Security Directory

H

Hotelstars Union

hotelstars.eu

62

Hotelstars Union operates a professional and comprehensive European hotel classification portal, serving both guests and hoteliers across 21 member countries. The website provides harmonised hotel rating standards, a hotel search function, and digital classification tools, positioning itself as a leading authority in hospitality classification in Europe. Technically, the site is built on TYPO3 CMS with modern frontend technologies and supports multilingual content via Weglot, ensuring accessibility and usability across diverse audiences. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit privacy and terms of service pages are not clearly found, representing an area for improvement. The domain WHOIS data is privacy protected by EURid, which is typical for EU domains and justified for this non-profit organisation. Overall, the site demonstrates a mature digital presence with good trust indicators and professional content.

M

MeetDoc

meetdoc.hu

52

MeetDoc is an online healthcare platform focused on providing patients in Hungary with a simple and fast way to search for doctors and book appointments online without registration. The platform currently lists 175 doctors across major Hungarian cities such as Budapest, Szeged, and Debrecen. The website is built using AngularJS and integrates Google Analytics and Google Tag Manager for tracking user interactions. It also uses Google Maps API to support location-based services. The platform emphasizes ease of use and free access for patients, with a dedicated portal for doctors to manage their presence. Security-wise, the site uses HTTPS and standard tracking tools but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. No WHOIS data is available for the subdomain hu.meetdoc.com, which is expected as it is a subdomain rather than a separately registered domain. Overall, the site presents a professional and trustworthy healthcare service with moderate technical maturity and some gaps in privacy compliance.

C

Centre Hospitalier de Luxembourg

chl.lu

60

Centre Hospitalier de Luxembourg (CHL) is a prominent healthcare institution in Luxembourg offering a wide range of clinical services, medical education, and research. The website reflects a well-established organization with multiple specialized clinics and accreditations such as JCI. The digital infrastructure is modern, leveraging Drupal 10 CMS, Google Tag Manager, and Google Maps API, with a strong emphasis on privacy and cookie consent compliance. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. However, the WHOIS data is missing or malformed, which slightly impacts domain trustworthiness. Overall, the website is professional, user-friendly, and trustworthy, serving patients, medical professionals, and researchers effectively.

D

DONOR, z.s.

donor.cz

46

DONOR, z.s. is a Czech non-profit organization dedicated to supporting children after bone marrow transplantation and chronically ill children and their families. The website provides detailed event information, educational resources, and community engagement opportunities. The organization targets families and healthcare communities, positioning itself as a specialized support entity in the pediatric transplant space. Technically, the website is built on WordPress with common plugins and integrates Google services for analytics and maps. The site is mobile-optimized and professionally designed, offering a good user experience. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks explicit security headers and formal policies. WHOIS data is unavailable, which raises some concerns about domain legitimacy, though the website content and structure support trustworthiness. Privacy compliance is partial, with cookie consent present but no clear privacy policy page. Overall, the site is functional and credible but would benefit from enhanced transparency and security documentation.

OET.com is the official website for the Occupational English Test, a globally recognized English language test specifically designed for healthcare professionals. The website offers test booking, preparation courses, career resources, and access solutions, targeting international healthcare professionals seeking to work, study, or register in English-speaking countries. The business is well-established, with a domain age dating back to 1998, indicating a mature market presence and trustworthiness. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Next.js and React, supported by Cloudflare DNS and Google services for analytics and maps integration. Security posture is generally good with HTTPS enabled and domain status protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Contact information such as emails and phone numbers are not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website is a high-quality, professional platform serving a niche healthcare education market with strong business credibility but could improve privacy and security transparency.

A

Affidea

affidea.ro

72

Affidea Romania is a leading healthcare provider specializing in diagnostic imaging, laboratory analyses, and cancer treatment services. Operating in 15 European countries with over 391 centers and 16,000 professionals, Affidea holds a strong market position as the largest European provider in its sector. The website reflects a mature digital presence with comprehensive service offerings, clear navigation, and professional branding. Technically, the site leverages WordPress with modern libraries and APIs, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and website content align well, supporting legitimacy and trustworthiness.

U

UAB Affidea Lietuva

affidea.lt

60

Affidea Lithuania is a prominent healthcare provider operating multiple clinics and diagnostic centers across Lithuania, offering a broad spectrum of medical services including diagnostics, consultations, day surgery, rehabilitation, and aesthetic medicine. The company is part of the larger Affidea Group, leveraging advanced medical technologies and a professional medical staff to maintain a leading market position. The website reflects a modern technical infrastructure using Astro and Vue.js frameworks, hosted on Google Cloud, with good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though there is room for improvement in security headers and published policies. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the website is professional, trustworthy, and well-aligned with the business's healthcare focus.

A

Affidea Česká republika

affidea.cz

65

Affidea Česká republika is a well-established healthcare provider specializing in advanced diagnostic imaging and ambulatory specialist services, operating primarily in Prague and Brno. As part of the larger Affidea Europe group, it benefits from extensive European presence and expertise. The website demonstrates a solid technical infrastructure using modern frameworks such as Astro and Vue.js, with media assets hosted on Google Cloud Storage. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is partial, with a privacy consent page but lacking a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-positioned in the Czech healthcare market.

A

Affidea Hrvatska

affidea.hr

64

Affidea Hrvatska is a well-established healthcare provider specializing in advanced diagnostic imaging and medical services across Croatia. Operating since 2008 with multiple centers, it is part of the larger Affidea Group headquartered in Amsterdam. The website reflects a professional and consistent brand presence with comprehensive service offerings and accreditations such as ISO 9001 and EuroSafe Imaging recognition. Technically, the site uses modern frameworks like Astro and Vue.js, integrates Google Tag Manager for analytics, and is hosted with reputable providers. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and incident response information are lacking. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures.

The MS-Gesellschaft Burgenland is a small, regional non-profit organization dedicated to supporting individuals affected by Multiple Sclerosis in the Burgenland region of Austria. Founded in 2006, it operates as a member of the Austrian Multiple Sclerosis Society, providing counseling, networking for self-help groups, and therapy-related information and events. The website serves as a central information hub for patients and their families, emphasizing community support and healthcare guidance. Technically, the website is built on the Jimdo Creator CMS platform, utilizing standard web technologies such as jQuery and third-party widgets from POWr.io. The site is mobile-optimized and employs HTTPS for secure communications. Cookie consent mechanisms are implemented in compliance with GDPR, although some advanced security headers and policies are absent. From a security perspective, the site demonstrates a good baseline with HTTPS and cookie consent but lacks explicit security policies, incident response contacts, and advanced HTTP security headers. No vulnerabilities or suspicious activities were detected in the content or scripts. The WHOIS data aligns well with the organization's claims, indicating a legitimate and consistent domain registration. Overall, the website is trustworthy, professionally presented, and compliant with privacy regulations, serving its target audience effectively. Strategic improvements in security headers, incident response transparency, and terms of service documentation would enhance its security posture and user trust.

F

Formthotics system - zdravotní stélky do obuvi, efektivní řešení handicapu pohybového aparátu. Pomáháme lidem zůstat aktivní a vracíme je do plnohodnotného života.

formthotics.cz

48

Formthotics.cz is a Czech healthcare-focused website offering custom orthopedic insoles designed to improve musculoskeletal health and mobility. The business targets individuals with physical handicaps, athletes, and everyday users seeking comfort and pain relief. The website demonstrates a mature digital presence with integration of modern web technologies such as Bootstrap, jQuery, Google Fonts, and Google Maps API. It employs Google Analytics and Google Tag Manager for tracking and marketing purposes, alongside a cookie consent mechanism indicating GDPR awareness. However, the site lacks explicit privacy policies, terms of service, and detailed contact information, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing security headers and incident response details. Overall, the domain registration data aligns well with the website's claims, supporting legitimacy.

S

Savez Društava Multiple Skleroze Hrvatske

sdmsh.hr

41

Savez Društava Multiple Skleroze Hrvatske is a Croatian non-profit organization dedicated to supporting individuals affected by multiple sclerosis. The organization provides educational resources, rehabilitation support, community engagement, and digital content such as podcasts and a digital library. Their website serves as a comprehensive platform for information dissemination and community connection, targeting patients, families, and healthcare professionals within Croatia. The business model relies on donations, sponsorships, and partnerships to fund their activities and projects. Technically, the website is built on WordPress using modern plugins including Gravity Forms, Slider Revolution, and WPBakery Page Builder. It integrates Google Maps and YouTube APIs and employs GDPR compliance tools such as cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting and domain registration are consistent with the organization's Croatian base. From a security perspective, the site enforces HTTPS and uses reputable plugins with no visible vulnerabilities. However, some security headers could be improved or explicitly implemented. The presence of GDPR-compliant privacy and cookie policies indicates a good privacy posture, though no explicit security policy or incident response information is found. Tracking includes Google Analytics and Facebook Pixel, with moderate user tracking. Overall, the website presents a trustworthy and professional digital presence for a healthcare non-profit organization. Recommendations include enhancing security headers, ensuring all lazy loading assets load correctly, and adding a security.txt file for vulnerability disclosures to further strengthen security and transparency.

S

Sdružení soukromých gynekologů ČR

ssg.cz

49

Sdružení soukromých gynekologů ČR is a professional association representing private gynecologists in the Czech Republic. The organization provides membership services, legal support, and organizes professional events and conferences to support its members. The website reflects a niche healthcare association with a clear focus on serving medical professionals in gynecology. The domain has been registered since 2000, indicating a well-established presence in the sector. Technically, the website uses a combination of legacy and modern JavaScript libraries including jQuery, Owl Carousel, and Google Maps API. While the site is functional and moderately optimized for performance and SEO, it shows some technical debt such as the use of outdated jQuery versions and lacks visible modern security headers. The cookie consent mechanism is implemented with granular user preferences, indicating some level of privacy compliance, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS (implied by base href and external links), but lacks explicit security headers and uses older JS libraries that may pose vulnerabilities. No incident response or security policy information is publicly available. The WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website is professional and trustworthy but could improve its security posture and privacy transparency.

W

Wellness Hotel Energetic / Forman Adamec a.s.

hotel-energetic.cz

46

Wellness Resort Energetic, operated by Forman Adamec a.s., is a well-established hospitality business located in Rožnov pod Radhoštěm, Czech Republic. The resort offers a comprehensive range of services including accommodation, wellness, sports, gastronomy, and event hosting, targeting both leisure and corporate clients. The website reflects a mature digital presence with good content quality, clear navigation, and consistent branding. Technically, the site is built on WordPress using the Enfold theme, with standard integrations such as Google Analytics and Google Maps. Security posture is adequate with HTTPS enforced and some security best practices observed, though additional security headers could enhance protection. Privacy compliance is basic but includes a privacy policy and cookie consent mechanism. Overall, the business demonstrates credibility and professionalism with positive customer testimonials and clear contact information.

O

ORTEX spol. s r. o.

ortexzlin.cz

35

Ortex Zlín is a Czech company specializing in the development, serial production, and sale of orthopedic braces and bandages primarily for postoperative, conservative treatment, and rehabilitation of damaged joints and ligaments. Established in 2004, the company operates a professional website built on WordPress with WooCommerce, targeting healthcare professionals and patients in need of orthopedic supports. The website features a clear product catalog, contact information, and complies with GDPR cookie consent requirements. Technically, the site uses modern web technologies including jQuery, Google Analytics, and Google Maps API, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent mechanisms, though security headers and explicit incident response policies are absent. Overall, the site is trustworthy, professionally maintained, and aligned with its business objectives.

R

Regionální muzeum v Mikulově

archeoparkpavlov.cz

42

Archeopark Pavlov is a specialized cultural and historical museum located in the Czech Republic, focusing on prehistoric mammoth hunters and the Gravettian culture. The site offers modern exhibitions, educational programs, and virtual tours, managed by the Regional Museum in Mikulov. The website reflects a well-structured and content-rich platform targeting general visitors, schools, and researchers interested in prehistory. Technically, the site uses established frameworks such as Nette and jQuery, integrates Google Maps and Analytics, and implements email obfuscation and cookie consent mechanisms to enhance privacy and user experience. Security posture is moderate with room for improvement in HTTP security headers and explicit privacy policies. The absence of WHOIS data reduces domain trust from a registration perspective, but the website's content and external references support its legitimacy. Overall, the site is professional, user-friendly, and compliant with basic privacy standards.

P

PROSAZ

prosaz.cz

43

PROSAZ is a Czech non-profit organization dedicated to supporting people with disabilities through a variety of services including personal assistance, caregiving, employment support, and protected workshops. With a history spanning approximately 30 years, PROSAZ has established itself as a reputable entity in the social services sector in the Czech Republic. The website reflects a mature digital presence with comprehensive content, donation options, and employee stories that enhance trust and engagement. Technically, the site is built on WordPress using the Jupiter theme and WPBakery Page Builder, leveraging modern web technologies and Google services for fonts and maps. Security posture is adequate with HTTPS and captcha-protected contact forms, though it lacks some advanced security headers. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanisms. The absence of WHOIS data suggests domain privacy protection, which is common for organizations but slightly reduces transparency. Overall, PROSAZ presents a professional and trustworthy online presence aligned with its mission and audience.

D

DMA Praha

dmapraha.cz

71

DMA Praha is a Czech Republic-based company specializing in the distribution, sale, and rental of medical and compensatory aids primarily targeting seniors and physically disabled individuals. The company offers a wide range of products including new, refurbished, and rental aids, supported by a network of physical stores and an e-commerce platform. Their market position is strengthened by 25 years of experience and a broad product catalog tailored to healthcare needs. Technically, the website employs modern web technologies including Google Maps API, Sentry for error tracking, and Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and error tracking in place, though some security headers and policies are missing. Privacy compliance is partially addressed with cookie consent mechanisms but lacks a visible privacy policy or detailed GDPR compliance statements. Overall, the website is professional, user-friendly, and trustworthy, with no signs of malicious content or adult material. The absence of WHOIS data due to privacy protection slightly reduces transparency but is justified given the business nature. Strategic recommendations include enhancing security headers, publishing security and privacy policies, and adding vulnerability disclosure information to improve trust and compliance.

O

Otto Bock ČR s.r.o.

mojeproteza.cz

48

Mojeproteza.cz is a Czech Republic-based healthcare information portal operated by Otto Bock ČR s.r.o., focusing on providing comprehensive support, education, and product information for amputees and prosthesis users. The website serves as a trusted resource with detailed content including tips, videos, and community engagement, positioning itself as a niche leader in prosthetics support within the region. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and various plugins for SEO, GDPR compliance, and user interaction. The site is well-optimized for mobile and SEO, with good performance and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security policy or incident response information is published. Overall, the site demonstrates a high level of professionalism and trustworthiness, with active social media presence and clear business legitimacy. Recommendations include enhancing security headers, publishing security policies, and improving accessibility.

L

Loblaws Inc.

pcoptimum.ca

69

PC Optimum is a prominent Canadian loyalty rewards program operated by Loblaws Inc., offering customers the ability to earn and redeem points across a wide network of grocery stores, pharmacies, and fuel stations. The program integrates with PC Financial Mastercard to provide enhanced rewards, targeting Canadian consumers who frequently shop at affiliated retail locations. The website demonstrates a mature digital presence with a modern React-based tech stack, integration of third-party services for analytics, marketing, and user engagement, and strong mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although incident response contact details are not publicly visible. Overall, the domain and website content align with a legitimate enterprise-grade retail loyalty program.

S

SmartestEnergy Business

smartestenergybusiness.com

67

SmartestEnergy Business is a UK-based energy supplier focused on providing electricity and gas solutions to small and medium-sized enterprises with an emphasis on renewable and sustainable energy. The company positions itself as a people-powered supplier committed to supporting businesses in reducing carbon emissions and advancing towards net zero. The website reflects a professional and modern digital presence, leveraging multiple analytics and marketing technologies such as Google Tag Manager, Microsoft Application Insights, and Cookiebot for consent management. The technical infrastructure includes EPiServer CMS and integrates various third-party services for marketing and analytics. Security posture is generally strong with HTTPS enforced and bot protection via reCAPTCHA; however, the absence of explicit security policies and incident response contacts is noted. The lack of WHOIS registration data raises some concerns about domain legitimacy, though the website content and business information appear consistent and trustworthy. Overall, the site demonstrates good privacy compliance and user experience, targeting UK SMEs interested in sustainable energy solutions.

M

MERKUR CASINO GmbH

meingewinn.de

64

MERKUR CASINO GmbH operates a professional career portal targeting job seekers interested in casino and gaming employment opportunities in Germany. The website effectively promotes various job roles and career development options within the MERKUR GROUP, a recognized entity in the hospitality and gaming sector. The site demonstrates consistent branding and provides comprehensive information about employment opportunities, supported by links to related MERKUR group websites and social proof such as Kununu employer reviews. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google Maps API, and Usercentrics for consent management, ensuring a responsive and user-friendly experience. Analytics are implemented via Google Analytics and Matomo with proper consent mechanisms, reflecting a mature approach to data privacy. The site is well-optimized for SEO and mobile devices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and integrates cookie consent management effectively. However, it lacks explicit security headers and does not publish a security policy or incident response contacts, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional best practices. The website is safe for general audiences, with no adult or explicit content detected. The domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness. Strategic recommendations include adding a terms of service page, publishing security policies, and implementing security headers to further strengthen the security and compliance posture.

Flatimi s.r.o. operates a professional real estate website focused on rental and sale of apartments and houses primarily in Prague and the Central Bohemian region. The company positions itself as a direct buyer and investor, offering comprehensive services from inquiry to contract signing. The website is well-structured, with clear navigation and contact options, targeting individuals and investors interested in local real estate. The business is small-sized, founded in 2019, and maintains a consistent brand presence online. Technically, the website employs modern web technologies including Bootstrap, jQuery, Font Awesome, Google Maps API, and Google reCAPTCHA for security. Hosting is managed via websupport.cz, a known Czech hosting provider. The site is mobile-optimized and SEO-friendly with proper meta tags and Open Graph data. Cookie consent is managed via CookieYes, reflecting attention to privacy compliance. Security posture is solid with HTTPS enforced, use of reCAPTCHA to prevent spam, and a detailed GDPR privacy policy presented in Czech. However, there is room for improvement by adding explicit security headers and publishing incident response contacts or a security.txt file. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for a local real estate business with good privacy compliance and technical implementation. Strategic improvements in security transparency and accessibility could further enhance trust and compliance.

Stolařství Šputa s.r.o. is a well-established Czech woodworking and construction company specializing in custom furniture, interior and exterior woodwork, and wooden buildings. Founded in 1999 and operating primarily in Ostrava, the company offers a broad range of wood-related manufacturing services including stairs, doors, furniture, pergolas, and dřevostavby (wooden houses). The website reflects a mature business with a clear market position serving both individual and commercial clients. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Analytics, and Google Maps API, hosted likely by Active24, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, GDPR compliance, cookie consent, and secure forms, though some security headers and incident response contacts could be improved. Overall, the site is professional, trustworthy, and compliant with relevant privacy regulations.

Stavby Complet s.r.o. is a Czech-based small enterprise specializing in chimney construction, maintenance, and related services, including manufacturing their own chimney system. The company has been established since 2011 and positions itself as a quality-focused specialist with a broad service portfolio targeting both industrial and residential customers. The website reflects a professional and consistent brand image with comprehensive service descriptions and customer references. Technically, the site uses modern web technologies such as Bootstrap and jQuery, integrates Google Analytics and Ads for marketing, and implements GDPR-compliant privacy and cookie policies. Security posture is adequate with secure forms and consent mechanisms, though some security headers and incident response details are missing. Overall, the website is well-structured, mobile-optimized, and trustworthy, supporting the company's market position as a reliable local specialist.

M

Multimedium BV

multimedium.be

67

Multimedium BV is a Belgian digital agency with a strong market presence, offering custom online applications, webshops, and websites tailored to organizational needs. With over 20 years of experience, they position themselves as a reliable and solid partner for digital transformation. Their website reflects a professional and modern digital infrastructure, utilizing contemporary marketing and analytics tools such as Google Tag Manager and Mautic, alongside a robust cookie consent mechanism ensuring GDPR compliance. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and incident response information suggests areas for improvement. Overall, the website is well-designed, accessible, and trustworthy, supporting a positive business credibility profile.

A

Agentura Osma a.s.

osma.cz

43

Agentura Osma a.s. is a well-established Czech family-owned manufacturer specializing in the design and production of self-adhesive labels. With a history dating back to 1991 and a domain registered since 2000, the company serves a broad European market including France, producing over one million labels weekly. Their business model focuses on combining unique design with advanced printing technologies to support brand image development for clients in food, cosmetics, beverages, and related sectors. The website reflects a mature digital presence with modern technologies, good mobile optimization, and comprehensive content including customer testimonials and certifications. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and formal policies are absent. Overall, the company demonstrates strong business credibility and technical maturity.

S

Stallergenes Greer UK

stallergenesgreer.co.uk

56

Stallergenes Greer UK is a specialized healthcare company focused on allergen immunotherapy and allergy treatment products. The company operates as part of the Stallergenes Greer Group, providing a comprehensive range of diagnostic and therapeutic solutions for allergic diseases. Their website reflects a professional and consistent brand presence targeting healthcare professionals and patients in the UK. Technically, the site is built on Drupal 10 with modern frontend technologies including Bootstrap 5 and Google Maps integration, offering good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, compliant with GDPR, and provides clear contact information, supporting a medium-sized healthcare business profile.

H

Hotel Císař Ferdinand

hotelcisarferdinand.cz

48

Hotel Císař Ferdinand is a small hospitality business located in Loket, Czech Republic, offering hotel accommodation, a restaurant, and an on-site brewery. The website presents a professional and well-structured digital presence with clear information about services, local attractions, and contact details. The technical infrastructure is based on WordPress with modern plugins and frameworks such as Elementor and Bootstrap, providing a responsive and SEO-optimized experience. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact information appear legitimate and consistent with a small hospitality business. Overall, the site is suitable for its target audience of tourists and visitors seeking accommodation and dining in Loket.

I

Integrační centrum Praha o.p.s.

saladbowlofprague.cz

39

Salad Bowl of Prague is a culturally focused non-profit project managed by Integrační centrum Praha o.p.s., aimed at promoting understanding and integration of migrants in Prague through guided tours, cultural events, and educational content. The website is built on WordPress with a modern tech stack including SEO and multilingual plugins, and integrates Google Maps and Facebook Pixel for enhanced user engagement and analytics. The site demonstrates good security practices with HTTPS and GDPR compliance, though some security headers could be improved. Contact information and privacy policies are clearly presented, supporting trust and transparency.

V

VZP ČR

klubpevnehozdravi.cz

43

The website klubpevnehozdravi.cz represents the Klub pevného zdraví, a health benefit club operated by VZP ČR, the largest public health insurance provider in the Czech Republic. It offers registered members various health-related benefits and discounts through partner companies. The site is well-branded with official VZP logos and provides comprehensive information about the club, its partners, and events. The target audience is primarily VZP insured persons and their families. Technically, the site uses a modern tech stack including Bootstrap, jQuery, Google Analytics, and Google Maps API, providing a responsive and user-friendly experience. Security-wise, the site implements GDPR-compliant cookie consent mechanisms and uses HTTPS, but lacks visible advanced security headers. WHOIS data is unavailable, which slightly reduces domain trust, but the official branding and contact details strongly support legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations, serving as a trustworthy resource for its audience.

C

COOP MORAVA, s.r.o.

coopmorava.com

44

COOP MORAVA, s.r.o. operates the largest retail grocery network in the Moravia region of the Czech Republic, with over 800 stores under the COOP brand. The company targets general consumers seeking quality products and promotional offers. Their business model focuses on cooperative retail with strong supplier partnerships and customer engagement through recipes and a mobile app. Technically, the website uses a mature but somewhat outdated technology stack including jQuery 1.10.2 and Bootstrap 3, with integrations for Google Maps, Google Tag Manager, and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced but lacks important security headers and uses outdated libraries, which may pose risks. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. WHOIS data is unavailable, which reduces trust but the website's active presence and contact details support legitimacy. Overall, the site is functional and professional but would benefit from improved security and privacy practices.

U

Unie pacientů ČR

uniepacientu.cz

63

Unie pacientů ČR is a Czech non-profit organization operating a reservation system to facilitate placement of patients and applicants into social and inpatient healthcare facilities. The website serves as an information hub and booking platform, targeting patients and applicants within the Czech Republic. The organization has been established since 2005, supported by partnerships such as the Ministry of Labour and Social Affairs of the Czech Republic. Technically, the website uses a custom stack with jQuery, Google Maps API, and Google Analytics for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is moderate with HTTPS usage but missing key security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

W

Wendt & Kühn KG

wendt-kuehn.us

44

Wendt & Kühn KG is a well-established German manufacturer specializing in handcrafted wooden figurines and collectibles, with a history dating back to 1915. The company targets collectors and gift buyers worldwide, offering a diverse assortment of finely crafted products including seasonal decorations and limited edition items. Their digital presence includes multiple localized websites and a customer magazine, reflecting a mature business model focused on quality and tradition. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates tracking and consent management tools to comply with privacy regulations. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. However, some security best practices such as explicit security headers are not evident, and WHOIS data for the domain is unavailable, which slightly impacts trust. The security posture is generally good with HTTPS enforced and cookie consent implemented, but the absence of detailed security policies and incident response information suggests room for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is professional and trustworthy, though domain registration transparency should be enhanced. Strategically, the company should focus on improving domain registration visibility, implementing comprehensive security headers, and publishing clear security and incident response policies to strengthen trust and compliance.

E

Escapegame

escapegame.cz

53

Escapegame.cz is a Czech Republic-based small hospitality business specializing in modern escape room games across multiple cities including Ostrava, Olomouc, Bruntál, Frenštát pod Radhoštěm, and Opava. The company offers a variety of themed escape rooms targeting families, friends, and corporate clients, with online booking and gift voucher options enhancing customer engagement. The website is professionally designed with rich multimedia content, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, the site leverages modern JavaScript libraries, Google services for analytics and maps, and standard frameworks like Bootstrap, ensuring a responsive and interactive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of security headers and explicit security policies suggests room for improvement. The lack of WHOIS registration data is a notable concern but does not currently undermine the business credibility given the professional site and clear contact information. Overall, the site presents a trustworthy and user-friendly platform for escape room entertainment in the Czech market.

T

The Bingo Association Ltd

bingo-association.co.uk

50

The Bingo Association Ltd is a UK-based trade association representing all land-based licensed bingo operators in Great Britain. Established in 1998, it focuses on promoting professional excellence, ethical gaming, and responsible gambling practices within the bingo sector. Key services include membership management, a self-exclusion scheme, events, governance support, and publication of the official magazine, Bingo Connect. The association serves licensed operators and customers seeking safe bingo environments. Technically, the website is built on WordPress with Bootstrap 4 and uses modern web technologies such as Google Fonts, FontAwesome, and Google Maps API. The site is hosted by Fasthosts Internet Ltd, a reputable UK hosting provider. The website demonstrates good mobile optimization, clear navigation, and solid SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and implements GDPR-compliant cookie consent mechanisms. However, explicit HTTP security headers are not detected in the HTML content, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found. The domain is long-established and consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional and trustworthy digital presence for the Bingo Association, with good content quality and compliance. Strategic improvements include enhancing security headers, publishing security policies, and expanding accessibility features to further strengthen the security posture and user trust.

C

COOP MORAVA, s.r.o.

coopmorava.cz

46

COOP MORAVA, s.r.o. operates the largest retail cooperative network in the Moravia region of the Czech Republic, with over 800 stores under the COOP brand. The company focuses on providing grocery and household products to general consumers, supported by promotional campaigns, a mobile application, and recipe content to engage customers. The website reflects a mature digital presence with a professional design and consistent branding, targeting a broad consumer base in the region. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent mechanisms. The absence of WHOIS data and privacy policy pages slightly reduces trustworthiness. No critical vulnerabilities or exposed sensitive data were found in the content. The tracking and analytics usage is extensive, which may raise privacy considerations. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced transparency in privacy and security policies, improved security headers, and WHOIS data availability to strengthen its compliance and trust posture.

M

MAGISTRÁT HLAVNÍHO MĚSTA PRAHY

metropolevsech.eu

61

The website 'Prague for all' is an official government informational portal primarily targeting migrants and residents of Prague. It provides comprehensive guidance on integration, civic participation, healthcare, education, employment, and cultural activities. The site is operated under the auspices of the Prague City Hall, reflecting a strong public sector presence and commitment to community support. The platform is multilingual, enhancing accessibility for diverse audiences. Technically, the site is built on WordPress with common plugins for multilingual support and media management. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for user tracking and marketing insights. The site is hosted by Webglobe, s.r.o., a reputable registrar and hosting provider. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned as a government resource for migrants and residents.

NTN Europe is a well-established manufacturer and provider of bearings, linear modules, and related industrial components, serving sectors such as automotive, aerospace, and manufacturing. The company offers a broad range of products and services including technical assistance, product analysis, and training, supported by online configurators and e-commerce tools. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, the site is built on Drupal CMS, uses modern web technologies, and is hosted via a reputable registrar. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some advanced security headers and policies could be improved. Privacy compliance is strong with clear policies and GDPR-aligned consent. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or content blocking.

Skupina COOP is a large cooperative retail network in the Czech Republic, operated by the Svaz ceskych a moravskych spotrebnich druzstev. The organization manages the largest network of retail grocery stores under the COOP brand and also operates several educational institutions focused on hospitality, gastronomy, and services. The website provides comprehensive information about the cooperative stores, schools, and customer services, targeting Czech consumers and cooperative members. Technically, the site uses a mix of JavaScript libraries including jQuery, Select2, Google Maps API, and tracking tools such as Google Analytics and Adform. The hosting is managed via Websupport.cz, and the site is accessible with no blocking or WAF challenges detected. Security posture is moderate with HTTPS enabled but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented with multiple official emails, phone numbers, and physical addresses. Social media presence on Facebook and YouTube adds to trust. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

Š

ŠUMAVSKÝ PRAMEN a.s.

sumavskypramen.cz

61

ŠUMAVSKÝ PRAMEN a.s. operates as a regional supplier of bottled spring water and related products such as water dispensers (aquamaty), coffee, and syrups under the Estian brand. The company targets both general consumers and businesses in the Czech Republic and Slovakia, emphasizing health, hydration, and quality. Their business model includes product sales, rentals, and free delivery services, supported by a professional website and active social media presence. The website content is well-structured, informative, and designed to engage customers with product offerings and company news via a blog.

D

Diakonie ČCE

diakonie.cz

59

Diakonie ČCE is a well-established non-profit organization in the Czech Republic, providing a broad range of social services and specialized education. With over 30 years of experience, it serves children, adults, and seniors in various life situations, positioning itself as a leading social service provider in the region. The website reflects a professional and consistent brand image, targeting the general public seeking social support and assistance. Technically, the site is built on WordPress using the Divi theme, incorporating modern web technologies such as jQuery, Google reCAPTCHA, and Google Maps API. It demonstrates good mobile optimization and SEO practices, although accessibility could be further improved. Security-wise, the site enforces HTTPS, uses security headers, and implements consent mechanisms for cookies and analytics, indicating a mature security posture. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained, supporting the organization's credibility and mission.

E

Escape Point

escapepoint.cz

46

Escape Point is a Czech Republic based entertainment company specializing in real-life escape games located in Prague. Established in 2017, it offers multiple themed escape rooms with various game modes targeting general audiences including groups and corporate clients for team-building. The website is professionally designed with good content quality, clear navigation, and mobile optimization. Technically, it uses a modern stack including jQuery, Bootstrap, Google Maps API, and integrates marketing and tracking tools such as Google Ads and Facebook Pixel. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA, though it lacks explicit security policies and some security headers. The domain registration data is consistent and supports legitimacy. Overall, the website is trustworthy and well-positioned in its local market.

Mustard s.r.o. is a Czech Republic-based creative agency specializing in advanced digital communication, media production, publishing, and creative services. Established in 2011, the company targets businesses and brands seeking innovative content solutions, leveraging multimedia and storytelling to build brand presence. The website showcases a portfolio of international campaigns and video case studies, reflecting a solid market position in the media industry. Technically, the website employs a modern tech stack including jQuery, Modernizr, Google Analytics, Mouseflow, Hotjar, and Google Maps API, indicating a mature digital infrastructure. The site is moderately performant, mobile-optimized, and features good design and navigation, though accessibility and SEO optimizations are basic. From a security perspective, the site uses HTTPS and avoids exposing sensitive data but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. Extensive user tracking is present without visible consent mechanisms, representing a privacy compliance gap. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website is professional and credible but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

P

PSHK s.r.o.

pshk.cz

52

PSHK s.r.o. is a Czech-based digital agency specializing in modern website and e-shop development combined with online marketing services such as PPC, SEO, and product feed management. The company targets small to medium enterprises, startups, non-profits, and municipalities, offering tailored web solutions and marketing strategies. Their market position is supported by over 15 years of experience and a strong portfolio of satisfied clients, as evidenced by numerous testimonials and certifications from reputable partners like Google and Seznam. Technically, the website is built on Joomla CMS, uses modern web fonts, Google Tag Manager, and Google Maps API, and is well optimized for mobile devices. Security posture is good with HTTPS enforced and anti-spam measures in forms, though some security headers are missing and no cookie consent mechanism is present. The absence of WHOIS data for the domain reduces trust slightly but does not outweigh the strong business credibility demonstrated on the site. Overall, PSHK presents as a professional and trustworthy digital service provider with a solid technical foundation and good compliance practices.

U

Univerzita Hradec Králové

uhk.cz

68

Univerzita Hradec Králové is a public university based in the Czech Republic, offering a wide range of higher education programs, lifelong learning courses, and active research initiatives. The institution targets students, academic staff, researchers, and international partners, positioning itself as a regional educational leader with multiple faculties and comprehensive academic services. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the website employs modern web technologies including Google Tag Manager, Google reCAPTCHA, and Turbolinks, ensuring a responsive and accessible user experience. The site is optimized for mobile devices and incorporates SEO best practices, although some improvements in hosting transparency and CMS identification could be made. From a security perspective, the site enforces HTTPS, uses reCAPTCHA for form protection, and implements a cookie consent mechanism compliant with GDPR. However, explicit security headers and incident response information are not present, suggesting room for enhancement in security posture and transparency. Overall, the website presents a trustworthy and professional front for the university, though the absence of WHOIS data limits full domain legitimacy verification. Strategic recommendations include improving security headers, publishing a security policy, and providing clear security incident contacts to bolster trust and compliance.

S

Stichting Register Montage Expert Brandveiligheid (MEB)

meb-register.nl

62

The Stichting Register Montage Expert Brandveiligheid (MEB) operates as an independent non-profit organization focused on enhancing and certifying the quality and expertise in the installation of fire safety products in the Netherlands. Their market position is well-established within the Dutch construction and fire safety sector, supported by industry partnerships and certifications. The website serves as an informational and certification portal targeting professionals such as installers, installation companies, building owners, and educational institutions. Technically, the website is built on the Jimdo Creator CMS platform, utilizing standard web technologies including jQuery and third-party widgets from POWr.io. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are lacking. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, improvements could be made by adding explicit security headers and publishing a security policy or incident response contacts. Privacy compliance is well addressed with a clear privacy policy and cookie management. Overall, the website is professional, trustworthy, and aligned with its business mission. The risk level is low, but strategic enhancements in security transparency and technical hardening would further strengthen its posture.

A

AIRBUZZ s.r.o.

airbuzz.cz

46

AIRBUZZ s.r.o. is a Czech marketing agency specializing in advertising campaigns, graphic design, event organization, and promotional services. Established in 2012, the company serves business clients with a comprehensive portfolio of marketing solutions including brand strategy, digital marketing, social media management, and in-store promotions. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at businesses seeking marketing support. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Fonts, and FontAwesome, and integrates Google Maps for location display. The cookie consent mechanism is implemented, indicating awareness of privacy compliance requirements, although no formal privacy policy or terms of service pages are present. Security posture is moderate with HTTPS usage implied but lacks visible security headers and incident response information. Overall, the website is trustworthy and well-positioned in its market niche but would benefit from enhanced privacy and security documentation.

Skupina COOP is a large cooperative retail group operating the largest network of grocery stores in the Czech Republic. The organization also manages several educational institutions focused on hospitality, gastronomy, and services. The website reflects a mature business with a strong market position and extensive regional cooperative listings. Technically, the site uses common web technologies including jQuery, Select2, Google Analytics, and Google Maps API, hosted on Websupport.cz. The site is mobile optimized and has good SEO practices but lacks some advanced accessibility features. Security posture is moderate with HTTPS enabled but missing key security headers and no DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Contact information is clearly presented with multiple verified emails, phone number, and physical addresses. Social media presence on Facebook and YouTube supports trust. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance.