Security Directory

Moravskoslezský kraj is the official regional government entity for the Moravian-Silesian region in the Czech Republic. The website serves as a comprehensive portal providing information and services related to public administration, social services, healthcare, education, transportation, environment, culture, and economic development. It targets residents, businesses, and public institutions within the region, offering access to various online services and official communications. The site is well-branded and consistent with government standards, featuring multiple ISO certifications and an international rating indicating strong organizational credibility. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Swiper.js for interactive elements. It uses Matomo analytics for user tracking, indicating a preference for privacy-respecting analytics solutions. The site is mobile-optimized and accessible, with good SEO practices and structured navigation. However, some security best practices such as explicit security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the website enforces HTTPS and displays certifications for quality, environmental, and information security management systems (ISO 9001, ISO 27001, ISO 50001, EMAS). No critical vulnerabilities or exposed sensitive data were detected. The absence of a public WHOIS record is noted but likely due to registry policies or privacy protection, not indicating malicious intent. Overall, the site demonstrates a mature security posture but could benefit from enhanced transparency in incident response and vulnerability disclosure. The overall risk assessment is low, with the website appearing trustworthy and professionally maintained. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security headers, publishing incident response contacts, and establishing a vulnerability disclosure policy to further strengthen trust and security culture.

A

Albatros Media

albatrosmedia.cz

58

Albatrosmedia.cz is a well-established Czech online bookstore founded in 2009, offering a wide range of books including children's literature, adult fiction, and educational materials. The website is professionally designed with excellent navigation and content quality, targeting Czech-speaking readers and book enthusiasts. Technically, the site uses modern JavaScript frameworks like React, integrates with Cloudflare for DNS and CDN services, and employs multiple marketing and analytics tools such as Google Analytics and Facebook Pixel. Security posture is strong with HTTPS enforced and cookie consent managed via Cookiebot, though explicit privacy and terms of service pages were not found in the provided content. The domain WHOIS data is transparent and consistent with the business profile, indicating legitimacy. Overall, the website demonstrates a mature e-commerce platform with good digital maturity and trust indicators.

E

Entradio

entradio.cz

55

Entradio is a Czech-based ticketing system platform offering comprehensive solutions for ticket sales, reservations, discounts, goods and services sales, and multiple payment options. The platform targets a wide range of event organizers including theaters, cultural centers, museums, sports events, transportation, and festivals. Entradio positions itself as a flexible and user-centric system with integrated marketing and payment capabilities. The website is built on modern web technologies such as React, Next.js, and Material-UI, providing a good user experience with mobile optimization and clear navigation. Security posture is moderate with HTTPS usage and secure forms, but lacks explicit security headers and published security policies. WHOIS data is unavailable, indicating privacy protection which slightly reduces transparency but is common for small to medium businesses. Overall, Entradio presents a professional and trustworthy platform with room for improvement in privacy compliance and security transparency.

E

EduArt Experience

eduartexperience.com

52

EduArt Experience is a Czech-based educational platform specializing in art education, art collecting, and cultural engagement. Founded in 2020, it offers a variety of educational programs, curated art stories, and a membership club aimed at art collectors and enthusiasts. The website demonstrates a strong market position within its niche, targeting individuals interested in art culture primarily in the Czech and Slovak regions. The business model revolves around educational services and community membership with exclusive benefits. Technically, the website employs modern JavaScript libraries, Google Maps API, Facebook Pixel, and Google Tag Manager for marketing and analytics. It is hosted on servers associated with wedos.com and uses HTTPS with CSRF protection for forms. The site is mobile-optimized and features good SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement in security headers and DNS security. From a security perspective, the site uses HTTPS and CSRF tokens but lacks DNSSEC and important security headers such as Content-Security-Policy. There is no cookie consent mechanism or detailed privacy policy addressing GDPR compliance, which are notable gaps. No incident response or security policy information is published. The domain registration is consistent and legitimate, supporting the trustworthiness of the website. Overall, the website is professional, content-rich, and trustworthy but would benefit from enhanced privacy compliance and security hardening to meet modern standards and regulatory requirements.

A

Artantiques media, s. r. o.

artplus.cz

58

Artplus.cz is a specialized Czech media platform focused on providing comprehensive data and analysis on the Czech art auction market. Established in 2008, it offers the largest database of auction results, detailed market analytics, auction calendars, and news reports. The platform targets art collectors, investors, and market analysts, operating primarily on a subscription business model supported by advertising and publishing partnerships. Technically, the website uses modern JavaScript libraries, integrates Google reCAPTCHA for form security, and is hosted behind Cloudflare DNS services, ensuring good performance and security. Privacy and cookie policies are implemented with GDPR compliance in mind, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates a good security posture with HTTPS enforcement and standard best practices, but could improve by adding explicit security headers and formal security documentation. The domain registration is consistent with the business profile, enhancing trustworthiness. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility features to further strengthen compliance and user trust.

S

Sparkys

sparkys.cz

58

Sparkys.cz is a prominent Czech Republic-based e-commerce retailer specializing in toys and children's products. The website positions itself as the largest online toy store in the country, offering a wide range of products including popular brands such as LEGO, Barbie, and Fisher Price. The business model focuses on online sales complemented by fast delivery and personal pickup options at physical stores. The target audience primarily includes parents and children seeking quality toys. The website demonstrates consistent branding and good content quality, supporting its market position effectively. From a technical perspective, the website employs a modern JavaScript-based infrastructure with multiple third-party integrations for analytics, advertising, and user experience enhancements. Technologies such as Google Tag Manager, Facebook Pixel, TikTok Pixel, Hotjar, and Adform are used for tracking and marketing purposes. The site is mobile-optimized and shows good SEO practices, although accessibility features could be improved. Performance is moderate, with room for optimization. Security-wise, the site enforces HTTPS with good SSL configuration and includes standard security headers. Forms use secure POST methods, and no sensitive data is exposed in the HTML. However, there is no explicit security policy or incident response information available on the site, which could be improved to enhance trust and compliance. The absence of WHOIS data due to privacy protection slightly reduces transparency but is common for e-commerce businesses. Overall, Sparkys.cz presents a trustworthy and professional online retail platform with a solid security posture and compliance with privacy regulations. Strategic improvements in security transparency, accessibility, and performance could further strengthen its market standing and user trust.

A

ARMED STORE s.r.o.

armed.cz

63

ARMED STORE s.r.o. operates the largest army shop in the Czech Republic, offering a broad range of military, tactical, hunting, and survival products both online and through physical stores located in major cities such as Prague, Brno, Tábor, and Vyškov. The company targets military enthusiasts, law enforcement personnel, hunters, and survivalists, providing a comprehensive product catalog including firearms, ammunition, clothing, and accessories. The business model is primarily e-commerce supported by physical retail locations, positioning itself as a market leader in its niche within the Czech Republic. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and Persoo for personalization. The site is well-structured with JSON-LD structured data for SEO and social media integration. Performance and mobile optimization are good, though accessibility features are basic. Cookie consent mechanisms are implemented, indicating some level of privacy compliance. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML content. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or malware indicators were detected in the provided content. The absence of WHOIS data due to privacy protection is noted but considered justified given the nature of the business. Overall, the website presents a professional and trustworthy front with good business credibility and technical implementation. Privacy compliance could be improved by publishing a clear privacy policy and terms of service. Security posture would benefit from enhanced headers and transparency around incident response. The domain's WHOIS privacy protection is typical for this sector and does not significantly detract from legitimacy.

M

M&K Home Textile

mkluzkoviny.cz

66

M&K Home Textile operates the website MKLuzkoviny.cz, an established e-commerce platform specializing in home textiles such as bedding, sheets, blankets, and related products primarily targeting consumers in the Czech Republic. The website offers a broad catalog of over 1,200 products and positions itself as a trusted regional retailer with a professional online presence. The business model focuses on direct online sales with additional offerings for hotel supplies, indicating a diversified retail approach within the home textile sector. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager, Facebook Pixel, and Exponea analytics for marketing and user behavior tracking. The site is SSL secured and shows good mobile optimization and SEO practices, although the CMS and hosting provider remain unidentified. Performance is moderate with room for improvement in accessibility and security header implementation. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, alongside cookie consent mechanisms aligned with GDPR principles. However, the absence of explicit privacy policy and terms of service pages, as well as no visible incident response or vulnerability disclosure information, indicates gaps in compliance and transparency. The lack of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and business information appear credible. Overall, the website presents a solid retail platform with good user experience and marketing integration but requires enhancements in privacy compliance, security transparency, and domain registration verification to strengthen trust and regulatory adherence.

T

Homepage - Travel FREE – Europe's No. 1 Bordershop

travel-free.cz

58

Travel FREE is a retail business operating Europe's No. 1 Bordershop, targeting general consumers interested in cross-border shopping. The website presents a professional appearance with a clear business focus on retail and travel-related shopping services. The company promotes a mobile app available on both Apple App Store and Google Play, indicating a digital engagement strategy. The technical infrastructure includes modern web technologies such as Google Tag Manager and Usercentrics for consent management, ensuring compliance with cookie regulations. The website is accessible without any blocking or WAF challenges, and it uses HTTPS to secure communications. However, the absence of publicly available WHOIS data and lack of explicit privacy policy or contact information reduces transparency and trustworthiness to some extent. Security posture is moderate with room for improvement in security headers and published policies. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

G

GE Aviation Czech s.r.o.

geturboprops.com

66

GE Aviation Czech s.r.o. operates as the turboprop division of GE Aviation, specializing in the design, development, manufacturing, and servicing of GE H-Series and Catalyst™ turboprop engines. The website targets aerospace industry professionals, customers, and potential employees, providing detailed product information, customer support options, and career opportunities. The company is positioned as a medium-sized entity within the transportation and technology sectors, backed by the global GE Aviation brand. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, Google Analytics, and reCAPTCHA for bot protection. It features a responsive design optimized for mobile devices and includes a comprehensive cookie consent mechanism aligned with GDPR requirements. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks visible security headers and does not publish a dedicated security policy or incident response contacts. The absence of WHOIS registration data is a notable transparency gap, though the website's professional branding and external links to official GE resources support its legitimacy. Overall, the website presents a professional and trustworthy front for GE Aviation Czech's turboprop business, with room for improvement in security transparency and domain registration clarity. Strategic recommendations include enhancing security headers, publishing security policies, and improving WHOIS data visibility to strengthen trust and compliance.

K

Konsepti

konsepti.com

60

Konsepti is a Czech Republic-based luxury design furniture retailer and interior design service provider, offering premium products from renowned international brands such as B&B Italia, Knoll, and Vitra. The company targets both residential and commercial clients, including B2B projects, positioning itself as a premium player in the retail furniture and interior design market. The website reflects a professional digital presence with good content quality, clear navigation, and modern design elements. Technically, the site uses popular analytics and tracking tools like Google Analytics, Google Tag Manager, and Hotjar, and is served over HTTPS ensuring secure communication. However, the absence of publicly available WHOIS data for the domain raises transparency concerns, and the lack of a dedicated privacy policy page and security headers indicates room for improvement in compliance and security posture. Overall, the site is accessible and functional with moderate security maturity but would benefit from enhanced transparency and formalized privacy and security documentation.

E

ELNINO.CZ

parfemy-elnino.cz

57

ELNINO.CZ is a well-established Czech e-commerce retailer specializing in perfumes and cosmetics, boasting over 21 years of market presence and a large inventory exceeding one million items. The website targets a general audience seeking quality fragrance and cosmetic products with fast delivery services. Technically, the site employs modern web technologies including progressive web app features, Google Analytics, and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features are basic. Security-wise, the site enforces HTTPS and uses service workers but lacks visible security headers and formal vulnerability disclosure mechanisms. Privacy and cookie policies are not clearly presented, which impacts compliance and user trust. The absence of WHOIS data due to privacy protection slightly reduces trustworthiness but is common for e-commerce businesses. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security practices.

F

FotoŠkoda

fotoskoda.cz

61

FotoŠkoda is a leading Czech Republic-based retailer specializing in digital photography and videography equipment, including cameras, lenses, tripods, memory cards, and video cameras. The company operates both an e-commerce platform and a physical store located in Prague, offering a comprehensive range of products and services such as photographic courses, photo development, and printing. Their market position is strong as the largest photo and video equipment store in the country, targeting photography enthusiasts, professionals, and institutional clients. The website is well-structured, professionally designed, and provides extensive product categorization and service information, enhancing user experience and trust. Technically, the website employs modern web technologies including asynchronous JavaScript loading, Google Tag Manager, Google Analytics, and Persoo personalization tools, all integrated with a cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be improved. Performance is moderate with optimizations such as PageSpeed CSS and script management. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of a dedicated security policy or incident response contact limits transparency in security governance. Privacy compliance is robust with clear privacy and cookie policies and active consent management. Overall, FotoŠkoda presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic recommendations include publishing a formal security policy, establishing incident response contacts, enhancing accessibility, and maintaining vigilance on third-party script security to further strengthen their security posture and compliance.

A

Asociace.BIZ

asociace.biz

54

Asociace.BIZ is a Czech Republic-based association that unites leading digital and development agencies, providing networking opportunities, knowledge sharing, and organizing the Internet Effectiveness Awards (IEA). The website is professionally designed, mobile-optimized, and offers clear navigation with relevant content targeting digital agencies and internet solution providers. The technical infrastructure includes modern web technologies such as Google Tag Manager and Google Analytics, with lazy loading and web fonts enhancing performance and user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit security policies. WHOIS data is unavailable, which impacts trust and transparency. Overall, the website presents a credible business presence with room for improvement in security and contact transparency.

T

TestLine Clinical Diagnostics s.r.o.

testlinecd.de

49

TestLine Clinical Diagnostics s.r.o. is a medium-sized healthcare company specializing in the development, production, and distribution of in vitro diagnostic products for human and veterinary use. The company operates as part of the BioVendor Group, an international biotechnology conglomerate, enhancing its market position and credibility. Their website provides comprehensive product information, quality certificates, and customer service resources targeting healthcare professionals and laboratories. The business model focuses on innovation and quality in clinical diagnostics, supported by a professional online presence with multilingual support.

D

Dot Creative

dotcreative.hu

57

Dot Creative is a Hungarian creative agency established in 2018, specializing in digital design, branding, and marketing services. The company targets businesses and professionals seeking innovative digital presence solutions. The website reflects a modern, professional design with clear navigation and strong branding consistency. The technical infrastructure is based on Next.js and React, indicating a modern and performant digital platform. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response contacts are not found. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. Overall, the website presents a trustworthy and professional business presence with minimal risk exposure.

R

REICO

reico.cz

65

REICO is a Czech-based asset management company specializing in real estate investment funds and capital market instruments, with over 15 years of market presence. The company operates under the umbrella of Česká spořitelna a.s., a major Czech financial institution, which enhances its market credibility and trustworthiness. The website reflects a professional and well-structured digital presence, targeting investors interested in real estate and financial products. The content is relevant, well-organized, and supported by comprehensive legal and privacy documentation, indicating a mature compliance posture. Technically, the website leverages modern web technologies including JavaScript, jQuery, and the proprietary GEM framework by Erste Group, hosted on Erste Group's CDN infrastructure. The site is responsive and optimized for mobile devices, with good SEO and accessibility features. Performance is moderate, with room for improvement in loading speed and security header implementation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, aligning with GDPR requirements. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, representing areas for enhancement. No critical vulnerabilities or suspicious content were detected, and the domain's WHOIS data is privacy protected, which is typical for financial services. Overall, REICO's website demonstrates a solid business and technical foundation with good security hygiene, suitable for its industry and audience. Strategic improvements in security transparency and performance optimization would further strengthen its posture.

O

OUR MEDIA SR a. s.

pravda.sk

60

Pravda.sk is a leading Slovak online news media portal operated by OUR MEDIA SR a. s. It provides comprehensive news coverage including politics, sports, culture, health, and entertainment targeted at a general Slovak audience. The website features multimedia content such as videos and podcasts, supported by a robust advertising and analytics infrastructure. Technically, the site employs modern web technologies and multiple analytics tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS enforcement and consent management, although explicit privacy and terms of service documents are not found in the provided content. Overall, the site is legitimate, professionally maintained, and trusted within its market segment.

MSN Finland (https://www.msn.com/fi-fi) is a localized version of the global MSN portal operated by Microsoft Corporation. The site offers a comprehensive aggregation of news, weather, sports, finance, entertainment, and video content tailored for Finnish users. It leverages Microsoft's extensive content partnerships and advertising infrastructure to deliver personalized and up-to-date information. The website is well-branded, professionally designed, and optimized for desktop and mobile platforms, reflecting a mature digital presence within the media sector. Technically, the site employs modern web technologies including JavaScript frameworks, service workers, and CDN delivery via Akamai. It integrates Microsoft’s ad SDK and OneTrust for cookie consent management, indicating compliance with privacy regulations. The site demonstrates good performance, accessibility, and SEO practices, with a clear focus on user experience and content relevance. From a security perspective, MSN Finland enforces HTTPS with strong SSL configurations and uses security best practices such as nonce-based script loading and cookie consent mechanisms. However, explicit security policies, incident response contacts, and privacy policy links are not directly visible in the provided HTML snapshot, suggesting areas for improvement in transparency and compliance communication. Overall, MSN Finland presents a high level of trustworthiness and professionalism consistent with its parent company Microsoft. The absence of WHOIS data is likely due to registry privacy policies and does not detract from the domain’s legitimacy. Strategic recommendations include enhancing visible privacy and security policy disclosures and providing clear contact channels for security incidents to further strengthen user trust and compliance posture.

Selzee is an AI-powered virtual sales representative platform designed specifically for Shopify ecommerce stores. It offers automated customer support, smart product recommendations, and adaptive store intelligence to help online sellers increase average order value and conversion rates. The website presents a professional and modern interface with clear messaging targeting ecommerce businesses seeking AI-driven sales and support solutions. Technically, the site leverages modern JavaScript libraries, Tailwind CSS, and PostHog analytics, hosted on Cloudflare infrastructure, indicating a mature digital presence. However, the security posture is moderate with room for improvement, notably the absence of DNSSEC, security headers, and explicit privacy and cookie policies. The WHOIS data raises concerns due to an inconsistent future domain creation date, which impacts trustworthiness. Overall, the site is functional and safe for general audiences but would benefit from enhanced transparency and security practices.

T

Téma 21

tema21.cz

61

Téma 21 is a newly established (2024) Czech media platform specializing in journalism, interviews, podcasts, and articles. It targets Czech and Slovak audiences interested in in-depth media analysis and current affairs. The website demonstrates a professional and modern design, leveraging technologies such as Tailwind CSS and Font Awesome, hosted via Websupport. GDPR compliance is well implemented with a clear cookie consent mechanism and privacy policy. However, explicit contact information and terms of service are not prominently available, which could be improved for better transparency. Security posture is good with HTTPS and some security best practices, though additional security headers and incident response details are recommended. Overall, the platform presents high-quality content with excellent user experience and trustworthy branding.

P

Podnik podporující zdraví

podnikpodporujicizdravi.cz

62

The website 'Podnik podporující zdraví' represents a Czech government-recognized program focused on promoting health in workplaces through an annual competition and certification system. Established since 2005, it targets Czech legal entities and organizations committed to employee health and well-being. The site provides information about the competition, criteria, awarded companies, and related conferences. Technically, the website uses modern JavaScript libraries such as Google Analytics, Google Tag Manager, Flickity for carousels, and lazy loading for images, indicating a moderate level of digital maturity. The site is mobile optimized with good navigation and professional design. Security posture is adequate with HTTPS usage, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain trust verification, but the official nature of the content and references to government bodies support its legitimacy. Overall, the website is a credible resource for workplace health promotion in the Czech Republic, with recommendations to enhance privacy compliance and security transparency.

M

ÚVOD | Máme to na talíří a není nám to jedno

mametonataliri.cz

52

The website www.mametonataliri.cz is a Czech language site focused on providing information about school catering systems. It appears to be a small-scale business or informational site hosted on the Wix platform, leveraging Wix's Thunderbolt framework and standard JavaScript polyfills. The site content is accessible and does not present any WAF or security challenge barriers. However, the absence of WHOIS data and registrant information raises concerns about domain registration transparency. The site lacks privacy, cookie, and terms of service policies, and no contact information is provided, which impacts trust and compliance. Technically, the site uses modern web technologies but lacks advanced security headers and analytics integrations. Overall, the security posture is basic, with room for improvement in privacy compliance and business credibility.

B

Blueboard.cz Webhosting s.r.o.

blueboard.cz

61

Blueboard.cz Webhosting s.r.o. is a Czech Republic-based technology company specializing in domain registration, web hosting, server rental, and bulk email marketing services. With over 20 years of experience and a solid customer base including notable clients like Seznam.cz and Ford, the company positions itself as a reliable and comprehensible service provider for individuals and businesses seeking digital presence solutions. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates Google Tag Manager and Plausible Analytics for tracking, and uses Crisp Chat for customer support. The site is mobile-optimized and performs moderately well, although accessibility features could be improved. Security-wise, HTTPS is enforced, and forms include validation, but the absence of security headers and cookie consent mechanisms indicates room for enhancement in security posture and privacy compliance. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. However, the lack of WHOIS data transparency is a concern, as it limits trust verification. The website does not publish explicit security policies or incident response contacts, which could be improved to strengthen security culture and compliance. Overall, the site is safe, professional, and trustworthy but would benefit from enhanced privacy and security disclosures. Strategically, Blueboard should focus on improving transparency by resolving WHOIS data issues, implementing comprehensive cookie consent, publishing security policies, and adopting security headers. These steps will enhance user trust, compliance with GDPR, and overall security resilience.

E

eSports.cz, s.r.o.

hcvl.cz

45

HC VERVA Litvínov is a Czech ice hockey club with an official website providing comprehensive information about the team, including news, match schedules, ticket sales, and multimedia content. The site targets hockey fans and the local community, offering a professional and consistent brand experience supported by official partners and sponsors. The business operates under eSports.cz, s.r.o., indicating a structured media and sports engagement model. Technically, the website uses modern JavaScript libraries such as Swiper.js and BaguetteBox.js, with a custom CMS likely in place. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism with granular controls, but lacks explicit security headers and detailed security policies. No critical vulnerabilities or suspicious WHOIS inconsistencies were found, and the domain registration aligns well with the business identity. Overall, the site is moderately secure and compliant with GDPR, but could improve in security best practices and transparency.

PPP-T S.A. operates as a modern business and innovation development space primarily serving the Płock subregion in Poland. The company offers approximately 60 hectares of connected investment areas equipped with technical infrastructure, office spaces, conference rooms, and acceleration programs to support entrepreneurship. The website reflects a professional and regionally focused business entity linked to the ORLEN group, a major energy sector player. Technically, the website is built on Adobe Experience Manager, employs HTTPS, and integrates a comprehensive cookie consent mechanism via Cookiebot, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and consent management, but lacks some advanced security headers and explicit incident response or security policy disclosures. WHOIS data for the domain pppt.orlen.pl is unavailable from the Polish registry, which slightly reduces trustworthiness, but the website content and branding strongly indicate legitimacy. Overall, the site is well-structured, accessible, and compliant with GDPR requirements, targeting business clients and entrepreneurs in the region.

Solino is a large Polish company specializing in the production of salt brine and related natural resource products, operating under the ORLEN group umbrella. The website reflects a professional corporate presence with a focus on business customers and partners in the energy and industrial sectors. The site uses Adobe Experience Manager CMS and integrates modern technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. Overall, the site is well-structured, mobile-optimized, and compliant with GDPR requirements, but lacks visible direct contact information and terms of service. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the site's affiliation with ORLEN.

Fundacja ORLEN is a Polish non-profit foundation affiliated with the ORLEN Group, operating since 2001. It focuses on social impact through grant and scholarship programs, safety initiatives, and employee volunteering. The website is professionally designed, primarily targeting Polish-speaking audiences interested in corporate social responsibility and community support. Technically, the site is built on Adobe Experience Manager CMS and integrates modern tools such as Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, although some security headers could be improved. WHOIS data is not publicly available, which is typical for .pl domains, but the website content and corporate affiliation support its legitimacy. Overall, the site demonstrates good digital maturity and compliance with GDPR requirements.

ORLEN Projekt is a well-established engineering company operating within the energy sector in Poland, providing comprehensive project documentation and EPC engineering services. The website reflects a mature digital presence with a professional design, clear navigation, and compliance with GDPR through detailed privacy and cookie policies. Technically, the site leverages Adobe Experience Manager CMS and integrates modern tools such as Google Tag Manager and Cookiebot for analytics and consent management. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be explicitly added for enhanced protection. The absence of public WHOIS data is typical for corporate domains and does not detract from the legitimacy of the site. Overall, the website demonstrates a strong business credibility and technical maturity suitable for its enterprise-level operations.

ORLEN Ochrona is a Polish security service provider affiliated with the PKN ORLEN group, focusing on comprehensive physical and digital protection services for strategic national units, individual clients, and institutions. The website presents a professional image with a clear business focus on security solutions including physical protection, transport of valuables, security systems, and specialist training. The company leverages Adobe Experience Manager for content management and employs Cookiebot for GDPR-compliant cookie consent management. The site is well-structured, mobile-optimized, and provides clear navigation to various service offerings and corporate information. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers are not visible in the HTML source. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data for the subdomain is unavailable, which is typical for subdomains under the .pl registry, but the domain's affiliation with the reputable PKN ORLEN group supports its legitimacy. Overall, the website demonstrates good technical maturity, privacy compliance, and business credibility.

ORLEN Eko is a Polish company specializing in ecological and safe waste management, occupational health and safety (BHP), and fire safety consulting. It operates as part of the ORLEN Group, a major energy sector player in Poland. The website presents a professional image with consistent branding and offers detailed information about its services, targeting businesses and individuals concerned with environmental and safety standards. The company provides a range of services including process safety analyses, industrial cleaning, environmental monitoring, and equipment servicing. Technically, the website is built on Adobe Experience Manager CMS and integrates modern technologies such as Google Tag Manager, Google Analytics, and Cookiebot for consent management and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and cookie consent mechanisms, but explicit security headers are not clearly visible in the provided data. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy and cookie policy in Polish, and GDPR compliance is evident. Overall, the website is trustworthy and professionally maintained, with no signs of blocking or WAF interference.

ORLEN Centrum Serwisowe is a well-established service provider specializing in the maintenance and repair of fuel stations, with nearly 80 years of experience. The website reflects a professional business presence aligned with the ORLEN group, a major energy company in Poland. The site targets business customers and service clients in the energy sector, offering specialized services for fuel station upkeep. Technically, the website is built on Adobe Experience Manager CMS, employs modern JavaScript libraries, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and accessible, with good SEO practices. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, though it lacks explicit security headers and published incident response contacts. Overall, the website demonstrates a mature digital infrastructure with strong privacy compliance but could improve transparency in security policies and incident handling.

ORLEN Aviation is a well-established Polish company specializing in the supply and storage of aviation fuels at Polish airports, operating for over 25 years as part of the international ORLEN Group. The company targets aviation businesses and airlines, offering a range of services including fuel supply, logistics, and training. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on Adobe Experience Manager, uses modern JavaScript libraries, and integrates Google Tag Manager and Cookiebot for analytics and compliance. Security posture is strong with HTTPS, cookie consent, and inferred security headers, although explicit security policies and incident response contacts are not published. Privacy compliance is robust, with a comprehensive privacy policy and cookie consent mechanism. The lack of WHOIS data for the domain reduces trust slightly but does not outweigh the strong business and technical indicators of legitimacy.

ORLEN Asfalt is a business entity focused on developing modern and environmentally friendly asphalt technologies aimed at improving road durability and safety. It operates under the ORLEN group, a major energy and petrochemical company in Poland, positioning itself as a key player in the energy and transportation sectors. The website targets businesses and stakeholders involved in road construction and infrastructure development. The digital presence is professional, with consistent branding and clear business messaging. Technically, the website is built on Adobe Experience Manager CMS, utilizing modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The site demonstrates good mobile optimization and SEO practices, though some accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism. However, explicit HTTP security headers and published security policies or incident response contacts are not evident. No vulnerabilities or suspicious content were detected, and the domain WHOIS data is privacy protected, which is typical for corporate entities in Poland. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.

N

NetArt Group

netart.pl

64

nazwa.pl is a well-established Polish cloud services and hosting provider operating since 1997 as part of the global NetArt Group. The company offers a comprehensive portfolio including cloud hosting, domain registration, SSL certificates, VPS, email marketing, SaaS applications, and CDN services. It positions itself as a leader in the Polish market with a strong emphasis on modern, secure, and scalable cloud solutions. The website reflects a professional and trustworthy brand with ISO/IEC 27001:2022 certification and 24/7 technical support. Technically, the site uses modern JavaScript libraries, consent management tools, and a TYPO3 CMS platform, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS, 2FA for email, and WAF protections, although explicit security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, nazwa.pl demonstrates a mature digital presence with robust business credibility and security awareness.

Qondor is a well-established SaaS platform specializing in meetings and events management, primarily serving the MICE industry. Founded in 2006, it offers a comprehensive suite of tools including project management, budgeting, invoicing, attendee management, and sustainability reporting. The company positions itself as a trusted partner for event professionals, supported by strong customer testimonials and ISO 27001 certification, underscoring its commitment to data security and compliance. Technically, the website is built on the HubSpot CMS platform, leveraging modern JavaScript libraries and Google Analytics 4 for data insights. The site is fast, mobile-optimized, and accessible, with clear navigation and professional design. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. From a security perspective, the site enforces HTTPS, employs domain transfer protections, and holds ISO 27001 certification, indicating mature security practices. However, some standard security headers are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the business claims, showing a long-standing domain without privacy protection, enhancing trust. Overall, Qondor presents a low-risk profile with strong business credibility, technical maturity, and privacy compliance. Strategic recommendations include enhancing security headers, publishing an incident response contact, and adding a vulnerability disclosure policy to further strengthen security posture.

E

eealibrary.org

eealibrary.org

60

The website eealibrary.org currently presents no accessible content beyond a loading spinner, indicating that the site is either under development or protected by a web application firewall or security mechanism that blocks content delivery. The domain is registered since 2014 with easyDNS Technologies Inc., showing a stable registration history but no publicly available registrant details. There is no metadata, privacy, cookie, or terms of service information available, and no contact or social media links are present. Technically, the site uses Angular framework components and standard web technologies but lacks performance and SEO optimizations. Security posture is weak with no HTTPS enforcement or security headers detected, and DNSSEC is not enabled. Overall, the site is not currently providing meaningful business or user information and lacks compliance and trust indicators.

W

www.koktejl.cz

koktejl.cz

56

Koktejl.cz is a Czech travel and lifestyle media website offering travel guides, tips, and inspirational content targeting a general audience interested in travel experiences, relaxation, and adventure. The site is positioned as a regional content publisher with a professional and consistent brand presence. Technically, the website employs modern web technologies including Tailwind CSS, HTMX, and integrates popular marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and some best practices but lacks explicit security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain trust assessment, but the website content and technical setup suggest legitimacy. Overall, Koktejl.cz is a well-maintained media site with moderate risk and room for improvement in privacy compliance and security transparency.

W

www.iglanc.cz

iglanc.cz

60

iGlanc.cz is a Czech lifestyle online magazine targeting modern, intelligent, and discerning women interested in fashion, beauty, travel, living, and societal topics. The website offers rich multimedia content including articles, videos, and podcasts, positioning itself as a relevant media outlet in the Czech market. Technically, the site employs modern web technologies such as HTMX, Tailwind CSS, and integrates multiple analytics and advertising tools including Google Tag Manager, Facebook Pixel, and Gemius. The site is well optimized for mobile and SEO, providing a good user experience. Security posture is strong with HTTPS enforced and appropriate security headers, though some improvements in privacy transparency and contact information are recommended. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces trust but is common for media websites. Overall, the site is professional, content-rich, and trustworthy with moderate risk due to limited public registrant information.

W

www.poznatsvet.cz

poznatsvet.cz

58

Poznatsvět.cz is a Czech infotainment and media website focused on delivering content related to science, culture, history, and travel. The site targets a general audience interested in educational and entertaining articles. It operates a content publishing business model supported by advertising and newsletter subscriptions. The website demonstrates a consistent brand presence with good content quality and user experience. Technically, it employs modern web technologies including JavaScript frameworks, HTMX for dynamic content, and integrates advertising and tracking tools such as Google Tag Manager and Facebook Pixel. Hosting appears to be via a CDN associated with VLM. Security posture is adequate with HTTPS enabled, but lacks some recommended security headers. Privacy compliance is partial, with cookie consent mechanisms in place but no explicit privacy policy page detected. WHOIS data is unavailable, likely due to privacy protection, which is common for media sites. Overall, the site is professional, safe, and moderately trustworthy.

W

www.fitzivot.cz

fitzivot.cz

58

FitŽivot.cz is a Czech-language health and lifestyle media website offering reliable advice and tips to help users lead healthier and more satisfying lives. The site targets a general audience interested in topics such as weight loss, mental well-being, and exercise, positioning itself as a trusted source for wellness content in the Czech Republic. The business model appears to be content-driven with revenue generated primarily through advertising and marketing partnerships. Technically, the website employs modern web technologies including JavaScript frameworks, Tailwind CSS, and integrates multiple analytics and advertising tools such as Google Tag Manager, Facebook Pixel, and Gemius. Consent management is implemented via Didomi, indicating awareness of privacy regulations. Security posture is strong with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be improved. The absence of WHOIS data and explicit privacy policy pages slightly detracts from overall trustworthiness. Overall, the site is professional, well-branded, and safe for general audiences.

W

www.kondice.cz

kondice.cz

58

Kondice.cz is a Czech media portal specializing in expert articles on healthy lifestyle, relationships, and psychology, supplemented by videos and podcasts. The website targets a general audience interested in health and wellness topics within the Czech Republic. It operates as a content publishing platform with a moderate market presence in the regional media sector. Technically, the site employs modern web technologies including HTMX, Tailwind CSS, and integrates multiple tracking and advertising services such as Google Tag Manager, Facebook Pixel, and Gemius. The site is well-structured, mobile-optimized, and demonstrates good SEO and accessibility practices. Security-wise, the site uses HTTPS and standard security headers, but lacks explicit privacy and cookie policies, as well as clear contact information for security incidents, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, but the website content and technical setup appear professional and legitimate. Overall, the site scores moderately high in content quality and security posture but needs enhancements in privacy compliance and business transparency.

W

www.nationalgeographic.cz

national-geographic.cz

59

The website www.nationalgeographic.cz is a localized Czech version of the globally recognized National Geographic brand, offering rich content focused on science, nature, history, travel, and photography. It serves a general audience interested in educational and informative media content. The site demonstrates a mature digital presence with modern web technologies, including JavaScript frameworks, analytics, and advertising integrations. While the site uses HTTPS and includes privacy consent mechanisms, it lacks explicit privacy policy and terms of service pages in the provided content, which slightly impacts privacy compliance scores. Security headers are partially implemented but could be improved to enhance protection against common web threats. The absence of WHOIS data suggests privacy protection for the domain registration, which is typical for media websites and does not detract from its legitimacy. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

W

www.dumazahrada.cz

dumazahrada.cz

60

Dumazahrada.cz is a Czech media website focused on providing tips, tutorials, and inspiration for home, apartment, and garden living. The site targets homeowners and garden enthusiasts seeking practical advice and lifestyle content. It operates primarily as a content publishing platform monetized through advertising and newsletter subscriptions. Technically, the website employs modern web technologies including JavaScript frameworks, Tailwind CSS, and integrates multiple tracking and advertising services such as Google Tag Manager, Facebook Pixel, and Seznam SSP. The site is well-optimized for SEO and mobile devices, offering a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and consent management tools but lacks explicit security policies and some security headers. WHOIS data is not publicly available due to privacy protection, which is common for domains registered under CZ NIC. Overall, the site appears legitimate and professionally maintained with moderate security and privacy compliance.

W

Webfarm s.r.o.

cars.cz

56

Cars.cz is a well-established Czech online automotive marketplace operated by Webfarm s.r.o., offering a broad range of new and used vehicles, car dealerships, spare parts, financing, insurance, and automotive reviews. The platform targets car buyers and sellers primarily within the Czech Republic, serving both private individuals and businesses. The website demonstrates a mature digital infrastructure with multiple third-party integrations for analytics, advertising, and consent management, reflecting a moderate to advanced digital maturity level. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and accessibility compliance. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though WHOIS data is not publicly available due to CZ.NIC policies. Strategic recommendations include enhancing security headers, improving accessibility, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

W

www.ireceptar.cz

ireceptar.cz

50

iReceptář.cz is a Czech lifestyle and recipe website offering a broad range of content including gardening tips, cooking recipes, home living advice, DIY projects, animal care, horoscopes, and podcasts. The site targets a general Czech-speaking audience interested in everyday practical advice and entertainment. It operates primarily as a content publishing platform monetized through advertising and partnerships. Technically, the website employs modern web technologies such as Tailwind CSS, HTMX, and integrates multiple third-party analytics and advertising services, including Google Tag Manager, Facebook Pixel, and Gemius, with a consent management platform (Didomi) to comply with privacy regulations. The site is mobile-optimized and SEO-friendly, providing a good user experience with clear navigation and consistent branding. Security-wise, the site enforces HTTPS and uses a privacy consent mechanism but lacks explicit security headers and published privacy or terms of service pages, which are areas for improvement. The absence of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, though the website's content and social media presence indicate a legitimate media entity. Overall, the site scores well on content quality and business credibility but should enhance privacy transparency and security practices to improve its security posture and compliance.

W

www.kafe.cz

kafe.cz

58

Kafe.cz is a Czech online magazine focused on women's interests including celebrity news, fashion, health, and entertainment. It operates as a popular digital media outlet in the Czech Republic, targeting a female audience with engaging content. The website is professionally designed with good navigation and mobile optimization, leveraging modern web technologies and third-party services for analytics and advertising. However, the absence of WHOIS registration data and lack of explicit privacy policy and contact information present gaps in transparency and trust. Security posture is strong with HTTPS and security headers implemented, and GDPR consent mechanisms are in place. Overall, the site is functional and trustworthy for general audiences but would benefit from improved compliance documentation and clearer business contact details.

P

Page Builder s.r.o.

pobo.space

56

Pobo Page Builder, operated by Page Builder s.r.o., is a specialized SaaS provider offering a drag and drop editor with integrated AI and A/B testing capabilities to enhance product, category, and blog descriptions for e-commerce platforms, primarily Shopify. The company has established a solid market presence with over 1,200 active e-shops and a high user satisfaction rating. Technically, the website employs modern JavaScript frameworks and integrates marketing and analytics tools such as Google Tag Manager and Google Optimize, hosted on VasHosting.cz. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and explicit cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience, with transparent business information and consistent branding.

P

Page Builder s.r.o.

pobo.hu

49

Pobo Page Builder, operated by Page Builder s.r.o., is a technology company specializing in providing a page building tool primarily targeting e-commerce businesses in Hungary and the Czech Republic. The website showcases their services including AI-powered content generation and design tools, supported by customer service and marketing teams. The company positions itself as a niche SaaS provider with a focus on enhancing online shops' page design and functionality. Technically, the website employs modern tracking and chat technologies such as Google Tag Manager, Google Optimize, Freshchat, and Abgar widgets, hosted on VasHosting.cz. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial, with privacy and terms documents available as PDFs but no cookie consent mechanism or security incident contact information. Overall, the website is professional but shows some content placeholders indicating incomplete localization or content delivery. The WHOIS data aligns well with the website's business claims, supporting legitimacy. Strategic improvements in security policies, privacy compliance, and content completeness would enhance trust and compliance.

U

Ultimate Store Kit

storekit.pro

28

Ultimate Store Kit is a specialized WooCommerce Elementor addon provider offering a plugin with over 69 widgets designed to enhance WooCommerce websites. The business targets web designers and WooCommerce users seeking to build custom product pages and dynamic checkout experiences. The website is built on WordPress with WooCommerce and Elementor frameworks, reflecting a modern and professional digital infrastructure. SEO optimization is evident with Rank Math integration and structured data usage. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy compliance features. The absence of contact information and privacy policies suggests room for improvement in transparency and compliance. Overall, the domain appears legitimate though WHOIS data is unavailable due to TLD restrictions and privacy protection, which is common for small plugin businesses.