Security Directory

A

Asociácia kultúrnych inštitúcií miest a obcí Slovenska

1akis.sk

55

The website represents the Asociácia kultúrnych inštitúcií miest a obcí Slovenska, a Slovak non-governmental organization focused on promoting cultural education and supporting local cultural institutions. The site provides information about the association's mission, activities, and offers downloadable documents relevant to cultural policies and COVID-19 impact mitigation. The organization targets Slovak municipalities, cultural institutions, and the general public interested in cultural development. Technically, the website is built on Joomla CMS using the Gantry5 framework, with modern JavaScript libraries such as jQuery, Swiper, and AOS for animations. It is hosted by Websupport, a Slovak hosting provider, and uses HTTPS with DNSSEC enabled for domain security. The site includes Google Analytics and Tag Manager for user tracking and has a cookie consent banner, indicating basic privacy compliance. However, it lacks a dedicated privacy policy, terms of service, and security incident response information, which are important for full compliance and trust. Security posture is moderate with HTTPS and DNSSEC but missing HTTP security headers and vulnerability disclosure mechanisms. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

The Regenagentur Duisburg is a municipal service established in 2022 by the Wirtschaftsbetriebe Duisburg to provide citizens with information and support regarding sustainable rainwater management. The agency focuses on promoting natural rainwater handling, offering advisory services, and managing a related funding program. The website serves as an informational and contact platform for residents of Duisburg, Germany, with clear communication channels and official branding. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics, and uses modern front-end libraries such as AOS and Slick Slider. The site is mobile-optimized and performs moderately well, though there is room for improvement in SEO and accessibility. Hosting is managed via DomainControl nameservers, indicating a standard registrar setup. From a security perspective, the site enforces HTTPS and uses secure cookies for analytics. However, it lacks several recommended security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is partially addressed with a comprehensive privacy policy linked externally, but no cookie consent mechanism is present. Overall, the website is trustworthy and professionally maintained, suitable for its public service role. Strategic improvements in security headers, privacy consent, and incident response transparency would enhance its security posture and compliance.

Malfini.com is a website associated with Pro-idea s.r.o., likely operating in the fashion or apparel sector given the brand name and styling cues. The domain is well-established, created in 2010, and shows consistent registration data. The website employs modern front-end technologies including Bootstrap, Swiper, and AOS, and integrates multiple third-party analytics and marketing tools such as Google Analytics, Hotjar, and Sales Manago. A comprehensive cookie consent mechanism is implemented, reflecting good privacy compliance practices. However, explicit privacy policy and terms of service pages are not found in the provided content, and no direct contact information is visible, which may impact user trust and compliance completeness. Security posture is moderate with HTTPS implied but lacking visible security headers and explicit security policies.

P

Klub Pánů z Ponožkovic - Barevné ponožky pro kavalíry

ponozkovice.cz

54

The website www.ponozkovice.cz represents a niche retail subscription club focused on delivering colorful socks monthly to its members. The business model revolves around membership subscriptions and gifting options, targeting consumers interested in unique and vibrant sock products, primarily in the Czech Republic. The site is well-branded with consistent design and clear navigation, supported by social media presence on Facebook and Instagram. Technically, the site uses a modern JavaScript stack including jQuery, Bootstrap, and Google Tag Manager, indicating moderate digital maturity and good mobile optimization. Security posture is moderate with HTTPS implied but lacking explicit security headers and published privacy policies. Cookie consent is implemented comprehensively with granular user controls and partner disclosures. However, the absence of WHOIS data and lack of direct contact information reduce overall trust and business credibility. Strategic improvements in transparency, security headers, and contact availability would enhance the site's trustworthiness and compliance.

P

Perform Czech

performczech.cz

54

Perform Czech is a cultural organization dedicated to bridging Czech performing arts with international audiences and professionals. The website serves as a platform to showcase Czech theatre projects, provide educational content, and promote events and podcasts related to performing arts. The organization targets artists, cultural professionals, and enthusiasts globally, positioning itself as a niche intermediary in the cultural media sector. The business model revolves around cultural promotion and facilitation rather than commercial sales. Technically, the website is built on WordPress CMS with a modern tech stack including Bootstrap, jQuery, Google Analytics, Algolia Search, and GDPR compliance plugins. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The infrastructure supports multimedia content and interactive features such as search and newsletter subscription. From a security perspective, the site uses HTTPS with an excellent SSL configuration and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers are not detected, and there is no visible incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were found in the content. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not raise immediate concerns given the site's nature and content. Overall, the website presents a professional, trustworthy, and compliant digital presence for a cultural organization. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date third-party components to further strengthen security posture and trust.

D

DAE Dachverband Europäischer Dokumentarfilm / Documentary Association of Europe e.V.

dae-europe.org

66

DAE Dachverband Europäischer Dokumentarfilm / Documentary Association of Europe e.V. is a non-profit membership association serving documentary professionals primarily in Europe but also globally. Founded in 2019, it offers a collaborative network, expert advice, curated resources, discounts, and advocacy grounded in progressive social principles. The association positions itself as a fast-growing community with over 700 members, emphasizing inclusivity and sustainability. Technically, the website is built on WordPress with modern frameworks like Bootstrap 5, supporting good mobile responsiveness and user experience. The site employs standard plugins for cookie consent, analytics, and email marketing, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses domain locking statuses, and provides cookie consent mechanisms, though it lacks DNSSEC and explicit security policies or incident response contacts. Overall, the website is professional, trustworthy, and compliant with GDPR, with moderate tracking via Google Analytics and Mailchimp. The absence of phone contact and physical address is noted but common for such associations. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and implementing a security.txt file to enhance transparency and trust.

S

Storyous

storyous.com

43

Storyous is a well-established company founded in 2012, specializing in modern POS systems tailored for the hospitality industry including restaurants, cafés, and food trucks. The company offers integrated hardware and software solutions such as POS systems with payment terminals, stock management, and real-time business reporting. Positioned as a leading provider in its market, Storyous emphasizes ease of use, rapid staff training, and 24/7 customer support. The parent company is Teya, indicating a broader corporate structure. Technically, the website is built on WordPress and hosted on Amazon AWS infrastructure, utilizing modern JavaScript libraries and analytics tools such as Google Analytics, Microsoft Clarity, and Intercom for customer engagement. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and implements cookie consent mechanisms. However, it lacks DNSSEC and explicit security headers, and does not publish a dedicated security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, Storyous presents a professional, trustworthy, and secure online presence with strong business credibility. Recommendations include enhancing DNS security, adding security headers, and publishing security policies to further strengthen trust and compliance.

M

Marsello

marsello.com

67

Marsello is a medium-sized SaaS company specializing in customer loyalty and marketing software tailored for omnichannel retailers, including retail and hospitality sectors. Their platform integrates POS and eCommerce data to enable loyalty programs, referral marketing, email and SMS campaigns, and AI-driven customer insights. The website is professionally designed, mobile-optimized, and rich in content, showcasing strong branding and customer success stories. Technically, the site leverages HubSpot CMS and modern JavaScript libraries, with extensive use of analytics and marketing tools. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and WHOIS transparency are lacking. Overall, Marsello presents a credible and mature digital presence with room for improvement in domain registration transparency and security disclosures.

B

BP2 Spółka z ograniczoną odpowiedzialnością

solroof.eu

68

SOLROOF is a Polish company specializing in innovative photovoltaic roofing systems fully integrated with metal roofing. The company targets customers interested in clean energy solutions and offers a complete photovoltaic system embedded in roofing materials. The website is professionally designed using WordPress and supports multiple languages, indicating a focus on European markets. The business model centers on product sales and installation services in the energy sector. The company is registered as BP2 Spółka z ograniczoną odpowiedzialnością, based in Kraków, Poland.

C

Community Wealth Partners

communitywealth.com

48

Community Wealth Partners is a nonprofit consulting firm specializing in capacity building, strategy development, and grantmaker services. They focus on partnering with nonprofits to shift power and resources to communities closest to the issues, aiming for sustainable and meaningful impact. The organization has an established market presence with a domain dating back to 1998, indicating longevity and trust in the nonprofit sector. Their website targets nonprofits and grantmakers, offering services that extend organizational capabilities and foster equity. Technically, the website is built on WordPress with a modern tech stack including jQuery, Gravity Forms, and Yoast SEO. The site is mobile optimized and uses several plugins for enhanced user experience, such as sliders and popups. Performance is moderate with good SEO practices but lacks some advanced security headers and DNSSEC. Security posture is adequate with HTTPS enabled and domain transfer protection, but DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR and other regulations. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security measures. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, and publishing security and incident response information to strengthen trust and compliance.

C

Canadian Marketing Association

thecma.ca

67

The Canadian Marketing Association (CMA) is a well-established professional association founded in 2014, serving as the leading voice and resource hub for marketing professionals across Canada. The organization offers a broad range of services including membership, professional development courses, certifications such as the Chartered Marketer designation, advocacy initiatives, and industry events. The CMA positions itself as a catalyst for marketing excellence and business success in Canada, supported by major corporate sponsors and a strong digital presence. The website content is rich with educational resources, event information, and community engagement opportunities targeted at marketing professionals and students.

S

SOLROOF CZ, s.r.o.

solroof.cz

48

SOLROOF CZ, s.r.o. is a Czech-based company specializing in innovative integrated photovoltaic roofing systems combining solar energy technology with steel roofing materials. The company positions itself as a modern, sustainable energy solutions provider targeting roofing professionals, distributors, architects, and end customers seeking clean energy solutions. Their business model focuses on product sales, installation services, and customer support including monitoring and state subsidy assistance. Technically, the website is built on WordPress with a modern tech stack including SEO and multilingual support, offering a professional and user-friendly experience. Security posture is solid with HTTPS, reCAPTCHA Enterprise, and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy. The site is free from adult or questionable content and maintains high content quality and trust indicators.

K

Klober

klober.co.uk

61

Klober is a well-established UK-based manufacturer and supplier specializing in roofing ventilation products and roofing materials. As part of the BMI Group, Klober holds a leading market position in the roofing manufacturing sector, offering a comprehensive range of products including membranes, ventilation solutions, dry verge systems, and lead flashing alternatives. Their website targets installers, distributors, and roofing professionals, providing extensive product information, technical support, and training resources. The site is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper, and Bootstrap, ensuring a responsive and user-friendly experience across devices. The use of Google Tag Manager and reCAPTCHA indicates attention to marketing and security. While no explicit CMS is detected, the site demonstrates good SEO and accessibility practices. Performance is moderate, with opportunities for optimization. From a security perspective, the site enforces HTTPS and includes CSRF tokens, with a robust cookie consent mechanism supporting GDPR compliance. However, security headers are not explicitly detected in the HTML content, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data confirms a long-standing domain registration consistent with the business claims, enhancing trustworthiness. Overall, Klober's website presents a secure, professional, and compliant platform supporting its business operations effectively. Strategic recommendations include enhancing security headers, maintaining up-to-date libraries, and publishing explicit security and incident response policies to further strengthen trust and compliance.

T

TART, s.r.o.

tart.cz

60

TART, s.r.o. is a leading industrial packaging company in Central Europe, specializing in manufacturing and supplying a wide range of packaging materials, packaging machines, and custom packaging solutions. The company serves diverse industrial sectors including automotive, electrotechnical, and engineering industries, with a strong emphasis on sustainability and innovation. Their website reflects a mature digital presence with comprehensive product information, client references, and multilingual support. Technically, the site employs modern web technologies, including Google Tag Manager and reCAPTCHA for form security, and is optimized for mobile devices. Security posture is generally good with HTTPS enforced and form validation, though the absence of visible security headers and lack of published security policies are areas for improvement. The WHOIS data is missing, which raises concerns about domain registration transparency, but the professional business presentation and client portfolio support legitimacy. Overall, the website is trustworthy and well-positioned in its market segment, with recommendations to enhance security policies and domain registration visibility.

D

Dřevoplast Ludvík s.r.o.

drevoplast.com

45

Dřevoplast Ludvík s.r.o. is a Czech family-owned manufacturing company specializing in plastic packaging and components, with over 30 years of experience serving diverse industrial sectors including automotive, food, chemical, cosmetic, healthcare, and beekeeping. The company operates both manufacturing and e-commerce channels, offering custom production and a range of plastic products. The website is professionally designed, mobile-optimized, and provides clear contact information and social media presence, reflecting a mature digital presence. Technically, the website uses modern JavaScript and CSS technologies with Google Tag Manager for analytics. It is served over HTTPS with cookie consent mechanisms in place, demonstrating good privacy compliance. However, the absence of security headers and lack of a dedicated security policy or incident response information indicate areas for improvement in security posture. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and consistency with the company's claimed long history. Despite this, the website content and business information appear credible and trustworthy. Overall, the site scores well on content quality, privacy compliance, and business credibility but should address domain registration transparency and enhance security headers. Strategic recommendations include implementing security headers, publishing security and incident response policies, verifying domain registration details, and continuing to enhance privacy and security practices to strengthen trust and compliance.

V

Van de Velde Packaging

vandeveldepackaging.com

61

Van de Velde Packaging is a well-established European packaging manufacturer specializing in cardboard packaging solutions for diverse markets including food, non-food, and premium products. The company offers end-to-end services from design to production and finishing, emphasizing sustainability and customization. Their website reflects a mature digital presence with multi-language support, professional design, and comprehensive content. Technically, the site uses Drupal CMS with modern tracking and marketing tools integrated, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be enhanced. The WHOIS data is missing or unavailable, which raises transparency concerns but does not negate the evident legitimacy of the business. Overall, the website is professional, trustworthy, and business-focused.

A

AKCENT International House Prague

akcent.cz

45

AKCENT International House Prague is a well-established language school founded in 1990, offering a broad range of language courses including English, German, Spanish, Italian, and Czech for various audiences such as children, youth, adults, and corporate clients. The school is a recognized Cambridge English Platinum Exam Centre and Goethe-Institut Exam Centre, positioning it as a reputable leader in language education within the Czech Republic. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the website employs modern JavaScript libraries such as jQuery, AOS, and LightGallery, and uses Google Fonts for typography. It is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. However, there is room for improvement in security headers and explicit security policies. The site uses HTTPS with a good SSL configuration and integrates Google Analytics for user tracking. From a security perspective, the site demonstrates a solid baseline with HTTPS and cookie consent but lacks published security policies and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain trust analysis, but the presence of international certifications and clear contact information supports legitimacy. Overall, the website presents a trustworthy and professional online presence for a medium-sized educational institution. Strategic improvements in security policies and WHOIS transparency would enhance trust and compliance further.

The DRK-Blutspendedienste website serves as a comprehensive platform for blood donation appointment scheduling and information dissemination in Germany. It is operated under the Deutsches Rotes Kreuz (DRK) umbrella, a well-established non-profit organization. The site targets potential and existing blood donors, providing educational content, campaign information, and access to donor services. The platform enjoys a strong market position as a key coordinator of blood donation services in Germany, supported by official branding and partnerships with regional blood donation organizations. Technically, the website employs a modern tech stack including Ruby on Rails, Matomo analytics, and Cookiefirst for consent management. It is hosted on reputable providers and demonstrates good mobile optimization and SEO practices. The site uses HTTPS with strong SSL configuration and includes CSRF protection in forms, indicating a solid security foundation. However, some security headers are missing, and no explicit security policy or incident response contacts are published. From a security perspective, the site maintains a good posture with encrypted communications and privacy compliance, including GDPR-aligned cookie consent. No vulnerabilities or exposed sensitive data were detected. The absence of a vulnerability disclosure policy and security.txt file is noted as an area for improvement. Overall, the site is trustworthy, professional, and safe for general audiences. Strategically, the website could enhance its security transparency by publishing incident response contacts and security policies. Adding security headers and a vulnerability disclosure mechanism would further strengthen its security maturity. The business credibility is high, supported by consistent branding, partner links, and clear contact channels.

A

ALBIXON a.s.

albixon.co.za

53

ALBIXON a.s. is a well-established European manufacturer specializing in swimming pools and pool enclosures, with a strong market presence across multiple countries and over 30 years of experience. The company targets homeowners and dealers seeking high-quality pool solutions and operates a multilingual web presence to support its international customer base. Technically, the website employs modern web technologies such as Bootstrap, lazy loading, and animation libraries, providing a good user experience with mobile optimization and clear navigation. Security posture is moderate with HTTPS implied but lacks explicit security headers and privacy policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, but the professional branding, certifications, and comprehensive product information support the company's credibility. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security transparency.

A

ALBIXON a.s.

albixonusa.com

52

ALBIXON a.s. is a well-established European manufacturer specializing in swimming pools and pool enclosures, with a strong presence in over 70 countries. The company emphasizes quality, innovation, and customer satisfaction, supported by multiple certifications and a professional online presence. Their website reflects a mature business with clear branding and comprehensive product offerings. Technically, the site uses modern web technologies such as Bootstrap, lazy loading, and animation libraries, providing a good user experience across devices. However, the absence of WHOIS data for the domain www.albixonusa.com raises concerns about domain legitimacy and registration status, which should be investigated further. Security posture is moderate with HTTPS implied but lacking explicit security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security transparency.

The website www.drk-blutspende.de serves as the official platform for the DRK-Blutspendedienste, the blood donation services under the German Red Cross. It provides comprehensive information about blood donation, appointment scheduling, and donor services, targeting the general public in Germany. The site is well-branded, consistent, and professionally designed, reflecting its position as a leading non-profit healthcare service provider. Technically, the site employs modern JavaScript libraries such as Swiper.js and AOS for UI enhancements, uses Matomo for analytics, and integrates a consent management platform to comply with GDPR requirements. The presence of CSRF tokens and HTTPS indicates a good security posture, although some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates a mature digital infrastructure suitable for its healthcare and non-profit mission.

I

InterWay, a. s.

interway.sk

66

InterWay, a. s. is a well-established Slovak IT company with over 26 years of experience providing comprehensive IT infrastructure support, cloud services, cybersecurity consulting, and web application development. The company targets both private and public sector clients, including government ministries, banks, and healthcare institutions, positioning itself as a leading IT solutions provider in Slovakia. Their business model combines service delivery with proprietary products under the WebJET and IwayCloud brands. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and Google Tag Manager, with a proprietary CMS platform (WebJET). The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Performance is moderate, with room for improvement in accessibility and security headers. Analytics usage is moderate and privacy-conscious. From a security perspective, the site uses HTTPS with good SSL configuration and employs CSRF tokens in forms. However, it lacks explicit security policies and incident response contact information, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data aligns well with the company's claims, supporting legitimacy. Overall, InterWay's website demonstrates a strong business presence and technical maturity with good privacy compliance. Strategic improvements in security policy transparency and accessibility would further enhance their security posture and user trust.

M

Miele

mieleexperience.pl

52

Mieleexperience.pl is a Polish-language blog and content platform dedicated to promoting Miele household appliances, emphasizing product quality, sustainability, culinary inspiration, and technology. The site serves as a brand marketing and engagement tool targeting consumers interested in premium home appliances and sustainable living. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including Google Analytics, Google Tag Manager, and performance optimizations via WP Rocket. The site is hosted by OVH SAS with DNSSEC enabled and uses HTTPS, ensuring secure communications. However, it lacks some security headers and explicit cookie consent mechanisms, which are recommended for enhanced security and GDPR compliance. No direct contact information or detailed security policies are provided, which could be improved to increase trust and compliance. Overall, the site is professionally designed, mobile-optimized, and SEO-friendly, with strong branding consistency and official social media presence.

S

Super Consumers Australia

superconsumers.com.au

68

Super Consumers Australia is a small non-profit organization dedicated to advocating for accountability and transparency within the Australian superannuation industry. Their core activities include rigorous research, investigative journalism, and policy advocacy aimed at improving outcomes for Australian superannuation consumers. The website positions the organization as a trusted watchdog and resource for consumers seeking to understand and influence the superannuation system. The target audience is primarily Australian consumers interested in retirement savings and superannuation policy.

K

kajomi GmbH

kajomi.de

71

kajomi GmbH is a German-based company specializing in providing a reliable and flexible newsletter and email marketing platform. With over 20 years of experience, kajomi offers a comprehensive SaaS solution that enables businesses to create, send, automate, and analyze newsletters with a strong emphasis on data security and GDPR compliance. The company positions itself as a top German provider in the email marketing sector, targeting businesses and marketers seeking efficient and secure newsletter distribution services. Their platform integrates with popular social media lead generation tools and offers personal support to clients. Technically, the website is built on WordPress with modern plugins and libraries such as WPBakery Page Builder, jQuery, and Borlabs Cookie for consent management. The site is well-optimized for SEO and mobile devices, with good performance and accessibility standards. The use of Google Tag Manager and Google Analytics indicates a moderate level of user tracking balanced with privacy considerations. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to comply with privacy regulations. While no explicit security headers were detected in the provided data, the site shows no signs of exposed sensitive data or vulnerabilities. The WHOIS data aligns well with the business claims, showing consistent registration and no privacy protection, which supports legitimacy. Overall, kajomi GmbH demonstrates a mature digital presence with strong compliance and security postures suitable for its business model. Recommendations include enhancing security headers, publishing explicit security policies, and adding a vulnerability disclosure mechanism to further strengthen trust and security.

O

OSA – Ochranný svaz autorský pro práva k dílům hudebním, z.s.

100letosa.cz

59

The website www.100letosa.cz serves as a commemorative platform celebrating 100 years of the Ochranný svaz autorský (OSA), the Czech collective rights management organization for music authors. It provides a rich historical timeline and educational content about the evolution of copyright and the Czech music industry. The site targets Czech-speaking audiences interested in cultural heritage and music history. Technically, the site uses standard web technologies such as Bootstrap, jQuery, and AOS for animations, delivering a visually appealing and navigable experience, though mobile optimization and accessibility are basic. Security posture is limited, with no detected security headers or privacy policies, and WHOIS data for the domain is unavailable, which reduces transparency and trust in domain registration details. Overall, the site is professional and trustworthy in content but would benefit from enhanced security and privacy compliance measures.

O

OBAL PRINT, s. r. o.

obalprint.cz

60

OBAL PRINT, s. r. o. is a Czech manufacturing company specializing in offset printing and packaging production, established in 1994. The company offers a wide range of packaging products including boxes, advertising displays, and sales stands, leveraging over 25 years of industry experience. Their market position is solid within the regional packaging manufacturing sector, supported by ISO 9001 certification and a comprehensive service offering including printing, lacquering, laminating, and assembly. The website targets businesses requiring custom packaging solutions and emphasizes quality and short delivery times. Technically, the website uses modern frontend frameworks such as Bootstrap and Material Design Bootstrap, with integrations for Google Analytics and Tag Manager for marketing and analytics purposes. The site is mobile optimized and provides clear navigation and content relevant to its audience. Security posture is moderate with cookie consent and GDPR compliance implemented, but lacks visible security headers and WHOIS data is unavailable, which limits domain trust verification. Overall, the website is professional and trustworthy, but improvements in security headers and domain transparency are recommended.

S

Skiareál Červenohorské sedlo

cervenohorskesedlo.eu

48

Skiareál Červenohorské sedlo is a Czech ski resort business offering winter sports facilities, hotel accommodation, parking, ski school, and related services. The website targets tourists and skiing enthusiasts primarily in the Czech Republic region. The business model integrates hospitality and recreational services with online skipass sales and gift vouchers, positioning itself as a regional ski resort with a comprehensive service offering. Technically, the website is built on October CMS using modern web technologies including Bootstrap, jQuery, and various third-party analytics and marketing scripts. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, it lacks advanced security headers and explicit security or incident response policies. Privacy compliance is basic with presence of privacy and cookie policies but no explicit consent mechanism. Overall, the website is professional and trustworthy with moderate tracking practices and clear business contact information.

Zámek Fryštát is a cultural heritage site owned and operated by the statutory city of Karviná in the Czech Republic. The website serves as an informational portal for visitors, offering detailed descriptions of castle tours, exhibitions, and additional visitor services such as weddings, carriage rides, and photography. The site targets tourists and cultural enthusiasts interested in historical landmarks. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements can be made by adding security headers and publishing a privacy policy. The absence of WHOIS data limits domain trust verification, but the official city ownership and consistent branding support legitimacy. Overall, the website is professional, trustworthy, and serves its purpose effectively.

I

Infinite Design

infinitedesign.cz

47

Infinite Design is a small design studio based in Brno, Czech Republic, specializing in visual identities, logos, web design, and print materials. The website serves as a portfolio and service showcase targeting businesses and organizations seeking branding and design solutions. The company was founded in 2020, and the domain registration aligns with this timeline, indicating consistency and legitimacy. The site content is professional and well-structured, with a focus on creative design services and a local market presence. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as GLightbox and AOS for animations. Google Analytics and Google Tag Manager are implemented for tracking and marketing purposes. The site is mobile optimized and has good SEO practices, though accessibility features are basic. No CMS or hosting provider details were identified from the content. From a security perspective, HTTPS is enabled ensuring encrypted communications. However, no security headers were detected, and there is a lack of formal privacy, cookie, or security policies, which presents compliance and trust gaps. No forms or direct contact emails/phone numbers are visible, limiting user engagement and transparency. The site does not appear to be behind a WAF or blocked by security mechanisms. Overall, the website is a professional and legitimate business presence with moderate technical maturity and security posture. Key improvements include adding privacy and cookie policies, security headers, and clear contact information to enhance compliance, trust, and user experience.

D

DIGIVERSE s.r.o.

digiverse.cz

60

DIGIVERSE s.r.o. is a Czech digital agency specializing in website creation, web application development, and content marketing. The company targets startups, medium-sized businesses, and large corporations, offering a comprehensive suite of digital services including web design, custom app development, content strategy, and hosting support. With 4 years of market presence and 87 completed projects, DIGIVERSE positions itself as a reliable partner in the Czech digital services market. Technically, the website is built on WordPress CMS and leverages modern web technologies such as jQuery, Bootstrap 5, Owl Carousel, and AOS for animations. The site is mobile-optimized, SEO-friendly, and integrates Google Tag Manager for analytics. GDPR compliance is well implemented through the Complianz plugin, including a cookie consent mechanism and explicit user consent on contact forms. From a security perspective, the site enforces HTTPS and uses anti-spam measures like honeypot fields in forms. However, it lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the security posture is good but could be improved with additional headers and documented policies. The overall risk assessment is low, with no signs of malicious activity or privacy violations. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a terms of service page to improve legal clarity and trust. The website demonstrates strong professionalism, trustworthiness, and compliance with privacy regulations.

Poski.com s.r.o. operates the website webmaklere.cz, providing personal websites tailored for real estate agents and financial advisors primarily in the Czech Republic. Their service includes customizable web templates, integration with their proprietary real estate software Poski REAL, hosting, domain management, and marketing support. The company positions itself as a niche provider focused on empowering individual agents to build trust and attract clients through professional online presence. Technically, the website employs a modern JavaScript stack including jQuery, Owl Carousel, and LightGallery, with integration of Google Analytics and Facebook Pixel for marketing and analytics. The site is mobile optimized with good navigation and content relevance. Security-wise, while HTTPS is implied, explicit security headers are not detected, and no vulnerability disclosure or security policy pages are present. The WHOIS data is missing, which reduces trust in domain legitimacy, but the website content and business information appear professional and credible. Overall, the site scores well on content quality and business credibility but could improve security posture and transparency.

W

webdilna | com

webdilna.com

60

webdilna | com is a Czech-based small business specializing in modern web design and development services, including a proprietary content management system and simple e-commerce solutions. The company targets firms and individuals seeking professional, responsive web presentations, leveraging over a decade of experience. The website demonstrates a consistent brand presence and client references, reinforcing its market position as a trusted local web design provider. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and integrates analytics and marketing tools like Google Analytics, Hotjar, and Drift chat. Mobile optimization and SEO practices are well implemented, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and DNSSEC. No privacy policy or terms of service pages were found, indicating room for compliance improvement. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

B

BOUTIQ Real Estate s.r.o.

viladomydunovskeho.cz

58

BOUTIQ Real Estate s.r.o. is a Czech real estate company specializing in residential property development and brokerage, prominently featuring projects such as Viladomy Dunovského in Prague 11 - Chodov. The company targets families and individuals seeking modern, nature-adjacent living spaces with comprehensive amenities. Their market position is that of a small but professional real estate developer with a consistent brand presence and a portfolio of residential projects. The website reflects a professional business model focused on property sales and development services. Technically, the website employs modern web technologies including Bootstrap, jQuery, and various UI and animation libraries, ensuring a responsive and user-friendly experience. The site is well-optimized for SEO and mobile devices, with a moderate performance profile. Cookie consent and privacy compliance are well implemented, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and cookie consent mechanisms effectively but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or suspicious activities were detected in the content or scripts. The domain WHOIS data is privacy-protected, which is common and justified for this business type. Overall, the website presents a trustworthy and professional image with good content quality and technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

H

Horizon Holding

arboret.cz

47

The website www.arboret.cz represents a real estate development project by Horizon Holding, focusing on modern residential apartments in Prague 4 - Záběhlice. The project offers a variety of apartment sizes with amenities such as terraces and balconies, targeting individuals and families seeking quality urban living with good transport links and access to nature. The site is professionally designed with clear navigation and relevant content, supporting a positive user experience. Technically, the website employs modern front-end frameworks including Bootstrap and uses analytics and marketing tools such as Google Tag Manager and Microsoft Clarity. The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. However, there is no evidence of a CMS or hosting provider details, and some security best practices like security headers are missing. From a security perspective, the site uses HTTPS and has no visible vulnerabilities or exposed sensitive data. The cookie consent and privacy policy indicate a commitment to privacy compliance. The absence of WHOIS data for the domain is a concern, reducing trust from a domain registration standpoint, but the website content and business information appear legitimate and professional. Overall, the website presents a trustworthy and professional front for the real estate project, with room for improvement in security policy transparency and domain registration clarity.

J

Jiří Tschiharsch

premiovymakler.cz

49

The website premiovymakler.cz represents a Czech real estate brokerage business operated by Jiří Tschiharsch, a professional real estate agent with over a decade of industry experience. The site offers a range of services including property sales, purchases, financing assistance, and renovations, targeting local clients in the Czech Republic. The business is positioned as a premium agent with strong client testimonials and a focus on personalized service. Technically, the website employs modern web technologies such as Bootstrap 5, jQuery, and integrates analytics tools like Google Analytics and Facebook Pixel. It is hosted under the domain registered with REG-WEDOS, indicating a reliable hosting environment. The site is mobile-optimized and features good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could be improved. No vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy digital presence for a small real estate business. Strategic improvements in security policies and accessibility could enhance its posture further.

B

BOUTIQ Real Estate s.r.o.

boutiq.cz

58

BOUTIQ Real Estate s.r.o. is a Czech Republic based real estate agency specializing in premium residential and commercial properties primarily in Prague and surrounding regions. The company offers property sales, rentals, and development project services, targeting buyers, sellers, and investors in the real estate market. Their website reflects a professional and consistent brand presence with clear business information and multiple contact channels. Technically, the website uses modern front-end technologies including Bootstrap, jQuery, and GSAP, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and secure forms, though HTTP security headers are not visibly configured and no incident response or vulnerability disclosure information is published. Privacy and cookie policies are comprehensive and GDPR compliant with consent mechanisms in place. Overall, the website is trustworthy and well-maintained, though the absence of WHOIS data reduces domain trustworthiness slightly.

O

OpenDrives

opendrives.com

76

OpenDrives is a technology company specializing in high-performance, scalable NAS and data storage solutions tailored for businesses managing unstructured data and media workflows. The company positions itself as a reliable B2B provider with a focus on optimizing data management and storage efficiency. Their website reflects a professional and consistent brand image, targeting business customers in the technology sector primarily within the United States. Founded in 2013, OpenDrives has established a medium-sized presence with clear contact information and active social media channels. Technically, the website is built on WordPress and leverages modern web technologies including Google Analytics, Hotjar, Cookiebot for consent management, and various frontend libraries like Swiper.js and AOS for enhanced user experience. The site is hosted with GoDaddy as registrar and uses Sucuri DNS servers, indicating attention to security and performance. The website is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS with good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and some security headers are not explicitly detected, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact is noted. Overall, OpenDrives presents a trustworthy and professional online presence with solid business credibility and privacy compliance. Strategic recommendations include enabling DNSSEC, publishing security policies, and enhancing security headers to further strengthen their security posture and trustworthiness.

R

REAL CHEB reality s.r.o.

realcheb.cz

53

REAL CHEB reality s.r.o. is a small-sized real estate agency based in Cheb, Czech Republic, specializing in the sale and rental of residential, commercial, and recreational properties primarily in the Karlovy Vary region. With over 30 years of market presence, the company positions itself as a trusted local expert offering comprehensive real estate brokerage services including legal and tax advisory, property valuation, and handling complex cases such as insolvencies and foreclosures. The website reflects a professional business model targeting individuals and businesses seeking real estate transactions in the region. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Slick Carousel, and Google services such as Analytics and Maps API. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible HTTP security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the website content and contact information support business credibility. Overall, the website presents a trustworthy and professional real estate service with good digital maturity. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and compliance standing.

S

Schliemann-Museum

schliemann-museum.de

46

The Schliemann Museum Ankershagen is a cultural institution dedicated to preserving and presenting the life and work of Heinrich Schliemann, a notable archaeologist and businessman. The museum offers exhibitions, educational programs, and events targeting families, school groups, and cultural enthusiasts. It holds a respected position regionally with national cultural significance, operating under the MuSeEn gGmbH umbrella. The website reflects this mission with clear, well-structured content and a focus on accessibility and visitor information. Technically, the website is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Hosting is stable with German providers, and performance is moderate with good SEO and accessibility practices. The site employs a cookie consent mechanism compliant with GDPR, and integrates Google Tag Manager for analytics. From a security perspective, the site enforces HTTPS and uses cookie consent controls but lacks explicit published security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the website content and hosting, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, serving its cultural and educational purpose effectively. Strategic improvements could include publishing formal security and incident response policies and enhancing security headers to further strengthen the security posture.

S

Studio Najbrt

najbrt.cz

71

Studio Najbrt is a leading Czech graphic design studio specializing in a wide range of creative services including branding, visual identity, motion graphics, 3D design, web design, and more. The company targets clients seeking comprehensive and lasting design solutions with a blend of precision, boldness, humor, and surprise. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site uses a modern CMS platform (Solidpixels) and integrates popular libraries and tools such as Google Tag Manager, Swiper.js, and Fancybox. Security posture is good with HTTPS enforced and error monitoring via Sentry, though some security headers and policies could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks explicit privacy and terms of service pages. WHOIS data is unavailable, which limits domain trust assessment. Overall, the site is professional, secure, and trustworthy but would benefit from enhanced transparency and security documentation.

B

Biopekárna Zemanka s.r.o.

biopekarnazemanka.cz

45

Biopekárna Zemanka s.r.o. is a Czech organic bakery specializing in sweet cookies and savory crackers, operating since 2006. The company targets a broad audience including adults, children, allergy sufferers, and vegans, offering a diverse product range and private label production. Their market position is that of a trusted local organic bakery with a focus on quality and sustainability. The website reflects this with clear branding, product information, and e-commerce integration via a partner domain. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap, jQuery, and FontAwesome Pro. It includes a cookie consent mechanism and uses Google Tag Manager for analytics. The site is mobile optimized and has good user experience, though some SEO and accessibility improvements are possible. The SSL configuration is excellent, but security headers are missing, which could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is basic but present, with privacy and cookie policies available. However, the lack of WHOIS data for the domain reduces trust in domain legitimacy and registration transparency. Overall, the website is professional and trustworthy from a business and user perspective, but domain registration opacity is a concern. Strategic improvements in security headers and enhanced privacy disclosures would strengthen the security and compliance posture.

A

ALIKA a.s.

alika.cz

49

ALIKA a.s. is a well-established Czech family-owned company specializing in the manufacturing and distribution of roasted nuts, salty snacks, dried fruits, and oilseeds with over 30 years of experience. The company operates multiple brands and serves both B2B and B2C markets, including a dedicated e-commerce platform. The website reflects a professional digital presence built on Joomla CMS with modern web technologies and includes multilingual support. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks some advanced security headers and formal privacy and terms policies. Contact information is limited to a physical address, which may impact direct customer engagement. Overall, the domain and business information are consistent and trustworthy, supporting a medium-sized manufacturing business in the Czech Republic.

S

Sveriges lantbruksuniversitet

interbull.org

59

Interbull is a well-established permanent subcommittee of ICAR, hosted by Sveriges lantbruksuniversitet in Sweden, specializing in independent genetic and genomic evaluations for dairy and beef cattle. The organization provides a range of services including data exchange, breeding value calculations, and validation reports, serving a global audience of animal breeding professionals and researchers. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its specialized audience. Technically, the site is built on the Web2py framework, utilizing modern JavaScript libraries and is hosted via Loopia Group. While the site is mobile-optimized and performs moderately well, there are opportunities to enhance accessibility and SEO further. Security posture is adequate with HTTPS usage and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the business identity, supporting high legitimacy and trustworthiness.

D

Deep Purple EU

kreislaufwirtschaft.at

52

The website kreislaufwirtschaft.at serves as a dedicated platform promoting circular economy initiatives in Austria. It targets citizens, entrepreneurs, and decision-makers by providing information, interactive tools such as a resource-sharing map, a funding database, and consulting services. The platform is supported by government funding, enhancing its credibility and positioning it as a niche but important resource in the sustainability sector within Austria. Technically, the site is built on WordPress using modern libraries like Bootstrap 4 and jQuery, with moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism, though it lacks explicit security headers and a vulnerability disclosure policy. Overall, the site is professional, trustworthy, and well-aligned with its mission, but could improve security posture and transparency.

B

BE A FUTURE

beafuture.com

65

BE A FUTURE is a Czech Republic-based technology company specializing in IT services such as information systems, IT improvement, new IT development, and system integration. The company positions itself as a future-oriented IT partner emphasizing agility, loyalty, and partnership with clients. The website is professionally designed, mobile-optimized, and provides clear navigation and service descriptions. Technical infrastructure includes modern web technologies such as Bootstrap, Google Analytics, and reCAPTCHA, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and bot protection in place, but lacks visible security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism implemented but no explicit privacy policy or terms of service found. The absence of WHOIS registration data raises concerns about domain legitimacy, impacting overall trust. Strategic recommendations include publishing privacy and security policies, improving security headers, and clarifying domain registration status to enhance trust and compliance.

G

Green REV Institute

greenrev.org

55

Green REV Institute is a Polish non-profit organization dedicated to advocating for sustainable food systems, animal rights, and climate action. The organization operates through educational programs, advocacy campaigns, coalition building, and publication of reports and magazines. Their target audience includes activists, experts, policymakers, and informed consumers interested in environmental and social justice. The website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and integrates third-party services like Stripe and Hotjar for payments and analytics. Security posture is good with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and security headers are recommended. The WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional, content-rich, and trustworthy, serving as an effective platform for the organization's mission.

D

Dům dětí a mládeže hlavního města Prahy

ddmpraha.cz

44

Dům dětí a mládeže hlavního města Prahy is a well-established public institution founded in 1998, providing educational and leisure activities for children and youth in Prague. The organization operates multiple branches offering clubs, camps, events, rentals, and educational programs, targeting children, youth, parents, and educators. It is funded and overseen by the city of Prague, positioning it as a key local educational service provider with a strong community presence. Technically, the website employs a modern tech stack including Bootstrap, jQuery, FontAwesome, and Matomo analytics, ensuring a responsive and user-friendly experience. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting and domain registration are consistent and reliable, managed by REG-GRANSY since 1998. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, explicit security headers and incident response policies are not publicly visible, indicating room for improvement in security posture. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. Overall, the website is professional, trustworthy, and safe for general audiences, with no adult or questionable content. The domain's long history and consistent WHOIS data reinforce its legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility and SEO to further strengthen the site's digital maturity and compliance.

M

Miamo

miamo.cz

49

Miamo is a Czech ice cream brand that blends traditional production methods with innovative flavors and modern design, targeting a broad audience of ice cream lovers. The brand is supported by TIPAFROST, a significant Czech ice cream manufacturer, indicating a solid manufacturing and distribution foundation. The website presents a professional and user-friendly interface with clear navigation, detailed product offerings, and active social media engagement. Technically, the site is built on WordPress using popular plugins for forms and GDPR compliance, with moderate performance and good mobile optimization. Security posture is generally strong with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response policies. The absence of WHOIS data is a notable concern, reducing domain trustworthiness and suggesting the need for further verification. Overall, the site is well-positioned in its market segment but could improve transparency and security practices.