Security Directory

B

Bella Mia - domácí mýdlárna

domacimydlarna.cz

56

Bella Mia - domácí mýdlárna is a small Czech artisanal e-commerce business specializing in handmade natural soaps, solid shampoos, soy candles, concrete decorations, and gift sets. The company emphasizes ecological and sustainable production methods, targeting general consumers interested in natural and eco-friendly personal care and gift products. The website is built on the Shoptet platform, integrating common marketing and analytics tools such as Google Analytics, Hotjar, Pinterest, and Facebook SDKs. The site is well-structured with clear navigation and product presentation, supporting a positive user experience and good SEO practices. However, the absence of WHOIS registration data limits the ability to fully verify domain legitimacy and business credentials.

P

Provida foundation

provida.sk

52

Provida is a Slovak non-profit foundation established in 2013 that combines philanthropy and investment to address complex social challenges. Their focus is on supporting disadvantaged children, youth, social entrepreneurs, and community development through cultural and educational projects. The website presents a clear and professional image with detailed descriptions of their projects and investments, targeting socially engaged individuals and donors. Technically, the website uses a moderately modern stack including Bootstrap 3.3.5, jQuery 1.11.3, Font Awesome, and Google Fonts. Hosting is likely provided by Websupport, a Slovak hosting provider. The site is mobile responsive and has basic SEO and accessibility features, though some technical debt is evident due to outdated JavaScript libraries. Security posture is moderate with HTTPS and DNSSEC enabled, but lacks visible security headers and uses an outdated jQuery version with known vulnerabilities. No privacy or cookie policies are published, indicating compliance gaps with GDPR. Contact information is clearly provided, but no incident response or security policies are visible. Overall, the website is trustworthy and professional but would benefit from improved security practices, updated libraries, and formalized privacy and cookie policies to enhance compliance and user trust.

D

Deutsche Anwaltauskunft

anwaltauskunft.de

55

Deutsche Anwaltauskunft operates a German-language online legal information magazine and lawyer referral platform. It provides comprehensive legal content across multiple categories such as life, work, housing, mobility, society, economy, and finance. The platform targets the general public seeking legal advice and lawyer contacts in Germany. Technically, the website is built on the Contao CMS, uses modern JavaScript libraries including jQuery and Usercentrics for consent management, and integrates Matomo for analytics. The site is mobile-optimized with good navigation and SEO practices. Security-wise, HTTPS is enforced, and consent mechanisms are in place, but explicit security headers and formal security policies are absent. Overall, the site demonstrates a mature digital presence with moderate to good security posture and privacy compliance.

H

HWKITCHEN

hwkitchen.com

58

HWKITCHEN.cz is a Czech e-commerce website specializing in Arduino boards, clones, electronic kits, and educational materials for electronics and programming enthusiasts. The site targets hobbyists, educators, and children learning programming, offering a niche market presence with a focus on quality content and product offerings. Technically, the site is built on the Shoptet e-commerce platform, utilizing standard web technologies such as jQuery, Google Tag Manager, and Facebook Pixel for analytics and marketing. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and product information. Security posture is adequate with HTTPS and CSRF protections, but lacks some advanced security headers and formal privacy and terms policies. The absence of WHOIS data is a concern for domain legitimacy, though the professional presentation and active social media presence support business credibility. Overall, the site is functional and trustworthy but would benefit from improved compliance documentation and enhanced security practices.

M

Mehrgenerationenhaus Ingelheim

mgh-ingelheim.de

50

Mehrgenerationenhaus Ingelheim is a local non-profit community center in Ingelheim am Rhein, Germany, providing a wide range of social, cultural, educational, and health-related services to residents of all ages. The organization focuses on fostering community engagement, volunteering, and multi-generational interaction. Their website reflects a well-structured and community-oriented approach with clear contact information and social media presence on Facebook and Instagram. Technically, the website is built on TYPO3 CMS with Bootstrap 4 and uses several JavaScript libraries including jQuery 1.11.3, FontAwesome, and Slick Slider. The site is mobile responsive and includes a cookie consent mechanism compliant with GDPR. However, some technical improvements could be made, such as updating jQuery to a more secure version and implementing security headers. From a security perspective, the site uses HTTPS and has a cookie consent banner, but lacks explicit security policies, incident response information, and security headers. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is consistent with the website's community focus and shows no privacy protection, indicating transparency. Overall, the website is trustworthy, safe, and professionally maintained, with minor technical and security enhancements recommended to improve its posture and compliance further.

A

Acción Episcopal Adveniat

adveniat.org

48

Acción Episcopal Adveniat is a German Catholic charitable organization dedicated to supporting impoverished communities in Latin America and the Caribbean. The organization operates primarily through donations and campaigns within the Catholic community in Germany, focusing on sustainable development projects initiated by local church counterparts. Their key services include project funding, scholarship programs, and environmental initiatives such as solar energy support. The website is well-branded and consistent with the organization's mission, targeting donors and supporters interested in Latin American aid.

S

Stadtverwaltung Maxhütte-Haidhof

maxhuette-haidhof.de

63

The website www.maxhuette-haidhof.de serves as the official digital presence of the city administration of Maxhütte-Haidhof, Germany. It provides comprehensive municipal information, including city council details, local events, urban planning, and citizen services. The site targets residents and visitors, offering online portals for administrative tasks such as registrations and permits. The business model is that of a local government entity focused on public service delivery. Technically, the site is built on the IKISS CMS platform, utilizing legacy but functional JavaScript libraries like jQuery and Slick Carousel. Hosting is provided by Hetzner, a reputable German hosting provider. Accessibility is enhanced through Eye-Able assistive technology scripts, and cookie consent mechanisms comply with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No advanced analytics or advertising scripts are present, reflecting a privacy-conscious approach. Overall, the site is professional, trustworthy, and well-aligned with its government function.

Stiftung Tragwerk is a well-established German non-profit diaconal organization with nearly 200 years of history, providing social services primarily in the Esslingen and Göppingen regions. Their services focus on children, youth, families, adults, and elderly care, supported by approximately 670 employees across 46 locations. The website reflects a professional and consistent brand image, targeting community members, potential volunteers, and donors. Technically, the website is built on TYPO3 CMS with legacy JavaScript libraries such as jQuery 1.11.3 and lightbox components. Hosting is managed via net-server.de. The site performs moderately well with basic mobile optimization and SEO practices. However, some modernization opportunities exist, especially updating JavaScript libraries and enhancing accessibility. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no security headers were detected, and the use of outdated libraries presents potential vulnerabilities. Privacy compliance is partially met with a privacy policy present but lacking a cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, Stiftung Tragwerk's website is trustworthy and professional but would benefit from technical and security improvements to strengthen its posture and compliance.

D

Don Bosco Medien GmbH

donbosco-medien.de

62

Don Bosco Medien GmbH is a well-established German specialist publisher focused on early childhood and religious education materials, operating since 1948. The company serves educators, religious workers, and parents with a broad range of pedagogical products, including the Kamishibai storytelling theater. Their market position is strong within their niche, supported by a professional e-commerce platform featuring detailed product information and customer reviews. The website demonstrates a mature digital presence with good content quality and user experience.

ESC S.A. operates the DobryBIP.pl website, offering a specialized Biuletyn Informacji Publicznej (BIP) system tailored for Polish public institutions. The company positions itself as a reliable provider of government-focused software solutions, emphasizing usability, mobile responsiveness, and compliance with accessibility standards. The website features client testimonials and reference letters, reinforcing its credibility in the public sector market. The target audience primarily includes municipal and governmental offices in Poland seeking efficient public information management tools. Technically, the website employs a mix of legacy and modern web technologies including jQuery 1.11.3, Bootstrap, Google Maps API, and Google reCAPTCHA for security on forms. While the design is professional and mobile-optimized, the use of outdated JavaScript libraries presents potential security risks. The site includes a cookie consent mechanism and basic SEO metadata but lacks structured data and comprehensive privacy or terms of service documentation. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA to protect its contact forms. However, no security headers were detected in the provided data, and the outdated jQuery version could expose the site to vulnerabilities. There is no public security policy or incident response information, which limits transparency and preparedness visibility. The WHOIS data aligns well with the website's claims, showing a legitimate registration under ESC S.A. in Poland. Overall, the website is functional, professional, and trustworthy for its niche audience but would benefit from updating its technical stack, enhancing security headers, and publishing comprehensive privacy and security policies to improve compliance and user trust.

C

Cambridge Mathematics

cambridgemaths.org

64

Cambridge Mathematics is an academic initiative affiliated with the University of Cambridge, focused on developing a flexible and interconnected digital framework to reshape mathematics education for ages 3-19. The organization provides research, educational resources, podcasts, and events targeting teachers, researchers, and educators. Their market position is strong within the academic and educational research community, leveraging university partnerships to enhance credibility and reach. Technically, the website employs a modern yet stable technology stack including jQuery, Modernizr, JWPlayer, Google Tag Manager, and OneTrust for cookie consent. The site is well-structured, mobile-optimized, and incorporates SEO best practices. Performance is moderate with room for optimization. Privacy compliance is robust with clear cookie and privacy policies and consent mechanisms. Security posture is solid with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response details, and vulnerability disclosure mechanisms are absent, representing areas for improvement. Overall, the website presents a low-risk profile with high trustworthiness and professional presentation. The lack of WHOIS data due to privacy protection does not detract from legitimacy given the strong university affiliation and consistent branding. Strategic recommendations include publishing security policies, implementing vulnerability disclosure, and enhancing performance.

H

Hobby technik

hobbytechnik.cz

56

Hobby technik is a Czech-based e-commerce business specializing in electrical and electronic equipment for professionals and amateurs. The company offers a wide range of products including laboratory tables, power supplies, soldering technology, educational kits, and personal protective equipment. Their market position is that of a niche supplier catering to educational institutions, workshops, and individual professionals within the Czech Republic. The website is built on the Shoptet platform, featuring modern tracking and marketing tools such as Google Analytics and Facebook Pixel, with a cookie consent mechanism in place to comply with privacy regulations. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency.

C

Cheminées Poujoulat

poujoulat.com

60

Cheminées Poujoulat is a well-established French company specializing in metal chimney flues and stacks, serving residential, commercial, and industrial markets across Europe. The company positions itself as a European market leader with a broad product range and multiple international subsidiaries. The website reflects a mature digital presence with multilingual support and comprehensive product information. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is moderate, with cookie consent mechanisms in place but lacking explicit security headers and dedicated security policies. The absence of WHOIS domain registration data is a notable gap, reducing domain trust verification. Overall, the website is professional and trustworthy but could improve in security transparency and domain registration clarity.

C

Cambridge

cambridgeinternational.org

62

Cambridge International Education is a globally recognized provider of international education programs and qualifications for children and young adults aged 3 to 19. As part of the University of Cambridge, it holds a leading market position in the education sector, offering a broad range of services including curriculum development, assessments, teacher training, and research support. The website reflects a professional and comprehensive digital presence aligned with its educational mission. Technically, the website employs a mature technology stack including jwplayer for media, jQuery, Google Tag Manager, and OneTrust for consent management, indicating a modern and compliant infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, though some libraries like jQuery are outdated and could benefit from updates. Security posture is strong with HTTPS enforced and consent mechanisms in place, though the absence of explicit security headers and public security policies suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is trustworthy and professionally managed, with a high legitimacy score despite the lack of detailed WHOIS registrant data due to privacy protection. Strategic recommendations include enhancing security headers, updating legacy libraries, and publishing security and incident response policies to further strengthen trust and compliance.

O

Oxford, Cambridge and RSA

ocr.org.uk

66

Oxford, Cambridge and RSA (OCR) is a well-established awarding body providing a wide range of educational qualifications including GCSEs, A Levels, Cambridge Nationals, and Cambridge Technicals. The organization operates under the Cambridge Assessment umbrella, positioning itself as a trusted and authoritative provider in the UK education sector. The website offers comprehensive resources, past papers, and support for both students and educators, reflecting a strong commitment to educational excellence and accessibility. Technically, the website employs a mature technology stack including jQuery, JW Player, Google Analytics, Google Tag Manager, and OneTrust for consent management. The site is well-structured with good mobile optimization, accessibility, and SEO practices. The presence of multiple third-party analytics and marketing tools indicates a data-driven approach to user engagement and experience enhancement. From a security perspective, the site enforces HTTPS and integrates consent management for privacy compliance. However, there is room for improvement in implementing additional HTTP security headers and updating legacy libraries such as jQuery. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture. Overall, the website is professional, trustworthy, and compliant with relevant privacy regulations. The lack of WHOIS data for the exact queried domain is due to it being a subdomain, which is typical for large organizations. The domain and website content align well, supporting the legitimacy of the entity. Strategic recommendations include enhancing security headers, updating legacy scripts, and continuous privacy compliance monitoring.

C

Cambridge Assessment English

cambridgeenglish.org

63

Cambridge Assessment English operates a professional and comprehensive website dedicated to English language learning and assessment. The organization offers a wide range of products and services including exams, teaching resources, and research, targeting learners, educators, and institutions globally. The website reflects a strong market position as a leading provider in the education sector, particularly in English language assessment. Technically, the site employs a mature technology stack with modern analytics and marketing tools, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and use of reCAPTCHA, though explicit security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR consent. Overall, the site demonstrates high professionalism and trustworthiness, supporting a large enterprise educational entity.

C

Cambridge University Press & Assessment

cambridgeassessment.org.uk

66

Cambridge University Press & Assessment operates the Cambridge Assessment Network and Research website, providing educational assessment qualifications, professional development courses, and research services. The organization holds a leading position in the global education sector, targeting educators, assessment professionals, and learners worldwide. Their business model focuses on delivering high-quality assessment products and professional training, supported by extensive research and innovation. The website demonstrates a mature technical infrastructure, utilizing modern JavaScript libraries such as jQuery and JWPlayer, integrated with Google Tag Manager, Google Analytics, Microsoft Clarity, and Crazy Egg for analytics and user behavior tracking. The site employs OneTrust for cookie consent management, reflecting a commitment to privacy compliance. The design is professional, mobile-optimized, and accessible, with clear navigation and rich content. Security posture is strong, with HTTPS enforced and multiple security headers present. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks publicly available security policies or incident response information, which could enhance transparency and trust. Privacy compliance is well addressed through cookie banners and a comprehensive privacy policy. Overall, the website is trustworthy, professionally maintained, and aligned with the organization's educational mission. Strategic recommendations include publishing explicit security and incident response policies, enhancing vulnerability disclosure transparency, and maintaining up-to-date third-party libraries to sustain security and compliance.

The website www.kaiserslautern.de is the official digital presence of the city of Kaiserslautern, Germany. It serves as a comprehensive portal for residents, visitors, and businesses, offering extensive information on municipal services, social programs, cultural events, tourism, education, and urban planning. The site is well-structured with clear navigation and multilingual support, reflecting a mature digital infrastructure typical of a large municipal government entity. Technically, the site is built on the Imperia CMS platform and leverages established JavaScript libraries such as jQuery, Leaflet for mapping, FontAwesome for icons, and AOS for animations. The hosting is managed via DomainControl nameservers, a common registrar service. The website demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the site employs HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not fully detailed, the site shows no signs of exposed sensitive data or vulnerable libraries. Analytics are handled via Piwik (Matomo), indicating a privacy-conscious approach to user tracking. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement. Overall, the website presents a trustworthy and professional government portal with solid content quality and technical implementation. Strategic recommendations include enhancing security transparency, updating legacy libraries, and publishing formal security and incident response policies to strengthen compliance and user trust.

울

울산 HD FC

uhdfc.com

54

Ulsan HD FC operates a professional football club website primarily targeting football fans and community members in South Korea. The site offers comprehensive club information, player rosters, match schedules, news updates, ticketing options, and merchandise shopping. The website is well-branded with consistent use of official logos and sponsorship from Hyundai group companies, indicating a medium-sized sports organization with a solid market presence. Technically, the site uses legacy JavaScript libraries such as jQuery 1.11.3 and integrates Google Analytics and Tag Manager for user tracking. While the site is mobile-optimized and provides good user experience, it lacks visible privacy and cookie policies, which impacts compliance and trust. Security-wise, the absence of security headers and use of outdated libraries present vulnerabilities. The WHOIS data is missing or inaccessible, which raises concerns about domain registration transparency despite the active and professional website content. Overall, the site is functional and content-rich but requires improvements in security, privacy compliance, and domain registration transparency to enhance trust and reduce risk.

B

b-creative products s.r.o.

b-creative.cz

58

b-creative products s.r.o. operates an e-commerce website specializing in therapeutic and lecturing aids, primarily offering various types of cards for professionals and customers in the Czech Republic. The company positions itself as a niche retailer with a focused product line and provides additional services such as courses related to their products. The website is built on the Shoptet e-commerce platform, leveraging standard web technologies including jQuery and Facebook SDK for marketing and tracking purposes. The site is accessible, mobile-optimized, and includes essential business and privacy information, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and CSRF protections in place, but lacks advanced security headers and explicit incident response policies. Overall, the website presents a trustworthy and professional front for a small retail business, though improvements in security and technical optimization could enhance its posture and user experience.

M

MICRONIX,spol. s r.o.

micronix.cz

59

MICRONIX,spol. s r.o. operates a professional e-commerce website focused on the sale of measuring and testing instruments, security systems, batteries, and photovoltaic systems primarily targeting the Czech market and neighboring countries. The company emphasizes its 30+ years of experience, direct import and distribution capabilities, and own service and calibration center, positioning itself as a reliable and established player in the energy and technology retail sector. The website supports multiple languages and provides a comprehensive product catalog with detailed availability and pricing information. Technically, the website is built on the Shoptet e-commerce platform, utilizing modern marketing and analytics tools such as Google Tag Manager, Google Analytics 4, and Facebook SDK. The site is mobile-optimized with good navigation and SEO practices. Security posture is solid with HTTPS enforced and CSRF protections in place, though some security headers are missing and the jQuery version is outdated, which could pose risks. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive GDPR privacy policy. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and trustworthiness, warranting further verification. No explicit security or incident response policies are published on the site. Overall, the website presents a professional and trustworthy front for a medium-sized business in the energy and technology retail sector, with room for improvement in security hardening and domain registration transparency.

F

FUJIFOTO.CZ

fujifoto.cz

55

FUJIFOTO.CZ operates as a specialized retail e-commerce platform focused on Fujifilm photographic equipment and accessories, serving primarily the Czech Republic market. The website offers a comprehensive catalog including Fujifilm X and GFX series cameras, Instax products, lenses, photo accessories, rental services, and photo printing. The business targets photography enthusiasts and professionals seeking specialized Fujifilm products. The market position is niche with a clear focus on Fujifilm brand products, supported by a well-structured online presence and customer engagement features such as reviews and contact options. Technically, the website is built on the Shoptet e-commerce platform, utilizing JavaScript libraries including jQuery, Google Analytics, Google Tag Manager, and Facebook SDK for marketing and analytics. The site is mobile-optimized with good navigation and SEO practices. Security posture is solid with HTTPS enforced and secure login forms, though some security headers are not explicitly detected and the use of an outdated jQuery version poses a potential risk. Privacy compliance is addressed with a clear privacy policy, cookie consent banner, and GDPR adherence. Overall, the website presents a professional and trustworthy front for its business operations. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts the overall trust score. No WAF or blocking mechanisms were detected, allowing full content accessibility and analysis. Recommendations include updating JavaScript libraries, implementing additional security headers, and verifying domain registration details to enhance trust and security posture.

P

Polsko-Amerykańska Fundacja Wolności

pafw.pl

56

Polsko-Amerykańska Fundacja Wolności (PAFW) is a well-established non-profit organization founded in 2000, focused on equalizing educational opportunities, supporting local community development, and sharing Polish transformation experiences internationally. The foundation operates numerous grant programs, scholarships, training, and study visits primarily targeting schools, teachers, NGOs, local leaders, and youth in Poland and Eastern Europe. The website reflects a mature digital presence with detailed program descriptions and multiple partner organizations, indicating a strong market position in the non-profit educational sector. Technically, the website is built on WordPress and employs a range of JavaScript libraries including jQuery, jCarousel, and Google Analytics for tracking. The site is mobile-optimized and uses HTTPS with DNSSEC enabled, contributing to a solid security baseline. However, some outdated libraries and missing security headers suggest room for improvement. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Security posture is generally good with encrypted connections and DNSSEC, but the absence of explicit security policies and incident response contacts limits transparency. No vulnerabilities or malicious content were detected. Overall, the site is trustworthy and professionally maintained, serving its non-profit mission effectively. Strategic recommendations include enhancing security headers, updating JavaScript libraries, implementing cookie consent for GDPR compliance, and publishing clear security and incident response policies to strengthen trust and compliance.

L

LOKNI-SHOP

lokni-shop.cz

57

LOKNI-SHOP is a Czech Republic based e-commerce retailer specializing in sustainable water filtration systems and reusable bottles. The company offers advanced home water filtration products featuring UVC LED technology and a variety of bottle accessories. Their market position is niche, targeting environmentally conscious households and small offices. The website is built on the Shoptet platform, leveraging modern web technologies and standard tracking tools such as Google Analytics and Facebook SDK. Security posture is good with HTTPS, CSRF protection, and cookie consent mechanisms, though some security headers and policies could be improved. The absence of WHOIS data reduces domain trustworthiness, but the presence of certifications and detailed product information supports legitimacy. Overall, the website is professional, user-friendly, and compliant with GDPR requirements.

F

Freedive Praha

freedivepraha.cz

54

Freedive Praha is a specialized small business based in the Czech Republic offering freediving courses, training sessions, expeditions, and equipment sales. The website is professionally designed using the Shoptet e-commerce platform, featuring rich content, customer reviews, and clear navigation optimized for desktop and mobile users. The technical infrastructure includes modern tracking and marketing tools such as Google Analytics, Facebook SDK, and Google Tag Manager, supporting moderate user tracking with GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no exposed sensitive data, though the absence of security headers and public WHOIS data suggests areas for improvement. Overall, the website presents a trustworthy and professional online presence for a niche sports education and recreational business.

F

FARMASYRY.CZ

farmasyry.cz

50

FARMASYRY.CZ is a Czech-based online retailer specializing in cheeses, dairy products, meats, beverages, and gourmet food items. The website targets consumers interested in specialty food products within the Czech Republic, operating on the Shoptet e-commerce platform. The business model focuses on direct online sales with clear product categorization and a user-friendly shopping experience. The market position is that of a niche regional retailer with a small business size profile. Technically, the website employs a modern albeit somewhat dated technology stack including jQuery and the Shoptet platform. The site is mobile optimized and includes basic SEO and accessibility features. Performance is moderate with room for improvement. Security measures include HTTPS and CSRF protection on forms, but lack of security headers and absence of privacy and cookie policies indicate compliance and security gaps. The security posture is moderate with no critical vulnerabilities detected in the provided data. However, the absence of WHOIS data and privacy policies reduces trust and compliance standing. Contact information is clearly presented, enhancing business credibility. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and verification of domain registration details to strengthen trust and regulatory adherence.

P

Pivo Zlosin

pivozlosin.cz

50

Pivovar Zlosin is a small family-owned craft brewery based in Velké Losiny, Czech Republic, established in 2016. The company leverages a rich brewing tradition dating back over 100 years and focuses on producing high-quality, locally sourced, and ecologically sustainable beers. Their business model centers on direct-to-consumer e-commerce sales of bottled beers and branded merchandise, targeting mature customers who appreciate artisanal products from the Jeseníky region. The website is professionally designed, mobile-optimized, and provides clear navigation and product information, supporting a positive user experience. Technically, the site is built on the Shoptet e-commerce platform, utilizing jQuery, Google Analytics 4, Google Tag Manager, and Facebook SDK for marketing and analytics. The site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, the absence of security headers and outdated jQuery version present potential security risks. The WHOIS data for the domain is unavailable, which reduces trust in domain legitimacy, though the website content and business information appear credible. Security posture is moderate with good SSL configuration and secure form handling, but lacks explicit security policies and incident response contacts. Privacy compliance is basic but present, with privacy and cookie policies accessible. Overall, the site is safe for mature audiences, with an age verification prompt due to alcohol sales. Strategic improvements in security headers, updated libraries, and domain registration transparency are recommended to enhance trust and compliance.

B

BUSHCRAFTshop.cz

bushcraftshop.cz

54

BUSHCRAFTshop.cz is a Czech Republic-based e-commerce retailer specializing in bushcraft, survival, and outdoor equipment. The website offers a wide range of products including knives, tools, outdoor clothing, backpacks, and cooking accessories tailored for outdoor enthusiasts and survival hobbyists. The business targets a niche market with a focus on quality and practical gear for life in nature. Technically, the website is built on the Shoptet e-commerce platform and integrates multiple modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, Hotjar, and Facebook SDK. The site uses HTTPS and implements cookie consent mechanisms, reflecting a moderate level of digital maturity and privacy awareness. Security posture is generally good with secure forms and no exposed sensitive data, though some security headers are not explicitly confirmed. The absence of WHOIS data limits domain trust assessment, but the website content and technical setup suggest a legitimate and professional operation. Privacy policies and terms of service are not clearly found, indicating room for compliance improvement.

N

Národní knihovna ČR

caslin.cz

49

The website www.caslin.cz serves as the portal for the Union Catalogue of the Czech Republic, a project managed by the National Library of the Czech Republic. It aggregates bibliographic data from cooperating Czech libraries and institutions, offering approximately 7.6 million records including monographs, serials, and articles. The site targets library users, researchers, and public institutions seeking bibliographic information. The business model is a public service initiative, positioning itself as a key national resource in the Czech government and non-profit sector. Technically, the site employs legacy technologies such as jQuery 1.11.3 and integrates Google Analytics and FontAwesome for UI and tracking. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. The lack of modern frameworks or CMS indicates a relatively simple technical infrastructure. From a security perspective, the site uses HTTPS for external resources but lacks visible security headers and uses an outdated jQuery version, which could expose it to vulnerabilities. No sensitive data exposure or critical security flaws were detected, but improvements are recommended in updating libraries and implementing security headers. Privacy compliance is minimal, with a privacy statement present but no cookie consent mechanism. Overall, the site is trustworthy and serves a legitimate government function, but the absence of WHOIS data and some technical shortcomings reduce its security and compliance posture. Strategic improvements in security practices and privacy compliance would enhance its risk profile and user trust.

T

techler.sk

techler.sk

56

Techler.sk operates as a specialized e-commerce platform serving the industrial and manufacturing sectors in Slovakia. The company offers a broad range of products including abrasive materials, oil separators, lubrication technology, and hose systems, targeting businesses involved in production, servicing, and project implementation. The website demonstrates a solid market position as a niche supplier with a clear focus on industrial consumables and equipment. The platform is built on the Shoptet e-commerce system, integrating common third-party tools such as Google Analytics and Facebook SDK for marketing and analytics purposes. The site is well-structured, mobile-optimized, and provides clear navigation and professional content presentation. Security-wise, the website enforces HTTPS and includes cookie consent mechanisms, though there is room for improvement in security headers and updating legacy libraries like jQuery. Overall, the site is accessible without WAF or blocking mechanisms, indicating a mature and stable digital presence.

E

ELMIT - Elektroinštalačný materiál, svietidlá

elmit.sk

55

ELMIT is a Slovakian company specializing in the sale of electrical installation materials and lighting products through both an e-commerce platform and a physical retail store. The website presents a professional and well-structured online presence targeting electricians, contractors, and retail customers seeking quality electrical components. The business operates primarily in the energy sector with a medium-sized market presence in Slovakia. Technically, the website leverages modern JavaScript frameworks such as Vue.js, integrates with multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and Bing Ads, and is built on the Shoptet e-commerce platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

P

Pelhřimák Shop

pelhrimakshop.cz

53

Pelhřimák Shop is a small Czech e-commerce retailer specializing in local and promotional products related to the Pelhřimov region, including books, souvenirs, and gift items. The website is professionally designed with good navigation and mobile optimization, targeting local customers and tourists interested in Pelhřimov. The business model focuses on online sales of niche regional merchandise, supported by clear contact information and social media presence. Technically, the site is built on the Shoptet e-commerce platform, using jQuery and Facebook Pixel for tracking. The site is served over HTTPS with CSRF protection on forms, but lacks some modern security headers and uses an outdated jQuery version, which could pose security risks. Performance is moderate, with good SEO and accessibility features. Security posture is generally good with HTTPS and CSRF tokens, but could be improved by adding security headers and updating libraries. Privacy compliance is basic but includes cookie and privacy policies consistent with GDPR. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact details suggest a legitimate business. Overall, the site presents a low to moderate risk profile with room for security and compliance enhancements. Strategic recommendations include improving security headers, updating JavaScript libraries, and enhancing transparency around security policies.

Š

Šachové zboží

sachovezbozi.cz

56

Šachové zboží is a Czech Republic-based specialized e-commerce retailer focusing on chess products including chess sets, boards, clocks, books, and related merchandise. The website presents a professional and well-structured online store with a broad product catalog targeting chess enthusiasts, clubs, schools, and gift buyers. The business model is retail e-commerce with a niche focus, supported by customer trust signals such as product reviews and free shipping offers. Technically, the site is built on the Shoptet platform, utilizing common web technologies and multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and TikTok Pixel. The site is served over HTTPS with standard security practices, though it lacks some advanced security headers and uses an outdated jQuery version, which could be improved. Privacy compliance is addressed with cookie consent mechanisms and privacy/terms pages in Czech. No WHOIS data is available, which reduces domain trustworthiness and should be investigated further. Overall, the site is safe, professional, and well-optimized for its target market.

L

LIMZ Solutions GmbH

limz.de

56

LIMZ Solutions GmbH is a German-based digital agency founded in 2015, specializing in communication and digital transformation services. The company leverages over 10 years of agency experience to deliver effective communication and digital solutions tailored for business success. Positioned as a professional and established player in the technology sector, LIMZ targets businesses seeking comprehensive digital and communication services. The website reflects a mature digital infrastructure with a custom CMS platform, modular design, and good mobile optimization. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security policy and incident response contacts. The use of an outdated jQuery version suggests a need for modernization to mitigate potential vulnerabilities. Overall, LIMZ presents a trustworthy and professional online presence with strong business credibility and compliance with GDPR.

L

LIMZ Solutions GmbH

limz.com

55

LIMZ Solutions GmbH is a German-based digital agency founded in 2015, specializing in communication and digital solutions for business clients. The company positions itself as an experienced provider with over 10 years in the agency business, offering effective communication and digital services to support client success. Their market presence is medium-sized with a focus on technology-driven solutions. Technically, the website is built on a custom LIMZ CMS platform, leveraging jQuery and Google Analytics, hosted on German servers via Goneo. The site is well-structured, mobile-optimized, and uses modern web practices including structured data for SEO and accessibility. Security-wise, the site enforces HTTPS and cookie consent with opt-in, but lacks explicit security policies and some HTTP security headers. Overall, the security posture is good but could be improved by updating libraries and adding security headers. The website is professional, trustworthy, and compliant with GDPR, making it suitable for business clients seeking digital agency services.

E

ELEVEN sportswear

eleven-sportswear.cz

57

ELEVEN sportswear is a Czech-based manufacturer and retailer specializing in sportswear products primarily for cyclists and runners. The company operates an official e-commerce platform offering a wide range of products including clothing for men, women, and children, as well as accessories such as caps, gloves, and socks. The website is professionally designed, supports multiple languages (Czech, English, German), and provides clear navigation and product categorization. The business model focuses on direct online sales complemented by wholesale opportunities. The company maintains an active social media presence and integrates standard marketing and analytics tools to support its digital operations. Technically, the website is built on the Shoptet e-commerce platform, leveraging common web technologies such as JavaScript, jQuery, Google Tag Manager, and Facebook SDK. The site is served over HTTPS with a good SSL configuration and includes cookie consent mechanisms compliant with GDPR. Performance and mobile optimization are adequate, though some accessibility features could be improved. The site uses tracking pixels for marketing and analytics but respects user consent choices. From a security perspective, the website enforces HTTPS and includes CSRF protection on login forms. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, which could be enhanced. No vulnerabilities or exposed sensitive data were found in the analysis. The absence of WHOIS data limits domain trust assessment, but the website content and business presence suggest legitimacy. Overall, ELEVEN sportswear presents a trustworthy and professional online presence with a solid business focus on sportswear retail. Strategic improvements in security headers and transparency around security policies could further enhance trust and compliance.

E

EquiRocks

equirocks.cz

56

EquiRocks is a Czech Republic-based e-commerce retailer specializing in equestrian apparel, equipment, and accessories. The website offers a broad range of products from leading brands and targets equestrian enthusiasts and riders. The business model focuses on online retail with additional community engagement through a private club and expert customer support. The site is professionally designed with clear navigation and good content quality, supporting a positive user experience. Technically, the site is built on the Shoptet platform, leveraging common web technologies and analytics tools such as Google Analytics and Hotjar. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data suggests domain privacy protection, which is common for small businesses but reduces transparency. Overall, the site is safe, trustworthy, and compliant with GDPR requirements.

Nutrihorse.cz is a Czech website operated by CANVIT s.r.o., specializing in the production and sale of horse feed, vitamins, and supplements. The company targets horse owners involved in breeding, sport, and recreational riding, offering high-quality products developed with modern technology and expert consultation. The website reflects a small but established business with a market presence since 2010 and partnerships in the Czech equestrian sports community. Technically, the site uses standard web technologies including Bootstrap and jQuery, but with somewhat outdated versions. The site is accessible and provides a good user experience with clear navigation and relevant content, although mobile optimization and accessibility are basic. Security posture is moderate but lacks HTTPS enforcement and security headers, and no privacy policy or terms of service are present. Contact information is limited to a physical address, with no emails or phone numbers explicitly provided. Cookie consent is implemented, indicating some attention to privacy compliance. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy measures.

S

Sedla by Bruno

sedlabybruno.cz

57

Sedla by Bruno is a specialized e-commerce business based in the Czech Republic, focusing on premium equestrian saddles, accessories, and leather care products. The company emphasizes customization and quality, targeting horse riders and enthusiasts seeking tailored solutions. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, enhancing user trust and engagement. Technically, the site leverages the Shoptet e-commerce platform with standard web technologies including jQuery and Google Fonts. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though explicit security headers and incident response policies are absent. The lack of WHOIS data for the domain is a notable risk factor, limiting full trust assessment. Overall, the site presents a credible and professional online presence for a niche market.

T

TGO Besitz GmbH & Co. KG

tgo-online.de

57

TGO Besitz GmbH & Co. KG operates a technology and startup center in Oldenburg, Germany, providing office spaces, coworking, seminars, and networking opportunities tailored for startups and technology companies. The website reflects a solid regional market position as a hub for innovation and business development. Technically, the site uses the Limz CMS framework with jQuery and integrates Google Analytics with a GDPR-compliant cookie consent mechanism. The site is well-structured, mobile-optimized, and professionally designed, supporting a positive user experience. Security posture is good with HTTPS enforced and privacy policies in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy, business-focused, and safe for general audiences.

E

EquiSoul s.r.o.

equisoul.cz

51

EquiSoul s.r.o. operates an e-commerce website specializing in equestrian clothing and accessories, primarily targeting customers in the Czech Republic. The company emphasizes manufacturing 100% Czech products and maintains a professional online presence with clear branding and customer engagement through social media and a customer club. The website is built on the Shoptet platform, leveraging standard e-commerce technologies and multiple analytics tools for marketing and user behavior tracking. Privacy and cookie policies are well implemented, reflecting GDPR compliance. Security posture is generally good with HTTPS and CSRF protections, though improvements are recommended in security headers and updating legacy libraries. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear credible and professional. Overall, the site presents a trustworthy and user-friendly shopping experience for its niche market.

V

Verein Technologie-Centren Niedersachsen e.V.

vtn.de

55

The Verein Technologie-Centren Niedersachsen e.V. (VTN) is a well-established non-profit association founded in 1997, dedicated to networking and supporting technology centers across Niedersachsen, Germany. The organization acts as a regional economic promoter by managing projects and initiatives on behalf of the state, fostering innovation and startup growth. The website reflects this mission with clear, professional content targeting technology centers, startups, and regional stakeholders. Technically, the website is built on the limz CMS platform, utilizing jQuery and custom frameworks. While the technology stack is somewhat dated, the site is functional, mobile-optimized, and SEO-friendly. Security is adequate with HTTPS enforced and cookie consent implemented, though some security headers are missing and the jQuery version is outdated. The security posture is moderate; no critical vulnerabilities or exposed sensitive data were found, but improvements are recommended in updating libraries and enhancing HTTP security headers. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy and explicit cookie consent mechanisms. Overall, the website is trustworthy, professional, and aligned with the organization's mission. The domain registration data is consistent and legitimate, supporting the site's credibility. Strategic recommendations include modernizing the tech stack, improving security headers, and adding explicit security and incident response policies to enhance trust and compliance.

NEWIN is a non-profit network association representing economic development agencies across Lower Saxony, Germany. The organization facilitates communication, coordination, and knowledge exchange among regional economic promoters and collaborates closely with state ministries and funding bodies. The website is professionally designed using TYPO3 CMS and provides comprehensive information about events, workshops, and organizational structure. Technically, the site uses modern web technologies and offers good mobile optimization and accessibility. Security posture is adequate with HTTPS enforced and secure forms, though explicit security headers and policies could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website content and external links indicate a legitimate and established organization. Overall, the site is trustworthy and well-maintained, serving its target audience effectively.

U

Unibind/Peleman

unibindshop.cz

55

Unibind/Peleman operates a professional e-commerce website specializing in binding machines, document covers, laminators, and related products primarily targeting businesses and professionals in the Czech Republic. The website is built on the Shoptet platform and integrates common web technologies including jQuery, Google Fonts, Google Analytics, and Facebook SDK. The site demonstrates good content quality, clear navigation, and mobile optimization, supporting a positive user experience. Privacy and cookie policies are present and GDPR compliant, with a functional cookie consent mechanism. However, WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency and trustworthiness. Security posture is generally good with HTTPS enforced and CSRF protections in place, but lacks published security policies and security headers. Overall, the website is professional and trustworthy from a business and content perspective but would benefit from improved domain registration transparency and enhanced security disclosures.

T

TENTino.cz e-shop

tentino.cz

59

TENTino.cz is a Czech Republic based e-commerce business specializing in the manufacture and sale of professional party tents, folding tables, chairs, and tablecloths. The website targets customers seeking durable and versatile event equipment, positioning itself as a specialized provider with a broad selection of sizes and colors. The platform is built on the Shoptet e-commerce system and integrates multiple modern analytics and marketing technologies, including Google Analytics, Microsoft Clarity, and Facebook Pixel, with a consent management mechanism in place. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and contact information are lacking. The absence of publicly available WHOIS data suggests privacy protection, which is typical for small businesses but slightly impacts trust. Overall, the site presents a professional and trustworthy e-commerce presence with room for improvement in transparency and privacy documentation.

P

Požární ochrana Perspekta

perspekta.cz

57

Požární ochrana Perspekta is a Czech Republic based e-commerce retailer specializing in fire protection products and safety equipment. The website offers a comprehensive catalog of products including fire hoses, extinguishers, protective clothing, breathing apparatus, and related accessories targeting fire departments, rescue services, and safety professionals. The business operates primarily online using the Shoptet platform and serves a niche market focused on fire safety and protection. The site is professionally designed with clear navigation and product categorization, supporting a positive user experience.

H

House of trichomes

houseoftrichomes.cz

54

House of Trichomes is a Czech Republic-based e-commerce retailer specializing in CBD and cannabis-related products, including oils, flowers, seeds, and vapes. The company emphasizes certified, organic, and legal cannabis products, targeting mature consumers interested in health and wellness. The website is professionally designed, mobile-optimized, and offers multilingual and multi-currency support, primarily serving the Czech and European markets. Technically, the site runs on the Shoptet e-commerce platform, utilizing JavaScript, jQuery, Google Analytics, and Facebook SDK for tracking and marketing. Security posture is moderate with HTTPS enforced and cookie consent implemented, but the use of an outdated jQuery version and missing security headers present potential vulnerabilities. WHOIS data is unavailable, which limits domain trust verification. Overall, the site is functional, compliant with GDPR, and trustworthy from a business perspective, but improvements in security and domain transparency are recommended.

U

UNIBIND Czech Republic s. r. o.

unibindshop.sk

54

UNIBIND Czech Republic s. r. o. operates the website unibindshop.sk, a professional e-commerce platform specializing in binding machines, document covers, laminating equipment, and related products. The company targets business customers and professionals seeking high-quality document presentation solutions in Slovakia and the Czech Republic. The website presents a well-structured product catalog with detailed descriptions and pricing, supported by clear contact information and legal compliance pages. Technically, the site is built on the Shoptet e-commerce platform, utilizing jQuery and standard marketing scripts such as Google Analytics and Facebook SDK. The site is mobile-optimized and demonstrates good SEO and accessibility basics. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers are missing and the jQuery version is outdated. Privacy compliance is evident through cookie consent mechanisms and GDPR-aligned privacy policies. Overall, the domain registration data aligns with the business identity, supporting legitimacy and trustworthiness.

A

An.ywhere

an-ywhere.cz

57

An.ywhere is a Czech Republic-based small retail e-commerce business specializing in functional and design-oriented sports accessories, primarily headbands for running, hiking, and skialpinism. The website presents a professional and consistent brand image with clear product offerings and a focus on sports enthusiasts. The business model is direct online sales with options for custom production. The company maintains active social media channels and provides clear contact information, enhancing customer trust. Technically, the website is built on the Shoptet e-commerce platform, utilizing common web technologies such as jQuery, Google Analytics, Google Tag Manager, and Facebook SDK for marketing and analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security practices include HTTPS enforcement and CSRF protection on forms, though some security headers are not explicitly confirmed. Security posture is generally good with no visible vulnerabilities or exposed sensitive data. However, the WHOIS data is missing, which reduces domain trustworthiness and raises questions about domain registration legitimacy. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies and consent mechanisms. Overall, the website is functional, professional, and trustworthy from a user perspective but would benefit from improved transparency in domain registration and enhanced security documentation to strengthen its security posture and business credibility.

P

Profigrass s.r.o.

profigrass.cz

56

Profigrass s.r.o. is a Czech-based company specializing in the retail and service of irrigation and garden equipment, established in 1996. The company represents the American brand Toro in the Czech and Slovak markets, leveraging extensive experience in sales, service, and marketing. Their website serves both B2B and B2C customers, offering a broad range of products including control units, valves, pumps, and accessories for irrigation systems. The company targets private gardens, commercial parks, sports fields, and agricultural sectors. Technically, the website is built on the Shoptet e-commerce platform, utilizing standard web technologies and tracking tools such as Google Analytics and Microsoft Clarity. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers and updated libraries are recommended. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site demonstrates a solid digital presence with room for security and compliance enhancements.