Security Directory

S

Státní pozemkový úřad

spucr.cz

71

Státní pozemkový úřad is a Czech government agency responsible for land management, land adjustments, and rural development initiatives. The website serves as an official portal providing information on land restitution, public tenders, geoportal services, and various government programs. It targets Czech citizens, landowners, agricultural professionals, and government entities, positioning itself as a key national authority in land administration. Technically, the website employs standard web technologies including jQuery and SVG graphics, with a moderate performance profile and good mobile optimization. The site includes accessibility features and SEO best practices, contributing to a positive user experience. Cookie consent and GDPR compliance mechanisms are implemented, reflecting attention to privacy regulations. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible advanced security headers. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data is notable but does not detract significantly from the site's legitimacy given its government affiliation and comprehensive contact information. Overall, the website presents a professional and trustworthy front for the agency, with strong content quality and compliance posture. Strategic recommendations include enhancing security headers, auditing third-party libraries, and ensuring robust form protections to further strengthen security and trust.

W

Weblium

weblium.com

73

Weblium is a technology company providing an intuitive website builder platform that enables users to create professional websites effortlessly. Founded in 2016, it targets individuals and businesses seeking easy-to-use web development tools. The platform offers professional templates and advanced features, positioning itself as a competitive SaaS solution in the website building market. Technically, the website employs modern JavaScript frameworks such as React and utilizes service workers to enhance performance and user experience. The domain is well-registered and consistent with the company's age and business claims, indicating legitimacy. However, the website lacks visible privacy and cookie policies, consent mechanisms, and security headers, which are important for compliance and security best practices. The presence of marketing and tracking scripts without explicit consent mechanisms suggests moderate user tracking. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security hardening.

Cryosoft.cz is a Czech-based internet advertising agency specializing in custom web development and multimedia projects. The company offers comprehensive internet projects including web presentations, CRM systems, e-shops, and online catalogs, supported by their proprietary CryoADMIN administration interface. Additionally, they provide multimedia services such as corporate identity creation, promotional videos, and original music production. The business targets clients seeking tailored digital solutions primarily within the Czech market. The website content is professional and well-structured, reflecting a small but specialized agency with a focus on quality and client references. Technically, the website employs standard web technologies including jQuery, CSS, and JavaScript, with a responsive design and good SEO practices. HTTPS is enforced, and cookie consent mechanisms are implemented to comply with GDPR requirements. However, no explicit privacy policy page was found, and no contact emails or phone numbers are directly visible on the homepage, which could impact user trust and compliance. From a security perspective, the site benefits from HTTPS and basic security best practices but lacks advanced security headers and published security policies or incident response contacts. The absence of WHOIS data reduces domain trustworthiness, although the website content and business information appear legitimate and consistent with a long-standing operation since 2006. Overall, the security posture is moderate with room for improvement in transparency and policy publication. The overall risk assessment is low to moderate, with recommendations to enhance security headers, publish privacy and security policies, and provide clear contact information to improve trust and compliance. The website is accessible without WAF or blocking mechanisms, enabling full content analysis.

S

sitour Česká republika

sitour.cz

51

sitour Česká republika is a specialized company integrating advertising, information, and communication systems in mountain and tourist regions for over 20 years. They provide innovative multimedia and digital signage solutions tailored for ski resorts and outdoor tourism, positioning themselves as a leading network in the digital out-of-home advertising sector within the mountain resort industry. The website demonstrates a mature digital infrastructure using modern frameworks like Astro and integrates Google Analytics with a strong privacy consent mechanism. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and vulnerability disclosure mechanisms are absent. The absence of WHOIS data is a notable risk factor, but the professional presentation, international partnerships, and clear contact information support the legitimacy of the business. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements.

K

K2

k2snow.com

10

K2 is a well-established American ski and snowboard brand with a strong market presence since 1962. The website serves as an e-commerce platform targeting winter sports enthusiasts, offering skis, snowboards, and related equipment. The technical infrastructure leverages modern JavaScript frameworks, third-party payment and review integrations, and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protections, but lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy and terms of service. Overall, the website is professional and trustworthy but could improve transparency and security practices.

A

ALPINE PRO

alpinepro.cz

10

ALPINE PRO operates an e-commerce platform specializing in outdoor clothing and accessories, primarily targeting customers in the Czech Republic. The website presents a professional and consistent brand image with a clear focus on retail sales of outdoor apparel. The technical infrastructure leverages modern web technologies including JavaScript modules, Google Tag Manager, Facebook Pixel, and Cookiebot for consent management, indicating a mature digital presence. The site is mobile optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and includes standard security headers, contributing to a solid security posture. The presence of a comprehensive cookie consent mechanism aligns with GDPR compliance efforts, although explicit privacy policy and terms of service pages were not detected in the provided content. No critical vulnerabilities or exposed sensitive data were found, but the absence of a security.txt or vulnerability disclosure page suggests room for improvement in incident response transparency. Overall, the website is safe, trustworthy, and professionally maintained, with extensive user tracking and marketing integrations. The lack of WHOIS data limits domain ownership verification, but the website content and technical indicators support legitimacy. Strategic recommendations include publishing clear privacy and terms policies, providing direct company contact information, and establishing a formal vulnerability disclosure process to enhance trust and compliance.

I

innogy Česká republika a.s.

innogy.cz

10

Innogy Česká republika a.s. is a prominent energy supplier in the Czech Republic, offering natural gas and electricity services to households, businesses, and large firms. The company provides a comprehensive digital experience including online price calculators, a customer portal named 'innosvět' for energy consumption monitoring, and additional services such as home assistance and insurance. The website is well-branded, professionally designed, and targets a broad audience of energy consumers in the region. Technically, the site employs modern JavaScript frameworks, Google Tag Manager for analytics, and Cookiebot for privacy compliance, ensuring a good level of digital maturity. Security posture is strong with HTTPS enforced and CAPTCHA protections on forms, though explicit security headers and a public security policy are absent. Overall, the site is trustworthy and compliant with GDPR, with clear contact information and social media presence. The lack of WHOIS data is likely due to privacy protection, which is justified for this business type.

E

ENVItech Bohemia s.r.o.

envitech-bohemia.cz

65

ENVItech Bohemia s.r.o. is a Czech-based company specializing in environmental monitoring services and products, particularly air quality monitoring. Established in 1992, the company offers a comprehensive portfolio including monitoring systems, meteorological equipment, emission measurement, calibration, detection systems, and related software solutions. The company holds multiple certifications such as ISO 9001 and ISO 14001, reinforcing its credibility and compliance with industry standards. Their market position is solid within the environmental technology sector in the Czech Republic and broader EU region, supported by a network of subsidiaries and partner institutions. Technically, the website is built on the ByznysWeb.cz CMS platform, utilizing modern web technologies including Google Analytics for user tracking and consent management compliant with GDPR. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content. However, there is room for improvement in security headers and explicit incident response information. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable concern, potentially impacting trustworthiness and domain legitimacy verification. Overall, the website presents a professional and trustworthy front for ENVItech Bohemia s.r.o., with strong compliance and business credibility indicators. Strategic improvements in domain registration transparency and enhanced security headers would further strengthen their security posture and trust signals.

Městská knihovna Litovel operates as a public library serving the Litovel community in the Czech Republic. The website provides comprehensive information about library services, including lending for children and adults, electronic books, internet access, regional functions, and cultural events. The target audience primarily consists of local readers and visitors interested in library resources and activities. The business model is that of a public institution focused on education and cultural enrichment. Technically, the website is built on the Public4u CMS platform and utilizes jQuery and JavaScript for interactive features. While the site is functional and moderately optimized, mobile responsiveness and accessibility could be improved. The site enforces HTTPS and includes cookie consent mechanisms, indicating a baseline of privacy compliance. From a security perspective, the site lacks advanced security headers and does not expose sensitive data or vulnerable libraries. No security incidents or policies are publicly documented. The absence of WHOIS data limits domain trust assessment, but the website content and external links suggest legitimacy. Overall, the site maintains a good security posture for a small public institution but could benefit from enhanced security best practices. The overall risk is low given the nature of the business and content, but improvements in technical implementation and security hardening are recommended to maintain trust and compliance.

F

Freelo

freelo.io

56

Freelo is a SaaS project and task management platform designed primarily for independent professionals and small teams seeking efficient collaboration and control over their projects. The website demonstrates a strong market position with numerous client case studies and testimonials, indicating trust and adoption by thousands of teams. The platform offers a comprehensive suite of features including task management, Kanban boards, Gantt timelines, mind maps, and mobile/desktop applications, catering to a broad range of project management needs. Technically, the website employs modern web technologies such as JavaScript, Google Tag Manager, Sentry for error monitoring, and integrates advertising and tracking tools like Bing Ads and Google Analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. However, explicit CMS or hosting provider details are not evident from the content. From a security perspective, the site uses HTTPS and integrates monitoring tools but lacks visible security headers and a published security policy or incident response contacts. Privacy compliance is partially addressed with a cookie consent mechanism, but no explicit privacy policy or terms of service pages were detected in the provided content. WHOIS data is unavailable due to privacy protection, but the domain and website content indicate legitimacy. Overall, Freelo presents a professional, trustworthy, and well-structured online presence with minor gaps in explicit privacy and security disclosures. Strategic improvements in publishing comprehensive privacy and security policies and enhancing security headers would strengthen its security posture and compliance.

Č

Český horolezecký svaz

horosvaz.cz

55

The Český horolezecký svaz (Czech Mountaineering Association) operates as a national non-profit organization dedicated to supporting climbers, mountaineers, and skialpinists in the Czech Republic. The website serves as an information hub offering membership services, insurance products, event organization, educational resources, and maintenance of climbing areas. It holds a strong market position as the official governing body for climbing sports in the country, supported by partnerships with recognized brands and international federations. Technically, the website is built on a modern CMS platform (Vizus CMS) with standard web technologies and includes integrations such as Google Tag Manager and EmbedSocial for social media content. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy and terms of service documentation. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy given the organization's public presence and affiliations. Overall, the website is professional, trustworthy, and serves its community effectively.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) displaying the offline dinosaur game. There is no actual website content, business information, or commercial presence. The page is a built-in browser feature for offline scenarios and does not represent a legitimate external website. Consequently, no privacy, cookie, or terms of service policies are present, and no contact or security policies are available. The technical infrastructure is limited to Chromium's internal JavaScript and canvas-based game implementation, with no external hosting or CMS involved. Security posture cannot be fully assessed due to the internal nature of the page, but no vulnerabilities or sensitive data exposure are evident. Overall, this is not a real website but a browser internal page, and thus it lacks any business credibility or compliance features.

S

Schweizer Alpen-Club SAC

sac-cas.ch

55

The Schweizer Alpen-Club SAC is Switzerland's leading alpine sports association with approximately 180,000 members. The organization focuses on promoting mountain sports, providing safety and training, and managing memberships and events. Their market position as the foremost alpine club in Switzerland is well established, supported by a comprehensive digital presence. The website is built on TYPO3 CMS, integrating modern technologies such as Cookiebot for consent management, Stripe for payment processing, and analytics tools like Google Analytics and Facebook Pixel. The technical infrastructure reflects a mature digital setup with good performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly detailed. Privacy compliance is robust, with clear cookie and privacy policies and GDPR-aligned consent mechanisms. Overall, the website demonstrates a high level of professionalism and trustworthiness, suitable for a large non-profit organization. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure information, and enhancing accessibility features to further improve compliance and user trust.

Z

Zucchetti Hospitality s.r.l.

ovosodo.net

37

Ovosodo is a digital agency specializing in UI/UX, web design, and development services, operating as a business unit of Zucchetti Hospitality s.r.l., part of the larger Zucchetti Group. The company targets businesses seeking comprehensive digital solutions, emphasizing equal attention to code and design. Their market position is that of a specialized subsidiary within a reputable technology and hospitality group, founded in 2003. The website reflects a professional and consistent brand image with clear service offerings and recent project showcases. Technically, the website employs modern web technologies including jQuery, Vimeo Player integration, and Iubenda for cookie consent management, alongside Google Analytics and Tag Manager for tracking. The site is mobile optimized with good SEO and basic accessibility features. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, ensuring GDPR compliance. However, it lacks explicit security policies and incident response contacts, and no advanced security headers were detected. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content and business information are credible and professionally presented. Overall, the website presents a low risk with good privacy compliance and business credibility, but the missing WHOIS data and lack of explicit security policies suggest areas for improvement to enhance trust and security posture.

T

TRIMA NEWS, s.r.o.

drbna.cz

49

Drbna.cz is a Czech regional news portal operated by TRIMA NEWS, s.r.o., delivering authentic local news and stories across multiple regional sub-portals. The website targets Czech-speaking audiences interested in regional news, offering a mix of news articles, blogs, weather updates, and premium ad-free subscriptions. The platform holds a strong market position in regional media within the Czech Republic. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Microsoft Clarity, and multiple advertising networks, ensuring a moderate to good performance and mobile optimization. Security-wise, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security.txt and incident response contacts. Privacy policies and terms of service are present and indicate GDPR compliance. Overall, the site is professional, content-rich, and trustworthy, though WHOIS data is unavailable, which slightly impacts domain trust assessment.

N

Nilfisk

nilfisk.com

74

Nilfisk is a globally recognized leader in the manufacturing and provision of premium cleaning machines, products, solutions, and services catering to both professional and consumer markets. The company maintains a strong market position with a comprehensive product portfolio and a global footprint, supported by a professional and well-structured website that reflects its brand and business model effectively. The website targets professional cleaning service providers and consumers seeking high-quality cleaning solutions. Technically, the site leverages modern web technologies such as React and Next.js, ensuring good performance, mobile optimization, and accessibility. Security measures are robust, with HTTPS enforcement and appropriate security headers, although there is room for improvement in public vulnerability disclosure and incident response transparency. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Nilfisk's digital presence is professional, secure, and trustworthy, supporting its business credibility and customer engagement.

Č

Český hydrometeorologický ústav

chmi.cz

61

The Český hydrometeorologický ústav (ČHMÚ) is the Czech Republic's national meteorological and environmental authority, providing comprehensive weather forecasts, hydrological data, and air quality monitoring. The website serves a broad audience including the general public, government bodies, media, and business partners, offering detailed environmental data, news, and specialized services such as mobile applications. The organization holds ISO 9001 certification, reinforcing its credibility and commitment to quality. Technically, the website employs traditional web technologies including jQuery and JavaScript, with a moderate performance profile and basic mobile optimization. The site implements a robust cookie consent mechanism aligned with GDPR requirements, denying marketing and analytics cookies by default. While HTTPS is used, explicit security headers are not detected in the provided data, suggesting room for improvement in security hardening. Security posture is solid with no visible vulnerabilities or exposed sensitive data, but the absence of detailed incident response contacts and security headers indicates potential gaps. Privacy compliance is strong, supported by comprehensive privacy and cookie policies. The domain WHOIS data is unavailable due to CZ.NIC policies, but the domain usage and content strongly indicate legitimacy as a government entity. Overall, the website is professional, trustworthy, and content-rich, with recommendations to enhance security headers, mobile responsiveness, and incident response transparency to further strengthen its security and user trust.

P

PERI, spol. s r.o.

peri.cz

33

PERI, spol. s r.o. is a leading Czech supplier of construction equipment specializing in formwork, scaffolding, and engineering services. With over 50 years of experience, the company offers innovative and efficient solutions tailored to meet diverse project requirements. The website reflects a mature digital presence with comprehensive product portfolios, customer portals, and active communication channels. Technically, the site employs modern web technologies, including JavaScript frameworks, SVG icons, and consent management tools, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be further confirmed. The absence of WHOIS data is likely due to privacy protection, common for enterprises of this scale. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

S

Swix

swix.cz

70

Swix.cz is a specialized e-commerce retailer focused on sports equipment, particularly for winter sports such as skiing and cross-country skiing, offering products from the Swix brand. The website targets Czech-speaking customers primarily in the Czech Republic and provides a professional online shopping experience with clear navigation, product categories, and a blog for customer engagement. The business model centers on direct online sales supported by a physical sales network. Technically, the site employs modern JavaScript frameworks, integrates multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Snowplow Analytics, and uses CDN services for performance optimization. The site is mobile-optimized and includes accessibility features, although these could be enhanced further. Security-wise, the site enforces HTTPS, uses Sentry for error monitoring, and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS data for the domain reduces the overall trust score, though the website content and contact details suggest a legitimate business. Overall, the site presents a secure, compliant, and user-friendly platform for sports equipment retail.

S

Svaz lyžařů České republiky

czech-ski.com

17

Svaz lyžařů České republiky operates as the official national skiing association for the Czech Republic, providing comprehensive information on skiing disciplines, membership services, event updates, and partner promotions. The website targets the Czech skiing community including athletes, members, and fans, positioning itself as a trusted source for skiing-related activities and organizational information. The business model is non-profit and focused on community engagement and sport promotion. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI components, integrates social media SDKs, and uses Google Analytics for visitor tracking. The site is mobile-optimized with good SEO practices, though accessibility features are basic. The hosting provider and CMS are not explicitly identified. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published privacy or terms of service pages. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which reduces trustworthiness but the site content and business information appear legitimate. Overall, the website presents a professional and trustworthy front for the Czech skiing association, though improvements in privacy disclosures, security headers, and WHOIS transparency are recommended to enhance compliance and trust.

G

Generali Investments CEE, investiční společnost, a.s.

generali-investments.cz

43

Generali Investments CEE is a prominent investment company operating primarily in the Czech Republic and Central Europe, offering a wide range of investment funds and programs in multiple currencies including CZK and EUR. The company is part of the larger Generali Group, a well-known global insurance and financial services provider. Their website demonstrates a mature digital presence with comprehensive product information, client services, and multilingual support. Technically, the site uses modern web technologies such as Bootstrap and JavaScript libraries, and implements HTTPS with good security practices, although some security headers could be improved. Privacy compliance is well addressed with clear cookie consent mechanisms and detailed privacy policies, reflecting adherence to GDPR standards. The absence of WHOIS data is a limitation but does not detract significantly from the overall legitimacy given the strong brand presence and professional content. Overall, the site is secure, user-friendly, and trustworthy, serving a large client base in the financial sector.

V

Volkswagen Užitkové vozy

vw-uzitkove.cz

59

Volkswagen Užitkové vozy is the official Czech Republic website for Volkswagen commercial vehicles, offering a comprehensive portfolio of new vehicle models, configurators, financing options, and after-sales services including servicing and accessories. The site targets both business customers and individual buyers interested in commercial vehicles, positioning itself as a key player in the Czech automotive transportation sector. The website demonstrates strong brand consistency with official Volkswagen branding and links to related Volkswagen services and partners. Technically, the site is built on modern frameworks such as Next.js and React, providing a responsive and accessible user experience with good SEO practices. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though some security headers are not detected and no explicit security or incident response policies are published. Privacy compliance is well addressed with visible cookie consent and privacy policy pages. The absence of WHOIS data reduces domain trustworthiness, but the overall professional presentation and official branding mitigate concerns. Strategic recommendations include improving security header implementation, publishing a security policy, and enhancing transparency around incident response.

R

Rodinné centrum BABOČKA

rcbabocka.cz

58

Rodinné centrum BABOČKA is a small family-oriented center based in Prague, Czech Republic, focused on providing educational and recreational activities for children aged from 6 months to 8 years and their parents. Established since 2009, it offers a variety of services including a preschool program (Školička), diverse courses, parenting academy, coaching, events, family stays, and birthday celebrations. The center targets families seeking a safe, friendly, and developmentally supportive environment for their children. Technically, the website is built on the Webnode CMS platform, hosted via Amazon Cloudfront CDN, and uses modern web technologies such as HTML5, CSS3, and JavaScript. The site is mobile-optimized and includes SEO best practices, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and formal privacy or security policies. The WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces transparency but is consistent with a small non-profit entity. Overall, the website is professional, content-rich, and safe for general audiences.

G

GoOut

goout.net

76

GoOut.net is an established online platform specializing in cultural event listings and ticket sales, primarily serving the Czech Republic and surrounding regions. Founded in 2010, it offers users comprehensive information about concerts, festivals, theatre, exhibitions, and parties, positioning itself as a key player in the regional cultural media sector. The website provides inspiration and ticketing services for various cultural venues including theatres, cinemas, galleries, clubs, and museums. Technically, the site leverages modern JavaScript frameworks such as Nuxt.js, integrates reputable third-party services for analytics and advertising, and employs Cloudflare for DNS management. The presence of a detailed cookie consent mechanism powered by Cookiebot demonstrates a commitment to privacy compliance and user consent management. Security-wise, the site enforces HTTPS and domain registration protections but could improve by enabling DNSSEC and publishing explicit security policies. Overall, the website is professionally designed, user-friendly, and trustworthy, with a good balance of content quality and technical implementation.

K

AdZilla: The Ad-Eating Dino of Solana

karlovarsky-kraj.cz

54

AdZilla is a small-scale cryptocurrency project centered around a Solana-based meme coin featuring a dinosaur mascot that 'eats' online ads. The website provides clear instructions for users to create a wallet, acquire Solana tokens, and swap them for the ADZILLA token via decentralized exchanges. The business model focuses on engaging both crypto and non-crypto users through creative advertising campaigns and token ecosystem participation. The site is moderately well designed with good mobile optimization and user experience, but lacks comprehensive privacy, cookie, and security policies. No contact information or formal business credentials are provided, which limits trust and credibility. Technically, the site uses standard web technologies and integrates with popular Solana wallets and exchanges, but lacks advanced security headers and HTTPS verification details.

M

město Tábor

visittabor.eu

50

The website www.visittabor.eu serves as the official tourism portal for the city of Tábor, Czech Republic. It provides comprehensive information about the city's attractions, culture, accommodation, sightseeing, gastronomy, and practical visitor details. The site targets tourists and visitors interested in exploring Tábor and the South Bohemian region. The business model is government-supported tourism promotion, positioning itself as a key regional tourism information source with official city branding and certifications such as A.T.I.C. Technically, the website employs modern web technologies including JavaScript, jQuery, Bootstrap, and tracking tools like Google Analytics and Adform. It uses the Nette Framework CMS inferred from form structures and AJAX usage. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate, with room for improvement in security headers and accessibility. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are missing, and there is no explicit security policy or incident response information published. The use of third-party tracking scripts is transparent with user consent. Overall, the security posture is good but could be enhanced with additional headers and documented policies. The overall risk assessment is low, with the site demonstrating legitimacy through official contact information, consistent branding, and certifications. The lack of WHOIS data is due to registry privacy policies and does not detract from trustworthiness. Strategic recommendations include implementing security headers, publishing a security policy, enhancing accessibility, and adding a vulnerability disclosure mechanism to further strengthen security and compliance.

T

THINline s.r.o.

websynergy.cz

66

WebSynergy, operated by THINline s.r.o., is a Czech-based technology service provider specializing in custom web design, e-commerce solutions, and digital marketing. With over 20 years of experience and more than 500 projects completed, the company targets businesses seeking modern, responsive websites and effective online marketing strategies. Their offerings include proprietary CMS technology, hosting services, and comprehensive website management. The website reflects a professional and trustworthy business with clear contact information and client testimonials, positioning them as a reputable player in the Czech web services market. Technically, the website employs modern JavaScript libraries, Google Tag Manager, Google Analytics, reCAPTCHA v3, and Visual Website Optimizer for marketing and analytics purposes. The site is hosted on a Czech hosting provider and uses a proprietary CMS platform. Performance and mobile optimization are excellent, with good SEO and accessibility features. However, some security headers are missing, and no explicit security policy or incident response information is published. Security posture is solid with HTTPS enforced and secure form handling via reCAPTCHA, but improvements are recommended in HTTP security headers and transparency around security policies. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned privacy policies. The absence of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy. Overall, WebSynergy demonstrates a mature digital presence with strong business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and security posture.

M

Mailchimp

mailchi.mp

80

Mailchimp is a leading marketing automation and email marketing platform, serving primarily small to medium businesses and marketers. Owned by Intuit Inc., it offers a SaaS-based subscription and freemium business model with a strong market position as a top email marketing solution. The platform leverages AI and real-time behavioral data to enhance customer conversion and engagement. The website reflects a mature digital infrastructure with integrations of advanced analytics and marketing tools, demonstrating high digital maturity and performance. Security posture is strong with HTTPS enforcement, security headers, and certifications such as SOC 2 Type II and ISO 27001, although minor improvements like enabling DNSSEC and publishing a security.txt file could enhance security transparency. Overall, the website is professional, privacy compliant, and trustworthy, supporting Mailchimp's reputation as a reliable enterprise-grade service.

T

Tino Digital Agency

tino.design

67

Tino Digital Agency is a professional UI/UX design and web/mobile development agency primarily serving clients in the USA market, with a focus on fintech, healthcare, energy, and crypto sectors. The company offers comprehensive services including research and strategy, UX/UI design, and full-cycle development. Their portfolio includes notable clients and projects, supported by multiple industry awards and high client satisfaction ratings. Technically, the website is built on modern frameworks such as Next.js and React, hosted by Hosting Ukraine LLC, and optimized for performance and mobile devices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy and cookie policies, which are areas for improvement. Overall, the business demonstrates strong credibility and professionalism, though privacy compliance and security transparency could be enhanced.

W

WhitePress sp. z o.o.

whitepress.com

64

WhitePress sp. z o.o. operates an international content marketing platform that automates the creation, publishing, and analysis of content for marketers, publishers, and copywriters. The platform supports SEO and link building across thousands of portals worldwide and offers native copywriting services to ensure content quality. The website is professionally designed, supports multiple languages, and maintains active social media channels, positioning WhitePress as a reputable player in the digital marketing technology sector. Technically, the website uses modern JavaScript, Google Tag Manager, and Google Analytics for tracking and performance monitoring. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some accessibility features could be improved, and explicit cookie consent mechanisms are not detected. From a security perspective, the site enforces HTTPS and shows no visible vulnerabilities or exposed sensitive data. Security headers are not explicitly detected in the provided data, and no incident response or security policy information is published. The WHOIS data is unavailable, which limits domain registration transparency but does not detract from the site's professional appearance and trust signals. Overall, WhitePress presents a low-risk profile with a solid business model and technical foundation. Strategic improvements in security headers, privacy compliance transparency, and accessibility would enhance its security posture and user trust.

D

Dobrovolný svazek obcí Šlapanicko

dsoslapanicko.cz

55

Dobrovolný svazek obcí Šlapanicko is a voluntary association of 27 municipalities in the Czech Republic focused on regional cooperation and public infrastructure projects, particularly cycling path development and waste management. The organization operates as a non-profit entity serving local communities with transparent contact information and EU co-financed projects, positioning itself as a trusted regional government partner. The website is built on the Vismo CMS platform, utilizing modern JavaScript libraries including Vue.js and Mustache.js, and integrates Google services such as reCAPTCHA v3 and Translate for enhanced user experience and security. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its target audience. Security posture is solid with HTTPS enforced and spam protection on forms, though formal security policies and incident response contacts are absent. Privacy compliance is basic with cookie policy present but lacking explicit consent mechanisms. Overall, the domain registration is consistent with the business age and purpose, indicating a legitimate and trustworthy online presence.

G

Girsberger Mountain Rescue Technology

girsberger-elektronik.ch

62

Girsberger Mountain Rescue Technology is a specialized Swiss company focused on providing innovative mountain rescue and avalanche safety solutions. Their offerings include training systems and products designed to enhance safety in alpine environments. The company targets professionals and organizations involved in mountain rescue and alpine safety, positioning itself as a niche technology provider in this sector. The website is built on the Wix platform, leveraging modern JavaScript technologies and error monitoring tools, reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enabled and no exposed sensitive data, though there is room for improvement in security headers and privacy compliance. Overall, the website is professional and trustworthy but lacks critical compliance documents such as privacy and cookie policies.

B

Bell Textron Inc.

bellflight.com

67

Bell Textron Inc. is a leading manufacturer of vertical lift aircraft, including commercial and military rotorcraft. The company has a rich history spanning approximately 90 years and operates as a subsidiary of Textron Inc. Their website showcases a comprehensive portfolio of products and services, including innovative rotorcraft technologies, training, maintenance, and support. The site targets aviation professionals, military clients, and commercial customers globally. Technically, the website employs modern JavaScript frameworks, multimedia content, and integrates with marketing and analytics platforms such as Google Tag Manager and HubSpot. The hosting infrastructure leverages Akamai CDN and service workers for performance optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and corporate affiliations. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing incident response contacts to further strengthen security transparency.

O

Ortovox

ortovox.com

62

Ortovox Sportartikel GmbH is a well-established German company specializing in outdoor equipment and apparel, particularly for mountain sports and safety. Founded in 1980 by Gerald Kampel, the company targets outdoor enthusiasts and safety-conscious consumers with a retail business model. The website is professionally designed, mobile-optimized, and provides clear contact information and social media presence, indicating a mature digital footprint. Technically, the site uses modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, supporting moderate user tracking and marketing efforts. Security posture is generally good with HTTPS enforced, though explicit security headers are not detected, and no public security or incident response policies are found. The WHOIS data for the domain is missing, which raises some concerns about registration transparency but does not detract significantly from the overall legitimacy given the professional web presence. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to improve trust.

T

TYROMONT Alpin Technik GmbH

tyromont.com

39

TYROMONT Alpin Technik GmbH is a specialized manufacturer and trader of alpine rescue equipment with a history spanning approximately 70 years. The company serves a global clientele including mountain rescue, ski patrol, air rescue, and height rescue organizations. Their website presents a professional and comprehensive product catalog, clear contact information, and relevant business documentation such as terms of business and data protection policies. Technically, the website employs modern JavaScript libraries like jQuery and Flickity, and uses Google Analytics with consent-based loading. The site is mobile-optimized and well-structured, providing a good user experience. However, the absence of WHOIS registration data for the domain www.tyromont.com is a notable inconsistency that impacts domain trustworthiness. Security headers are not visibly implemented, and no explicit cookie consent mechanism is present, which are areas for improvement. Overall, the website is professional and trustworthy from a business perspective but could enhance its security posture and privacy compliance.

K

Kohlbrat & Bunz GmbH

kohlbratbunz.com

57

Kohlbrat & Bunz GmbH is a small, family-owned Austrian company established in 1930 specializing in manufacturing medical, transport, and rescue equipment such as vacuum mattresses and rescue stretchers. Their products serve medical professionals, rescue teams, and animal healthcare sectors worldwide. The website is hosted on WordPress.com, leveraging modern CMS and Gutenberg blocks, providing a professional and mobile-optimized user experience. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Contact information and social media presence are clearly provided, enhancing business credibility. Overall, the site is trustworthy but would benefit from improved security and compliance disclosures.

M

makandra GmbH

makandra.de

74

makandra GmbH is a German-based technology company specializing in custom software development, hosting, DevOps, AI consulting, and UI/UX design. The company positions itself as a reliable full-service agency focused on delivering high-quality, maintainable software solutions tailored to client needs. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions targeting business clients seeking bespoke software solutions. The company leverages modern technologies including Ruby on Rails, JavaScript, and integrates analytics tools such as Matomo and Google Analytics to monitor performance and user engagement. Privacy compliance is well addressed with a comprehensive privacy policy and an active cookie consent mechanism, indicating adherence to GDPR requirements. Security posture is strong with HTTPS enforced, CSRF protection, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, makandra GmbH demonstrates a solid business and technical foundation with a high level of professionalism and trustworthiness.

The website www.parkovanivbrne.cz serves as the official information portal for the new parking system in Brno, Czech Republic. It provides comprehensive details about parking zones, regulations, payment options, and mobility funds targeted at residents, subscribers, and visitors. The site is positioned as a municipal service platform, aiming to simplify parking management and user experience in the city. Technically, the site employs modern web technologies including HTML5, CSS3, and JavaScript, with integrations of Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, Smartlook, and Cookiebot for analytics and marketing purposes. The site is mobile optimized and features a cookie consent mechanism compliant with GDPR, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. The absence of WHOIS data reduces trust slightly but does not negate the official nature of the site. Overall, the website presents a professional, trustworthy, and user-friendly platform for parking information in Brno. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and providing clearer contact information to improve business credibility and user trust.

G

Galileo Corporation s.r.o.

smart-info.cz

39

Galileo Smart Info is a Czech Republic based service operated by Galileo Corporation s.r.o. that enables municipalities to communicate important announcements to their citizens via SMS and email. The platform targets local government officials and citizens, offering a free service with features such as message category selection and a mobile application for enhanced user experience. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the website uses modern web technologies including JavaScript and CSS, and integrates Google Analytics with IP anonymization to monitor traffic. Hosting is provided by Forpsi, a Czech hosting provider, which aligns with the local focus of the service. The website is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide a cookie consent mechanism, which are areas for improvement to enhance compliance and security posture. No vulnerability disclosure or incident response information is available, which could be added to improve transparency and trust. Overall, the website and service appear legitimate and trustworthy with a solid foundation. Strategic improvements in security headers, privacy compliance, and incident response transparency would further strengthen the platform's security and compliance standing.

I

International Commission for Alpine Rescue

alpine-rescue.org

66

The International Commission for Alpine Rescue (ICAR) is a globally recognized non-profit organization dedicated to alpine rescue and mountain safety. The website serves as a comprehensive platform for disseminating recommendations, event information, organizational details, and collaboration tools for mountain rescue professionals worldwide. The presence of numerous reputable partners and sponsors underscores its authoritative position in the alpine rescue community. Technically, the website employs modern web technologies including the Unpoly.js framework and Matomo analytics, ensuring a responsive and user-friendly experience across devices. The site is well-structured with clear navigation and professional design, supporting excellent content quality and user engagement. From a security perspective, the site enforces HTTPS and implements CSRF protections in forms, with privacy-conscious analytics settings. However, the absence of explicit security headers and vulnerability disclosure mechanisms suggests room for improvement in security posture. The lack of WHOIS data limits domain trust verification, though the website's professional presentation and partner ecosystem mitigate some concerns. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic enhancements in security headers, vulnerability disclosure, and WHOIS transparency would further strengthen trust and compliance.

I

infocount, s.r.o.

infocount.cz

44

infocount, s.r.o. is a Czech IT company specializing in comprehensive IT solutions and consultancy, with a focus on electronic signature services, web publishing systems, and web development. Established in 2003, the company leverages strong academic ties and offers services to both private and government sectors, maintaining a solid market presence with over two decades of experience. Their key offerings include PKI-based security solutions, intranet and web application development, and eBusiness tools. Technically, the website is built on WordPress with modern web technologies such as PHP, Java, and JavaScript frameworks, providing a responsive and user-friendly experience. Security-wise, the site uses HTTPS and Google reCAPTCHA for form protection but lacks some advanced security headers and published security policies. The absence of WHOIS data reduces domain trustworthiness, but the detailed company information and client references enhance credibility. Overall, the website is professional and functional, with room for improvement in privacy compliance and security transparency.

M

Město Kyjov

mestokyjov.cz

58

Město Kyjov operates an official municipal website serving residents and visitors with comprehensive information about the city, municipal office, cultural events, and public services. The site offers online appointment booking and a citizen portal for electronic transactions, positioning itself as a key digital interface for local government services. The website is well-branded, professionally designed, and targets local citizens and stakeholders seeking municipal information and services. Technically, the site employs modern JavaScript libraries such as GSAP and Swiper.js, and integrates Google Tag Manager for analytics. It is mobile-optimized and accessible, with good SEO practices and structured data enhancing search visibility. Security posture is solid with HTTPS enforced and secure form handling, though some security headers and incident response disclosures are absent. Privacy and cookie policies are present and GDPR compliant, supporting user data protection. The absence of WHOIS data limits domain trust assessment, but the official content and contact details strongly support legitimacy. Overall, the site demonstrates a mature digital presence for a municipal government entity with room for enhanced security transparency and incident response readiness.

M

Město Kolín

mukolin.cz

48

The website mukolin.cz is the official online presence of the city of Kolín, Czech Republic. It serves as a comprehensive municipal portal providing residents and visitors with information about city administration, social services, local news, events, and public resources. The site is well-structured and targets the general public, especially local citizens seeking government services and updates. The business model is that of a government service portal, with no commercial intent, focusing on transparency and accessibility. Technically, the website employs a modern tech stack including HTML5, CSS3, JavaScript, and integrates Google Analytics and Google Tag Manager for visitor insights. It uses the vismo CMS platform and is hosted by Active24. The site is mobile-optimized, accessible, and includes multilingual support via Google Translate. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent mechanisms compliant with GDPR. From a security perspective, the site demonstrates good practices such as encrypted connections, anti-bot protections, and privacy controls. However, explicit security policies and incident response contacts are not published, which could be improved. No vulnerabilities or suspicious activities were detected in the content or scripts. The domain registration is consistent with the official city entity, with a long-established domain age supporting legitimacy. Overall, mukolin.cz is a trustworthy, well-maintained municipal website with good content quality, technical implementation, and privacy compliance. Strategic recommendations include publishing a formal security policy, adding vulnerability disclosure information, and enhancing security headers to further strengthen the security posture.

M

Město Mikulov

mikulov.cz

41

Město Mikulov operates as the official municipal government website for the city of Mikulov in the Czech Republic. It provides comprehensive information and services for both citizens and tourists, including municipal office details, cultural events, tourism highlights, and e-services. The website is well-branded and targets local residents and visitors, emphasizing the city's rich history and wine culture. Technically, the site employs modern web technologies, including JavaScript and Google Analytics, and is mobile-optimized with good accessibility and SEO practices. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks some advanced security headers and explicit security policies. The absence of WHOIS data reduces domain registration transparency, but the website content and official branding strongly support its legitimacy. Overall, the site presents a professional and trustworthy digital presence for the city government.

T

Travelport CZ

travelport-partner.cz

64

Travelport Česká republika operates as a platform provider in the travel industry, focusing on connecting entities within the travel sector through a unified and independent platform for buying and selling travel services. The website is hosted on the Wix platform and demonstrates a moderate level of digital maturity with good design and mobile optimization. Security posture is adequate with HTTPS enforced and some security best practices observed, though the absence of explicit security headers and privacy policies indicates room for improvement. The lack of WHOIS data and contact information reduces overall trustworthiness and business credibility. Strategic recommendations include enhancing transparency with privacy and cookie policies, improving security headers, and providing clear contact and incident response information.

I

Interact

interreg.eu

63

Interreg.eu is the official website for the Interreg series of EU funding programmes that promote cross-border, transnational, and interregional cooperation across Europe. The site is managed by Interact and provides comprehensive information about the programmes, news, events, and resources to support regional development and cohesion. The website targets public institutions, regional organizations, and citizens interested in EU cooperation initiatives. Technically, the site is built on Umbraco CMS, hosted on Microsoft Azure, and employs modern web technologies including Vite and JavaScript frameworks. It features a robust cookie consent mechanism and integrates Google reCAPTCHA for security. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR and EU privacy standards.

The website www.tpcr-turnov.cz serves as an informational portal focused on promoting local landmarks and tourism in Turnov, Czech Republic. It provides links to partner sites such as the Valdštejn Castle, Synagogue Turnov, and the local information center. The site uses the Public4u CMS platform and relies on traditional web technologies like jQuery and CSS. The content is primarily in Czech with language options for English, German, and Polish, targeting a general audience interested in cultural and historical tourism. The site lacks detailed business information and contact data, which limits its business credibility.

Agentura Paseo, s.r.o. is a Czech online marketing agency specializing in comprehensive digital marketing services including PPC, RTB, SEO, social media marketing, email marketing, video production, and content marketing. They also operate a network of leisure-focused portals targeting active audiences planning leisure activities, positioning themselves as a niche player in the Czech online marketing space. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, reflecting a mature digital presence for a small-sized agency. Technically, the site uses Solidpixels CMS, integrates Google Tag Manager, Google Analytics, and Leady tracking scripts, indicating a modern marketing technology stack. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and documented security policies or incident response contacts. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact details appear legitimate. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in security transparency and domain registration clarity.

B

ByznysWeb s.r.o.

byznysweb.cz

62

ByznysWeb s.r.o. operates a mature and professional e-commerce platform focused on enabling entrepreneurs and small to medium businesses to create and manage performant e-shops and websites without programming expertise. The platform offers multilingual support, migration services, and comprehensive hosting and support, positioning itself as a trusted player in the Czech and Slovak markets since 2003. Technically, the website employs modern web technologies including Google Tag Manager, Facebook Pixel, and responsive design, ensuring good performance and user experience across devices. Privacy and cookie consent mechanisms are robust and GDPR compliant, reflecting a strong commitment to user data protection. Security posture is solid with HTTPS enforced and consent-based script loading, though explicit security headers could be improved. The absence of WHOIS data is a notable gap, slightly impacting trust but mitigated by the professional and transparent web presence. Overall, the site demonstrates high quality, trustworthiness, and business credibility.

O

Obec Kořenov

korenov.cz

54

The website www.korenov.cz serves as the official online presence for the municipality of Kořenov in the Czech Republic. It provides comprehensive information about local government activities, public notices, tourism, and community services. The site targets residents, tourists, and local stakeholders, offering a well-structured navigation system and multilingual support via GTranslate. Technically, the site uses standard web technologies including HTML5, CSS3, and JavaScript, with a focus on accessibility and responsive design. Security posture is moderate; HTTPS is assumed but no explicit security headers were detected in the provided data. Privacy and cookie policies are present and appear comprehensive, though no explicit cookie consent mechanism was found. The absence of WHOIS data reduces the domain trust score, but the website content and structure strongly indicate legitimacy as a municipal government site.