Security Directory

Z

Zámek Mitrowicz

zamekmitrowicz.cz

60

Zámek Mitrowicz is a historic castle venue located in the Czech Republic, offering hospitality services including weddings, accommodation, corporate events, and cultural programs. The website presents a professional and consistent brand image with clear information about the castle's unique features and services. The technical infrastructure employs common web technologies such as jQuery, Bootstrap, and Font Awesome, providing a moderate performance and good mobile optimization. Security posture is moderate with cookie consent and privacy policy in place, but lacks visible security headers and incident response information. The absence of WHOIS data reduces domain trustworthiness, though the website content and partner affiliations support legitimacy. Overall, the site is functional and suitable for its hospitality business purpose.

I

i60 Publishers, s.r.o.

i60.cz

51

i60.cz is a prominent Czech media portal dedicated to active seniors, offering a wide range of content including articles, community features such as chat and dating, photo contests, quizzes, and event tips. The portal positions itself as the largest platform for seniors in the Czech Republic, supported by a medium-sized company, i60 Publishers, s.r.o. The website demonstrates a mature content strategy with consistent branding and a clear target audience. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Adsense, and analytics tools like Gemius and Google Tag Manager, ensuring a responsive and engaging user experience. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though there is room for improvement in implementing security headers and cookie consent mechanisms. The absence of WHOIS data is a notable gap but does not significantly detract from the site's credibility given the presence of clear contact information and business details. Overall, i60.cz presents a trustworthy and professionally managed online presence tailored to its niche audience.

A

ALTIMA LZ s.r.o.

altima.cz

47

ALTIMA LZ s.r.o. operates the website altima.cz, specializing in the retail of reflective safety products such as bands, vests, and patches designed to enhance visibility and safety for pedestrians, cyclists, children, and pets. The company holds a strong market position in the Czech Republic, emphasizing product quality and compliance with European safety standards. The website is well-structured, mobile-optimized, and integrates modern technologies including jQuery, Bootstrap, Google Analytics, and Facebook SDK, supported by a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. The lack of WHOIS data for the domain reduces trustworthiness and should be investigated further. Overall, the site presents a professional and trustworthy e-commerce platform with room for improvement in transparency and security documentation.

H

Hotel Kraví Hora

kravihora.cz

49

Hotel Kraví Hora is a small hospitality business located in Bořetice, Czech Republic, specializing in accommodation, dining, conference hosting, wellness, and wine tourism services. The website presents a professional and consistent brand image targeting corporate teams, sports clubs, couples, families, and groups interested in wine and leisure experiences in the South Moravian region. The business leverages partnerships with local wine producers and regional tourism organizations to enhance its market position. Technically, the website uses a custom CMS by ActiveMedia and incorporates modern JavaScript libraries such as jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Cookie consent and privacy policies are implemented in compliance with GDPR, reflecting a good level of digital maturity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms but lacks publicly available security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to privacy protection limits transparency but is typical for small hospitality businesses. Overall, the website is trustworthy and professionally maintained, with recommendations to enhance security posture by publishing security policies, incident response information, and adding security headers. Continued monitoring of third-party scripts and compliance with privacy regulations is advised.

M

Restaurace, obědy, polední a denní menu v Praze 1 | Meníčka.cz

menicka.cz

56

Menicka.cz is an online platform specializing in providing daily and lunch menus, restaurant event promotions, job offers in hospitality, and discount deals primarily focused on Prague 1 and other Czech cities. The website targets general consumers looking for dining options and hospitality job seekers. Technically, the site employs a variety of modern web technologies including Google Analytics, Microsoft Clarity, Google Maps API, and several JavaScript libraries to enhance user experience and track engagement. The security posture is adequate with HTTPS enforced and reCAPTCHA implemented on forms, but could benefit from additional security headers and updating legacy libraries. Privacy compliance is limited as no explicit privacy policy or terms of service were found, though a cookie policy with consent mechanism is present. The absence of WHOIS data reduces domain transparency and trustworthiness, but the website content and structure appear professional and legitimate. Overall, the site is functional and serves its niche well but should improve transparency and security practices to enhance trust and compliance.

R

Raab Computer s.r.o.

affc.cz

59

The Audit Family Friendly Community website serves as a national portal supporting municipalities and regional authorities in the Czech Republic to improve family living conditions through systematic audits. The site is operated by Raab Computer s.r.o., a small-sized entity focused on governmental and non-profit sectors. The website provides information about the audit program, regional partners, and news updates, targeting municipal officials and families. Technically, the site uses common JavaScript libraries such as jQuery, FontAwesome, and various UI plugins, delivering a moderate performance with good mobile optimization and basic accessibility features. Security posture is moderate with HTTPS implied but lacking explicit security headers and detailed security policies. Privacy and cookie policies are present with consent mechanisms, indicating GDPR awareness. However, the absence of WHOIS data reduces domain transparency and trustworthiness, although the website content and partner links suggest legitimate operation.

K

Krosapp s.r.o.

kroscloud.com

61

Kroscloud is a specialized web-based platform offering interactive 3D model viewing and hosting services, primarily targeting users who work with photogrammetry 3D scans and panoramic images. The platform supports advanced features such as multi-layer visualization, audio guides, multilingual interfaces, and protected content access, positioning itself as a niche SaaS provider in the 3D visualization technology sector. The website is professionally designed with clear navigation and good content relevance, supporting a positive user experience for its target audience. Technically, the site uses a modern technology stack including jQuery, Bootstrap, and various JavaScript libraries, with integration of Google Analytics and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and implements GDPR-compliant privacy and cookie policies with consent mechanisms. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though the absence of explicit security headers and incident response information suggests room for improvement. The lack of WHOIS data for the domain is a notable concern, as it reduces transparency and trust from a domain registration perspective, despite the professional appearance and functionality of the website. Overall, the site scores well in content quality, technical implementation, and privacy compliance, but domain registration opacity and minor security header gaps moderate the overall trust score.

D

Díky, že můžem

dikyzemuzem.cz

59

Díky, že můžem is a Czech non-profit organization dedicated to fostering respectful dialogue and civic engagement among citizens, especially targeting young people. Founded in 2014, it operates various year-round projects, educational programs, and discussions across the Czech Republic to promote societal cohesion and democratic participation. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content aligned with its mission. Technically, the site is built on WordPress with modern plugins and integrations such as Yoast SEO, Google Analytics, and OneSignal for push notifications, hosted via WEDOS and utilizing Cloudflare DNS services. Security posture is strong with HTTPS enforcement, standard security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a solid balance of content quality, technical implementation, and privacy compliance, supporting the organization's credibility and trustworthiness.

C

CITY-TOOLS, s.r.o.

citytools.cz

45

CITY-TOOLS, s.r.o. operates a professional outdoor advertising platform in the Czech Republic, offering Citylight, billboard, and adhesive foil advertising solutions. The company targets businesses and individuals seeking effective outdoor marketing channels. The website is well-structured, visually consistent, and provides clear contact information, supporting a positive market presence in the local advertising sector. Technical infrastructure leverages common web technologies such as jQuery, Bootstrap, and Google reCAPTCHA, indicating a moderate level of digital maturity. The site is mobile-optimized and includes cookie consent mechanisms, reflecting awareness of privacy compliance requirements. Security posture is generally good with HTTPS enforced and reCAPTCHA integration; however, the absence of security headers and incident response information suggests room for improvement. The lack of WHOIS data limits domain legitimacy verification, which could impact trust from a security perspective. Overall, the website is professional and functional, with moderate risk due to incomplete domain registration transparency.

E

EKO-KOM, a.s.

zodpovednafirma.cz

48

Zodpovědná firma is a Czech educational initiative focused on promoting responsible waste sorting and corporate social responsibility among companies. Organized by EKO-KOM, a.s., an authorized packaging company, it offers free educational materials, employee training, and certification to participating firms. The project has a solid market presence with over 259 companies involved, supported by recognized partners and a clear mission to improve environmental practices in workplaces. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses popular JavaScript libraries for enhanced user experience. It is mobile optimized and integrates multimedia content such as Vimeo videos and e-learning links. The site employs HTTPS and cookie consent mechanisms, reflecting a good level of digital maturity. From a security perspective, the site benefits from HTTPS and does not expose sensitive data. However, it lacks explicit security headers and published security policies or incident response plans, which could be improved. Privacy compliance is well addressed with GDPR-aligned privacy and cookie policies. No critical vulnerabilities or suspicious content were detected. Overall, the website represents a trustworthy, professional non-profit project with a clear environmental and educational focus. Strategic improvements in security policy transparency and technical security headers would enhance its posture further.

R

Raab Computer s.r.o.

affc-jmk.cz

59

The website www.affc-jmk.cz represents the Audit Family Friendly Community initiative focused on supporting municipalities in the Jihomoravský kraj region of the Czech Republic. The platform provides audit services aimed at improving family life conditions through systematic analysis and implementation of selected measures. The site is professionally designed, with clear navigation and relevant content primarily in Czech, targeting local government bodies and communities. Social media presence on Facebook, Twitter, and YouTube supports outreach and engagement. Technically, the website uses common web technologies such as jQuery, FontAwesome, Fancybox, Remodal, and BxSlider for UI components and interactivity. The site is mobile optimized with good SEO practices but lacks visible advanced security headers and analytics tools. Cookie consent is implemented, indicating attention to privacy compliance, though no explicit terms of service or incident response policies are present. From a security perspective, the site is accessible without WAF or blocking mechanisms detected. However, the absence of WHOIS data for the domain reduces transparency and trust slightly. No critical vulnerabilities or exposed sensitive data were found, but security headers and SSL configuration details are not visible in the provided data. Privacy policies and cookie usage are clearly stated, supporting GDPR compliance. Overall, the website presents a trustworthy and professional front for a regional government/non-profit audit initiative. The main risks relate to limited domain registration transparency and lack of explicit security policies. Strategic improvements in security headers, incident response information, and WHOIS transparency would enhance trust and compliance.

J

Jihomoravský kraj

jmk.cz

44

Jihomoravský kraj operates as the official regional government authority for the South Moravian Region in the Czech Republic. The website serves as a comprehensive information portal targeting citizens, businesses, municipalities, and non-profit organizations, offering news, public service information, grant details, and contact resources. The site is well-branded and consistent with government standards, reflecting a large, established public sector entity founded in 2006. Technically, the website is built on ASP.NET WebForms with a mix of modern JavaScript libraries such as jQuery, Fancybox, and SweetAlert2, alongside integrations for Facebook SDK and Google Tag Manager. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility and SEO features. Hosting details are not explicitly identified. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML. However, it lacks visible security headers like CSP or HSTS and does not publish a security policy or incident response contacts. Cookie consent mechanisms are absent, which is a compliance gap under GDPR. The domain WHOIS data is consistent and trustworthy, supporting the legitimacy of the site. Overall, the website presents a professional and trustworthy government portal with room for improvement in privacy compliance and security hardening. Strategic enhancements in security headers, cookie consent, and incident response transparency would strengthen its security posture and regulatory adherence.

B

Brno iD

brnoid.cz

54

Brno iD is a government-operated digital platform providing residents and visitors of Brno city with online access to a wide range of municipal services including public transport ticketing, waste tax payments, family vouchers, and cultural institution tickets. The platform serves a large user base exceeding 781,000 registered users, positioning it as the primary e-shop portal for city services in Brno. The website is professionally designed with consistent branding and clear navigation, supporting multiple service modules tailored to different public needs. Technically, the site leverages modern web technologies such as jQuery, Bootstrap, and Google reCAPTCHA, and is built on the PrestaShop CMS platform. HTTPS is enforced, ensuring secure communications. However, the absence of WHOIS registration data and lack of visible contact emails or phone numbers slightly reduce trust from a domain registration perspective. Privacy compliance is partially addressed with a comprehensive privacy policy available, but cookie consent mechanisms are missing. Security headers are not detected, indicating room for improvement in security hardening. Overall, the site is functional, secure, and trustworthy from a user perspective but would benefit from enhanced transparency and security practices.

J

JIZERSKÁ, obecně prospěšná společnost

jnlm.cz

49

The website www.jnlm.cz represents the Bedřichovský Night Light Marathon, a niche winter sports event organizer based in the Jizera Mountains, Czech Republic. The site provides event information, registration links, and live updates targeting winter sports enthusiasts, particularly cross-country skiers interested in night skiing. The business operates as a small regional event organizer with a clear focus on promoting and managing this annual marathon event. Technically, the website employs a modern front-end stack including jQuery, Bootstrap, Slick Carousel, and FancyBox, with Google Fonts and reCAPTCHA integration. The site is mobile optimized with a responsive design and includes cookie consent mechanisms compliant with GDPR. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected, but improvements in security headers and transparency are recommended. The absence of WHOIS data limits domain trust verification, though the website content and contact information appear legitimate. Overall, the site is professionally presented, trustworthy, and compliant with privacy regulations, but would benefit from enhanced security practices and domain registration transparency to improve its risk profile and trustworthiness.

T

Tým silniční bezpečnosti

nakolejensprilbou.cz

45

The website 'Na kole jen s přilbou' is a Czech Republic-based cycling safety awareness project managed by the Tým silniční bezpečnosti (Road Safety Team). It focuses on educating cyclists about the importance of helmet use and safe cycling practices through articles, news, downloadable materials, videos, and events. The project is supported by multiple government and safety organizations, indicating a strong partnership ecosystem and a credible market position within the transportation safety sector. The domain has been active since 2012, consistent with the project's maturity and content depth. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Slick Carousel, and Google Fonts, with Google Analytics and Facebook Pixel for tracking. The site is mobile optimized and uses HTTPS with Google reCAPTCHA for form security. However, it lacks explicit privacy and terms of service pages and does not display advanced security headers, which are areas for improvement. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent with granular categories. No critical vulnerabilities or WAF blocking were detected. The absence of a published privacy policy and terms of service, as well as missing explicit contact information, slightly reduce privacy compliance and business credibility scores. Overall, the website is a trustworthy, well-branded educational platform with good technical implementation and moderate security posture. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact channels for incident response to improve compliance and trust further.

Z

ZŠ Bratrství, příspěvková organizace

zsbrat.cz

49

ZŠ Bratrství, příspěvková organizace, is a regional primary school located in the Czech Republic, focusing on fostering creativity, logical thinking, and mutual understanding among students. The website serves as an information portal for students, parents, and the local community, providing updates on school events, educational programs, and community projects. The school positions itself as an inclusive educational institution serving the Podhostýnsko region. Technically, the website employs common web technologies such as jQuery, FontAwesome, and Google reCAPTCHA, with integrations for social media platforms like Facebook and YouTube. The site is mobile-optimized and includes a cookie consent mechanism, reflecting a basic level of privacy compliance. Security-wise, the site uses HTTPS and some best practices but lacks visible security headers and a published incident response policy. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness and suggesting the need for further verification of domain registration status. Overall, the website is professional, content-rich, and trustworthy from a user perspective but could improve in security transparency and domain legitimacy verification.

R

Raab Computer s.r.o.

affc-ok.cz

48

The website www.affc-ok.cz represents a regional government or non-profit initiative focused on the Audit Family Friendly Community program in the Olomoucký kraj region of the Czech Republic. It aims to support municipalities in improving living conditions for families through audits, certifications, and educational activities. The site is professionally designed with clear navigation and content relevant to its target audience of local government bodies and municipalities. Technically, it employs common JavaScript libraries such as jQuery, FontAwesome, bxSlider, and others to enhance user experience. However, no CMS or hosting provider information is discernible. Security posture is moderate with cookie consent implemented but lacking explicit security headers and no visible incident response or vulnerability disclosure policies. WHOIS data is unavailable, which reduces domain trustworthiness but the website content and design suggest legitimacy. Overall, the site is safe, non-adult, and well-targeted for its audience.

S

Studentská komora Rady vysokých škol

skrvs.cz

46

Studentská komora Rady vysokých škol (SK RVŠ) is a Czech national student representative organization focused on higher education advocacy, student support, and organizing educational events and awards. The website serves as an information hub for students, academic senates, and stakeholders in the Czech higher education sector. It maintains partnerships with official government and educational bodies, enhancing its credibility and influence. Technically, the site is built on WordPress using common plugins and libraries, with good SEO and mobile optimization but moderate performance. Security posture is adequate with HTTPS enforced but lacks advanced security headers and visible privacy compliance mechanisms. No WHOIS data is available, likely due to privacy protection, but the site appears legitimate and professionally maintained. Overall, the site is trustworthy and well-positioned within its niche but would benefit from improved privacy and security disclosures.

R

Rada pro výzkum, vývoj a inovace (RVVI)

vyzkum.cz

72

The website vyzkum.gov.cz serves as the official portal for the Czech government's research and development council (Rada pro výzkum, vývoj a inovace). It provides comprehensive and up-to-date information about research policies, news, council members, and strategic documents relevant to science and innovation in the Czech Republic. The site targets researchers, policymakers, and the general public interested in the national research landscape. Technically, the site is built on ASP.NET Web Forms with modern JavaScript libraries such as jQuery, Owl Carousel, and FancyBox, and integrates Cookiebot for GDPR-compliant cookie management. Google Analytics is used for traffic analysis. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers are not clearly present. The absence of WHOIS data limits domain legitimacy verification, but the official branding and content strongly support authenticity. Overall, the site is professional, accessible, and trustworthy, with room for improvement in security headers and contact transparency.

N

NETservis s.r.o.

webredakce.cz

44

Webredakce.cz is a Czech Republic-based technology company operated by NETservis s.r.o., offering a comprehensive content management system (CMS) designed for easy management of websites and e-shops. The platform emphasizes responsive design, multilingual support, and custom module development, targeting businesses and individuals seeking efficient web content management solutions. The company showcases reputable client references, indicating a solid market presence in the CMS domain. Technically, the website employs common web technologies including jQuery, Fancybox, Google Analytics, and Google Tag Manager, with a custom CMS backend. The site is mobile-optimized with responsive design and includes client-side form validation and CAPTCHA tokens to mitigate spam. However, the use of an older jQuery version and lack of explicit security headers suggest areas for technical improvement. From a security perspective, the site uses HTTPS and implements basic form security measures but lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance. The absence of WHOIS data for the domain raises concerns about domain legitimacy verification, impacting overall trustworthiness. No WAF or blocking mechanisms were detected, and the site content is safe and business-oriented. Overall, Webredakce.cz presents a professional and functional CMS offering with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and domain registration transparency are recommended to enhance trust and compliance.

S

SWAT - Strategie, Branding en Creatie. Merkenbureau.

swat.nl

45

SWAT is a Dutch branding and creative agency specializing in building, creating, and strengthening brands through strategic design, creative concepts, and thoughtful branding. The company targets businesses seeking impactful brand identities and communication materials. Their market position is that of a dedicated, passionate agency focused on delivering strong and distinctive brands. Technically, the website is built on WordPress using modern plugins and frameworks, with good SEO, accessibility, and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements. Recommendations include enhancing security headers, adding incident response information, and maintaining plugin security.

A

ARR - Agentura regionálního rozvoje, spol. s r.o.

crystalvalley.cz

48

Crystal Valley is a regional tourism and cultural heritage platform operated by ARR - Agentura regionálního rozvoje, spol. s r.o., focusing on promoting the glass and jewelry manufacturing traditions of northern Czech Republic. The website serves tourists and cultural enthusiasts by providing rich historical content, event calendars, and visitor information about glass production, museums, and artisan workshops. It holds a strong market position as a regional cultural tourism leader in the Liberec region. Technically, the site employs modern web technologies including jQuery, Bootstrap, Vue.js, and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious WHOIS patterns were found, and the domain registration aligns well with the business purpose and history. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

K

KosnarDesign.cz

kosnardesign.cz

47

KosnarDesign.cz is a small, established graphic design business based in the Czech Republic, specializing in web and logo design, branding, and responsive graphics for websites and e-shops. The website showcases a professional portfolio with multiple client case studies and testimonials, indicating a strong market position within the local design and digital services sector. The business targets web agencies and direct clients seeking high-quality visual identity and UX-focused design solutions. Technically, the site uses modern web fonts, JavaScript libraries like Fancybox, and Google Analytics for tracking, with responsive design optimized for mobile devices. However, no CMS or hosting provider details are evident, and performance is moderate.

A

Agentura regionálního rozvoje

1012plus.cz

50

1012plus.cz is a Czech regional online portal and electronic magazine focused on science, research, and innovation in the Liberecký kraj region. Operated by the Agentura regionálního rozvoje, it provides news, podcasts, interviews, and information about projects and events supporting regional development. The website is supported by EU and Czech governmental funding, indicating a strong institutional backing. The target audience includes researchers, students, companies, and the general public interested in regional innovation and technology. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, Facebook Pixel, LinkedIn Insight, and Microsoft Clarity for analytics and marketing. It is hosted by Active24, a Czech hosting provider, and employs HTTPS with reCAPTCHA for form security. The site implements GDPR-compliant cookie consent and privacy policies, though lacks explicit terms of service and security policy pages. Overall, the website demonstrates good content quality, professional design, and a consistent brand presence with strong trust indicators from institutional logos and social media presence.

X

XART s.r.o.

xart.cz

63

XART s.r.o. is a Czech digital agency specializing in web development, e-commerce solutions, online marketing, and advertising production. The company positions itself as a strong team delivering thoughtful web solutions and effective marketing that drives sales. Their website reflects a mature digital presence with comprehensive service offerings, client references, and certifications such as Google Partner and Heureka. Technically, the site uses modern tracking and analytics tools, including Google Tag Manager, Facebook Pixel, and Seznam tracking, integrated with a proprietary CMS (xartCMS). The site is mobile-optimized and provides a cookie consent mechanism aligned with GDPR requirements. Security posture is generally good with HTTPS enforced, though security headers are not explicitly detected in the provided data. WHOIS data is unavailable, which limits domain trust assessment, but the website content and business information indicate a legitimate and professional operation. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

V

Velké výzkumné infrastruktury ČR

vyzkumne-infrastruktury.cz

64

Velké výzkumné infrastruktury ČR is a government-supported platform providing unique research infrastructure services for science, research, and innovation in the Czech Republic. The website serves as an information hub for large research infrastructures, supported by the Ministry of Education, Youth and Sports of the Czech Republic (MŠMT). It targets research organizations, academic institutions, and innovative enterprises, offering access to advanced scientific facilities and resources. The site is professionally maintained with multilingual support and regularly updated content related to research projects, events, and international collaborations. Technically, the website is built on WordPress with common plugins for sliders, multilingual content, and RSS aggregation, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks some security headers and formal vulnerability disclosure mechanisms. Privacy and cookie policies are not explicitly found, indicating room for compliance improvement. WHOIS data is unavailable, which slightly reduces trustworthiness, but the website's affiliation with Czech government entities and research organizations supports its legitimacy. Overall, the site is a reliable resource for the Czech research community with moderate technical and security maturity.

M

MJM agro, a. s.

mjm.cz

68

MJM agro, a. s. is a Czech agricultural company established in 1997, specializing in precision agriculture systems such as Prefarm, along with a broad portfolio of agricultural products including crop protection agents, fertilizers, seeds, animal feed, and energy products. The company serves agricultural enterprises, farms, and small growers, positioning itself as a reliable partner in the agricultural sector. It is part of the Reticulum Holding group, indicating a stable corporate structure. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the website employs a moderate technology stack including jQuery, Bootstrap, and Cookiebot for cookie consent management. It uses Google Analytics and Seznam.cz retargeting for marketing and analytics purposes. The site is mobile responsive and has good SEO practices, although some accessibility features could be enhanced. Security-wise, HTTPS is enforced and reCAPTCHA is used for bot protection, but the absence of security headers and outdated JavaScript libraries suggest room for improvement. The security posture is solid but not exemplary, with no critical vulnerabilities detected in the visible content. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy policy documentation. However, the lack of WHOIS data for the domain reduces trust slightly, although the website content and business information appear legitimate and professional. Overall, MJM agro's website is a well-structured, professional platform that effectively supports its business objectives. Strategic improvements in security headers, updated libraries, and enhanced accessibility would further strengthen its digital maturity and trustworthiness.

D

Deutsches Institut für Urbane Transformation

diut.de

41

The Deutsches Institut für Urbane Transformation (DIUT) is an independent research and think tank affiliated with the EBZ Business School, focusing on urban transformation and innovative neighborhood development primarily in the Ruhr region and North Rhine-Westphalia, Germany. The institute serves as a collaborative platform connecting academia, municipalities, businesses, and policymakers to address social, economic, and ecological challenges in urban areas. The website presents professional content with a clear focus on its mission and services but lacks explicit privacy and security policies. Technically, the site is built on WordPress with modern plugins and analytics tools, offering good performance and mobile optimization. Security posture is adequate with HTTPS and cookie consent but could be improved by publishing formal security and incident response policies.

Vibes Vision is a small Czech-based creative agency specializing in personal brand building, creative audio-video content production, and custom web development services. The company targets individuals and businesses seeking to establish authentic and visually compelling brands. Their market position is niche, focusing on bespoke solutions and consulting services. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, GSAP, and other popular libraries, indicating a mature digital infrastructure. The site is mobile optimized and implements GDPR and cookie consent mechanisms, reflecting good privacy compliance. Security posture is strong with HTTPS enforced and a Content Security Policy header present, though additional security headers and incident response information could enhance their security maturity. Overall, the website is professional and trustworthy, but the lack of WHOIS data raises questions about domain registration legitimacy. Strategic recommendations include improving security headers, adding explicit contact information, and implementing a vulnerability disclosure policy.

A

Artlogic

artlogic.net

62

Artlogic is a well-established SaaS platform founded in 1997, specializing in providing comprehensive business management solutions tailored for galleries, artists, and collectors. The platform offers a suite of services including inventory management, sales CRM, marketing tools, websites, and payment processing, positioning itself as a key player in the art business software market with over 5,500 clients worldwide. The website reflects a professional and consistent brand image with excellent content quality and user experience, targeting art professionals and collectors globally. Technically, the website leverages a mature technology stack including jQuery, Google Analytics, Tag Manager, Facebook Pixel, and other marketing and tracking tools, hosted primarily on AWS infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a custom CMS (Artlogic CMS) underpinning its content management. Performance is moderate, with good use of modern web technologies and third-party integrations. From a security perspective, the site employs HTTPS with good SSL configuration, uses Google reCAPTCHA for form protection, and manages cookie consent effectively. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. DNSSEC is not enabled, which could enhance DNS security. No critical vulnerabilities or exposed sensitive data were detected. Overall, Artlogic presents a low-risk profile with strong business credibility and a solid technical foundation. Strategic recommendations include enabling DNSSEC, publishing clear security and privacy policies, and enhancing transparency around incident response and vulnerability disclosures to further strengthen trust and compliance.

A

Agri-precision

agri-precision.cz

45

Agri-precision is a Czech-based company specializing in precision agriculture technologies, including GPS navigation, monitoring systems, and automation solutions for agricultural machinery. The company positions itself as an authorized reseller and service provider for multiple well-known brands in the precision farming sector, targeting agricultural businesses primarily in the Czech Republic and Slovakia. Their website showcases a comprehensive product portfolio and emphasizes improving agricultural production efficiency through advanced technology. Technically, the website is built on the xartCMS platform and utilizes common JavaScript libraries such as jQuery and MooTools, along with embedded YouTube videos and Google Tag Manager for analytics and marketing. The site is moderately optimized for mobile devices and SEO, with a clear navigation structure and professional design. However, some accessibility features appear basic, and performance is moderate. From a security perspective, the site uses HTTPS and includes tracking and analytics scripts from Microsoft Clarity and Google. No explicit security headers were detected in the provided data, and there is no evidence of privacy or cookie policies, which indicates gaps in privacy compliance. The absence of WHOIS data limits the ability to fully verify domain legitimacy, although the website content and business presence appear professional and trustworthy. Overall, the website presents a solid business offering with good technical implementation but requires improvements in privacy compliance, security best practices, and domain registration transparency to enhance trust and security posture.

M

MJM agro, a. s.

prefarm.cz

44

MJM agro, a. s. operates the Prefarm precision agriculture system, providing advanced agricultural services such as soil sampling, remote sensing, yield mapping, and variable application equipment primarily targeting agronomists and farmers in the Czech Republic. The company has a solid market presence since 1997 and is part of Reticulum Holding, a reputable parent company. The website reflects a professional and consistent brand image with clear service offerings and partner affiliations. Technically, the site uses a modern but somewhat dated technology stack including Bootstrap and jQuery 1.11.3, with Google Analytics and reCAPTCHA integrated for analytics and security. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate; while HTTPS is implied, no explicit security headers were detected, and the use of an outdated jQuery version presents a potential risk. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy page in Czech language. However, WHOIS data is missing, which reduces domain trustworthiness and raises questions about domain registration transparency. Overall, the website is functional, professional, and trustworthy but could improve security and transparency aspects.

F

Fontlab Ltd, Inc.

fontlab.com

45

FontLab Ltd, Inc. is a specialized software company focused on providing professional font editing and conversion tools for Mac and Windows platforms. Their product suite includes FontLab 8, Fontographer, TypeTool, TransType, and FontLab Pad, catering to a wide range of users from beginners to advanced type designers. The company maintains a strong market position as an established provider in the typography and design software industry, offering educational discounts and comprehensive support channels. The website reflects a professional and consistent brand image with clear product information and pricing.

W

Wine Industry Network

wineindustryexpo.com

64

Wine Industry Network operates the Wine Industry Expo (WIN Expo), a major annual trade show and conference focused on the North Coast wine industry regions of California. Established in 2012, the event attracts over 3,000 wine professionals and nearly 300 exhibitors, positioning itself as the second largest wine industry show in North America. The business model centers on event organization, industry networking, education, and providing marketing and sponsorship opportunities to wine industry suppliers and professionals. The website reflects a mature digital presence with comprehensive event information, registration, and educational content targeting industry stakeholders. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI plugins, hosted behind Cloudflare DNS and CDN services. The site is mobile optimized with good SEO practices and uses tracking tools such as Google Tag Manager and Facebook Pixel for analytics and marketing. Performance is moderate with good design quality and user experience. From a security perspective, the site enforces HTTPS and domain registration includes multiple client-side prohibitions enhancing domain security. However, DNSSEC is not enabled, and there is no visible cookie consent mechanism or published security/incident response policies, indicating gaps in privacy compliance and security transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in privacy compliance, DNS security, and security policy publication would enhance its security posture and regulatory adherence.

M

Mykola Kovalenko Studio

mykolakovalenko.eu

53

Mykola Kovalenko Studio is a small creative design studio specializing in graphic design services such as posters, logos, brand identity, advertising, and packaging. The website serves primarily as a portfolio showcasing a wide range of projects with visual examples and categorization. The studio targets clients seeking professional graphic design and branding solutions. The business has been active since at least 2003, as indicated by copyright information. Technically, the website uses common JavaScript libraries including jQuery, FancyBox, Masonry, and LazyLoad to enhance user experience and image presentation. The site is moderately optimized for mobile devices and has a clear navigation structure. However, there is no evidence of a CMS or advanced frameworks. Performance is moderate with room for improvement in SEO and accessibility. From a security perspective, the website lacks visible security headers and privacy-related policies. HTTPS status is unknown from the provided data but is recommended. No forms or sensitive data collection points are present in the analyzed HTML, reducing immediate risk exposure. Social media links provide additional trust signals but no direct contact emails or phone numbers are listed on the main page. Overall, the website is a professional portfolio with moderate technical maturity and limited security and privacy compliance. Strategic improvements in security headers, privacy policies, and contact information would enhance trust and compliance.

A

AITRE

aitre.cc

60

AITRE is a technology-focused platform providing an all-in-one AI API gateway that aggregates multiple leading AI models such as OpenAI's GPT, Anthropic's Claude, Google's Gemini, Meta's LLaMA, Mistral AI, and Midjourney. The service targets developers and enterprises seeking simplified and cost-effective access to diverse AI models through a unified API interface. The platform emphasizes ease of use, low cost, and zero barriers to entry, supported by detailed documentation and recommended client software. Technically, the website employs modern JavaScript libraries and frameworks including jQuery, Swiper, GSAP, and others to deliver a responsive and visually appealing user experience. Security measures include HTTPS enforcement and client-side scripts to deter developer tool usage, although some standard security headers and policies are missing. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Overall, the site presents a professional and trustworthy front for a small technology startup with a clear business model and market positioning.

HugeDomains.com operates as a professional domain marketplace specializing in premium .com domain sales, offering customers options to buy domains outright or via interest-free payment plans. Established since 2005, the company positions itself as a trusted reseller with a focus on customer satisfaction, secure transactions, and quick domain delivery. The website is well-structured, mobile-optimized, and integrates modern technologies such as Google Analytics and reCAPTCHA Enterprise to enhance user experience and security. Despite the absence of WHOIS registration data for the hugedomains.com domain, the site demonstrates strong trust indicators including a 30-day money back guarantee and customer testimonials. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers could be improved. Overall, the site presents a low-risk profile with a good balance of business credibility and technical maturity.

The Kansas Department of Transportation (KDOT) is a state government agency responsible for delivering comprehensive transportation services and infrastructure across Kansas. Their website serves as a central hub for residents, travelers, businesses, and partners to access information on road conditions, projects, safety programs, permits, and employment opportunities. The site emphasizes multi-modal transportation including aviation, rail, public transit, and bicycle/pedestrian infrastructure, reflecting a broad service scope. KDOT holds a strong market position as the authoritative transportation entity for the state, providing essential public services with a large operational scale. Technically, the website employs a modern technology stack including AngularJS, jQuery, and Slick Carousel, supported by a Vision CMS platform. It integrates Google Analytics and Akamai mPulse for performance monitoring and user analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, with clear navigation and professional design. However, some security headers are not explicitly present, and no cookie consent mechanism was detected, indicating areas for compliance improvement. From a security perspective, the site uses HTTPS and has implemented session timeout and XSS keyword filtering within its CMS. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data is incomplete or unavailable, which is unusual for a .gov domain, but the official domain suffix and site content strongly support legitimacy. Overall, the security posture is solid but could benefit from enhanced header policies and published security policies. The overall risk assessment is low, with the site providing trustworthy, government-backed information and services. Strategic recommendations include implementing comprehensive security headers, adding explicit cookie consent for privacy compliance, publishing security and incident response policies, and maintaining regular audits of third-party libraries to mitigate vulnerabilities.

R

Race Space Ltd

race-space.com

59

Race Space Ltd operates a specialized online platform focused on race entry and endurance event management technology. The company targets race directors and athletes seeking efficient event registration and management solutions. Their market position is that of a niche technology provider offering SaaS-based race event systems. The website content is professional, well-branded, and clearly communicates their value proposition and services. Technically, the site employs modern JavaScript libraries including jQuery, RequireJS, and Facebook SDK, with Google Tag Manager for analytics and marketing. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partially met with privacy and terms pages present but no cookie consent mechanism detected. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, though the active social media presence and professional site content mitigate this somewhat. Overall, the site scores well in content quality and technical implementation but should improve privacy and security transparency.

U

University of California, Los Angeles

ucla.edu

64

The University of California, Los Angeles (UCLA) is a prestigious public university recognized for its excellence in education and research. The website serves as a comprehensive portal for students, faculty, alumni, and the public, offering detailed information on academics, research, campus life, events, and news. UCLA holds a top market position as a leading public university in the United States, supported by strong branding and trust indicators such as Nobel laureates and extensive social media presence. Technically, the website employs a modern technology stack including Google Custom Search, various analytics and tracking tools (Google Tag Manager, Facebook Pixel, TikTok Analytics, Twitter Tag), and popular JavaScript libraries like jQuery and FancyBox. The site is mobile optimized, accessible, and SEO friendly, though performance is moderate likely due to the rich content and third-party integrations. From a security perspective, the site uses HTTPS with good SSL configuration and no visible exposed sensitive data. However, security headers are not explicitly detected, and no dedicated security policy or incident response contacts are published. The WHOIS data is unavailable, which is common for .edu domains, but the site’s legitimacy is supported by consistent branding and institutional content. Overall, UCLA’s website demonstrates a mature digital presence with strong business credibility and privacy compliance. Recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen the security posture.

Ordersify is a small, Vietnam-based company specializing in developing Shopify apps focused on order automation and logistics. Their product suite includes tools such as Order Printer, Automation Tags, Product Alerts, and others, serving over 12,000 merchants globally. The company positions itself as a niche SaaS provider within the e-commerce ecosystem, leveraging Shopify's platform to deliver value-added services that help merchants automate order management and increase sales through notifications and integrations with marketing platforms. Technically, the website employs modern web technologies including Bootstrap, jQuery, and various analytics and customer support tools like Google Analytics, Hotjar, and HelpScout Beacon. The site is hosted behind Cloudflare DNS and CDN services, ensuring good performance and security. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is basic with a privacy policy and cookie consent modal present, but no advanced GDPR indicators or data protection officer information. Overall, the website is professional, well-branded, and trustworthy with clear business information and social media presence. Recommendations include enhancing DNS security, publishing security policies, and improving privacy compliance transparency.

A

Acturis

acturis.fr

59

Acturis is a well-established SaaS provider specializing in software solutions for the general insurance sector in France. The company offers a comprehensive online insurance platform that integrates CRM, contract and claims management, online underwriting, payment tracking, and customized reporting. Positioned as a market leader and pioneer in digital insurance subscription, Acturis serves major insurance brokers, insurers, and wholesalers. The website reflects a professional and consistent brand image, targeting insurance industry professionals with clear business messaging and client references. Technically, the site is built on WordPress with modern plugins and libraries, optimized for SEO and mobile use, and includes structured data for enhanced search presence. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

M

MB Capital Services GmbH

mb-capital-services.de

62

MB Capital Services GmbH is a German-based company specializing in creative event and exhibition services, including design and system stand construction, hostess services, and advertising spaces primarily at Messe Berlin. The website targets businesses and event organizers seeking professional support for trade shows, congresses, and events. The company positions itself as a reliable partner for worldwide implementation of creative corporate and product presentations. Technically, the website uses a combination of jQuery, jQuery UI, Nivo Slider, Fancybox, and a custom video player, hosted on managed infrastructure. The site includes a Usercentrics cookie consent mechanism, indicating some level of privacy compliance, but lacks explicit privacy and terms of service pages. Security posture is moderate with HTTPS enabled but missing security headers and no visible incident response or security policy information. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

A

ARTAJASATEKNIK

artajasateknik.com

59

ARTAJASATEKNIK is a small Indonesian technology business specializing in the sale and installation of CCTV, PABX, networking equipment, and related services primarily serving the Malang Raya region. The company operates an e-commerce enabled website built on WordPress, offering a product catalog, blog content, and customer engagement via WhatsApp. The website demonstrates moderate digital maturity with use of modern frameworks like Bootstrap and integration of Google Analytics and Facebook SDK for marketing and tracking. Security posture is adequate with HTTPS and domain transfer protections, but lacks published privacy and cookie policies, as well as vulnerability disclosure mechanisms. Overall, the website is functional and professional but could improve compliance and security transparency.

A

aBit Private Limited

abit.bt

56

aBit Private Limited is a Bhutanese IT solutions company specializing in website development, cloud server solutions, hospitality software, IT infrastructure, and digital marketing. The company targets businesses in Bhutan seeking professional IT services to enhance their online presence and operational efficiency. The website reflects a well-established local market position with over 1000 clients and a strong portfolio. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and social media SDKs, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA but lacks advanced security headers and formal privacy policies, which are areas for improvement. Overall, the site is professional and trustworthy with clear contact channels and business legitimacy.

TLC Kft is a medium-sized Hungarian manufacturing company specializing in welded steel structures primarily for material handling machinery such as cranes and telescopic loaders. Founded in 2003 and operating under the parent company Sennebogen, TLC Kft holds a leading market position in its sector with a focus on quality and modern manufacturing technologies. The website reflects a professional digital presence built on WordPress with standard industry tools and moderate performance and mobile optimization. Security posture is generally good with HTTPS and no exposed sensitive data, though the use of an outdated jQuery version and lack of security headers present moderate risks. Privacy compliance is indicated by a comprehensive privacy policy and terms of service, but no cookie consent mechanism was detected. Contact information is clearly provided, supporting business credibility.

W

Winter Run

winterrun.co.uk

65

Winter Run is a non-profit fundraising platform supporting the Cancer Research UK London Winter Run event, a 10k running challenge through London landmarks. The website serves as a hub for participant registration, fundraising, and donation tracking, leveraging a modern technical infrastructure including jQuery, Bootstrap, and various JavaScript libraries. The site is hosted on Amazon Cloudfront CDN and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and formal security policies are not published. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive privacy policy linked to Cancer Research UK's main site. WHOIS data for the exact domain is unavailable due to domain naming rules, indicating it is likely a subdomain or alias, but the website's branding and content strongly associate it with the reputable Cancer Research UK organization. Overall, the site is professional, trustworthy, and well-optimized for its audience.

B

BundesForum Kinder- und Jugendreisen – Das Forum für Kinder- und Jugendreisen in Deutschland

bundesforum.de

57

BundesForum Kinder- und Jugendreisen is a German forum dedicated to children and youth travel, serving as a community and information platform. The website is built on WordPress using the Colibri theme and several modern JavaScript libraries, indicating a moderate level of digital maturity. The site is accessible via HTTPS and includes social media integration with Facebook and Instagram. However, it lacks visible privacy and cookie policies, contact information, and advanced security headers, which are important for compliance and trust. Overall, the security posture is moderate but could be improved with better policy disclosures and security practices.

H

Händlerbund Management AG

haendlerbund.de

71

Händlerbund Management AG is a leading German legal service provider specializing in e-commerce compliance, offering a comprehensive suite of services including legal texts, legal advice, and support against warnings. The company serves over 92,000 online presences, positioning itself as a trusted partner for online retailers. Technically, the website is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools such as HubSpot Analytics, Google Tag Manager, and Visual Website Optimizer, ensuring a robust digital presence with good performance and mobile optimization. Security-wise, the site enforces HTTPS, employs consent management for cookies, and integrates secure forms via HubSpot, though explicit security headers could be enhanced. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.