedicated to supporting families, children, and youth through various social programs since 1997. Their website presents a professional and consistent brand image, highlighting key activities such as substitute family care, youth support, and mental health assistance. The organization maintains partnerships with multiple reputable entities, enhancing its credibility and outreach. Technically, the website employs standard modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics and reCAPTCHA for analytics and security. The site is mobile-optimized with good navigation and content relevance, although some accessibility features could be improved. The absence of a CMS or hosting provider information limits deeper infrastructure insights. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. WHOIS data is unavailable, which slightly reduces trustworthiness but does not negate the legitimacy suggested by the website content and contact details. Overall, the website is well-structured and serves its non-profit mission effectively, but could benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

A

AMINA o.p.s.

amina-nrp.cz

41

AMINA o.p.s. is a small non-profit organization based in the Liberec region of the Czech Republic, focused on supporting substitute family care and foster care development. The organization provides a range of social, psychological, and therapeutic services aimed at children who cannot grow up in their biological families. Their market position is regional with a clear mission to support families and children through accompaniment, education, respite care, and other supportive services. The website reflects this mission with relevant content and service descriptions, targeting families and social care professionals in the region. Technically, the website uses basic HTML5, CSS, and JavaScript technologies with Google Analytics for visitor tracking. Hosting appears to be provided by Wedos, a Czech hosting provider. The site is moderately optimized for mobile and accessibility but lacks advanced frameworks or CMS indications. Performance is moderate with basic SEO and meta tags present. However, there is no visible evidence of HTTPS or security headers, which is a concern for security posture. From a security perspective, the site lacks published privacy, cookie, or terms of service policies, and no incident response or vulnerability disclosure information is available. Google Analytics is used without a visible cookie consent mechanism, indicating potential GDPR compliance gaps. No forms or sensitive data collection points are present, reducing immediate risk, but the absence of security headers and HTTPS confirmation lowers the overall security score. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious patterns detected. Overall, the website is functional and serves its informational purpose but requires improvements in security, privacy compliance, and contact transparency to enhance trust and regulatory adherence.

S

Slezská diakonie

slezskadiakonie.cz

50

Slezská diakonie is a well-established Czech non-profit organization dedicated to providing social services and support to individuals and communities in need. The website reflects a mature digital presence with comprehensive content about their services, volunteer opportunities, and donation projects. The organization maintains a strong market position in the social services sector with a large employee base and active community engagement. Technically, the site uses modern web technologies including Google Analytics 4 and retargeting scripts, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of organization. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

C

Charita Česká republika

charita.cz

50

Charita Česká republika is a well-established non-profit organization operating in the Czech Republic, providing the largest network of non-governmental social and health services nationwide. The website reflects a mature digital presence with professional design, multi-language support, and active engagement through social media channels. The technical infrastructure leverages modern web technologies including Google Tag Manager and Google Fonts, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. The absence of WHOIS data limits domain trust assessment, but the website's content and partner affiliations strongly indicate legitimacy. Strategic recommendations include enhancing transparency with published privacy and security policies, improving security headers, and establishing vulnerability disclosure processes.

The website andrewmelcher.com is an informational platform dedicated to proposing a new democratic system and constitution aimed at reducing corruption and increasing democratic participation. It provides extensive textual content, including a downloadable constitution and detailed political commentary. The site is built on WordPress and hosted via GoDaddy, with a moderate technical setup but lacking advanced security headers and privacy compliance documentation. No direct business contact information or commercial services are evident, positioning the site as a niche advocacy and educational resource rather than a commercial enterprise. Security posture is adequate with HTTPS but could be improved with DNSSEC and security headers. Privacy compliance is minimal due to absence of policies. Overall, the site is legitimate and stable but would benefit from enhanced security and compliance measures.

B

Breakfast & Brunch | Bella Vida Café | Prague Lesser Town

bvcafe.cz

51

The website en.bvcafe.cz is a Wix-hosted site with limited publicly accessible content and no visible business description or contact information. The site uses standard Wix technologies and Google Tag Manager for analytics. The absence of WHOIS data and registrant information reduces the trustworthiness of the domain, although no malicious or suspicious content was detected. Security posture is moderate with HTTPS enabled but lacking security headers and privacy compliance documentation. Overall, the site appears to be a small-scale business or informational site with basic technical implementation but lacking in transparency and compliance features.

The European Parliamentary Financial Services Forum (EPFSF) is a well-established non-profit organization founded in 2002, dedicated to facilitating effective dialogue between the financial industry and Members of the European Parliament. The website reflects a professional and consistent brand presence, targeting financial professionals and policymakers within the European Union. It offers key services such as educational seminars, workshops, and membership opportunities, supported by a broad network of financial industry members and observers. Technically, the website employs modern web technologies including Google Analytics and Tag Manager, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and published security policies. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious or malicious content.

W

Wowza

wowza.com

54

Wowza is a well-established technology company specializing in video streaming platforms, offering cloud, private cloud, and hybrid streaming solutions. Their platform supports live and on-demand video streaming with integrated content management, analytics, and CDN services. The company targets developers, broadcasters, publishers, and enterprises requiring scalable and reliable streaming infrastructure. The website reflects a mature digital presence with comprehensive resources, developer documentation, and community engagement. Technically, the website is built on WordPress with a modern tech stack including multiple analytics and tracking tools such as PostHog, HubSpot, Google Tag Manager, and LinkedIn Insight. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though accessibility could be further improved. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for enhancement in transparency and readiness. Overall, the website and business appear legitimate and professional, though the lack of publicly available WHOIS data introduces some uncertainty. Strategic recommendations include publishing security policies, enhancing accessibility, and formalizing vulnerability disclosure to strengthen trust and compliance.

B

bété s.r.o.

bete-studio.cz

52

bété s.r.o. is a Czech design studio specializing in product and transport design, offering end-to-end project management from initial sketches to production and marketing. The company serves notable automotive clients such as BMW, Ford, Škoda Auto, and Kofola, positioning itself as a reputable player in the design and marketing consulting sector. The website reflects a professional business presence with clear service descriptions and contact information, though it lacks formal privacy and cookie policies. Technically, the site uses standard web technologies with moderate performance and good mobile optimization but lacks visible advanced security headers or compliance indicators. The absence of WHOIS data limits domain registration transparency, but the business credibility is supported by client references and professional presentation. Overall, the site is safe, business-focused, and trustworthy, though improvements in security posture and privacy compliance are recommended.

A

APASON

apason.cz

52

APASON is a Czech Republic-based group of companies specializing in construction, property management, real estate development, office space rental, and design and marketing services. The website presents a professional and business-focused image targeting clients seeking these services in the region. The technical infrastructure is modern with use of JavaScript libraries and responsive design, though some SEO and accessibility improvements are possible. Security posture is moderate with basic protections like email obfuscation but lacks visible security headers and published policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact details appear legitimate. Overall, the site is functional and professional but would benefit from enhanced security and compliance transparency.

The website www.pre.cz appears to be the official site of an energy company, likely Pražská energetika, serving customers in the Czech Republic. However, the current accessible content is limited to a CAPTCHA challenge page designed to prevent automated access, which restricts the ability to analyze the full website content and services. The minimal visible content includes a company logo and a CAPTCHA form, with no visible privacy, cookie, or terms of service policies, nor contact information or social media links. The WHOIS lookup failed to return any registration data, which raises concerns about domain registration transparency or privacy protection usage. From a technical perspective, the site uses JavaScript and standard HTML but lacks detectable modern frameworks or CMS indicators. No external analytics or advertising scripts were found, and no security headers or SSL configuration details were available from the provided data. The CAPTCHA challenge indicates a security mechanism is in place, but it also impacts user experience and accessibility. Security posture is weakly observable due to limited content access. The absence of privacy and cookie policies, contact information, and WHOIS data reduces trust and compliance confidence. There are no indications of adult or explicit content, and the site is rated safe for general audiences. Overall, the site’s current state suggests it is either under maintenance, protected by aggressive security controls, or misconfigured, limiting its usability and transparency. Strategic recommendations include improving transparency by publishing privacy and cookie policies, providing clear contact information, ensuring WHOIS data is available and accurate, and optimizing the CAPTCHA implementation to balance security with user experience.

M

Mgr. František Válek

frantisekvalek.cz

45

Mgr. František Válek operates a professional web design and digital marketing business based in the Olomouc region of the Czech Republic. The website showcases a comprehensive portfolio of services including custom WordPress website development, SEO optimization, PPC campaign management, graphic design, copywriting, and web hosting. The business targets small to medium enterprises and individual entrepreneurs seeking effective online presence and marketing solutions. The domain age and WHOIS data confirm a stable and consistent business presence since 2011. Technically, the website is built on a modern WordPress CMS platform using standard web technologies such as HTML5, CSS3, PHP, JavaScript, and jQuery. It is hosted by Webglobe and demonstrates good mobile responsiveness and SEO practices. However, there is room for improvement in security headers and cookie consent mechanisms to enhance compliance and security posture. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. No critical vulnerabilities or malicious indicators were found. The absence of explicit security policies and incident response information suggests an opportunity to strengthen trust and preparedness. Overall, the website presents a secure and professional digital footprint suitable for its business scope. The overall risk is low with minor recommendations to improve privacy compliance and security best practices. Strategic enhancements in these areas will further solidify the company's credibility and user trust.

Adventure Centrum operates as an exclusive importer and retailer of portable 12V evaporative air coolers under the Transcool brand, targeting outdoor enthusiasts, caravan users, and eco-conscious consumers primarily in the Czech Republic and Slovakia. The company emphasizes eco-friendly, energy-efficient cooling solutions suitable for caravans, tents, offices, and vehicles. Their market position is strengthened by exclusive distribution rights and a focused product portfolio. The website reflects a small business with a clear niche and a professional online presence supported by social media channels and partner e-commerce platforms. Technically, the website is built on WordPress with Bootstrap and FontAwesome, leveraging Google Analytics and Tag Manager for user tracking. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Hosting and domain registration are consistent with the business location and history, with no blocking or WAF interference detected. Security posture is moderate with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and lack of privacy and cookie policies indicate compliance gaps and areas for improvement. No incident response or vulnerability disclosure mechanisms are present, which could be enhanced to improve trust and security readiness. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and security best practices to align with GDPR and modern security standards. Strategic enhancements in these areas will strengthen the company's digital maturity and customer trust.

B

Beneš & Michl s.r.o

benes-michl.cz

65

Beneš & Michl s.r.o is a Czech-based digital and creative agency specializing in web and graphic design solutions. The company positions itself as a partner for clients seeking thoughtful design and functional digital solutions, targeting businesses and individuals in the Czech Republic. Their website reflects a professional and consistent brand image with clear messaging about their services. Technically, the website employs modern web technologies including JavaScript, CSS, and HTML5, and integrates third-party services such as Cookiebot for cookie consent management and Google Tag Manager for analytics. The site is mobile-optimized and demonstrates good SEO practices. From a security perspective, the website uses HTTPS with a valid SSL certificate, ensuring encrypted communication. Cookie consent mechanisms are implemented, indicating awareness of GDPR compliance. However, no explicit security headers were detected, and no public security or incident response policies are available on the site. The presence of multiple third-party tracking and marketing scripts suggests extensive user tracking, though privacy compliance appears to be managed appropriately through consent banners and detailed cookie declarations. Overall, the website is accessible without any WAF or blocking mechanisms, and content safety analysis confirms it is suitable for a general audience with no adult or explicit content. The lack of WHOIS data limits domain registration insights, but the professional presentation and compliance indicators support the legitimacy of the business. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility features to strengthen the security posture and trustworthiness further.

Q

Quick-Step

quick-step.com

65

Quick-Step is an established international flooring brand specializing in the design and manufacture of laminate, wood, and vinyl flooring products. The company targets both consumers and professionals seeking easy-to-install and maintain flooring solutions. The website demonstrates a consistent brand presence with multiple country-specific domains, indicating a broad market reach. Technically, the site is built on the Sitecore CMS platform and employs modern JavaScript frameworks and analytics tools, reflecting a moderate to advanced digital maturity. However, the absence of visible privacy and cookie policies, as well as contact information, indicates gaps in compliance and user trust facilitation. Security posture is generally good with HTTPS enabled and use of telemetry tools, but lacks visible security headers and formal incident response information. Overall, the site is professional and trustworthy in content but would benefit from enhanced privacy compliance and transparency.

J

Jakub Turský

jakubtursky.sk

49

Jakub Turský operates as a freelance front-end developer and Shoptet template coder based in Slovakia, with a specialized focus on the Apollo Shoptet template used by over 500 e-shops. The website serves as a professional portfolio showcasing his skills, services, and client references, targeting e-commerce businesses seeking customized front-end solutions. The business model is that of a small-scale freelancer with a niche market position supported by a strong partnership with Shoptet. Technically, the website employs modern front-end technologies including HTML5, CSS3, Sass, Bootstrap, JavaScript, and Vue.js, hosted on Exohosting servers. The site is well-optimized for mobile devices and demonstrates good performance and SEO practices. Security posture is solid with HTTPS enabled and secure form inputs, though it lacks some advanced security headers and formal security policies. Privacy compliance is limited due to the absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

K

kroatienferienwohnung.at

kroatienferienwohnung.at

43

The website kroatienferienwohnung.at operates as a niche online platform offering vacation rental listings focused on Croatia, targeting tourists seeking direct contact with property owners to avoid intermediaries. The business model emphasizes cost-effective accommodation options along the Croatian coast, positioning itself as a specialized catalog rather than a broad travel service. Technically, the site employs basic web technologies including HTML, CSS, JavaScript with an outdated jQuery version, and integrates Google Analytics and Tag Manager for tracking. The design and user experience are functional but basic, with moderate SEO optimization and limited mobile responsiveness. Security posture is moderate; the absence of HTTPS confirmation and security headers, combined with the use of an outdated JavaScript library, presents potential vulnerabilities. No privacy, cookie, or terms of service policies were found, indicating compliance gaps with GDPR and related regulations. WHOIS data is unavailable, which reduces transparency and trustworthiness of the domain registration. Overall, the site is operational and content-rich but requires improvements in security, privacy compliance, and transparency to enhance trust and user confidence.

D

Debant s.r.o.

croatievoyage.fr

49

CroatieVoyage.fr is a French-language online platform offering the largest catalog of private accommodation in Croatia, targeting tourists seeking direct contact with property owners for vacation rentals. The website provides extensive regional listings, last-minute offers, weather updates, and video presentations, positioning itself as a key player in the Croatian hospitality market for French-speaking customers. The business operates under Debant s.r.o., indicating a medium-sized enterprise with a focus on hospitality and real estate sectors. Technically, the site employs standard web technologies including HTML, CSS, JavaScript, jQuery, and integrates Google services for fonts, analytics, and advertising. The site is mobile responsive and well-structured, providing a good user experience and SEO optimization. Security posture is solid with HTTPS enabled and a comprehensive cookie consent mechanism aligned with GDPR requirements, although explicit security headers and a privacy policy page are missing. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear professional and legitimate. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy resource for travelers seeking accommodation in Croatia.

D

Debant s.r.o.

vakantiesinkroatie.nl

49

VakantiesinKroatie.nl is a well-established online platform specializing in private accommodation listings across Croatia, primarily targeting European tourists seeking direct contact with property owners. The website offers extensive regional coverage, multi-language support, and a user-friendly search interface, positioning itself as a leading catalog in its niche. The business operates under Debant s.r.o., a Czech company with a history dating back to 2002, indicating a mature market presence. Technically, the site employs standard web technologies including HTML5, CSS3, JavaScript, and jQuery, with integrations for Google Fonts, Analytics, and Adsense, reflecting a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

D

Debant s.r.o.

horvatorszagielszallasolas.hu

51

The website www.horvatorszagielszallasolas.hu operates as a comprehensive Croatian accommodation catalog primarily targeting Hungarian and Central European tourists. It offers a large database of private apartments, last minute deals, weather forecasts, maps, and video presentations, facilitating direct contact between travelers and property owners. The business is operated by Debant s.r.o., a Czech company established in 2002, indicating a mature and stable market presence. The platform enjoys a moderate to high market position within its niche, supported by partnerships and a multilingual approach.

D

Debant s.r.o.

unterkunftinkroatien.de

41

Unterkunftinkroatien.de is a well-established online directory and booking platform specializing in private holiday accommodations across Croatia, targeting primarily German-speaking tourists. The platform offers extensive listings of apartments, houses, and last-minute deals, complemented by travel and weather information. Operated by Debant s.r.o., a Czech company, the website maintains a consistent brand presence with multilingual support and direct owner contacts, positioning itself as a leading resource in the Croatian hospitality market. Technically, the site employs standard web technologies including HTML, CSS, JavaScript, jQuery, and integrates Google Analytics and AddThis for tracking and social sharing. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Security-wise, the site uses HTTPS but lacks explicit security headers and formal privacy or cookie policies, indicating areas for compliance and security enhancement. Overall, the website is functional and trustworthy but would benefit from improved privacy compliance and security hardening to align with GDPR and modern best practices.

N

Nupreme.com

nupreme.com

60

Nupreme.com is an e-commerce retailer specializing in superfoods and dietary supplements, targeting health-conscious consumers primarily in the Czech Republic. The website offers a broad range of products including chlorella, spirulina, young barley, Himalayan salt, mushrooms, maca, vitamins, creams, beverages, collagen, and snacks. The site also provides educational content through a magazine and advice sections, enhancing customer engagement and trust. Technically, the website is built on the Shoptet e-commerce platform, utilizing various modern web technologies such as Google Tag Manager, Google Analytics (GA4), Facebook SDK, and Doofinder for search functionality. The site is mobile-optimized and includes cookie consent mechanisms, indicating compliance with GDPR requirements. However, some technologies like jQuery 1.11.3 are outdated and should be updated to improve security. From a security perspective, the site enforces HTTPS and includes CSRF protection on login forms. While some security headers are not explicitly detected, no critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS registration data raises concerns about domain legitimacy, but the professional website presentation and operational e-commerce functionality suggest legitimate business operations. Overall, the website presents a good security posture and technical maturity for a small retail business, with room for improvement in domain registration transparency and updating legacy libraries. Strategic recommendations include enhancing security headers, updating JavaScript libraries, and publishing explicit security and incident response policies.

G

GTO Solutions s.r.o.

skutocnost.sk

50

Skutočnosť.sk is a Slovak online media portal providing practical advice and guides on life topics such as finance, shopping, entertainment, health, and transportation. The site targets Slovak-speaking users seeking everyday life tips and uses advertising as its primary revenue model. The parent company is GTO Solutions s.r.o., which is clearly identified in the website's structured data and footer. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, and Google Adsense for analytics and monetization. The website is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and published security policies. Privacy compliance is addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and legitimate with consistent WHOIS data and no signs of blocking or WAF interference.

Multigate, a.s. is a Czech company established in 2002 specializing in the operation and rental of lottery and gaming devices, notably the VIDEO LOTTERY TERMINAL branded as VLT MULTILOTTO. The company aims to become a leading operator in the Czech gaming market. The website provides basic information about the company, its services, and a loyalty program with a member account section. Technically, the site uses standard web technologies including Google Fonts and Google reCAPTCHA for form protection, but lacks advanced security headers and cookie consent mechanisms. Security posture is moderate with some client-side validation but no visible HTTPS enforcement or published security policies. Overall, the site is functional but basic in design and content quality, with limited direct contact information and no social media presence.

L

Loterie Maxa s.r.o.

maxa.cz

67

Loterie Maxa s.r.o. operates a Czech Republic-based lottery and gambling platform offering a variety of games including traditional lotteries, online scratch cards, bingo, and vegas-style games. The company targets adult players interested in lottery and gambling entertainment, providing both online and physical lottery services. The website demonstrates a consistent brand presence with partnerships including Tipsport and Chance, and membership in the European Lotteries association, indicating a solid market position within the Czech gambling industry. Technically, the website is built using modern web technologies such as React and integrates analytics and monitoring tools like Google Tag Manager and Dynatrace. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security practices include HTTPS enforcement and cookie consent mechanisms, though additional security headers and vulnerability disclosure mechanisms are recommended to enhance security posture. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed with privacy and cookie policies and consent management, though more explicit GDPR documentation and contact points for incident response could improve compliance. The absence of WHOIS data limits domain trust verification, but the website's content and partner affiliations support legitimacy. Overall, Loterie Maxa presents a professional and trustworthy online lottery service with moderate technical maturity and a solid security foundation. Strategic improvements in security headers, incident response transparency, and WHOIS data clarity would further strengthen trust and compliance.

The website ifortuna.cz is operated by FORTUNA GAME a.s., a Czech Republic based gambling company established in 2005. The site currently displays a geoblock page powered by Cloudflare, restricting access to users outside permitted regions. This limits the ability to analyze the full content and services offered. The company appears to provide online betting and gaming services targeting adult customers in the Czech Republic. The domain registration data is consistent with the business claims and shows a long operational history. Technically, the site uses Cloudflare for DNS and CDN services, providing good SSL configuration and basic security. However, no privacy, cookie, or terms of service policies are accessible, and no contact or incident response information is found on the geoblock page. Overall, the site’s security posture is moderate due to HTTPS and Cloudflare protection, but privacy compliance and content quality cannot be verified due to access restrictions.

T

Tipsport

tipsport.cz

60

Tipsport is a large Czech Republic-based online sports betting and casino platform, positioning itself as the largest betting community in the country. The website offers services including online sports betting, casino games, live sports broadcasts, discussion forums, and betting analysis. The platform targets adult gamblers and sports enthusiasts. Technically, the site is built on modern JavaScript frameworks, specifically Next.js, and leverages Google Tag Manager, Dynatrace monitoring, and Cloudflare for hosting and security. The site is mobile optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and monitoring tools in place, though explicit security headers and privacy policies are not clearly presented in the analyzed content. The absence of WHOIS data limits domain registration trust analysis, but the website branding and content suggest a legitimate business. Overall, the site is professional and functional with room for improvement in privacy compliance and explicit security disclosures.

I

IAF Certification Validation - IAF CertSearch

iafcertsearch.org

55

The website www.iafcertsearch.org serves as a global database platform for validating accredited management system certifications, primarily targeting organizations and users seeking to verify certifications such as ISO standards. The site is built using modern web technologies including React and integrates common analytics and marketing tools like Google Analytics and LinkedIn Insight. Despite a professional technical setup with HTTPS and a strict Content-Security-Policy, the site lacks visible privacy policies, cookie consent mechanisms, and contact information, which are important for user trust and regulatory compliance. The WHOIS data is unavailable due to privacy protection or malformed queries, which limits transparency about domain ownership. Overall, the site appears functional and safe but would benefit from enhanced compliance and trust signals.

N

NaBRe

nabre.cz

63

NaBRe is a newly established national blockchain registry platform based in the Czech Republic, launched in late 2023. The website serves as a technology platform offering blockchain registry and digital verification services targeted at businesses and individuals interested in blockchain technology. The site uses modern web technologies including Vue.js and Vuetify, and integrates Google reCAPTCHA to protect against automated abuse. Hosting appears to be provided by Forpsi, a Czech hosting provider, inferred from the nameservers. The website design is functional and mobile-optimized, though content quality is basic and lacks comprehensive business and legal information such as privacy or cookie policies. Security posture is moderate with some best practices like HTTPS and reCAPTCHA, but lacks visible security headers and formal incident response or vulnerability disclosure policies. WHOIS data indicates the domain is very new but consistent with a legitimate new business launch. Overall, the site is safe and trustworthy but would benefit from enhanced privacy compliance and security transparency.

M

markohoza

markohoza.com

57

Markohoza.com is a Slovak-based web development service provider specializing in WordPress and e-commerce solutions. The website serves as a professional portfolio showcasing multiple client projects primarily in Slovakia, targeting businesses seeking custom web and e-commerce development. The business appears to be a small, specialized entity founded around 2018, with a consistent brand presence and a clear focus on technology services. Technically, the site is built on WordPress with modern web technologies including WooCommerce, Stripe, and various JavaScript libraries. Hosting is provided by a Slovak hosting provider, Websupport, with HTTPS enabled and domain transfer protections in place. However, DNSSEC is not enabled, and security headers are missing, indicating room for security improvements. Privacy and cookie policies are absent, representing compliance gaps under GDPR. Contact information is limited to an email address, with no phone or physical address provided. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security hardening.

F

Farmi

farmi.com

70

Farmi is a French e-commerce platform specializing in agricultural products and services, catering primarily to farmers and agricultural professionals. The website presents a professional and well-structured online marketplace, offering a range of products and services tailored to the agricultural sector. The platform leverages modern web technologies such as Vue.js and Nuxt.js, ensuring a responsive and user-friendly experience across devices. Privacy and cookie policies are clearly stated and comply with GDPR requirements, enhancing user trust. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which impacts overall business credibility. Security measures such as HTTPS and security headers are properly implemented, but the lack of a published security policy and incident response information suggests room for improvement in transparency and preparedness. Overall, Farmi demonstrates a solid digital presence with good technical foundations but should address domain registration transparency and enhance security communication to strengthen trust and compliance.

The website webarchitect.cz is currently a parked domain with minimal content indicating it may be for sale. There is no active business presence or description of services. The domain is expired and uses parkingcrew.net nameservers, which is typical for domains not actively maintained. The site contains advertising scripts and tracking pixels but lacks any privacy, cookie, or terms of service policies. No contact information or social media links are provided, limiting trust and credibility. Technically, the site uses basic HTML, CSS, and JavaScript but lacks HTTPS and security headers, exposing it to potential security risks. Overall, the site is not suitable for business or user engagement in its current state.

B

Bucher Denwel, spol. s r.o.

denwel.cz

56

Bucher Denwel, spol. s r.o. is a Czech-based company specializing in innovative brewing technologies and engineering solutions for industries such as brewing, pharmaceuticals, chemicals, and energy. The company offers turnkey projects, specialized equipment, and process analytical technologies, positioning itself as a medium-sized B2B industrial technology provider with a professional online presence and ISO certification. The website is well-structured, professionally designed, and targets industrial clients seeking advanced process solutions. Technically, the site uses legacy JavaScript libraries and a CMS called WebArchitect, with moderate performance and basic mobile optimization. Security posture is moderate with cookie consent implemented but lacks modern security headers and updated libraries. WHOIS data is missing, which reduces domain trustworthiness, but the website content and branding indicate a legitimate business. Overall, the site scores well on content quality and business credibility but should improve technical and security aspects.

W

Web4ce, s.r.o.

web4ce.cz

57

Web4ce, s.r.o. is a Czech-based small technology company specializing in web hosting, web design, server housing, and related internet services. The company offers a range of hosting packages tailored to different customer needs, including email hosting, virtual servers, and comprehensive web design solutions. Their market position appears to be that of a local, established provider with a focus on professional service and customer support. The website content is well-structured and informative, targeting businesses and individuals seeking reliable web hosting and design services. Technically, the website uses standard web technologies such as jQuery and custom JavaScript, with a proprietary CMS indicated by script references. The site is moderately optimized for performance and SEO but shows room for improvement in mobile responsiveness and accessibility. Security-wise, HTTPS is used for administrative login, but no advanced security headers or policies are evident. The absence of privacy and cookie policies indicates compliance gaps, particularly regarding GDPR. The security posture is moderate, with no visible vulnerabilities or exposed sensitive data, but lacking formal security policies or incident response information. The missing WHOIS data is a concern for domain legitimacy and trust, although the website content and contact details suggest a legitimate business. Overall, the risk is moderate, with recommendations to improve security headers, privacy compliance, and domain registration transparency. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, improving mobile and accessibility features, establishing vulnerability disclosure and incident response protocols, and verifying domain registration details to enhance trust and compliance.

H

Hotel Kleis

hotelkleis.cz

47

Hotel Kleis is a small hospitality business located in the Czech Republic, uniquely positioned within the historic Cvikov Brewery site. The hotel offers modern accommodation and event hosting services, targeting corporate clients, families, and groups seeking a distinctive mountain and brewery experience. The website is professionally designed with multilingual support and clear navigation, reflecting a mature digital presence. Technically, the site uses modern web technologies and is hosted by a reputable Czech provider, Websupport. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no privacy or terms of service pages. Overall, the business appears legitimate and well-positioned in its niche, though improvements in compliance and security transparency are recommended.

P

Pivovar Cvikov

restauracesladovna.cz

46

Restaurace Sladovna is a small hospitality business operating multiple restaurant branches in the Czech Republic, associated with the Pivovar Cvikov brewery. The website presents a clean, well-structured interface showcasing three restaurant locations with physical addresses and invites visitors to explore each branch. The business targets general restaurant customers and leverages its brewery association as a key brand element. Technically, the website uses modern web technologies including responsive images and JavaScript, hosted on Websupport infrastructure. However, it lacks advanced frameworks or CMS indications and shows only basic SEO and accessibility features. Security posture is moderate with no visible security headers or published security policies, and privacy compliance is limited to a cookie consent banner without a formal privacy policy or terms of service. Contact information is minimal, restricted to physical addresses without emails or phone numbers. Overall, the website is functional and professional but could improve in privacy, security, and contact transparency to enhance trust and compliance.

C

CREATION.CZ

pejr.info

43

Pejr.info was a small local information portal serving the Pelhřimov region in the Czech Republic, operated independently by CREATION.CZ for approximately 18 years. The website recently ceased operation citing regulatory burdens from the EU Digital Services Act. The site content is minimal, primarily a closure notice, with no active services or user interaction. Technically, the site uses standard web technologies including Google Analytics and Tag Manager for tracking but lacks visible security headers or privacy policies. The WHOIS data is unavailable due to unsupported TLD WHOIS, limiting transparency about domain ownership. Overall, the site reflects a small-scale community service with limited digital maturity and security posture.

C

CREATION.CZ

creation.cz

45

CREATION.CZ is a small digital agency based in Pelhřimov, Czech Republic, specializing in custom web development, graphic design, internet marketing, product photography, and advertising services. The company emphasizes originality and technical precision over mass-produced templates, targeting local businesses and individuals seeking professional digital solutions. Their website reflects a consistent brand identity with clear navigation and professional content, supported by client testimonials and social media presence. Technically, the website employs modern web technologies including JavaScript, jQuery, Google reCAPTCHA, and Google Tag Manager for analytics and security. The site is mobile-optimized, accessible, and SEO-friendly, with HTTPS enforced and a cookie consent mechanism in place. However, no CMS or hosting provider information is discernible, and some security headers appear to be missing. From a security perspective, the site demonstrates good practices such as HTTPS usage and form protection via reCAPTCHA. The presence of a GDPR-compliant privacy policy and cookie banner indicates attention to privacy compliance. However, the absence of WHOIS data and security policies, as well as missing security headers, suggests areas for improvement in transparency and security posture. Overall, CREATION.CZ presents a trustworthy and professional digital agency with a solid online presence but would benefit from enhanced security disclosures and domain registration transparency to strengthen trust and compliance.

T

Truhlárna Herink

truhlarnaherink.cz

55

Truhlárna Herink is a small Czech woodworking business specializing in the production, renovation, and repair of furniture. The website is built on the Wix platform, indicating a moderate level of digital maturity suitable for small local businesses. The site provides clear contact information including an email and phone number, targeting local customers in the Czech Republic. Technical infrastructure relies on Wix's hosting and content delivery, with standard Wix scripts and styles. Security posture is basic, with no detected security headers or privacy policies, and WHOIS data is unavailable, likely due to privacy protection. Overall, the website is functional and professional but lacks advanced security and privacy compliance features. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, and improving WHOIS transparency to enhance trust.

A

AGROFERT, a.s.

agrofert.cz

50

AGROFERT, a.s. is a major Czech conglomerate operating across multiple sectors including chemistry, agriculture, food production, forestry, technology, and renewable energy. The company has a significant footprint with operations in 21 countries and employs approximately 29,000 people. The website reflects a professional corporate presence with multilingual support and active media and career sections, indicating a mature business operation. Technically, the site is built on Drupal 10, uses modern web standards, and includes cookie consent mechanisms compliant with GDPR. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though explicit security headers are not detected and no public security policy or incident response contacts are published. WHOIS data is unavailable, which slightly reduces trustworthiness but does not detract from the overall legitimacy of the business as presented. Strategic recommendations include enhancing security headers, publishing security policies, and improving WHOIS transparency to bolster trust.

T

TRIAD Prague

triad.cz

57

The website www.triad.cz is a small business site built on the Wix platform. The site content is minimal and lacks detailed business descriptions, contact information, or legal policies. The technical infrastructure relies on Wix's standard hosting and scripts, with basic mobile optimization and moderate performance. Security posture is limited, with no advanced security headers or policies detected. The absence of WHOIS data and privacy policies reduces trust and compliance confidence. Overall, the site appears to be a basic online presence without strong business or security maturity.

D

DEVINBAND

devin.band

61

DEVINBAND is a collective of independent communication and technology companies specializing in marketing, advertising, consulting, and software development. The group operates globally with a footprint in 36 countries and employs over 120 professionals. Their portfolio includes award-winning agencies and innovative SaaS products, positioning them as a significant player in the marketing technology sector. The website reflects a professional and consistent brand image, highlighting their integrated approach to strategy, creativity, consulting, and technology innovation. Technically, the website employs modern web technologies including Google Analytics for tracking and Photoswipe for image galleries. The site is mobile-optimized and demonstrates good SEO practices. However, some technical improvements such as enhanced security headers and a visible privacy policy could strengthen their digital maturity. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating awareness of privacy compliance. The absence of visible security headers and lack of explicit privacy and terms of service pages are areas for improvement. WHOIS data is privacy protected, which is reasonable for this business type but limits transparency. Overall, DEVINBAND presents a trustworthy and professional online presence with moderate technical and security posture. Strategic enhancements in privacy disclosures and security configurations are recommended to elevate compliance and trustworthiness.

G

GTO Solutions s.r.o.

futbalspravy.sk

47

FutbalSpravy.sk is a Slovak football news portal operated by GTO Solutions s.r.o., providing comprehensive coverage of domestic and international football including leagues, cups, and national team events. The site targets football fans and sports bettors in Slovakia and the Czech Republic, offering news, match schedules, live broadcasts, and betting tips. The business model relies on content provision combined with affiliate marketing partnerships with licensed betting companies. Technically, the site uses modern web technologies including Google Tag Manager and Analytics, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Privacy compliance is basic but present, with privacy and cookie policies accessible. Overall, the site is professional, trustworthy, and well-positioned in its niche.

G

GTO Solutions s.r.o.

777.sk

49

777.sk is a Slovak-language informational website operated by GTO Solutions s.r.o., focusing on legal online casinos, lottery results, and gambling bonuses in Slovakia. The site provides regularly updated content including casino bonus offers, lottery draw results, and responsible gambling information, targeting Slovak adults interested in online gambling. The business model centers on content and affiliate marketing, leveraging partnerships with licensed casinos and lottery providers. The website maintains a consistent brand presence and offers a professional user experience with clear navigation and relevant content.

G

GTO Solutions s.r.o.

casinohryzdarma.sk

48

CasinoHryZdarma.sk is an informational and affiliate website operated by GTO Solutions s.r.o., targeting Slovak-speaking online casino players. The site provides comprehensive reviews, bonus offers, promo codes, and responsible gambling information focused on licensed Slovak online casinos. It serves as a trusted resource for players seeking legal and advantageous gambling opportunities in Slovakia. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site demonstrates a professional and trustworthy presence with clear business legitimacy and compliance with GDPR. Recommendations include enhancing security headers and publishing a dedicated security policy to further strengthen trust and compliance.

G

GTO Solutions s.r.o.

hokejspravy.sk

49

HokejSpravy.sk is a Slovak online media portal specializing in ice hockey news, covering domestic leagues such as the Slovak Extraliga, international competitions including the NHL and World Championships, and Slovak national team updates. The site offers comprehensive hockey-related content including match schedules, live streaming information, player statistics, and betting tips. It operates in partnership with licensed Slovak betting companies, providing affiliate links and promotional content. The portal targets hockey fans and bettors primarily in Slovakia and Slovak-speaking regions, positioning itself as a trusted source for hockey news and betting information. Technically, the website employs modern web technologies including HTTPS, responsive design, and integrates Google Tag Manager and Google Analytics for tracking and marketing purposes. The site is well-structured with good SEO practices and mobile optimization, though no specific CMS or hosting provider was identified. Performance is moderate with asynchronous script loading and optimized images. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish a security policy or incident response information. Privacy and cookie policies are present and indicate GDPR compliance, but could be more comprehensive. The site collects user emails via a newsletter subscription form with consent checkboxes. Affiliate marketing is transparent with clear links to licensed betting operators. Overall, the website presents a low-risk profile with good business credibility and content quality. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving accessibility features to strengthen compliance and trust.

G

GTO Solutions s.r.o.

motorsportzive.cz

50

MotorsportZive.cz is a Czech-language online media portal specializing in motorsport news, including Formula 1, MotoGP, rally, and other racing events. It provides timely updates, live streaming information, betting office reviews, and event calendars, targeting motorsport enthusiasts and the betting community primarily in the Czech Republic and Central Europe. The site is operated by GTO Solutions s.r.o., a company with a portfolio of related sports and betting websites, indicating a focused business model leveraging affiliate marketing partnerships with betting operators. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Google Analytics, with a responsive design optimized for mobile users. The site uses HTTPS and has implemented cookie consent mechanisms, reflecting good privacy compliance practices. However, no explicit security or incident response policies are published, and WHOIS data for the domain is unavailable, which slightly reduces trustworthiness from a domain registration perspective. Overall, the website presents a professional and content-rich experience with moderate technical and security maturity.