Security Directory

M

Městský úřad Aš

muas.cz

46

The website muas.cz serves as the official municipal portal for the city of Aš in the Czech Republic. It provides residents and visitors with access to city news, public services, contact information, and various online tools such as forms and event calendars. The site is positioned as a trusted government resource with a clear focus on local governance and community engagement. The target audience primarily includes local citizens and stakeholders interested in municipal affairs. Technically, the website is built on the vismoWeb5 CMS platform, utilizing standard web technologies including HTML5, CSS3, and JavaScript. It incorporates accessibility features and mobile optimization, along with multilingual support via Google Translate. The site demonstrates moderate performance and good SEO practices, although some improvements could be made in security header implementation. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies and incident response information, and does not implement a cookie consent mechanism despite having a cookie policy. No vulnerabilities or malicious content were detected. Overall, the security posture is solid but could benefit from enhanced transparency and technical controls. The domain registration aligns well with the municipal identity, showing consistency and legitimacy. The site links to several trusted partner domains related to local government and services. There are no signs of blocking or WAF interference, and the content is safe for general audiences. Strategic recommendations include adding security and incident response policies, implementing cookie consent, and enhancing security headers to improve compliance and trust.

M

Městský ateliér prostorového plánování a architektury, příspěvková organizace

mappaostrava.cz

52

Městský ateliér prostorového plánování a architektury (MAPPA) is a municipal organization focused on urban planning, architecture, and sustainable development in Ostrava, Czech Republic. The website presents a professional and comprehensive overview of their projects, news, and data applications, targeting local residents, urban planners, and stakeholders. The organization emphasizes vitality, livability, and sustainability in city development. Technically, the website uses modern web technologies including embedded GIS maps, JavaScript libraries like Swiper.js, and Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and includes cookie consent mechanisms, reflecting good digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website content and contact information strongly indicate legitimacy. Overall, the site is trustworthy, professional, and compliant with privacy regulations.

L

Landa Ruhmkorf s.r.o.

landaruhmkorf.cz

47

Landa Ruhmkorf s.r.o. is a small Czech architectural firm specializing in landscape architecture and public space design. Founded in 2020 by Lukáš Landa and Simona Rühmkorf, the company positions itself as a conceptual and urbanism-integrated landscape architecture studio. Their website showcases project portfolios, team information, and collaborations with other architecture and design firms, indicating a professional and niche market presence. Technically, the website is built on the Cargo platform, uses modern web standards, and is mobile optimized, though it lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, which are compliance gaps. No forms or analytics scripts are detected, reducing privacy risks but also limiting marketing insights. Overall, the domain registration aligns well with the business information, supporting legitimacy and trustworthiness.

A

AUTONOVA BRNO s.r.o.

gasgasbrno.cz

46

AUTONOVA BRNO s.r.o. operates as an authorized dealer and service provider for GASGAS motorcycles in Brno, Czech Republic. The company offers a range of new motorcycles, original parts, accessories, and test rides for select models. Positioned as a specialized retailer in the transportation sector, the business targets motorcycle enthusiasts and riders seeking GASGAS products. The website reflects a professional retail model with clear contact channels and up-to-date product information. Technically, the site is built on WordPress with modern integrations such as Google reCAPTCHA and Google Tag Manager, ensuring a secure and user-friendly experience. Security posture is strong with HTTPS and consent mechanisms, though additional security headers and incident response details could enhance trust. The absence of WHOIS data limits domain legitimacy verification, but the website content and business information appear credible and consistent with an established small business. Overall, the site is well-structured, GDPR compliant, and provides a positive user experience with good SEO and mobile optimization.

E

EQS Group GmbH

reveal.sport

64

The website ita.whistleblowernetwork.net serves as a secure and anonymous whistleblower platform named REVEAL, focused on supporting investigations into anti-doping rule violations and criminal behavior in sports. It is branded and operated under EQS Group GmbH, a recognized compliance service provider. The platform targets individuals who wish to report sensitive information confidentially to help maintain integrity in sports. Technically, the site is built using Angular framework with Material Design components, delivering a modern and responsive user experience. However, SEO and accessibility features are basic, and no advanced analytics or tracking scripts are detected. Security posture is moderate with HTTPS implied but no explicit security headers visible in the HTML content. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service found. Contact information and incident response details are not provided on the main page, which could be improved for transparency and trust. Overall, the domain is a subdomain with no direct WHOIS registration data, which is typical and not suspicious given the parent domain and branding alignment. The website is safe, professional, and serves a niche compliance function with moderate trustworthiness.

K

knihynahory.cz

knihynahory.cz

55

Knihynahory.cz is a Czech Republic based specialized e-commerce retailer focused on selling hiking maps, climbing and travel guides, and related travel literature. The website targets outdoor enthusiasts and travelers seeking detailed and region-specific cartographic and guidebook products. The business operates on the Shoptet e-commerce platform and integrates multiple third-party services for analytics, marketing, and user experience enhancements. The site demonstrates a moderate to good level of digital maturity with a responsive design, clear navigation, and a cookie consent mechanism aligned with GDPR principles. Security posture is generally good with HTTPS enforced and CSRF protection on login forms; however, the use of an outdated jQuery version and lack of explicit security headers suggest room for improvement. No privacy policy or terms of service were detected in the provided HTML content, which may impact compliance and user trust. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include updating libraries, publishing comprehensive privacy and security policies, and enhancing security headers to strengthen trust and compliance.

V

VLTAVA LABE MEDIA a.s.

adactive.cz

42

VLTAVA LABE MEDIA a.s. operates a professional media and advertising platform in the Czech Republic, offering a variety of advertising formats across print and digital media. The company maintains a strong market position with a comprehensive portfolio including newspapers, magazines, online platforms, and event services. The website reklamy.vlmedia.cz serves as a dedicated portal for advertising formats, targeting advertisers and marketing professionals. Technically, the site employs modern web technologies such as Google Tag Manager, Bootstrap, and a responsive design approach, ensuring good mobile optimization and user experience. Privacy compliance is well addressed through the use of Didomi consent management and clear links to privacy and cookie policies. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data reduces domain trust slightly but does not detract from the overall legitimacy indicated by consistent branding and external references.

Č

Česká spořitelna

csas.cz

67

Česká spořitelna is a leading Czech banking institution offering a comprehensive range of financial services including accounts, loans, mortgages, savings, investments, and insurance. The website reflects a mature digital presence with a professional design, clear navigation, and extensive content tailored to both individual and corporate clients. The technical infrastructure leverages modern web technologies, including a proprietary CMS framework (GEM), Google Tag Manager, and advanced analytics tools, ensuring a responsive and accessible user experience across devices. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policy and incident response information are not publicly detailed. Overall, the site demonstrates high business credibility and trustworthiness, consistent with a major financial institution.

N

Nadace České spořitelny

nadacecs.cz

63

Nadace České spořitelny is a Czech non-profit foundation focused on enhancing education, particularly financial literacy among children and young people. It operates under the auspices of Česká spořitelna a.s., a major Czech bank, and runs programs such as Skoala and Den pro školu to foster competencies that support independence and financial health. The website is professionally designed, mobile-optimized, and provides comprehensive information about its activities and impact. Technically, it uses the GEM CMS framework and integrates Google Tag Manager for analytics. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy policies and terms of service are present and GDPR compliant. WHOIS data is not publicly available, likely due to registry privacy policies, but the site shows strong trust indicators and legitimacy. Overall, the site is a credible and well-maintained digital presence for the foundation.

M

Ministerstvo zemědělství

mze.cz

61

The website represents the official online presence of the Ministry of Agriculture of the Czech Republic, providing comprehensive information and services related to agriculture, forestry, food safety, water management, rural development, and animal protection. It serves a broad audience including farmers, government officials, and the general public interested in agricultural affairs. The site is well-structured with clear navigation and regularly updated news and press releases, reflecting a strong government communication channel. Technically, the site employs modern web technologies including JavaScript frameworks, Google Tag Manager, and Microsoft Clarity for analytics and user behavior tracking. The site is mobile-optimized and accessible, with good SEO practices and structured data markup to enhance search engine visibility. The content quality is good, with consistent branding and professional design. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, though explicit security headers are not visible in the HTML source and could be improved. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is unusual but likely due to registry policies for government domains. Overall, the site demonstrates a solid security posture appropriate for a government portal. The overall risk assessment is low, with recommendations to enhance security headers, publish a formal security policy, and improve incident response contact visibility. The site is trustworthy, professional, and compliant with privacy regulations, making it a reliable source of official agricultural information in the Czech Republic.

M

Ministerstvo zemědělství

eagri.cz

52

The website is the official online portal of the Ministry of Agriculture of the Czech Republic, serving as a comprehensive information hub for agriculture, forestry, food safety, water management, rural development, and animal protection. It provides news, press releases, access to farmer services, grant information, and contact details, positioning itself as an authoritative government resource. The site targets farmers, agricultural professionals, government officials, media, and the general public interested in agricultural affairs within the Czech Republic. Technically, the site employs modern JavaScript libraries such as Google Tag Manager and Microsoft Clarity for analytics and user behavior tracking, alongside a custom or proprietary CMS framework. The website is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. Performance is moderate, with good navigation and professional design. From a security perspective, the site enforces HTTPS and uses nonce attributes in scripts to mitigate injection risks. However, some security headers like Content-Security-Policy, X-Frame-Options, and X-Content-Type-Options are not explicitly present and should be added to strengthen security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the domain is a legitimate government entity, although WHOIS data is unavailable, which is unusual but likely due to CZ NIC policies. The website demonstrates good privacy compliance with cookie consent mechanisms and a privacy policy. The risk level is low, with recommendations focusing on enhancing security headers and continuous monitoring of third-party scripts.

U

Udenrigsministeriet

um.dk

63

Udenrigsministeriet is the official Danish Ministry of Foreign Affairs responsible for managing Denmark's foreign policy, diplomatic missions, and international cooperation. The website serves as a comprehensive portal for government information, travel advice, and international engagement, including support for Ukraine and Denmark's EU presidency. The site targets Danish citizens, international partners, and businesses seeking official information and services. Technically, the website is built on the Sitecore CMS platform, utilizing modern JavaScript libraries and third-party tools for analytics and accessibility compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, the website enforces HTTPS and employs GDPR-compliant cookie consent mechanisms, but lacks explicit security policy disclosures and some advanced security headers. The domain WHOIS data is consistent with the official government entity, showing a long-established presence since 1998, enhancing trustworthiness. Overall, the website is professional, secure, and compliant, serving as a reliable government resource.

M

Městský úřad Zábřeh

zabreh.cz

48

The website zabreh.cz serves as the official online presence of the municipal government of Zábřeh, Czech Republic. It provides residents and visitors with comprehensive information about the town, including news updates, event calendars, official notices, and contact details for municipal offices. The site targets local citizens and stakeholders seeking administrative and community information. The business model is that of a government entity focused on public service delivery and community engagement. Technically, the site is built on the vismoWeb5 CMS platform and employs modern web technologies such as HTML5, CSS3, JavaScript, and integrates Google services including Analytics and reCAPTCHA. The site demonstrates good mobile optimization, accessibility features, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the site uses HTTPS with a good SSL configuration and includes security best practices such as Google reCAPTCHA on forms and cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy are not evident, and no formal security or incident response policies are published. No vulnerabilities or suspicious content were detected. Overall, zabreh.cz is a trustworthy and professionally maintained municipal website with strong content quality and technical implementation. Strategic improvements could include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

M

Městský úřad Znojmo

znojmocity.cz

41

The website www.znojmocity.cz serves as the official digital presence of the city of Znojmo, Czech Republic. It provides comprehensive information about the city administration, cultural events, tourism, social services, and electronic services for residents and visitors. The site targets local citizens, tourists, and specific groups such as Ukrainian citizens, offering multilingual support in Czech, English, and German. The business model is that of a government entity providing public services and information dissemination. Technically, the website is built on a custom CMS platform (vismo®) with standard web technologies including HTML5, CSS3, and JavaScript. It integrates Google Analytics for visitor tracking with privacy-conscious default settings and includes Google Translate for multilingual support. The site is mobile-optimized and accessible, with a clear navigation structure and consistent branding. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks visible advanced security headers and does not publish a security.txt or explicit security policy. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a concern, reducing the ability to fully verify domain legitimacy, though the official nature of the content suggests authenticity. Overall, the website is a well-maintained government portal with good content quality and user experience. The main risks relate to incomplete WHOIS transparency and minor gaps in security header implementation. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving incident response contact visibility to strengthen trust and compliance.

M

Město Poděbrady, Městský úřad Poděbrady

mesto-podebrady.cz

46

Město Poděbrady operates an official municipal website serving residents and visitors with comprehensive information about city services, events, and public notices. The site is positioned as the authoritative source for local government communications and citizen engagement. The business model is a government service portal focused on transparency and accessibility. Technically, the website uses the vismo CMS platform, hosted by a Czech registrar, and integrates Google Analytics with a GDPR-compliant consent mechanism. The site is mobile-optimized and provides multilingual support via Google Translate. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are absent. Overall, the site is trustworthy and professionally maintained, with no suspicious or adult content detected.

M

Město Česká Třebová

ceska-trebova.cz

50

The website www.ceska-trebova.cz serves as the official digital presence of the town Česká Třebová in the Czech Republic. It provides residents and visitors with comprehensive municipal information including news, event calendars, public documents, and contact avenues. The site is well-structured, featuring clear navigation and a consistent branding aligned with municipal identity. It targets local citizens, businesses, and tourists seeking information about the town's services and cultural activities. Technically, the site employs a modern tech stack including HTML5, CSS3, JavaScript, and integrates Google services such as Analytics, Tag Manager, reCAPTCHA, and Translate. It is built on the Vismo CMS platform, optimized for mobile devices, and includes accessibility features. Performance is moderate with good SEO practices. From a security perspective, the site enforces HTTPS, implements standard security headers, and uses reCAPTCHA to protect forms. Privacy and cookie policies are present and GDPR compliant. However, there is no explicit security policy or incident response contact information published, and no vulnerability disclosure mechanism is evident. WHOIS data is unavailable, which slightly impacts trust assessment but does not detract from the site's official nature. Overall, the website is a reliable and professional municipal portal with good content quality and security posture. Strategic improvements include publishing security policies, incident response contacts, and vulnerability disclosure information to enhance transparency and trust.

M

Ministerstvo práce a sociálních věcí České republiky

mpsv.cz

70

The website www.mpsv.cz is the official online presence of the Ministry of Labour and Social Affairs of the Czech Republic. It serves as a comprehensive portal for citizens and stakeholders to access information related to social policies, labor market data, social security, and government services. The site is well-positioned as a national government resource with a clear focus on public service and social welfare. Technically, the site employs modern web technologies including Web Components and StencilJS, ensuring a responsive and accessible user experience. Security measures are robust with HTTPS enforced and multiple security headers implemented, although explicit security policy and incident response information are not publicly detailed. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity, suitable for its role as a government information portal.

I

Sign in - Matomo

infinitybluemetrics.cz

51

Infinitybluemetrics.cz hosts a Matomo analytics platform login page, indicating it is used for web analytics data access and management. The site is primarily targeted at administrators or users of the Matomo platform. The technical infrastructure is based on Matomo's open-source analytics software, utilizing JavaScript and PHP technologies, hosted under the domain infinitybluemetrics.cz with name servers ns.vas-hosting.com and ns.vas-hosting.eu. The domain WHOIS data is inconsistent, showing a future creation date in 2025, which raises legitimacy concerns. No public business or contact information is available on the site, and no privacy or cookie policies are present, indicating limited compliance with privacy regulations.

W

wpj s.r.o.

wpj.cz

66

wpj s.r.o. is a Czech-based company specializing in professional e-commerce solutions, including custom e-shop creation and graphic design tailored to client requirements. The company positions itself as a medium-sized player in the e-commerce development sector, boasting multiple industry awards and a portfolio of notable clients. Their business model focuses on B2B services, targeting businesses seeking to enhance their online retail presence with a proprietary system and agile management approach. The website content is rich, professionally designed, and clearly structured, reflecting a mature digital presence.

O

Oxygen Builder

oxygenbuilder.com

60

Oxygen Builder is a technology company specializing in a powerful WordPress visual website builder aimed primarily at developers and designers seeking pixel-perfect control and performance. Founded in 2017, the company has established a solid market position within the WordPress ecosystem, offering a feature-rich product that integrates design flexibility, dynamic data, and reusable components. The website demonstrates excellent content quality, professional design, and strong SEO practices, supported by structured data and social proof from a sizable user base. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple marketing and analytics tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and domain transfer protections, though some security headers and explicit policies could be improved. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, Oxygen Builder presents a credible and professional online presence with room for enhanced transparency in privacy and security disclosures.

Č

Český plynárenský svaz

plynovamobilita.cz

59

The website www.plynovamobilita.cz serves as an authoritative informational platform promoting gas mobility in the Czech Republic, focusing on low-emission fuels such as CNG, LNG, biometan, and hydrogen. It is operated by the Czech Gas Association (Český plynárenský svaz) and provides valuable resources including maps of filling stations, statistical data, and cost calculators to support the transition to sustainable transportation fuels. The content is professionally presented in Czech and targets consumers and businesses interested in alternative fuel vehicles. Technically, the site employs a modern front-end stack including Bootstrap, jQuery, and Google Maps embeds, ensuring good mobile responsiveness and user experience. The site includes GDPR-compliant cookie consent mechanisms and a privacy policy, demonstrating awareness of privacy regulations. However, no explicit terms of service or detailed security policies are found. From a security perspective, the site uses HTTPS (implied by external Google services and modern scripts), but lacks visible HTTP security headers and incident response contacts. No WHOIS data was retrievable, which limits domain legitimacy verification and slightly reduces trustworthiness. No vulnerabilities or exposed sensitive data were detected. Overall, the site presents a moderate security posture with room for improvement in security headers and transparency. Strategically, the site is a credible resource in the energy and transportation sectors within the Czech Republic, supporting environmental goals and alternative fuel adoption. It is recommended to enhance domain registration transparency, implement stronger security headers, and provide clearer security and incident response information to improve trust and compliance.

Č

Český plynárenský svaz

plynoveteplarny.cz

53

The website www.plynoveteplarny.cz serves as an informational platform promoting the use of natural gas for central heat supply, primarily targeting municipalities, heating plant owners, and energy professionals in the Czech Republic. It is supported by the Czech Gas Association (Český plynárenský svaz) and features partnerships with major energy companies. The site provides guidance on transitioning heating plants to natural gas, emphasizing ecological benefits, economic advantages, and energy security. The content is professionally presented in Czech and includes partner logos and contact information, enhancing credibility. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Google Analytics for tracking. It employs Typekit fonts for typography and appears mobile-optimized with good navigation clarity. However, no CMS or hosting provider details are evident. Performance is moderate, and accessibility is basic. The site lacks visible security headers and formal privacy or cookie policies, which are compliance gaps. From a security perspective, the site uses HTTPS and does not expose sensitive data or forms collecting personal information, reducing immediate risk. However, the absence of security headers and incident response information limits its security posture. WHOIS data is unavailable, which reduces domain trustworthiness, but the presence of official contact info and partner links supports legitimacy. Overall, the site is safe, professional, and focused on energy sector information without any adult or questionable content. Strategically, the site would benefit from adding comprehensive privacy and cookie policies with consent mechanisms, implementing security headers, and publishing incident response and vulnerability disclosure information to improve compliance and trust. Regular WHOIS data availability and domain registration transparency would also enhance legitimacy.

I

International Gas Union

igu.org

64

The International Gas Union (IGU) operates as a leading global organization dedicated to the gas industry, focusing on advocacy, research, and event organization to promote sustainable and innovative gas technologies worldwide. Their website reflects a mature digital presence with comprehensive content including industry reports, event information, and membership details. The technical infrastructure leverages modern web technologies such as Next.js and React, hosted on Vercel, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is partial, with cookie consent mechanisms present but lacking explicit privacy and terms of service pages. Overall, the site projects high professionalism and trustworthiness, supporting IGU's position as an essential entity in the energy sector.

The Czechoslovak Trail website presents a niche outdoor recreation project focused on a 1,700 km hiking trail spanning Slovakia and Czechia. The site provides detailed descriptive content about the trail, its origins, cooperating organizations, and hiking guidance. The project is community-driven and non-commercial, targeting hikers and nature enthusiasts interested in long-distance trekking. Technically, the website is built on WordPress with standard themes and scripts, showing moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacking security headers and privacy policies. No contact or incident response information is provided, limiting transparency. The domain WHOIS data is unavailable due to EURid privacy restrictions, which is common for .eu domains but reduces trust signals. Overall, the website is functional and informative but would benefit from enhanced privacy compliance, security hardening, and contact transparency.

B

BENU.cz

benu.cz

65

BENU.cz is a prominent online pharmacy operating in the Czech Republic, offering a wide range of pharmaceutical products, dietary supplements, and cosmetics. The company boasts a strong market presence with over 400 physical branches, catering primarily to the general public seeking healthcare products. The website is professionally designed, localized in Czech, and provides a seamless user experience with good mobile optimization and clear navigation. Technically, the site employs modern frontend technologies including Tailwind CSS and integrates multiple analytics and marketing tools such as Google Tag Manager, Visual Website Optimizer, and Bing Ads. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, though explicit security policies and incident response information are not publicly disclosed. The absence of WHOIS registration data slightly impacts trust but does not detract significantly from the overall professionalism and security posture. Strategic recommendations include enhancing transparency around security policies and incident response, confirming security header configurations, and considering a vulnerability disclosure program.

The website krusnehory.cz is currently inaccessible due to a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content or business information. The domain is registered since 2005 with REG-WEDOS and uses Cloudflare for DNS and security services. Due to the WAF challenge, no privacy policies, contact information, or business details are available for analysis. The technical infrastructure includes Cloudflare's security platform but lacks visible analytics or advertising technologies. The security posture cannot be fully assessed, but the presence of Cloudflare indicates some level of protection. Overall, the site is blocked from analysis, resulting in a low AI score and limited insights.

F

FarOut Guides

faroutguides.com

55

FarOut Guides operates a specialized GPS navigation app focused on long-distance hiking, biking, and paddling trails. The company positions itself as a market leader with over 250 trail guides and official partnerships with major trail organizations. Their business model centers on app sales, subscriptions, and trail guide purchases, targeting outdoor enthusiasts and thru-hikers. The website is professionally designed with consistent branding and good content relevance, supporting a medium-sized technology business founded in 2021. Technically, the site runs on WordPress with a modern tech stack including Google Analytics, Tag Manager, and various plugins for SEO and UI enhancements. Hosting is provided by A2 Hosting, and the site is secured with HTTPS and domain registrar protections. However, the site lacks visible privacy, cookie, and terms of service policies, which impacts privacy compliance scores. Security posture is good but could be improved by enabling DNSSEC and adding security headers. Overall, the site is trustworthy and safe for general audiences.

K

Kino Metropol

kinometropol.cz

54

Kino Metropol is a local cultural entertainment venue based in Olomouc, Czech Republic, offering cinema screenings, theater performances, concerts, lectures, and children's shows. It operates an online platform for event programming and ticket sales, positioning itself as the last classic cinema in the city. The website demonstrates a moderate level of digital maturity, utilizing modern frameworks such as React and Next.js, and integrates marketing and analytics tools like Microsoft Clarity and Google Tag Manager. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit cookie consent mechanisms. The absence of WHOIS data due to privacy protection slightly reduces trust but is not uncommon for small businesses. Overall, the site is professional, user-friendly, and targets a general audience interested in cultural events.

B

Los Mejores Casinos Online de España [Lista Actualizada 2025]

buenaapuesta.org

59

Buenaapuesta.org is a Spanish-language website dedicated to providing comprehensive information, reviews, and guides about online casinos in Spain. The site targets adult Spanish-speaking users interested in online gambling, offering detailed casino reviews, payment method explanations, and gaming provider information. The business model is primarily affiliate marketing, promoting various online casinos through referral links. Technically, the site uses modern web technologies including HTTPS, Google Tag Manager, and Matomo Analytics, hosted by a reputable registrar. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is limited due to absence of visible privacy and cookie policies. Overall, the site is well-designed, mobile-optimized, and content-rich, but could improve transparency and security disclosures.

The website at aglobally.com/lander is a newly registered domain with minimal content, primarily serving as a placeholder or parking page. It uses a React-based frontend and loads scripts from wsimg.com and Google Adsense, indicating an intent to monetize traffic through ads. The lack of any business information, contact details, or policies suggests the site is not yet operational or is used solely for domain parking. From a technical perspective, the site employs modern JavaScript frameworks but lacks essential SEO, accessibility, and security features. The absence of security headers, DNSSEC, and privacy compliance mechanisms indicates a low level of digital maturity and security readiness. Security posture is weak due to missing HTTPS enforcement details, no visible security policies, and no incident response contacts. The domain's recent registration date further reduces trustworthiness, as it does not align with established business presence. Overall, the site poses minimal risk but lacks credibility and compliance. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing clear contact information to improve trust and compliance.

The website at fastmui.com/lander is a newly registered domain with minimal accessible content, primarily serving as a placeholder or landing page. It uses modern web technologies such as React and JavaScript but lacks substantive business information, privacy policies, or contact details. The presence of Google Adsense scripts indicates an intent to monetize via advertising. The domain is registered with GoDaddy.com, LLC, with standard domain status protections but no DNSSEC enabled. Overall, the site appears to be in early development or a parked state without active business operations visible. From a technical perspective, the site uses a modern JavaScript framework and defers loading of assets, which is positive. However, the lack of SEO, accessibility features, and security headers limits its digital maturity. The SSL configuration is basic, and no advanced security practices are evident. Privacy compliance is absent, with no cookie or privacy policies detected. Security posture is minimal but not alarming; no WAF or blocking mechanisms are detected, and no vulnerabilities or exposed sensitive data are visible. The domain registration is consistent and legitimate, though very new, which may warrant caution for trust until more business information is available. Overall risk is moderate due to lack of content and transparency. Strategic recommendations include adding comprehensive privacy and cookie policies, improving security headers and SSL configuration, and providing clear business and contact information to enhance trust and compliance.

The analyzed content corresponds to an internal Chrome error page (chrome-error://chromewebdata/) rather than an actual public website. It serves as a placeholder or error display within the Chrome browser, featuring embedded Chromium offline game scripts (the T-Rex runner game). No business-related content, contact information, or policies are present. The page lacks SEO metadata, external links, or any marketing content. Technically, it uses standard HTML, CSS, and JavaScript with Canvas API for the embedded game, but no external frameworks or CMS are detected. Security posture cannot be fully assessed due to the nature of the page, but no HTTPS or security headers are applicable. WHOIS data is irrelevant as the domain is internal to Chrome and not publicly registered. Overall, this is not a real website but an error page, and thus no business or compliance insights can be derived.

B

Betmen Affiliates

betmenaffiliates.com

60

Betmen Affiliates operates an affiliate marketing platform specializing in online gambling brands, offering exclusive affiliate programs to over 1000 partners worldwide. The website presents a professional and modern design built on the Tilda CMS platform, with mobile optimization and moderate performance. The business model focuses on providing high-converting offers, generous payouts, and 24/7 premium affiliate services targeting mature audiences interested in gambling affiliate marketing. Technically, the site uses HTTPS and domain protections but lacks advanced security headers and privacy compliance documentation. No contact information or privacy policies are present, which could impact trust and compliance. Overall, the domain registration is consistent with the business age and shows no suspicious patterns, indicating legitimacy.

P

Profimedia.CZ a.s.

profimedia.cz

59

Profimedia.CZ a.s. is a leading media company specializing in photography and video licensing, holding the position as the largest photo bank in Central Europe. Their extensive catalog includes over 300 million images, serving editorial and commercial clients. The company also represents numerous photographers and offers a wide range of services including custom photography, exhibitions, and publication production. Their partnership with Shutterstock further strengthens their market presence. Technically, the website is built on modern frameworks like React, employs security best practices such as HTTPS and Content Security Policy, and integrates analytics and marketing tools responsibly. Security posture is strong with no evident vulnerabilities, though additional security headers could enhance protection. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the company demonstrates a professional and trustworthy online presence, though the absence of WHOIS data slightly impacts domain trustworthiness.

C

CZECH NEWS CENTER a. s.

maminka.cz

57

Maminka.cz is a Czech media website focused on pregnancy, motherhood, and child upbringing, operated by the established media company CZECH NEWS CENTER a. s. The site offers a variety of content including advice on pregnancy, childbirth, nutrition, and parenting, targeting pregnant women and mothers. It maintains a strong market position within the Czech parenting media segment, supported by consistent branding and active social media presence. Technically, the site is built on ASP.NET WebForms with a responsive design optimized for multiple devices. It integrates modern analytics and advertising technologies such as Google Analytics 4, Gemius, and Rubicon Project, alongside a robust consent management platform (Didomi) to comply with privacy regulations. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers like Content-Security-Policy and X-Frame-Options could be added to enhance protection. The absence of WHOIS data reduces transparency but does not significantly detract from the site's legitimacy given its professional content and trusted brand. Overall, Maminka.cz presents a secure, privacy-conscious, and user-friendly platform for its target audience.

Asociace televizních organizací (ATO) is a Czech non-profit association established in 1997 that specializes in electronic measurement of television audience ratings in the Czech Republic. The organization provides key services including TV audience measurement using TV meters, data analysis, legal and regulatory agenda management, and promotional activities. The website reflects a well-established media industry player with a focus on transparency and data-driven insights for broadcasters and advertisers. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, Google Fonts, Font Awesome, Chart.js for data visualization, and Google Tag Manager for analytics. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features are basic. Performance is moderate, and HTTPS is enforced ensuring secure communication. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy compliance. However, no advanced security headers were detected, and no explicit privacy policy or incident response information is provided, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and business presence suggest legitimacy. Overall, the website is professional, content-rich, and safe for general audiences. Strategic recommendations include enhancing security headers, publishing a comprehensive privacy policy, and improving transparency around domain registration and incident response to strengthen trust and compliance.

A

Asociace online vydavatelů

asociaceonlinevydavatelu.cz

50

Asociace online vydavatelů is a Czech association representing independent online media publishers, focusing on advocacy, lobbying, and protecting media freedom at national and EU levels. The website is professionally designed, mobile-optimized, and provides relevant content about the association's agenda, member media, and news updates. Technically, the site uses modern web technologies including Google Analytics and Tag Manager with a cookie consent mechanism, and is served over HTTPS with good security practices, though some security headers are missing. The absence of WHOIS data reduces transparency and trust slightly but does not detract significantly from the site's legitimacy given the professional content and active social media presence. Overall, the site presents a credible and trustworthy digital presence for the association.

G

Gransy, s.r.o.

administrace.tv

51

The website administrace.tv serves as a login portal titled 'Prima Administrace', likely intended for internal or authorized users associated with the Prima media brand. The site integrates video streaming capabilities and uses modern JavaScript frameworks such as React and Material-UI, along with external services like Google Maps and Gemius analytics. The domain is registered to Gransy, s.r.o., a Czech company, with consistent WHOIS data and a domain age appropriate for the business type. However, the site lacks publicly accessible privacy, cookie, and terms of service policies, and no contact information is provided, which limits transparency and user trust. From a technical perspective, the site uses a modern tech stack and is hosted on AWS infrastructure, but there is no evidence of DNSSEC or security headers such as CSP or HSTS, which are recommended for enhanced security. The login form includes password visibility toggling, indicating some attention to user experience and security. Analytics are implemented via Gemius, but privacy compliance appears minimal due to the absence of cookie consent mechanisms. Security posture is moderate but could be improved by implementing standard security headers, enabling DNSSEC, and publishing clear privacy and security policies. No adult or questionable content is present, and the site is accessible without WAF or blocking mechanisms. Overall, the site is functional but basic in content and security maturity. Strategic recommendations include enhancing security headers, publishing privacy and cookie policies to comply with GDPR, adding contact and incident response information, and improving accessibility and SEO features to increase professionalism and trustworthiness.

Y

Yolk Studio

yolkstudio.com

59

Yolk Studio is a small, established digital agency founded in 2016, specializing in web and mobile application development, branding, marketing, and UX/UI design. The company targets a broad audience from startups to corporations and showcases a portfolio of diverse projects with detailed case studies. The website is professionally designed with excellent content quality, clear navigation, and good mobile optimization. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, hosted on a Czech hosting provider. Security posture is good with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and no explicit consent mechanisms. Overall, the site is trustworthy and professional but could improve privacy and security transparency.

S

Sdružení sportovních svazů České republiky, z.s.

sporty-cz.cz

45

Sdružení sportovních svazů České republiky, z.s. is a large non-profit sports association in the Czech Republic, representing nearly 500,000 members and serving as the second largest sports organization in the country. The website provides information about the organization’s activities and serves as a communication platform for its members and the public. Technically, the site is built on WordPress with a variety of plugins for SEO, event management, and user interaction, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and detailed security policies, suggesting room for improvement. Overall, the website is professional, trustworthy, and well-structured, supporting the organization’s credibility and outreach efforts.

Č

Česká unie sportu

iscus.cz

48

Česká unie sportu operates an information system website providing public access to data about sports clubs and physical education units affiliated with district associations in the Czech Republic. The website serves as a resource for sports organizations and the general public interested in sports entities, offering search functionality and statistical data about registered sports units and individuals. The site is positioned as a national sports union information provider with a medium-sized organizational footprint and a focus on transparency and public information dissemination. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations such as Google Tag Manager for analytics and Google Maps API for location services. The site is mobile-optimized with a moderate performance profile and basic accessibility features. However, no CMS or advanced frameworks are detected, indicating a custom or lightweight implementation. From a security perspective, the website uses HTTPS and implements a cookie consent mechanism, reflecting basic compliance with privacy regulations. However, it lacks visible security headers and published privacy or security policies, which are areas for improvement. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable but basic security posture. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures, security policies, and contact information to improve trust and compliance. Strategic recommendations include publishing comprehensive privacy and terms of service documents, implementing security headers, and providing clear incident response contacts.

S

solidpixels.

solidpixels.com

57

solidpixels. is a technology company specializing in providing a fast and professional website builder platform designed to create websites comparable to global brands. With over 15 years of experience, the company serves thousands of businesses and tens of thousands of users, offering services including website creation, landing pages, e-commerce catalogs, and content hubs. The platform emphasizes ease of use, functional design, and integration capabilities, targeting businesses and professionals seeking efficient digital presence solutions. The website demonstrates a mature digital infrastructure with modern web technologies, responsive design, and comprehensive privacy and cookie policies, reflecting a high level of digital maturity. Security posture is strong with HTTPS enforcement, secure form handling, and monitoring tools like Sentry, although explicit security policies and incident response details are not publicly available. The absence of WHOIS registration data is a notable anomaly that slightly reduces domain trustworthiness but does not detract from the overall professional presentation and operational maturity of the business. Strategic recommendations include enhancing transparency around security policies, incident response, and vulnerability disclosure to further strengthen trust and compliance.

M

MeteoAlarm

meteoalarm.org

60

MeteoAlarm.org operates as a pan-European early warning dissemination platform aggregating severe weather and hydrological warnings from 38 national meteorological and hydrological services. It serves as an authoritative source for public safety information across Europe, leveraging standardized protocols such as CAP for alert dissemination. The platform targets European citizens, emergency services, and governmental agencies, positioning itself as a critical infrastructure for weather hazard awareness. Technically, the website employs modern web technologies including vector tile mapping services, custom CMS APIs, and error tracking via Sentry, ensuring a robust and responsive user experience. Security posture is strong with HTTPS enforcement and standard security headers, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is moderate, with privacy and terms pages present but lacking cookie consent mechanisms. Overall, MeteoAlarm.org is a trustworthy, well-established governmental/non-profit service with excellent content quality and technical implementation, suitable for its critical public safety role.

F

FlagsAPI - Country Flags API

flagsapi.com

56

FlagsAPI is a small technology service providing an API for country flag images in flat and shiny themes with multiple size options. The website is designed primarily for developers and web designers who need easy access to country flag images for integration into their projects. The business model is straightforward, offering a niche API service with a clear focus on flag image delivery. The domain is relatively new, registered in late 2021, which aligns with the business's apparent startup phase. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Google Fonts for typography. Hosting and DNS are managed via Cloudflare, providing some level of performance and security benefits, although DNSSEC is not enabled. The site is mobile-optimized and has a clear navigation structure, but lacks advanced frameworks or CMS platforms. Performance is moderate, and accessibility features are basic. From a security perspective, the site lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance and user trust. No contact or incident response information is available, limiting transparency and responsiveness to security issues. The WHOIS data shows a legitimate domain registration with no privacy protection, consistent with the business profile. Overall, the security posture is basic and could be improved significantly. The overall risk is moderate given the lack of privacy and security policies, but no critical vulnerabilities or malicious indicators were found. Strategic improvements in security headers, policy disclosures, and contact transparency would enhance trust and compliance.

The Deutscher Wetterdienst (DWD) is Germany's national meteorological service, providing comprehensive weather and climate data, forecasts, warnings, and environmental consulting. The website serves both professional users and the general public with detailed meteorological information and research insights. It holds a strong market position as a government authority in weather and climate services. Technically, the site uses a government-specific CMS with modern web technologies, ensuring good performance, accessibility, and mobile optimization. Security posture is solid with HTTPS and privacy-conscious features, including consent mechanisms for third-party content. However, explicit security headers and a published security policy could enhance the security maturity. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations.

The website www.meteoam.it serves as the official meteorological service of the Italian Air Force, providing comprehensive weather forecasts, observations, satellite imagery, and alerts primarily for Italy but also covering global weather phenomena. It is a government-operated platform under the Ministry of Defense, offering authoritative and trusted meteorological data to the general public, aviation professionals, and government agencies. The site is well-branded with consistent use of official logos and government affiliations, reinforcing its credibility and trustworthiness. From a technical perspective, the website employs modern web technologies including JavaScript, web components, and privacy-focused analytics via Matomo. It is hosted likely on government infrastructure, ensuring reliability and security. The site is mobile-optimized and features good SEO practices, although accessibility features could be enhanced. Cookie consent mechanisms are implemented effectively, demonstrating attention to privacy compliance. Security posture is strong with HTTPS enforced and security headers likely in place. No vulnerabilities or exposed sensitive data were detected in the content. However, the absence of explicit privacy policy, terms of service, and incident response information slightly reduces the overall compliance and security maturity. The WHOIS data confirms the domain's legitimacy as a government entity, with consistent registration details matching the website's claims. Overall, the website is a professional, secure, and authoritative source for meteorological information in Italy. Strategic recommendations include publishing clear privacy and security policies, enhancing accessibility, and providing explicit incident response and vulnerability disclosure channels to further strengthen trust and compliance.

M

MeteoLux

meteolux.lu

57

MeteoLux is the official meteorological portal for Luxembourg, operated as a government service providing weather forecasts, climatological data, and aviation weather services. The website targets the general public, meteorological professionals, and the aviation sector, offering comprehensive weather information and alerts. The portal is well-branded with consistent government logos and links to official government sites, reinforcing its trustworthiness and official status. Technically, the site uses modern web technologies including RequireJS and CSS media queries, and is likely hosted on Luxembourg government infrastructure, ensuring reliable performance and good mobile optimization. Security posture is solid with HTTPS enforced and secure form handling, though the absence of visible security headers and explicit cookie consent mechanisms are areas for improvement. The lack of WHOIS data limits domain trust verification, but the official nature of the site and its content mitigate this concern. Overall, MeteoLux presents a professional, secure, and user-friendly platform for meteorological information in Luxembourg.

K

Koninklijk Nederlands Meteorologisch Instituut

knmi.nl

74

The Koninklijk Nederlands Meteorologisch Instituut (KNMI) is the official Dutch national institute for meteorology, climate, and seismology, operating under the Ministry of Infrastructure and Water Management. The website serves as a comprehensive public resource offering weather forecasts, climate monitoring, seismological data, warnings, and research information. It targets a broad audience including the general public, government agencies, researchers, and professionals in meteorology and climate sciences. KNMI holds a strong market position as the authoritative national meteorological body in the Netherlands. Technically, the website employs modern web technologies such as JavaScript frameworks including Modernizr and Chart.js, and uses Turbolinks for navigation enhancements. It integrates Piwik PRO for analytics, hosted likely on Dutch government infrastructure, ensuring good performance, mobile optimization, and accessibility. The site demonstrates professional design quality, clear navigation, and SEO best practices. From a security perspective, the site enforces HTTPS with strong SSL configuration and follows good security practices including asynchronous script loading and cookie management. However, explicit security headers like CSP and X-Frame-Options are not clearly visible and could be improved. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, the KNMI website is a highly trustworthy, professional, and secure government resource with excellent content quality and user experience. Strategic recommendations include enhancing security header implementation, publishing a security policy or incident response page, and adding vulnerability disclosure information to further strengthen security posture and transparency.

M

Meteorologisk institutt

met.no

67

Meteorologisk institutt is the official Norwegian Meteorological Institute providing comprehensive weather forecasts, climate data, and meteorological services primarily for Norway. It serves a broad audience including the general public, government agencies, emergency services, and researchers. The website is well-structured, professionally designed, and offers extensive content in Norwegian with some English support. The institute operates as a government entity, emphasizing public safety and open data policies. Technically, the website uses modern JavaScript frameworks including Vue.js and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a clear cookie consent mechanism. However, explicit security headers and detailed security policies are not publicly visible, indicating room for improvement in security transparency. Security posture is solid with HTTPS usage and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data reduces domain trust slightly, but the official branding, contact information, and government affiliation strongly support legitimacy. No signs of malicious content or adult material were found, making the site safe for general audiences. Overall, the website demonstrates a mature digital presence with good content quality and privacy compliance. Strategic improvements in security policy publication and WHOIS transparency could further enhance trust and compliance.

S

SMHI

smhi.se

61

SMHI is the Swedish Meteorological and Hydrological Institute, a government agency providing weather forecasts, climate data, and professional meteorological services. The website serves a broad audience including the general public, professionals, and researchers, positioning itself as the national authority for meteorological information in Sweden. The business model is focused on public service and professional data provision without commercial advertising. Technically, the site uses modern JavaScript frameworks such as React, is built on the SiteVision CMS platform, and integrates Matomo for analytics and CookieYes for consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforcement, security headers, and a cookie consent mechanism, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.