Security Directory

W

Waldhart Software

onlineshop.ws

45

Waldhart Software operates the onlineshop.ws domain, providing specialized e-commerce solutions primarily for ski schools, snow sports schools, and related outdoor sports businesses. The website serves as a reference portal showcasing over 300 live client online shops, indicating a focused B2B business model targeting the winter and summer sports education sector. The company appears to be a small-sized entity founded in 2018, with a consistent brand presence and a clear market niche in Austria and neighboring countries. Technically, the website leverages modern web technologies including the Quasar Framework and Google Maps API, delivering a responsive and user-friendly experience. Hosting is likely provided by profiwebspace.at, with domain registration managed by InterNetX GmbH. The site uses HTTPS, but lacks DNSSEC and security headers, which are areas for improvement. No analytics or advertising scripts were detected, suggesting a privacy-conscious or minimalistic approach. From a security perspective, the site has a moderate posture with HTTPS enabled but missing important security headers and DNSSEC. There are no visible vulnerabilities or exposed sensitive data in the provided content. However, the absence of privacy and cookie policies, as well as terms of service, indicates compliance gaps with GDPR and general privacy best practices. Overall, the website is professional and trustworthy within its niche but would benefit from enhanced privacy compliance and improved security configurations to strengthen user trust and regulatory adherence.

P

Perfectweb

perfectweb.at

48

Perfectweb is a small regional web design and advertising agency based in Austria, specializing in web design, CMS, graphic design, marketing, and online shop solutions primarily serving Vienna and the Weinviertel region. The website presents a basic but professional digital presence with clear navigation and references to client projects. Technical infrastructure is modest, relying on standard HTML, CSS, and JavaScript with a cookie consent plugin for GDPR compliance. Security posture is limited with no visible HTTPS confirmation or security headers, and WHOIS data is unavailable, which raises concerns about domain transparency. Overall, the site is functional but would benefit from enhanced security and technical modernization.

M

Muzeum literatury

muzeumliteratury.cz

44

The website www.muzeumliteratury.cz represents the official online presence of the Czech Museum of Literature, a government-funded cultural institution dedicated to preserving and promoting literary heritage. The site offers comprehensive information about exhibitions, events, research services, and educational programs, targeting a broad audience including visitors, researchers, and educators. The content is well-structured, professionally presented, and localized in Czech, reflecting its national cultural focus. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager for analytics and consent management, and New Relic for performance monitoring. The site is served over HTTPS with appropriate security headers, indicating a good security posture. Mobile optimization and SEO practices are adequately implemented, providing a positive user experience across devices. Security-wise, the site demonstrates adherence to best practices such as HTTPS enforcement and cookie consent mechanisms. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not present, representing areas for improvement. The absence of WHOIS data limits domain registration transparency but is consistent with privacy protection often used by government entities. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations such as GDPR. Strategic recommendations include publishing a dedicated security policy, providing incident response contacts, and considering a vulnerability disclosure program to enhance transparency and security readiness.

D

David Kučera

dkgr.cz

45

David Kučera operates as a freelance graphic designer based in the Czech Republic, offering a broad range of design services including logos, corporate graphics, print materials, infographics, web design, and UX tailored to client needs. The business model is primarily freelance with the flexibility to assemble teams of specialists for larger projects. The website presents a professional portfolio with extensive references and partner collaborations, positioning the business as a credible and experienced service provider in the graphic design sector. Technically, the website is built with standard HTML5, CSS3, and JavaScript, utilizing jQuery libraries. Hosting is provided by a Czech hosting company inferred from the nameservers. The site is moderately performant with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and Open Graph data, although no CMS or advanced frameworks are detected. From a security perspective, the site lacks advanced security headers and does not provide privacy or cookie policies, which are compliance gaps. No forms or data collection mechanisms are present, reducing exposure to input-based vulnerabilities. The domain registration is consistent and transparent, supporting the legitimacy of the business. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is professional and trustworthy but would benefit from enhanced security practices and privacy compliance measures to improve its security posture and regulatory adherence.

T

tix02 SRL

tix02.be

56

tix02 SRL is a small, professional design and development studio based in Namur, Belgium, specializing in branding, visual communication, website and mobile application development. The website presents a clear business focus targeting local and regional clients seeking digital design and development services. Technically, the site uses modern web technologies including SVG graphics, WOFF2 fonts, and JavaScript, with good mobile optimization and a clean, professional design. However, the site lacks explicit privacy and cookie policies, security headers, and WHOIS transparency due to restricted domain registration data. The security posture is moderate but could be improved with better header configurations and compliance documentation. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security practices to improve compliance and user trust.

S

Solid Affiliate

solidaffiliate.com

57

Solid Affiliate is a specialized WordPress plugin designed to enable WooCommerce store owners to launch and manage affiliate marketing programs efficiently. Positioned as the leading affiliate plugin for WooCommerce, it boasts over 10,000 users and offers features such as affiliate onboarding, flexible commissions, fraud prevention, and one-click payouts. The website reflects a mature business with consistent branding and a professional digital presence. Technically, the site is built on WordPress and WooCommerce, leveraging modern JavaScript libraries and SEO best practices, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and domain registration protections, though improvements are recommended in security headers and explicit privacy compliance documentation. Overall, the site is trustworthy and well-positioned in the e-commerce technology sector.

S

Saw.com

sawsells.com

63

Saw.com operates as a leading premium domain brokerage marketplace, facilitating the buying, selling, and appraisal of domain names. With a domain history dating back to 1995 and a strong market position, Saw.com offers a secure and user-friendly platform supported by expert brokers and multiple payment options. The website demonstrates a high level of professionalism, trustworthiness, and technical maturity, leveraging modern technologies such as SvelteKit and Cloudflare services. While the site is well-optimized for performance and mobile use, it lacks explicit cookie consent mechanisms and published security policies, which are areas for improvement. Overall, Saw.com presents a robust digital presence with strong business credibility and a secure environment for domain transactions.

The website www.letenky-1.cz operates as an online platform for selling cheap flight tickets primarily targeting the Czech market. It offers a fast and unique flight search and booking experience by embedding a third-party booking engine via iframe. The business appears to be a small-sized entity under the legal name AliaWeb, spol. s r.o., with a partnership connection to Agentura Zájezdy, a.s. and other Czech travel portals. The site content is in Czech and focuses on transportation services related to air travel. Technically, the website uses basic JavaScript and jQuery libraries, with external resources loaded over HTTP, indicating a lack of HTTPS enforcement. The site embeds external scripts and stylesheets from multiple domains, including partner and advertising networks. The design and user experience are basic, with moderate SEO and accessibility features. The site lacks modern CMS or frameworks and shows signs of technical debt, such as commented-out analytics code and no visible security headers. From a security perspective, the site lacks HTTPS, security headers, and cookie consent mechanisms, which lowers its security posture. The WHOIS data is unavailable, suggesting privacy protection or unregistered status, which impacts trust. No explicit privacy or incident response policies are found on the site, though a basic privacy policy is linked externally. The site does not expose sensitive data visibly but could improve security by implementing HTTPS and security best practices. Overall, the website presents moderate business credibility but requires significant improvements in security and privacy compliance to enhance trustworthiness and protect user data. Strategic recommendations include implementing HTTPS, adding security headers, establishing cookie consent, and improving WHOIS transparency.

JenProČasopisy.cz is a Czech media subscription platform operated by MAFRA, a.s., offering printed magazine subscriptions targeted at women, men, children, and lifestyle audiences. The website provides a broad catalog of magazine titles, digital edition access, and customer support including SMS ordering. The business model centers on subscription sales with a clear market position in the Czech media sector. Technically, the site employs modern analytics and advertising technologies such as Google Tag Manager, Google Analytics, Gemius, and Maileon Analytics, alongside a consent management platform to comply with GDPR requirements. The site is accessible, mobile-optimized, and well-structured with good navigation and content relevance. Security posture is moderate with HTTPS enforced and consent mechanisms in place, but lacks explicit security headers and published security policies. WHOIS data is unavailable, which impacts domain trust assessment negatively. Overall, the site is professional and trustworthy from a business and user perspective but could improve transparency and security practices.

M

MAFRA, a.s.

mfdnes.cz

59

MF DNES is a major Czech media company offering subscription-based access to daily newspapers and thematic magazines in both digital and print formats. The website provides clear subscription options, loyalty programs, and regional news coverage, targeting a broad audience interested in news and lifestyle content. The business is positioned as one of the largest media outlets in the Czech Republic with a professional editorial team and consistent branding. Technically, the website employs modern tracking and analytics technologies including Google Tag Manager, Google Analytics, Gemius, and a consent management platform (Didomi) to ensure GDPR compliance. The site is well-structured with good mobile optimization and SEO practices, although some security headers are not explicitly detected. The SSL configuration is excellent, and secure login forms with client-side validation are implemented. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and consent management but lacks publicly available security policies or incident response contacts. The absence of WHOIS data is a notable anomaly that reduces domain registration trustworthiness, although the website content and business information strongly indicate legitimacy. No vulnerabilities or adult content were detected, and the site is fully accessible without WAF blocking. Overall, the website is professional, secure, and compliant with privacy regulations, but improvements in domain transparency and security policy publication are recommended to enhance trust and security posture.

B

Blogosvět.cz

blogosvet.cz

58

Blogosvět.cz is a Czech media platform providing an open space for bloggers and authors to freely express their opinions. It hosts a variety of articles covering political, social, and cultural topics, targeting a general Czech-speaking audience. The platform partners with established media companies such as SPM MEDIA and Echo24.cz, enhancing its credibility within the local media landscape. Technically, the website is built using modern web technologies including React and Next.js, offering good mobile optimization and user experience. Security posture is adequate with HTTPS enforced and secure forms, but lacks some advanced security headers and explicit privacy compliance mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration transparency, which impacts trustworthiness. Overall, the platform is functional and professional but would benefit from improved privacy and security disclosures.

R

Radio Prostor

radioprostor.cz

56

Radio Prostor is a Czech media outlet providing a platform for information, politics, economy, business, sports, culture, and modern lifestyle content. It operates a live radio streaming service alongside a rich collection of news articles and interviews, targeting a broad audience interested in current affairs and cultural topics. The website demonstrates a professional and consistent brand presence with active social media engagement and accessible contact information. Technically, the site is built on modern web technologies including React and Next.js, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, though additional security headers and explicit policies could enhance protection. The absence of WHOIS data reduces domain transparency and trust slightly, but the overall content quality and business credibility remain high. Strategic recommendations include improving security headers, publishing incident response information, and monitoring domain registration status to ensure ongoing legitimacy.

Coolpany SE is a media company operating multiple media outlets and publications primarily in the Czech Republic. The website currently is under construction and serves as a landing page linking to various associated media projects such as Echo24, Týdeník Echo, and Radio Prostor. The business model focuses on media publishing and content distribution targeting a general audience. The company appears to have been founded in 2013 and maintains a medium-sized presence in the media sector. Technically, the website is built using modern JavaScript frameworks including Next.js and React, indicating a contemporary digital infrastructure. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. However, the site content is minimal and lacks advanced technical configurations such as security headers or analytics integrations. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy compliance documentation. No forms or data collection mechanisms are present, reducing immediate data exposure risks. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy and trustworthiness. No privacy or cookie policies are published, which impacts compliance with GDPR and other regulations. Overall, the website presents a basic digital presence with moderate technical maturity but significant gaps in security posture and compliance. Strategic recommendations include improving security headers, publishing privacy and cookie policies, verifying domain registration legitimacy, and enhancing transparency with contact and incident response information.

Č

Český olympijský tým

dualcareer.cz

55

The website www.olympijskytym.cz is the official portal for the Czech Olympic Team, providing comprehensive information about Olympic games, athlete support programs such as the Dual Career program, and educational initiatives. It serves as a national authoritative platform for Olympic-related content in the Czech Republic, targeting athletes, sports enthusiasts, and the general public interested in Olympic sports. The site demonstrates consistent branding and a professional presentation aligned with its governmental and non-profit nature. Technically, the website employs modern web technologies including HTML5, CSS3, and JavaScript, with integrations of tracking and analytics tools such as Google Tag Manager, Facebook SDK, Pinterest tracking, and Hotjar. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured navigation. However, no explicit CMS or hosting provider information was identified. From a security perspective, the site uses HTTPS and shows no signs of exposed sensitive data or vulnerable libraries. Some standard security headers are not explicitly detected, and there is no visible security policy or incident response information. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy or terms of service pages found in the analyzed content. The WHOIS data is unavailable, likely due to privacy protection, which is common and justified for such an organization. Overall, the website is trustworthy and professional, with moderate to good scores in content quality, technical implementation, and security posture. Strategic improvements include publishing clear privacy and security policies, enhancing contact information visibility, and implementing additional security headers to strengthen the security posture.

Olympijský víceboj is a Czech Republic-based educational sports initiative operated under the auspices of the Czech Olympic Committee (ČOV). Founded in 2013, it focuses on promoting physical education among school children by providing sport talent analysis and motivational programs such as the Olympijský diplom and Olympijský odznak. The website serves as an information portal for schools, teachers, and parents, offering resources, event information, and partner engagement. The project enjoys strong market positioning as a leading school sports program in the Czech Republic, supported by reputable corporate partners and government institutions. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Bootstrap, with Google Analytics for visitor tracking. Hosting is managed by REG-ZONER, a known Czech hosting provider. Security posture is moderate with HTTPS usage and cookie consent implemented, but lacks explicit security headers and detailed privacy policies. Contact information is clearly presented, enhancing business credibility. No adult or questionable content is present, making it safe for general audiences.

I

Internet Index Czech, s.r.o.

adulto.cz

61

Adulto.cz is a Czech-based company specializing in online age verification services for e-commerce platforms selling age-restricted products such as tobacco, alcohol, and adult goods. Founded in 2023 and operated by Internet Index Czech, s.r.o., the company has quickly established itself as a leading provider in the Czech and Slovak markets, serving over 450 e-shops and performing millions of verifications. Their service integrates multiple verification methods including bank identity and MojeID, ensuring compliance with Czech laws and protecting minors from restricted product sales. The website is professionally designed, mobile-optimized, and provides comprehensive information and customer testimonials, reinforcing trust and credibility.

W

web4ukraine.org | STOP Russian military aggression against Ukraine

web4ukraine.org

53

The website web4ukraine.org is a small-scale advocacy platform focused on opposing Russian military aggression against Ukraine. It provides a JavaScript tool that is actively used on over 9,000 websites to delay Russian user visits, demonstrating a niche but impactful service. The site is hosted via Cloudflare and uses modern front-end technologies such as Bootstrap and Google Fonts, with Google Analytics integrated for visitor tracking. The content is clear, relevant, and professionally presented, targeting website owners and administrators who wish to participate in the campaign. From a technical perspective, the website employs a modern tech stack with good mobile optimization and moderate performance. However, it lacks some security best practices such as DNSSEC and security headers, which could be improved. The site uses HTTPS properly, ensuring encrypted communication. Privacy compliance is weak due to the absence of privacy and cookie policies, and no consent mechanisms are present. Security posture is moderate; no critical vulnerabilities or exposed sensitive data were detected, but the lack of security headers and DNSSEC reduces the overall security score. The WHOIS data is consistent with the website's origin and purpose, with no suspicious patterns. Overall, the website is trustworthy but could benefit from enhanced privacy and security measures. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies with consent mechanisms, and establishing incident response contacts to improve compliance and trustworthiness.

The website www.fotojanout.cz is a personal photography portfolio showcasing the work of František Janout, focusing primarily on nature and landscapes of the Šumava region and various international travel destinations. The site targets photography enthusiasts and travelers interested in these regions. It operates as a small-scale personal project without commercial business registration details or contact information. Technically, the site uses basic web technologies including HTML, CSS, JavaScript with jQuery and Facebook SDK integration. It is hosted on the eStránky.cz platform and shows moderate performance and basic mobile optimization. Security posture is weak due to lack of HTTPS confirmation, missing security headers, and absence of privacy or cookie policies. No WHOIS data is available, raising concerns about domain registration legitimacy. Overall, the site is safe for general audiences but lacks professional security and privacy compliance features.

H

Hotely Srní

hotelysrni.cz

47

Hotely Srní operates a hospitality business focused on hotel accommodation, wellness, conference facilities, and restaurant services in the Šumava region of the Czech Republic. The website provides a comprehensive online presence with booking capabilities and active social media engagement, positioning itself as a regional player in tourism and hospitality. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and animation libraries, delivering a good user experience with mobile responsiveness and interactive features. Security posture is adequate with HTTPS enforced and secure form handling, though the absence of security headers and a published privacy policy indicates room for improvement. The lack of WHOIS data is a concern for domain legitimacy but does not directly contradict the business's apparent authenticity. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security practices.

V

Vodafone Czech Republic a. s.

oskarta.cz

62

Oskarta.cz is a Czech Republic-based prepaid mobile telecommunications service brand operated under Vodafone Czech Republic a. s. The website primarily serves as an informational and redirect portal, informing users that Oskarta prepaid services are now available through Vodafone's main website. The business targets prepaid mobile users seeking affordable calling and SMS options without contractual obligations. The site provides essential service information, pricing, and links to terms, privacy, and cookie policies, reflecting a professional and user-focused approach. Technically, the website employs established JavaScript libraries such as jQuery and Modernizr, and integrates enterprise-grade analytics tools like Adobe Omniture and Tealium, indicating a mature digital infrastructure. Hosting and domain management appear to be under Vodafone's control, although WHOIS data is unavailable, possibly due to privacy protection or domain status issues. Security posture is generally good with enforced HTTPS and cookie consent mechanisms; however, explicit security headers and incident response information are absent, representing areas for improvement. Overall, the website is trustworthy and professionally maintained, but the lack of WHOIS transparency and some security best practices slightly reduce its trust score.

A

Alpiro s.r.o.

ssls.cz

57

SSLS.cz is an established Czech online reseller specializing in SSL certificates and digital security products. Operated by Alpiro s.r.o., it holds a strong market position as the largest SSL certificate provider in the Czech Republic, offering a wide range of certificates from multiple trusted certificate authorities. The website provides comprehensive services including SSL certificates by brand and validation type, wildcard and multidomain certificates, digital signatures, code signing, CSR generation, and API integration for automation. The business model focuses on competitive pricing and extensive product selection targeting businesses and individuals seeking web security solutions in the Czech market. Technically, the website employs standard web technologies such as JavaScript and jQuery, with responsive design and good SEO practices. While performance is moderate, mobile optimization is good, and accessibility is basic. The site includes a cookie consent mechanism and secure login options, including certificate-based authentication, indicating a reasonable level of digital maturity. However, the absence of explicit security headers and a formal security policy page suggests room for improvement in security hardening. From a security perspective, the site enforces HTTPS and offers secure user authentication methods. No vulnerabilities or exposed sensitive data were detected in the content. The lack of WHOIS data reduces transparency and slightly impacts trustworthiness, but the overall security posture is solid for an e-commerce platform of this nature. Privacy compliance is supported by a privacy policy and cookie consent, aligning with GDPR requirements. Overall, SSLS.cz presents a professional and trustworthy platform for SSL certificate procurement with a strong local market presence. Strategic enhancements in security headers, incident response transparency, and WHOIS data availability would further strengthen its security and compliance profile.

L

Lidl

lidl.cz

60

Lidl.cz is the Czech Republic online presence of Lidl, a major European discount supermarket chain. The website offers retail grocery and consumer goods services with a focus on promotional offers and online shopping convenience. The site is professionally designed with consistent branding and targets a general audience. Technically, the site employs modern JavaScript libraries, cookie consent management, and integrates third-party services such as YouTube and Google Analytics. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly detected. Privacy compliance is robust, with a comprehensive privacy policy and GDPR adherence clearly indicated. Overall, the site presents a low risk profile with no signs of blocking or suspicious activity.

C

COVITAR s.r.o.

covitar.cz

51

COVITAR s.r.o. is a Czech-based supplier specializing in natural raw materials such as dried fruits, nuts, additives, and semi-finished fruit products for the food industry. The company emphasizes natural delicacies and organic quality products, catering primarily to food manufacturers and businesses seeking natural ingredient solutions. Their business model includes dropshipping, private label services, and fulfillment, positioning them as a versatile supplier in their niche market. The website reflects a professional and consistent brand image with clear contact channels and EU co-financing trust indicators. Technically, the site uses modern web standards with good mobile optimization and SEO practices, though it lacks advanced frameworks or CMS indications. Security posture is adequate with HTTPS and CAPTCHA-protected forms but lacks security headers and formal privacy or cookie policies, indicating room for compliance improvements. WHOIS data is unavailable, which slightly impacts domain trustworthiness, but overall, the site presents a credible and professional business presence.

B

Blendea

blendea.cz

65

Blendea.cz is a Czech e-commerce website specializing in premium natural dietary supplements and functional foods aimed at supporting overall health, energy, and vitality. The site targets health-conscious consumers in the Czech Republic and offers a broad range of products categorized by health goals and product types. The business model is retail-focused, leveraging an online platform to reach its audience. The website presents a professional and consistent brand image with good content quality and clear navigation.

M

Ministerstvo zemědělství

viscojis.cz

60

The website viscojis.cz is a Czech government-affiliated informational platform focused on food, health, nutrition, and food safety. It serves as an educational resource providing detailed content on nutrients, healthy eating habits, food safety practices, and nutrition-related diseases. The site targets the general public interested in nutrition and food safety, positioning itself as an authoritative source backed by the Ministry of Agriculture of the Czech Republic. Key services include educational articles, food safety guidelines, and health-related nutrition information. Technically, the website is built on WordPress 6.8.3 with standard web technologies such as jQuery and Bootstrap Icons. It demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The site uses HTTPS, ensuring secure communication, but lacks some security headers and privacy compliance features such as privacy and cookie policies. No advertising or tracking technologies were detected, indicating a privacy-conscious approach. From a security perspective, the site benefits from HTTPS and secure form handling but could improve by implementing security headers and publishing vulnerability disclosure information. The absence of privacy and cookie policies represents a compliance gap, especially under GDPR. Contact information is clearly provided, enhancing trust and credibility. WHOIS data confirms the domain's legitimacy and consistency with the government affiliation. Overall, viscojis.cz is a trustworthy, well-structured government resource with good content quality and technical implementation. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

Č

Česká spořitelna a.s.

tradergo.cz

64

TraderGO is a modern online trading platform operated under the Česká spořitelna brand, offering professional investment services including trading in stocks, commodities, currencies, and other assets. The platform targets retail and professional investors primarily in the Czech Republic, providing a multi-device accessible application and educational resources. The website is well-branded, professionally designed, and integrates secure login and demo account features. Technically, the site uses modern web technologies including JavaScript modules, Google Tag Manager, and ElasticSearch for search functionality, hosted likely on Erste Group infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be further verified. The absence of WHOIS data is a notable gap but does not significantly detract from trust due to the strong brand presence. Overall, the site demonstrates good digital maturity and compliance with privacy regulations.

W

WPCodeBox

wpcodebin.com

56

WPCodeBin is a niche technology platform offering a free service for sharing WordPress code snippets, targeting WordPress developers and users. The website is built using modern web technologies including React and Next.js, hosted with DNS managed by Cloudflare and domain registered via NameCheap. The platform is relatively new, founded in 2022, and operates under the parent brand WPCodeBox. The site demonstrates good technical infrastructure with responsive design and moderate performance. Security posture is decent with HTTPS enabled and some security headers indicated in code snippets, though DNSSEC is not enabled and no explicit security or privacy policies are published. The absence of privacy and cookie policies represents a compliance gap. No contact information or incident response details are provided, limiting direct communication channels. Overall, the site is professional and trustworthy within its niche but could improve compliance and security transparency.

S

Soflyy

breakdance.com

61

Breakdance.com is the official website for Breakdance, a modern visual website builder for WordPress developed by Soflyy. The company positions itself as a powerful and easy-to-use alternative to popular WordPress builders like Elementor and Divi, targeting WordPress creators, developers, and agencies. The site offers extensive features including WooCommerce integration, form and popup builders, dynamic data handling, and AI-powered content creation. The business model is subscription-based with an unlimited site license offered annually. The website demonstrates a mature digital presence with professional design, comprehensive tutorials, and active social media engagement.

D

DIAsource ImmunoAssays

diasource-diagnostics.com

73

DIAsource ImmunoAssays is a well-established Belgian company specializing in the development, manufacturing, and marketing of clinical diagnostic products focused on immunoassays such as RIA and ELISA, antibodies, and instruments for endocrinology, autoimmunity, and infectious diseases. The company operates as part of the BioVendor Group, enhancing its market position and credibility. Their website reflects a professional and comprehensive digital presence targeting healthcare professionals and clinical laboratories worldwide. Technically, the website uses modern web technologies, is hosted by OVH sas, and includes essential privacy and cookie compliance mechanisms. Security posture is good with HTTPS and CSRF protections, though improvements are possible in DNSSEC and security headers. Overall, the site is trustworthy, well-branded, and provides clear contact and business information.

T

TestLine Clinical Diagnostics s.r.o.

testlinecd.cz

41

TestLine Clinical Diagnostics s.r.o. is a Czech-based company specializing in the development, manufacturing, and distribution of human and veterinary laboratory diagnostic products. It operates as part of the BioVendor Group, a recognized international biotechnology conglomerate. The company targets healthcare and veterinary laboratories, providing innovative in vitro diagnostic solutions and related services. The website reflects a professional and consistent brand presence with multilingual support and comprehensive product information.

P

PragueBest s.r.o.

praguebest.cz

58

PragueBest s.r.o. is a well-established Czech digital agency founded in 2002, specializing in custom website and e-commerce development tailored to client needs. The company serves a diverse client base including retail, transportation, and lifestyle sectors, with a strong portfolio of notable clients and industry awards. Their business model focuses on delivering bespoke digital solutions integrating modern technologies and ERP systems. Technically, the website demonstrates a mature digital infrastructure with modern JavaScript libraries, Google reCAPTCHA v3, and cookie consent management, reflecting a high level of digital maturity and user experience optimization. Security posture is strong with HTTPS enforced and secure form handling, though explicit security headers and policies could be improved. Privacy compliance is robust, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized, though the lack of WHOIS data slightly impacts domain trust assessment.

M

More.is.More | Engineering Joy

moreismore.cz

56

More.is.More is a small technology-focused design and engineering solutions provider based in the Czech Republic, founded in 2017. The website presents a professional and creative brand image targeting innovators and creatives seeking cutting-edge design. The technical infrastructure is modern, built on the Framer platform and hosted by Czech providers, with moderate performance and good mobile optimization. However, the site lacks critical privacy and security policies, contact information, and security headers, which are essential for compliance and trust. The absence of analytics and tracking indicates minimal user data collection, but also limits business intelligence capabilities. Overall, the security posture is basic and requires improvements to meet industry standards.

F

FG Forrest, a.s.

edee.one

65

Edee.one is a Czech-based advanced headless CMS and e-commerce platform designed for medium to large enterprises, including significant Czech and multinational companies. The platform integrates web content management, e-commerce, intranet, and email marketing into a single modular system. The website demonstrates a professional and modern digital presence with clear navigation, strong branding, and comprehensive content targeting corporate clients. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website's professional appearance and client references support its legitimacy. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for enhanced security transparency.

M

Muzeum literatury

pamatniknarodnihopisemnictvi.cz

53

The website www.muzeumliteratury.cz represents the Czech Museum of Literature, a government-affiliated cultural institution focused on literature, exhibitions, research, and educational services. The site provides comprehensive information about current and upcoming exhibitions, visitor information, research services, and educational programs, targeting a broad audience including the general public, researchers, and educators. The museum maintains partnerships with ticketing platforms and other cultural portals, enhancing its service offerings and outreach. Technically, the website employs modern JavaScript technologies, integrates Google Tag Manager for analytics, and uses New Relic for performance monitoring. The site is served over HTTPS with appropriate security headers, indicating a good security posture. The design is professional, mobile-optimized, and provides clear navigation, contributing to a positive user experience. Security-wise, the site demonstrates adherence to best practices such as HTTPS enforcement and security headers. However, the absence of publicly available WHOIS data limits domain trust verification. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present with consent mechanisms, reflecting basic GDPR compliance. Overall, the website is a legitimate, well-maintained cultural institution portal with moderate technical sophistication and a solid security foundation. Strategic improvements could include publishing explicit security policies, incident response contacts, and enhancing accessibility features to further strengthen trust and compliance.

N

Nationalpark Thayatal

np-thayatal.at

52

Nationalpark Thayatal is a government-managed national park in Austria focused on preserving one of the last natural valley landscapes in Central Europe. The website provides comprehensive information about the park's biodiversity, educational programs, visitor services, and events. The digital infrastructure uses modern web technologies and privacy-conscious analytics (Matomo with cookies disabled). However, the absence of WHOIS data limits domain trust verification. The site lacks explicit cookie consent mechanisms and security policy disclosures, which could be improved to enhance compliance and user trust.

K

Kreativní Praha, z. ú.

poznejvltavu.cz

52

Poznej Vltavu is a cultural festival organized by Kreativní Praha, a non-profit entity focused on celebrating the Vltava river through family-friendly events, workshops, and entertainment in Prague. The website serves as an information hub for the festival, providing event details, maps, partner information, and updates. The organization has established partnerships with local government and cultural institutions, enhancing its credibility and community reach. The website is well-branded, consistent, and targets a broad audience including families and cultural enthusiasts. Technically, the website uses modern JavaScript libraries such as Leaflet for interactive maps and Swiper for carousels, hosted on WEDOS servers. It employs Google Tag Manager for analytics with a privacy-conscious default denying tracking until consent is given. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and explicit security policies. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Cookie consent mechanisms and GDPR policy pages indicate good privacy compliance. However, there is no explicit incident response or security policy documentation, which could be enhanced. Overall, the site is trustworthy, safe, and professionally maintained. The risk assessment is low, with recommendations focusing on improving security headers, adding incident response contacts, and enhancing accessibility. The domain is newly registered but consistent with the event timeline, and WHOIS data aligns with the website's claims, supporting legitimacy.

M

Moudrá Sovička z.s.

moudrasovicka.cz

40

Moudrá Sovička z.s. is a small Czech non-profit organization focused on providing assistance with the initial setup of computers, tablets, and phones. The website serves as an informational and service platform targeting individuals who need help with technology setup. The organization maintains a modest but professional online presence, including a Facebook page and clear contact information. The business model revolves around educational and technical support services, positioning itself as a niche local service provider in the Czech Republic. Technically, the website is built on WordPress using the Radiate theme and employs standard web technologies such as PHP, JavaScript, and CSS. It includes a cookie consent mechanism compliant with GDPR, indicating a reasonable level of digital maturity and privacy awareness. Performance and mobile optimization are adequate, with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS and includes common security headers, contributing to a good security posture. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a security.txt file and explicit incident response contacts suggests room for improvement in security transparency and incident readiness. Overall, the website presents a low-risk profile with a solid foundation for a small non-profit. The lack of WHOIS data reduces trust slightly but does not outweigh the positive indicators from the website content and technical setup. Strategic recommendations include enhancing security disclosures, maintaining up-to-date software, and improving transparency around incident response.

M

Městská knihovna Poděbrady

knihovna-pdy.cz

57

Městská knihovna Poděbrady is a municipal public library serving the community of Poděbrady, Czech Republic. The website provides comprehensive information about library services including book lending, e-books, audiobooks, events, and community engagement activities. It targets a broad audience including children, seniors, and local residents, positioning itself as a key educational and cultural institution in the region. The business model is non-profit and focused on public service and education. Technically, the website is built on the Vismo CMS platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and Vue.js. It integrates Google services including reCAPTCHA v3 for form security, Google Translate for multilingual support, and Google Tag Manager for analytics. The site is mobile-optimized, accessible, and performs moderately well, with good SEO and navigation clarity. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the content. Privacy and cookie policies are present and indicate GDPR compliance, with a consent mechanism implemented. Overall, the website is trustworthy, professional, and safe for general audiences. The main limitation is the absence of WHOIS data, which restricts domain registration transparency and trust analysis. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to improve security posture and trustworthiness.

H

Heidelberg Materials

heidelbergcement.com

77

Heidelberg Materials is a global leader in the building materials industry, specializing in cement, aggregates, ready-mixed concrete, and asphalt. The company operates in approximately 50 countries and emphasizes sustainability, digital innovation, and business transformation to maintain its market leadership. The website reflects a mature digital presence with comprehensive corporate, investor, sustainability, and career information. Technically, the site is built on Drupal 11 with modern frontend technologies and includes analytics and cookie consent mechanisms. Security posture is strong with HTTPS and bot management cookies, though explicit security headers and incident response contacts are not clearly published. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional site content and branding. Overall, the site is well-designed, accessible, and trustworthy, targeting industry professionals, investors, and job seekers.

W

World Standards Day

worldstandardsday.org

54

World Standards Day is an annual global event promoting awareness of the importance of international standardization to foster sustainable development and global partnerships. The website serves as an informational and advocacy platform supported by major standards organizations IEC, ISO, and ITU. It provides resources, event details, and community engagement opportunities to a broad international audience interested in standards and sustainable development goals. Technically, the site uses modern web technologies including a CMS (Jahia), Google Fonts, Usercentrics for cookie consent, and Vimeo for video content, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response contacts are missing. Overall, the site is trustworthy, professionally maintained, and aligned with its mission, though WHOIS data is privacy protected and unavailable for detailed domain registration analysis.

N

NET4GAS, s.r.o.

net4gas.cz

67

NET4GAS, s.r.o. operates as the exclusive operator of the natural gas transmission system in the Czech Republic, managing over 4,000 km of pipeline infrastructure. The company provides reliable, safe, and economically efficient gas transportation services year-round, playing a key role in integrating Central European energy markets and supporting the transition to a low-carbon economy. The website reflects a professional and business-focused presence with comprehensive information for customers, investors, and partners. Technically, the site uses established web technologies such as jQuery and Bootstrap, hosted on a CMS platform (WebJET CMS), and is mobile optimized with good navigation and content quality. Security-wise, the site implements cookie consent mechanisms and GDPR compliance but lacks visible advanced security headers or explicit security policies. The absence of WHOIS data limits full domain legitimacy verification, though the website content and contact details support a credible business identity. Overall, the site is well-structured and trustworthy for its intended audience but could improve transparency and security posture.

C

Coweo Technologies s.r.o.

jenfirmy.cz

62

Coweo Technologies s.r.o. operates JenFirmy.cz, the second largest job and company review portal in the Czech Republic, specializing in employee reviews, job listings, and recruitment advertising services. The company has been active since 2007 and targets job seekers and employers within the Czech market. The website demonstrates a professional and consistent brand presence with comprehensive content and strong social media integration. Technically, the website employs modern web technologies including React, Google Tag Manager, and Sentry for error tracking, hosted likely behind Cloudflare infrastructure. The site is mobile-optimized, fast-loading, and accessible, with good SEO practices and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms, and uses security headers effectively. However, it lacks a publicly available security policy and incident response contact details, which are recommended for enhanced transparency and trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is safe, professional, and trustworthy for general audiences. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the site's operational legitimacy. Strategic improvements include publishing security policies and incident response information to strengthen security posture and user confidence.

Svazek obcí mikroregionu Zábřežsko is a local government association focused on supporting the development of municipal self-governance and enhancing the economic, social, and cultural life of the Zábřežsko microregion in the Czech Republic. The website serves as an information portal for residents and local officials, providing access to documents, event announcements, and contact information. The organization positions itself as a community-centric entity facilitating regional cooperation and development. Technically, the website employs basic web technologies including HTML, CSS, JavaScript, and an older version of jQuery (1.3.2). Google Analytics is integrated for visitor tracking. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS indications. Accessibility and SEO optimizations are basic, with room for improvement. From a security perspective, the site uses HTTPS (implied by external scripts loaded over HTTPS), but no security headers were detected in the provided data. The use of an outdated jQuery version presents a potential vulnerability. There is no visible privacy or cookie policy, which raises compliance concerns, especially under GDPR. WHOIS data is missing, which limits domain legitimacy verification and reduces trustworthiness. Overall, the website is functional and serves its purpose for the local government audience but requires improvements in security, privacy compliance, and technical modernization to enhance trust and resilience against threats.

Q

QCM s.r.o.

vhodne-uverejneni.cz

55

Portál pro vhodné uveřejnění is a certified electronic tool operated by QCM s.r.o., serving as the largest public procurement portal in the Czech Republic. It provides a comprehensive platform for publishing and managing public contracts, targeting both contracting authorities and suppliers. The portal supports legal compliance with Czech procurement laws and offers additional services such as electronic forms and training. The website demonstrates a professional and consistent brand presence with clear contact information and active content updates.

M

Ministerstvo práce a sociálních věcí

esfcr.cz

68

The website www.esfcr.cz is the official portal for the European Social Fund (ESF) in the Czech Republic, managed by the Ministry of Labour and Social Affairs. It provides comprehensive information about the Operational Program Employment Plus (OPZ+) and related EU-funded social and employment initiatives. The portal serves a broad audience including public sector entities, applicants, recipients, and the general public interested in social development programs. The site is well-structured with clear navigation, multi-level menus, and a search function, offering access to program documents, calls for proposals, news, and evaluation reports. Technically, the site is built on the Liferay CMS platform, utilizing JavaScript libraries such as jQuery, Highcharts, and Bootstrap for UI and data visualization. It employs HTTPS with good SSL configuration but lacks visible security headers, which is a potential area for improvement. Google Analytics and Google Tag Manager are used for analytics with conditional user ID tracking for logged-in users. The site is mobile-optimized and has basic accessibility features. From a security and compliance perspective, the site does not display a cookie consent mechanism, which is a compliance gap under EU regulations. Privacy policy information is present and appears GDPR compliant. No WHOIS data was available, which limits domain legitimacy verification and slightly reduces trust. No contact emails or phone numbers were explicitly found on the homepage, and no vulnerability disclosure or incident response information is provided. Overall, the website is a professional and authoritative government portal with good content quality and business credibility. However, improvements in security headers, cookie consent, and transparency in contact and security policies would enhance its security posture and compliance standing.

K

KS

ks.no

66

KS is a prominent Norwegian membership organization representing all municipalities and county municipalities in Norway. It focuses on advocating for an efficient and independent municipal sector that meets the needs of residents. The website reflects a well-established organization with a clear market position as the leading voice for the Norwegian municipal sector, offering services such as legal advice, research, statistics, training, and digital tools. The target audience primarily includes municipal officials and public sector stakeholders in Norway. Technically, the website employs a modern technology stack including various analytics and tracking tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Azure Application Insights. The site is well-structured, mobile-optimized, and accessible, with good SEO practices and professional design. However, it lacks some privacy compliance features such as a cookie consent mechanism and visible security policies. From a security perspective, the site uses HTTPS with excellent SSL configuration and no visible vulnerabilities or exposed sensitive data. The absence of security headers and incident response information are areas for improvement. The WHOIS data is not publicly available, likely due to privacy protection, but the website content and contact information strongly support legitimacy and trustworthiness. Overall, KS's website demonstrates a strong business and technical foundation with minor gaps in privacy compliance and security transparency. Strategic improvements in these areas would enhance trust and regulatory adherence.

L

LightWidget

lightwidget.com

61

LightWidget is a specialized technology company offering responsive Instagram widgets for embedding Instagram feeds on websites, blogs, and online stores. Founded in 2016, it serves a niche market of website owners and businesses seeking customizable Instagram feed solutions. The company operates a SaaS business model with free and paid add-ons, maintaining a strong market position supported by positive user ratings and a clean, ad-free product offering. Technically, the website is well-built using modern web standards, hosted via Cloudflare CDN, and optimized for performance and mobile responsiveness. The use of the official Instagram Graph API enhances service reliability and trust. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though improvements such as enabling DNSSEC and publishing security policies could enhance trust further. Privacy compliance is good with clear privacy and cookie policies, though no explicit consent mechanism for cookies is present. Overall, the website is professional, trustworthy, and well-maintained, with a high AI score reflecting strong content quality, technical implementation, and business credibility.

The website at https://mgaru.dev/lander is minimalistic and primarily serves as a placeholder or landing page with no substantive business content, contact information, or policies. It uses modern JavaScript technologies such as React and is hosted behind Cloudflare, with Google Adsense and Cloudflare Insights scripts included. The lack of privacy, cookie, or terms of service policies, combined with no visible contact or business information, results in a low trust and credibility profile. Security posture is basic with no detected security headers or advanced protections visible in the provided data. Overall, the site appears to be either under development or a parked domain with limited business activity or user engagement.

E

European Unified ID

euid.eu

63

European Unified ID (EUID) is an open-source identity solution designed for the European digital advertising ecosystem. It leverages encrypted email and phone number data to provide a privacy-conscious, secure, and accurate identity standard. The website positions itself as a key player enabling personalization, targeting, and measurement for advertisers, publishers, DSPs, and data providers. The presence of major partners such as Adobe, Google, and Salesforce underscores its industry relevance and collaborative approach. Technically, the site is built using modern frameworks like Docusaurus and integrates tools such as Algolia for search and Google Tag Manager for analytics, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security policies or incident response information, which could be improved to enhance trust and compliance. Overall, the website is professional and well-structured, though it would benefit from publishing comprehensive privacy and terms of service documents to strengthen privacy compliance and user trust.

P

Page Builder s.r.o.

pobo.cz

51

Pobo.cz is a Czech-based SaaS company, Page Builder s.r.o., offering an advanced drag & drop page builder tool integrated with AI and A/B testing capabilities aimed at e-commerce businesses. The platform enables rapid creation of product descriptions, category pages, and blog content optimized for SEO and sales conversion. With over 1200 active e-shops using their service and strong client testimonials, Pobo holds a solid position in the Czech e-commerce technology market. Technically, the website employs modern JavaScript frameworks and integrates Google Tag Manager, Google Optimize, and Freshchat for analytics and customer engagement. Hosting is provided by VasHosting.cz, and the site is well-optimized for mobile devices with good SEO practices. However, some security best practices such as security headers and cookie consent mechanisms are missing. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The absence of WHOIS data limits domain trust assessment, though the website content and business information appear professional and credible. Overall, Pobo.cz presents a trustworthy and professional e-commerce tool provider with room for improvement in security transparency and privacy compliance. Strategic enhancements in these areas would strengthen their market credibility and user trust.