Security Directory

K

KAJOT INTACTO

kajotintacto.cz

52

KAJOT INTACTO operates an exclusive network of premium gaming centers, casinos, and sports betting venues primarily in the Czech Republic. The company targets adult customers interested in gambling and entertainment, offering a variety of gaming options including VLT machines, roulette, poker, and sports betting. The website reflects a mature business with a clear market position as a leading entertainment provider in its sector. Technically, the site is built on WordPress with common plugins such as Yoast SEO and Slider Revolution, and integrates Google Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit incident response information. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common in the gambling industry. Overall, the site is legitimate, professional, and compliant with basic privacy regulations.

A

Association de Banques Privées Suisses (ABPS)

abps.ch

50

The Association de Banques Privées Suisses (ABPS) is a Swiss banking association representing 8 private banks with over 9800 employees worldwide. The organization focuses on advocacy and representation of its members' professional interests, aiming to maintain and develop optimal conditions for private and institutional wealth management in Switzerland. The website is professionally designed, multilingual, and provides relevant information about the association, its members, publications, and media presence. Technically, the site is built on WordPress with modern plugins and SEO tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and anti-bot measures on forms, though it lacks explicit security headers and incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR explicit statements. Overall, the site is trustworthy and credible, reflecting a legitimate and established financial association.

Q

Quartex s.r.o

qinvoice.cz

48

Q.Invoice, operated by Quartex s.r.o., is a Czech Republic-based technology company specializing in AI-powered automation of incoming invoice processing. The platform offers automated data extraction, multi-level approval workflows, and integration with accounting software, targeting businesses seeking to streamline their invoice management. The website demonstrates a professional digital presence with clear business information, client testimonials, and compliance with privacy regulations. Technically, the site is built on WordPress with modern libraries and includes cookie consent mechanisms and Google Tag Manager for analytics. Security posture is solid with HTTPS and session management, though explicit security headers and incident response policies are absent. Overall, Q.Invoice presents a credible and mature SaaS offering in the invoice automation niche, with room for enhanced security transparency and WHOIS data availability.

E

European Payment Institutions Federation (EPIF)

paymentinstitutions.eu

70

The European Payment Institutions Federation (EPIF) is a well-established non-profit organization founded in 2011, representing payment institutions across Europe. The website serves as a professional platform to provide information about the federation, its mission, membership, policy projects, and latest news. It targets payment service providers, regulators, and stakeholders in the European financial services sector. The site is built on WordPress with a modern theme and plugins, offering a good user experience with clear navigation and mobile optimization. Privacy and cookie policies are implemented with GDPR compliance, and contact information is clearly provided. Security posture is solid with HTTPS and consent mechanisms, though formal security policies and incident response details are absent. Overall, the domain registration and website content are consistent and trustworthy, reflecting a credible business presence in the finance sector.

E

European Central Securities Depositories Association

ecsda.eu

55

The European Central Securities Depositories Association (ECSDA) is a key industry association representing Central Securities Depositories across Europe. The organization focuses on advocacy, policy development, and coordination to support the integration and efficiency of European capital markets. ECSDA provides publications, hosts conferences, and engages with regulatory bodies to influence the financial market infrastructure landscape. The website reflects a professional and active association with a clear focus on finance and securities settlement. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses common libraries such as jQuery and Font Awesome. It integrates Google Maps and social media widgets to enhance user engagement. The site demonstrates good mobile optimization and moderate performance, with a clean and consistent design. From a security perspective, the site enforces HTTPS and uses secure external libraries. However, it lacks explicit security headers and does not publish dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with privacy and cookie policies present, though no active cookie consent mechanism is implemented. Overall, ECSDA's website is trustworthy, professionally maintained, and suitable for its target audience of financial institutions and regulators. Strategic improvements in security policy transparency and privacy consent mechanisms would enhance its compliance and trustworthiness further.

M

Město Litoměřice

litomerice.cz

67

Město Litoměřice operates an official municipal website serving residents, tourists, and local businesses by providing comprehensive information about city governance, events, tourism, and public services. The site is positioned as the primary digital portal for the city, offering a broad range of services and information relevant to its audience. The business model is government/public service focused, targeting a general audience with an emphasis on community engagement and transparency. Technically, the website is built on Joomla CMS with a modern technology stack including jQuery, Bootstrap, Google Maps API, and analytics tools such as Google Analytics and Matomo. The site demonstrates good mobile optimization, accessibility features, and SEO practices, reflecting a mature digital infrastructure suitable for a municipal entity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not fully evident, the site follows best practices such as CSRF token usage and avoids exposing sensitive data. No critical vulnerabilities were detected in the content, indicating a solid security posture. Overall, the website is trustworthy and professional, though the absence of WHOIS data reduces domain registration transparency. The site is not blocked by WAF or security mechanisms, allowing full content access. Strategic recommendations include enhancing security headers and maintaining regular updates to CMS and libraries to sustain security and compliance.

D

Diakonie ČCE - Západ

diakoniezapad.cz

59

Diakonie ČCE - Západ is a well-established non-profit organization in the Czech Republic providing social services including day care for people with disabilities, senior day care, and volunteer programs. The organization has a strong market position as one of the leading social service providers in the country, serving diverse groups such as children, adults, and seniors. Their website reflects a professional and consistent brand image with clear contact information and service descriptions. Technically, the site is built on WordPress using the Divi theme, incorporating modern libraries like jQuery and Google APIs, and implements GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some advanced security headers and explicit security policies. The absence of WHOIS data reduces domain trust but the website content and structure indicate legitimacy. Overall, the site is functional, user-friendly, and trustworthy for its intended audience.

New Living Center is a Prague-based real estate and design center offering a comprehensive range of showroom services and design brands targeted at architects, designers, developers, and design enthusiasts. The website presents a professional and visually appealing platform showcasing multiple showrooms and services, emphasizing quality materials and design uniqueness. Technically, the site employs modern web technologies including Google Analytics, Facebook Pixel, and SmartEmailing for marketing and tracking, with good mobile optimization and performance. Security posture is solid with HTTPS and secure form validation, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is unavailable, which reduces transparency and trustworthiness. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

E

EZÚ - Elektrotechnický zkušební ústav, s. p.

ezu.cz

62

EZÚ - Elektrotechnický zkušební ústav, s. p. is a Czech state enterprise specializing in accredited testing and certification services for electrotechnical, construction, automotive, and healthcare products. The organization holds multiple certifications and accreditations, positioning itself as a trusted authority in product compliance and safety. The website reflects a mature digital presence with multilingual support and comprehensive service offerings. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and SEO best practices. Security posture is strong with HTTPS, security headers, and Cloudflare DNS, though there is room for improvement in incident response transparency and vulnerability disclosure. Overall, the site is professional, trustworthy, and well-aligned with the organization's business objectives.

P

Pivovar Zhůřák

pivovarzhurak.cz

48

Pivovar Zhůřák is a small independent craft brewery based in the Czech Republic, specializing in top-fermented modern beer styles such as IPA and NEIPA. Founded in 2013, it operates a 250-liter brewing system and distributes its products locally in kegs and bottles. The website provides detailed product information, contact details, and social media links, targeting craft beer enthusiasts and local consumers. Technically, the site is built on Drupal 7, uses jQuery and Google Tag Manager, and integrates Google Maps for location services. While the site is functional and well-structured, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with HTTPS usage but no visible security headers or incident response information. Overall, the site is trustworthy but could improve compliance and security practices.

A

Asociace sklářského a keramického průmyslu ČR

askpcr.cz

51

Asociace sklářského a keramického průmyslu ČR is a well-established Czech industry association representing manufacturers and stakeholders in the glass, ceramics, and porcelain sectors. Founded in 1990 with a domain registered since 2000, it serves as a key advocate and collaborative platform for its members, offering services such as collective bargaining, industry news, publications, and educational support. The website reflects a professional and consistent brand presence targeting industry professionals, educational institutions, and partners within the Czech Republic. Technically, the site uses a custom CMS with jQuery, Google Maps API, and Google Analytics, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit privacy and terms of service pages and security headers. Overall, the site is trustworthy and credible with clear contact information and social media presence.

P

ProfiWH

profiwh.cz

42

ProfiWH is a Czech-based technology company specializing in webhosting, serverhosting, domain registration, and SSL certificate services. The company targets individuals and businesses seeking affordable and reliable hosting solutions with a broad range of domain extensions. Their market position is that of a regional hosting provider offering competitive pricing and professional services. The website is professionally designed with clear navigation and relevant content, supporting a positive user experience. Technically, the site uses a custom CMS with older JavaScript libraries such as jQuery 1.8.3, Materialize CSS, and integrates Google Maps and Facebook SDK for enhanced functionality. Security posture is moderate with HTTPS enabled and automated backups mentioned, but lacks visible security headers and uses outdated libraries, which pose potential risks. Privacy compliance is basic with a GDPR page present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from technical and security improvements.

P

ProfiWH

profiwh.com

45

ProfiWH is a Czech-based hosting service provider established in 2004, offering a range of services including webhosting, serverhosting, domain registration with over 200 domain extensions, SSL certificates, and VPS hosting. The company targets businesses and individuals seeking reliable and professional hosting solutions with a focus on data care, high availability, and automatic backups. The website is professionally designed and provides multiple customer portals and administrative tools, reflecting an active and service-oriented business model. Technically, the website uses a custom CMS with technologies such as jQuery 1.8.3, Materialize CSS, Unite Gallery, and integrates Google Maps and Facebook SDK. While the site is functional and moderately optimized for performance and mobile, some technical debt is evident, such as the use of an outdated jQuery version and a broken Google Maps integration. SEO and accessibility are basic but adequate for the business purpose. From a security perspective, the site uses HTTPS and advertises SSL certificates but lacks DNSSEC and security headers, which are recommended for enhanced protection. The absence of a cookie consent mechanism is a GDPR compliance gap, although a GDPR page is present. No explicit security policy or incident response information is provided, which could be improved to enhance trust and compliance. Overall, ProfiWH presents a credible and established hosting business with a good level of professionalism and business credibility. Security and privacy compliance can be improved, particularly in cookie consent and security headers. The domain WHOIS data is consistent and supports the legitimacy of the business. The website content is safe for general audiences with no adult or questionable content detected.

W

WEBNIA s.r.o.

webnia.cz

60

WEBNIA s.r.o. is a Czech-based technology service provider specializing in custom web development, e-commerce solutions, graphic design, and printing services. The company positions itself as a quality-focused partner for businesses seeking tailored digital solutions, emphasizing functionality, design, and client collaboration. Their market presence is supported by a diverse portfolio of clients and positive Google reviews, indicating a strong regional reputation. Technically, the website employs modern web technologies including Google Fonts, FontAwesome, Google Maps API, and multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Smartlook. The site is well-optimized for mobile devices, features clear navigation, and includes comprehensive cookie consent mechanisms, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS and implements cookie consent with granular controls. However, no explicit HTTP security headers were detected, and there is no published security policy or incident response information. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and business presentation are professional and trustworthy. Overall, the website demonstrates a high level of professionalism and digital maturity, with moderate security posture and good privacy compliance. The main risk lies in the lack of WHOIS transparency and missing security headers, which should be addressed to enhance trust and security.

W

WEBNIA s.r.o.

webnia.cloud

60

WEBNIA s.r.o. is a Czech-based technology service provider specializing in custom web development, e-commerce solutions, graphic design, and printing services. The company positions itself as a quality-focused partner for businesses seeking tailored digital solutions, emphasizing functional, responsive, and visually appealing websites and e-shops. Their market presence is supported by a portfolio of client references and positive Google reviews, indicating a trusted regional player in their sector. Technically, the website employs modern web technologies including Google Fonts, Font Awesome, Google Maps API, and analytics/tracking tools such as Google Analytics, Facebook Pixel, and Smartlook. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms with granular controls, but lacks visible HTTP security headers and formal security policy documentation. The absence of WHOIS data limits domain trust verification, though the website content and business information appear professional and credible. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security posture and domain transparency.

J

JF Logistics GROUP s.r.o.

jflogistics.cz

50

JF Logistics GROUP s.r.o. is a Czech Republic-based logistics company specializing in domestic and international freight transportation, warehousing, express delivery, moving services, and freight forwarding. Established originally in 2006 and incorporated as a limited liability company in 2016, it operates a sizable fleet of 155 vehicles and serves a diverse client base including notable brands such as BMW, Kofola, and DHL. The company emphasizes safety, professionalism, and customer-specific logistics solutions. The website reflects a mature business with consistent branding and comprehensive service descriptions targeting business customers in the transportation sector. Technically, the website employs standard JavaScript libraries like jQuery and Owl Carousel, integrates Google Maps API for location services, and is hosted on a Czech hosting provider. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Analytics tracking is minimal, with Google Analytics code commented out and some retargeting scripts active. No CMS or advanced frameworks are detected. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks visible security headers and published security or privacy policies, which impacts compliance and security posture. There is no evidence of incident response contacts or vulnerability disclosure mechanisms. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company’s history and no privacy protection, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security headers, and transparency regarding data protection to improve its security and compliance posture.

A

Autodoprava Pardubice

autodoprava-pardubice.cz

52

Autodoprava Pardubice, operated by Aleš Koryčínský, is a small transportation business specializing in the professional delivery of bulk and palletized construction materials in Pardubice and surrounding areas. The company emphasizes reliability, timely delivery, and offers additional equipment rental services such as a tractor excavator for loading. The website is well-structured and professionally designed, providing clear contact information and service descriptions tailored to local customers. The business is newly established in 2024, with domain registration consistent with this timeline. Technically, the website leverages modern web technologies including Webflow CMS, Google Fonts, jQuery, and Google Maps API for location services. Hosting is provided by cesky-hosting.eu. The site performs moderately well with good mobile optimization and basic accessibility features. SEO is adequately addressed through meta tags and structured data. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks explicit security headers and does not disclose privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The absence of tracking or analytics scripts suggests minimal user tracking, enhancing privacy. Overall, the website presents a trustworthy and professional image suitable for a small local business. To improve, the company should implement privacy and cookie policies, enhance security headers, and consider publishing security and incident response information to strengthen compliance and user trust.

P

PLAST komplet s.r.o.

plast-komplet.cz

56

PLAST komplet s.r.o. is a Czech company specializing in the collection, recycling, and processing of industrial plastic waste into reusable materials such as plastic flakes and regranulates. Established since 2008, the company operates with a focus on sustainability and environmental responsibility, serving primarily industrial clients seeking ecological waste management solutions. Their key services include plastic waste purchase, shredding, regranulation, compounding, and environmental consulting. The company holds ISO 9001 certification, indicating a commitment to quality management. Technically, the website is built on Webflow with integration of Google Maps API and jQuery, offering a modern and responsive user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy policies, which are areas for improvement. The absence of WHOIS data limits domain transparency and trust verification, though the website content and business information appear professional and credible. Overall, the company presents a trustworthy and specialized service offering in the plastic recycling sector with room to enhance compliance and security practices.

Café Mozart is a hospitality business located in Prague's Old Town, offering café and patisserie services with a unique view of the Astronomical Clock. The website presents a professional and content-rich experience targeting tourists and visitors seeking cultural and gastronomic experiences. The technical infrastructure uses common web technologies such as jQuery, Bootstrap, Google Analytics, and Google Maps API, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security headers and public incident response policies. WHOIS data is unavailable, which slightly reduces trust but the website's contact information and social media presence support legitimacy. Overall, the site is well-designed and trustworthy for its business domain.

A

Active24

active24.cz

67

Active24 is a well-established Czech technology company specializing in domain registration, professional web hosting, VPS, dedicated servers, email solutions, SSL certificates, and online marketing services. The company targets individuals and businesses seeking reliable and secure online presence solutions primarily in the Czech Republic. Their market position is strong regionally, supported by a broad portfolio of hosting and web services. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with modern frameworks and includes multiple third-party analytics and marketing integrations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. The absence of WHOIS data is likely due to privacy protection, which is justified for this business type. Overall, the website and business demonstrate legitimacy and professionalism.

R

RESTAURACE AL MINUTO

uminuty.cz

64

RESTAURACE AL MINUTO is an established Italian cuisine restaurant located in the historic Old Town area of Prague, Czechia. The business offers a broad menu including fresh pasta, pizzas, salads, fish, and desserts, complemented by an online menu and reservation system. The website reflects a professional and consistent brand image, targeting general audiences seeking quality dining experiences. Technically, the site is built on modern frameworks such as Next.js and leverages cloud services for performance and analytics, ensuring a fast and accessible user experience across devices. Security posture is strong with HTTPS enforced and privacy compliance evident through comprehensive policies and cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected, and the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Overall, the website demonstrates a mature digital presence suitable for its hospitality sector.

T

TASR administrácia

imporel.com

58

The website imporel.com serves as an administrative login portal for TASR, a media organization likely based in Slovakia. It provides access to various internal modules related to media content management, including polls, politicians, events, emails, and charts. The platform is built as a Single Page Application using AngularJS and integrates several third-party libraries and services such as Google Analytics and Google Maps API. The domain is well maintained with a consistent registration history dating back to 2015. From a technical perspective, the website employs a moderately modern technology stack but relies on AngularJS, which is deprecated and may pose future maintenance and security challenges. The site is served over HTTPS with Cloudflare DNS, but lacks several important security headers such as Content-Security-Policy and X-Frame-Options. Performance and mobile optimization are basic but functional. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure. However, the absence of comprehensive privacy and cookie policies, as well as missing security headers, reduces compliance and security maturity. No WAF or blocking mechanisms are detected, and the site is accessible without restrictions. Overall, the website is a professional internal tool with moderate security and compliance maturity. Strategic improvements in privacy compliance, security headers, and modernization of the technology stack are recommended to enhance security and trustworthiness.

K

katz83

katz83.com

57

The website katz83.com currently presents minimal content with no visible business description, contact information, or policies. The domain is registered since 2020 with Tucows Domains Inc. and uses Forpsi nameservers, indicating a small-scale hosting setup. Technically, the site uses modern JavaScript frameworks and Google Maps API but lacks SEO optimization, accessibility features, and security best practices. Security posture is weak due to missing security headers, no DNSSEC, and absence of privacy or cookie policies. Overall, the site appears to be a placeholder or under development with low business credibility and trustworthiness.

S

SM Production s.r.o.

merch4u.cz

67

Merch4U, operated by SM Production s.r.o., is a Czech-based medium-sized company specializing in custom clothing and textile accessories production with a strong emphasis on branding, quality, and sustainability. The company serves a B2B audience, providing comprehensive services including printing, embroidery, and design assistance. Their market position is supported by two decades of experience and a broad client base, including notable brands and organizations. The website reflects a professional and trustworthy business with clear contact channels and client testimonials. Technically, the website is built on the solidpixels CMS platform and integrates modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel. It employs HTTPS with good SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured content. From a security perspective, the site demonstrates good practices including secure forms with CAPTCHA and HTTPS enforcement. However, it lacks explicit security headers and published security policies or incident response contacts, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious content were detected. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. The absence of WHOIS data due to privacy protection slightly reduces transparency but does not detract from the legitimacy of the business as evidenced by the detailed and professional website content.

ACCOM holding s.r.o. is a well-established Czech group specializing in the production, import, export, and distribution of dairy products. Founded in 1990, the company operates multiple subsidiaries focused on manufacturing and distribution, serving both domestic and international markets. The website reflects a professional corporate presence with clear business information and multiple contact points. Technically, the site is built on WordPress with common plugins for SEO, user experience, and compliance, though some technologies like jQuery are outdated. Security posture is generally good with HTTPS and cookie consent implemented, but lacks advanced security headers and a formal security policy. The absence of WHOIS data is a notable gap in domain legitimacy verification but does not detract from the business credibility presented on the site.

P

Pivovar KONRAD

pivo-konrad.cz

60

Pivovar KONRAD is a traditional Czech brewery with a long heritage dating back to 1872, specializing in craft beer production including a variety of beer types such as light, dark, strong, flavored, and non-alcoholic beers. The company operates a brewery, a pub, and a retail store, targeting beer enthusiasts and local customers. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern tracking and analytics tools including Google Tag Manager, Facebook Pixel, and Microsoft Clarity, and is built on the Solidpixels CMS platform. Security posture is generally good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification. Overall, the website is mature, trustworthy, and compliant with privacy regulations, serving a niche market in the Czech Republic.

P

Pivovar Strakonice 1649, a. s.

pivovar-strakonice.cz

54

Pivovar Strakonice 1649, a. s. is a historic Czech brewery with a tradition dating back to 1649, currently operating since 2004 in its modern form. The company produces and sells beer products, targeting both retail customers and the hospitality sector. Their market position is that of a regional brewery with a strong local heritage and a diversified offering including regular beers, special brews, and brewery tours. The website reflects a professional and consistent brand image with comprehensive product and contact information. Technically, the site uses modern web technologies such as Google Fonts, Tiny Slider, Google Tag Manager, and Google Maps API, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. WHOIS data is unavailable, which slightly reduces trust but does not contradict the legitimacy of the business as evidenced by detailed contact information and social media presence. Overall, the website is mature, well-maintained, and compliant with GDPR, serving a mature audience due to its alcohol-related content.

C

Crocodille ČR, spol. s r.o.

crocodille.cz

58

Crocodille ČR, spol. s r.o. is a well-established company specializing in the production and distribution of packaged bakery products such as baguettes, sandwiches, paninis, and wraps. The company operates multiple brands including Bageterie Boulevard and 360pizza, positioning itself as a leader in the retail and food service sectors within the Czech Republic. Their business model integrates in-house ingredient production, bakery operations, and logistics with a large distribution network serving thousands of stores daily. The website reflects a professional and consistent brand image with detailed product information and corporate insights. From a technical perspective, the website employs modern JavaScript libraries including jQuery and Slick Carousel, integrates Google Fonts and Google Maps API, and uses HTTPS for secure communications. The site is mobile optimized and provides a good user experience with clear navigation and content relevance. However, there is no detected CMS or hosting provider information, and some accessibility features could be improved. Security-wise, the site uses HTTPS but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible privacy policy, cookie consent mechanism, or vulnerability disclosure information, which are important for compliance and user trust. The WHOIS data for the domain is missing, which raises concerns about domain legitimacy and registration consistency, especially given the company's claimed long history. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance measures, and clarification of domain registration details to improve trust and reduce risk.

La Bodeguita del Medio Praha is a Cuban restaurant and bar located in Prague, offering authentic Cuban cuisine, cocktails, live music, and a cigar club experience. Established since 2002, it is part of the Gastro Holding Group a.s., serving both tourists and locals seeking a cultural and culinary Cuban experience. The website is professionally designed with good content quality, clear navigation, and mobile optimization. It integrates multiple tracking and advertising technologies with user consent mechanisms, reflecting a mature digital marketing approach. However, the absence of WHOIS data and explicit security policies slightly reduces trustworthiness. The site uses HTTPS and cookie consent banners, but lacks visible security headers and incident response information. Overall, the business appears legitimate and well-positioned in the hospitality sector in Prague.

Café Mozart is a hospitality business located in Prague's Old Town, offering a unique cafe experience with home-made cakes, coffee, piano concerts, and event hosting. The business leverages its prime location opposite the Prague Astronomical Clock to attract tourists and locals seeking cultural and culinary experiences. The website reflects a professional and consistent brand image with clear contact information and multilingual support. Technically, the site uses a modern tech stack including jQuery, Bootstrap, Google Maps API, and integrates analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is generally good with HTTPS and cookie consent mechanisms, though some improvements are recommended in security headers and error handling. The absence of WHOIS data slightly reduces trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, fixing minor code errors, and maintaining GDPR compliance.

Grand Hotel Praha is a historic 4-star hotel located in the heart of Prague's Old Town Square, offering a blend of history and modern comfort. The website presents a comprehensive overview of their accommodation options, including rooms, residences, dining at Café Mozart, special offers, concierge services, and event hosting. The business targets tourists and business travelers seeking premium lodging in Prague's city center. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages and featuring integrated Google Maps and social media links. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Google Analytics, and Google Maps API. It features cookie consent mechanisms compliant with GDPR and uses various marketing and retargeting tools. Performance is moderate with good mobile optimization. However, minor PHP notice errors and lack of explicit security headers indicate areas for improvement in security hardening. Security posture is adequate with HTTPS implied and no exposed sensitive data, but the absence of WHOIS data for the domain raises concerns about domain registration transparency. Cookie and privacy policies are present and comprehensive, supporting GDPR compliance. Overall, the site is trustworthy and professional but would benefit from enhanced security headers and domain registration clarity. Recommendations include fixing PHP errors, implementing security headers, verifying domain registration details, and continuous monitoring of third-party scripts to maintain security and compliance.

H

HALO reality

haloreality.sk

46

HALO reality is a leading real estate agency in Slovakia, offering comprehensive property sales, rentals, and consultancy services. With over a decade of experience and a large client base, it holds a strong market position as the largest and most trusted real estate company in the country. The website reflects a professional digital presence with good content quality, clear navigation, and mobile optimization. Technically, it uses a custom ASP.NET CMS with modern front-end technologies like jQuery and Bootstrap, and integrates Google Maps for location services. Security posture is solid with HTTPS and security headers, though explicit cookie consent and security policies could be improved. Overall, the site is trustworthy and well-positioned for its business domain.

T

TRAPA GmbH

trapa.at

46

TRAPA GmbH is a medium-sized Austrian company specializing in manufacturing and retailing high-quality wooden flooring products sourced from Central European forests. Their product portfolio includes herringbone, panel parquet, plank floors, manor planks, stairs, and wood briquettes, targeting architects, builders, homeowners, and commercial property owners. The company maintains a professional online presence with clear branding, comprehensive privacy and cookie policies, and active social media engagement. Technically, the website is built on the XMS Content Management System, employs modern web fonts and icons, and integrates Google Maps for location services. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security-wise, while HTTPS is presumed, explicit security headers and policies are not evident, and no incident response or vulnerability disclosure information is published, indicating room for improvement in security transparency. Overall, the website is safe, professional, and trustworthy, though the absence of WHOIS data limits domain trust verification. Strategic recommendations include enhancing security headers, publishing security policies, and implementing vulnerability disclosure mechanisms to strengthen the security posture and trustworthiness.

S

Sirius investiční společnost a.s.

siriusis.cz

48

Sirius investiční společnost a.s. is a Czech investment company specializing in alternative investments for qualified investors. The company manages multiple sub-funds focused on hedge funds, distressed credit, real estate loans, and other alternative strategies, aiming to provide diversified portfolios with attractive risk-return profiles and low correlation to traditional financial markets. The website presents detailed fund performance data, downloadable official documents, and clear contact information, reflecting a professional and trustworthy business presence. Technically, the site uses jQuery, Snap.svg, and Google Maps API, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy or cookie policies. Overall, the site is accessible, content-rich, and targets a niche investor audience in the Czech Republic.

Skupina COOP is a major cooperative retail network in the Czech Republic, operated by the Svaz ceskych a moravskych spotrebnich druzstev. The organization manages the largest network of grocery stores and also operates several educational institutions under the COOP brand. The website provides comprehensive information about the cooperative stores, schools, and customer services, targeting Czech consumers and cooperative members. Technically, the website uses a mix of JavaScript libraries including jQuery, Select2, and Google Maps API, hosted on a Czech hosting provider with HTTPS enabled. However, it lacks some modern security headers and explicit privacy and cookie policies, which are important for compliance and user trust. The site integrates advertising and tracking services such as Adform and Google Analytics, but does not provide visible cookie consent mechanisms. Overall, the website is professional and trustworthy, with clear contact information and social media presence, but could improve in privacy compliance and security best practices.

La Bodeguita del Medio Praha is a Cuban-themed restaurant and cocktail bar located in Prague, offering authentic Cuban cuisine, cocktails, live music, and a cigar club experience. Established since 2002, it operates under the parent company Gastro Holding Group a.s. The website presents a professional and user-friendly interface with clear business information and active social media engagement. Technically, the site uses modern JavaScript libraries, Google services for analytics and maps, and implements HTTPS with cookie consent mechanisms, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks explicit security policies and vulnerability disclosure information. Overall, the business appears legitimate and well-positioned in the hospitality sector, targeting mature audiences interested in Cuban culture and nightlife in Prague.

D

Durisol zdivo

durisol-zdivo.cz

43

The website www.durisol-zdivo.cz presents a specialized construction business focused on the Durisol building system, which integrates wood, concrete, and insulation to create energy-efficient, healthy, and durable family homes. The site targets individuals and families in the Czech Republic interested in innovative and sustainable building technologies. The business offers consultation, project design, construction services, and DIY support, positioning itself as a niche player in the real estate and energy-efficient construction sector. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Owl Carousel, and Google services such as Analytics and Maps. The site is mobile-optimized with good navigation and content relevance. However, performance is moderate and accessibility features are basic. No CMS or hosting provider details were detected. From a security perspective, the site lacks visible security headers and a privacy policy, which are important for compliance and user trust. HTTPS status is unknown from the data, but Google Analytics and cookie consent are implemented, indicating some privacy awareness. The absence of WHOIS data is a significant concern, reducing domain trustworthiness and raising questions about domain registration legitimacy. Overall, the website is functional and professional but would benefit from enhanced security practices, transparent privacy policies, and verified domain registration information to improve trust and compliance.

Š

ŠPINDL SPORTUJE

spindlsportuje.cz

58

ŠPINDL SPORTUJE is a small sports club based in the Czech Republic focusing on winter sports training and events such as freeride, ski mountaineering, alpine disciplines, and cross-country skiing. The website serves as a portal for information about the club's activities, events, and an e-shop. The club targets sports enthusiasts and the general public interested in winter sports. Technically, the website is built on the Solidpixels CMS platform, uses modern JavaScript libraries, Google Fonts, and integrates map services via Leaflet and Google Maps APIs. The site is mobile optimized and has good design and navigation quality. Security-wise, the site enforces HTTPS and uses some security best practices but lacks visible security headers and formal privacy or cookie policies. WHOIS data is unavailable, which limits domain legitimacy verification. Overall, the website is functional and professional but could improve in privacy compliance and security transparency.

H

Hotel International Brno

hotelinternational.cz

53

Hotel International Brno is a well-established hospitality business located in the historic center of Brno, Czech Republic. The hotel offers a range of accommodation options including rooms and suites, complemented by multiple restaurants and bars, event and meeting facilities, and wellness services. The website reflects a professional and customer-focused approach with multilingual support and integrated booking capabilities. The company maintains active social media channels and displays recognized certifications, enhancing its market credibility. Technically, the website employs a modern technology stack including jQuery, Google Maps API, Google Analytics, Facebook Pixel, and a third-party booking widget. It features a cookie consent mechanism compliant with GDPR, uses HTTPS, and integrates reCAPTCHA for security. However, some security headers are not visibly implemented, and WHOIS data is unavailable, which slightly impacts trustworthiness. The security posture is solid with encrypted communications and consent-based tracking, but could be improved by adding explicit security policies and security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear policies and user controls. Overall, the website and business present a low risk profile with strong professionalism and digital maturity. The main concern is the lack of WHOIS transparency, which should be investigated to ensure domain legitimacy and ownership clarity.

P

Press21 s.r.o.

press21.cz

58

Press21 s.r.o. is a small Czech media and marketing consultancy company specializing in publishing B2B magazines and providing public relations and marketing communication services. Their portfolio includes niche publications targeting retail, beauty, wellness, senior citizens, and fashion retail sectors. The company has a consistent brand presence and a clear business focus, supported by a domain registered since 2010, which aligns with their market maturity. Technically, the website is built on WordPress 4.9.28 with legacy JavaScript libraries and Google Analytics implementation, indicating moderate digital maturity but with room for modernization. Security posture is adequate with HTTPS enabled and cookie consent implemented, but outdated software and lack of security headers present vulnerabilities. Privacy compliance is limited due to absence of a privacy policy and terms of service pages. Overall, the website is professional and trustworthy but would benefit from technical and compliance improvements.

P

pujcovna-cisticu-kobercu-24.cz

pujcovna-cisticu-kobercu-24.cz

59

The website pujcovna-cisticu-kobercu-24.cz operates as an online rental service specializing in carpet and upholstery cleaning machines, primarily serving customers in the Czech Republic. It offers professional cleaning equipment rental with accessories and chemicals, accessible 24/7 via an online platform. The business maintains multiple physical branches across various Czech cities, indicating a regional presence and operational maturity. The website content is well-structured, with clear navigation and relevant service descriptions, targeting individuals and businesses seeking cleaning equipment rental solutions. Technically, the site is built on WordPress using the Astra theme, leveraging common web technologies such as jQuery, Google Analytics, Google Tag Manager, Facebook Pixel, and Google Maps API. The site is mobile-optimized and demonstrates moderate performance. However, some technical improvements could enhance security and privacy compliance, including the implementation of security headers and cookie consent mechanisms. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data in its HTML content. It uses standard tracking tools but lacks advanced security headers and published security policies or incident response information. The absence of WHOIS data limits the ability to fully assess domain registration legitimacy, though the website's operational indicators suggest a legitimate small business. Overall, the website presents a functional and professional online presence for a niche rental service. Strategic improvements in security practices and privacy compliance would strengthen trust and regulatory adherence, supporting sustainable business growth.

Jobmapa.cz is an online platform operated by Evidsoft s.r.o. that connects job seekers, part-time workers, and service providers within the Czech Republic. The website offers categorized job listings, neighborhood help, and classified ads, focusing on local community needs. The platform leverages modern web technologies including jQuery, Bootstrap, Leaflet.js for mapping, and integrates Google Maps API to enhance user experience. It also uses popular marketing and analytics tools such as Google Analytics and Facebook Pixel to monitor user engagement. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal privacy or cookie policies. WHOIS data is not publicly available, indicating privacy protection, which slightly reduces transparency but is common for small businesses. Overall, the site is functional, well-structured, and serves a niche market effectively.

I

Interreg Slovakia-Hungary

interreghusk.eu

67

The Interreg Hungary-Slovakia Programme website serves as an official platform for a European Union funded cross-border regional development initiative between Hungary and Slovakia. The site targets government entities, regional development stakeholders, and EU program participants, providing information about the program and its activities. The business model is government-driven, focusing on regional cooperation and development projects. The website is professionally designed with consistent branding and good content quality, supporting multiple languages to cater to its diverse audience. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, FontAwesome, and Select2, with integration of Google Maps API for geographic information. The site demonstrates moderate performance and good mobile optimization. SEO practices are well implemented, including meta tags and structured data, although accessibility features are basic. From a security perspective, the website employs HTTPS with excellent SSL configuration but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy or terms of service policies. Contact information is not explicitly provided, which may limit user trust and compliance. Overall, the website presents a low-risk profile with a solid foundation but would benefit from enhanced privacy documentation, security policies, and clearer contact channels to improve compliance and user trust.

The FINAT European Label Forum website serves as a professional event platform targeting label industry professionals, primarily small to mid-sized businesses. It offers networking, educational sessions, and industry insights, positioning itself as a key European event in the manufacturing sector. The website is well-branded and content-rich, with testimonials and sponsor information enhancing credibility. Technically, the site uses modern front-end technologies including JavaScript, CSS frameworks, and Google Maps API, delivering a good user experience with mobile optimization and clear navigation. Security posture is moderate; HTTPS is implied but security headers and explicit policies are lacking. Privacy compliance is basic with presence of privacy and cookie policies but no active consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, though the website content and branding suggest a legitimate business event. Overall, the site scores well in content quality and business credibility but could improve in security and privacy transparency.

D

Doucha Šikola advokáti s.r.o.

dsadvokati.cz

49

Doucha Šikola advokáti s.r.o. is a specialized law firm based in the Czech Republic focusing on energy law and commercial legal services. The firm supports projects in renewable energy and provides comprehensive legal advice in areas such as contract law, mergers and acquisitions, and intellectual property protection. Their market position is strengthened by partnerships with key industry associations and a portfolio of notable clients. Technically, the website employs modern web technologies including animation libraries and Google Tag Manager, offering a good user experience with mobile optimization and clear navigation. Security posture is moderate with cookie consent and privacy policy in place, but lacks visible security headers and explicit incident response contacts. WHOIS data is missing, which slightly reduces trust from a domain registration perspective but the professional content and client testimonials support legitimacy. Overall, the website is well-designed, content-rich, and trustworthy for its target audience.

S

Skutečně zdravá škola

skutecnezdravaskola.cz

41

Skutečně zdravá škola is a recognized educational program based in the Czech Republic focused on improving school nutrition and food education. The program supports schools with certification, educational materials, and community engagement, targeting school management, teachers, kitchen staff, and parents. The website demonstrates a mature digital presence with modern technologies including Google Analytics, Facebook Pixel, Hotjar, and Google Maps integration. Security posture is good with HTTPS and standard headers, though privacy policy and terms of service pages are not clearly found, indicating room for compliance improvement. The absence of WHOIS data reduces domain transparency and trust slightly but does not detract from the program's evident legitimacy and community trust. Overall, the site is professional, content-rich, and well-structured, serving its educational mission effectively.

O

OETI

oeti.biz

53

OETI is an established international testing and certification institute specializing in OEKO-TEX® certifications, PPE, flooring technology, and interior design materials. Founded in 1967 and part of the TESTEX Group, it offers a broad portfolio of services including consulting, testing, certification, and training. The website reflects a mature business with a strong market position and global presence, supported by multilingual content and official OEKO-TEX® representation. Technically, the website employs modern web technologies such as Google Tag Manager and TermsFeed cookie consent scripts, with good mobile optimization and accessibility features. The site is served over HTTPS with no visible security vulnerabilities or exposed sensitive data. Cookie consent and privacy policies are implemented in compliance with GDPR, enhancing user privacy and trust. Security posture is solid but could be improved by adding explicit security policies, incident response contacts, and security headers. The absence of WHOIS data limits domain registration trust analysis, but the professional content and social media presence support legitimacy. Overall, the site is secure, professional, and trustworthy with minor areas for enhancement. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, enhancing HTTP security headers, and considering a vulnerability disclosure policy to further strengthen security and trust.

P

Press21 s.r.o.

retailnews.cz

65

Retail News is a Czech Republic based specialized media company operated by Press21 s.r.o., providing a monthly retail-focused magazine and an online news portal targeting retail professionals, suppliers, and logistics sectors. The website is well-established with a domain age since 2013 and offers a range of content including articles, news, event promotions, and advertising services. The company maintains a consistent brand presence and partners with relevant industry organizations. Technically, the website runs on WordPress with a modern tech stack including Google Fonts, Facebook SDK, and Google AdSense, though Google Analytics is not fully configured. Security posture is adequate with HTTPS and cookie consent implemented, but lacks published privacy policies and security incident response information. Overall, the site is professional, content-rich, and trustworthy, but could improve compliance and security transparency.

A

Agentura Helas, s.r.o.

helas.org

51

Agentura Helas is a Czech-based event management and business networking agency established in 1997. The company specializes in organizing unique social business meetings, connecting prominent Czech business personalities, and providing services such as online expert advice, marketing, media visibility, event organization, and venue rental. The website reflects a professional and consistent brand image targeting Czech entrepreneurs and business owners. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS and CAPTCHA protections, though it lacks some security headers and explicit security policies. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. The absence of WHOIS data transparency slightly reduces trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility.

D

Direct Fondee a.s.

fondee.pl

54

Fondee is an online investment platform operated by Direct Fondee a.s., offering tailored ETF-based portfolios for retail investors in Poland and the Czech Republic. The platform targets a broad audience including students, parents investing for children, and individuals planning for retirement. It emphasizes ease of use, transparency, and trust, supported by regulatory oversight from the Czech National Bank and investor protection funds. Technically, the website uses modern web technologies such as React, Google Tag Manager, and Google reCAPTCHA, hosted on DigitalOcean with CDN support, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are not publicly available. Overall, the site presents a professional, trustworthy, and compliant investment service with a solid digital infrastructure.