Security Directory

Z

Záhrada.sk

zahrada.sk

62

Záhrada.sk is a Slovak media platform dedicated to gardening enthusiasts, offering a rich collection of articles, a user forum, a marketplace, photoblogs, and a directory of garden professionals. The website targets Slovak gardeners and hobbyists, positioning itself as a community-driven resource with active user engagement. Technically, the site is built on WordPress with modern integrations such as Google Analytics, Facebook SDK, and consent management platforms to comply with GDPR. The site demonstrates good SEO practices and mobile optimization, although accessibility could be improved. Security posture is strong with HTTPS and security headers in place, but the absence of explicit privacy and terms of service pages is a notable compliance gap. Overall, the site is trustworthy, professional, and well-maintained, serving a medium-sized audience in the Slovak gardening niche.

O

Owasco Careers

owascocareers.ca

51

Owasco Careers operates a professional, family-owned automotive dealership group in Canada, focusing on recruitment and career opportunities within their dealerships. The website presents a clear business description emphasizing culture and growth, targeting job seekers interested in automotive retail careers. The technical infrastructure is based on WordPress with modern analytics and monitoring tools such as Google Analytics, Microsoft Clarity, and New Relic, indicating a moderate level of digital maturity. The site is mobile optimized and uses HTTPS with reCAPTCHA for form security, reflecting a good security posture. However, the absence of publicly available WHOIS data and lack of privacy and cookie policies indicate gaps in transparency and privacy compliance. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security headers to improve trust and compliance.

F

Frank Bold Advisory

frankboldadvisory.cz

10

Frank Bold Advisory is a professional consulting firm specializing in ESG reporting, energy management, and strategic communication with a focus on sustainability and compliance with European standards such as CSRD and EU taxonomy. The company positions itself as a leader in ESG advisory with direct involvement in European ESG standard development and a decade of experience. Their services target businesses seeking to improve sustainability reporting and energy efficiency. Technically, the website is built on modern platforms like Webflow, uses multiple analytics tools including Google Analytics and Matomo, and implements cookie consent mechanisms, reflecting a mature digital presence. Security posture is generally good with HTTPS and consent management, but lacks visible security headers and published security policies. The absence of WHOIS data for the domain is a notable concern for domain legitimacy verification, though the professional content and branding suggest a legitimate business. Overall, the website is well-designed, content-rich, and trustworthy, with recommendations to enhance security transparency and verify domain registration details.

S

Saxana Group

saxanagroup.cz

8

Saxana Group is a Czech-based company specializing in cleaning services and building management, positioning itself as one of the largest providers in its region. The website content is professionally presented in Czech, targeting both businesses and households. The company offers comprehensive cleaning and facility management services, reflecting a medium-sized enterprise with a consistent brand presence. Technically, the website is built on the ANT CMS platform and incorporates common analytics tools such as Google Analytics and Seznam.cz tracking. While the site is mobile-optimized and well-structured, it lacks visible privacy and cookie policies, which impacts its compliance posture. Security-wise, the absence of security headers and detailed WHOIS data reduces the overall security confidence, although no immediate vulnerabilities are evident from the provided data. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security hardening.

B

berry2b

berry2b.com

10

berry2b is an educational technology platform focused on providing students with digital tools to manage their school life, including schedules, homework, and grades, while also preparing them for career entry. The platform also offers recruiting tools for companies to find apprentices and trainees, positioning itself as a bridge between education and employment in Germany. The website is professionally designed, mobile-optimized, and integrates multiple marketing and analytics technologies, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and cookie consent implemented, though improvements are needed in security headers and visible privacy policies. The absence of WHOIS data for the subdomain is typical and does not detract from the legitimacy of the main domain. Overall, berry2b presents a credible and functional online presence with room for enhanced transparency and security practices.

Weber Vietnam is a subsidiary of the global Saint-Gobain group, specializing in manufacturing and distributing tile adhesives, grouts, waterproofing products, and silicone sealants. The company holds a leading market position in Vietnam and globally, serving construction professionals and consumers with a comprehensive product range and technical support. The website is professionally designed, content-rich, and well-branded, reflecting the company's strong market presence and parent company association. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools including Google Tag Manager, Facebook Pixel, TikTok Pixel, and Microsoft Clarity. The site is mobile-optimized and accessible, with good SEO practices. However, some security headers are missing, and there is no explicit cookie consent mechanism despite cookie policy presence. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The WHOIS data is unavailable, likely due to privacy protection, but the website's legitimacy is supported by consistent branding and structured data linking to Saint-Gobain. No signs of phishing or malware were detected. Overall, the website presents a low risk profile with strong business credibility and technical maturity. Strategic improvements could focus on enhancing security headers, implementing explicit cookie consent, and publishing a dedicated security policy or incident response page.

A

Adresář Farmářů

adresarfarmaru.cz

60

Adresář Farmářů operates as an online directory and map-based platform focused on connecting consumers with farmers and related shopping and services primarily in the Czech Republic. The website leverages modern web technologies including Angular and integrates third-party analytics and social media SDKs to enhance user engagement and tracking. The platform appears to serve a niche market, providing localized listings and user contributed content to facilitate discovery of farming-related services. Despite the lack of WHOIS registration data, the website presents a professional and consistent brand image with a clear target audience of consumers seeking local farm products and services. Technical infrastructure is modern but could benefit from enhanced security headers and explicit privacy and terms of service documentation. The security posture is moderate with HTTPS in use but missing some best practice headers and policies. Overall, the site is accessible, safe, and functional, but improvements in compliance and transparency would strengthen trust and credibility.

S

Sedmá generace

sedmagenerace.cz

54

Sedmá generace is a Czech socio-ecological magazine established in 1991, focusing on social and environmental issues such as nature protection, renewable energy, alternative economy, and human and animal rights. The website serves as a digital platform for publishing articles, news, and podcasts, supporting subscriptions and donations. It maintains a consistent brand presence and targets a general audience interested in ecological and societal topics. Technically, the site is built on WordPress with WooCommerce, employing modern web technologies and integrating Google Analytics and Tag Manager for tracking. The site demonstrates good SEO practices and mobile optimization. Security-wise, the site uses HTTPS and cookie consent mechanisms compliant with GDPR, though it lacks explicit security policies or incident response contacts. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and trustworthy online presence.

D

Dogfish

dogfish.cz

42

Dogfish is a Czech digital agency specializing in web design, web applications, graphic design, video production, and e-commerce solutions. The company positions itself as a professional and experienced provider with a strong portfolio and client testimonials, targeting businesses seeking digital transformation and marketing support. The website is built on WordPress and incorporates modern web technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and trust signals on the site. Overall, Dogfish demonstrates a solid digital presence with good business credibility and technical implementation.

I

ilogs

parkinghq.com

55

ParkingHQ is an established online platform founded in 2006 that provides users with access to over 13,000 parking units worldwide. The service enables searching, viewing detailed information, and prebooking parking spaces, targeting drivers and vehicle owners seeking convenient parking solutions. The platform leverages Google Maps API for geolocation and mapping services and integrates prebooking links for select parking units. Technically, the website is built likely on Ruby on Rails, uses modern JavaScript libraries, and is hosted on Conova infrastructure. The site is moderately optimized for performance and accessibility, with basic mobile responsiveness and SEO features. Security-wise, the site uses HTTPS and includes CSRF protection in forms but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the domain is legitimate and long-standing, with no signs of malicious activity or content safety concerns.

Tyre Store is a specialized e-commerce platform tailored for the tire trade industry, offering modular online shop solutions for both B2B and B2C customers. The platform integrates with the extensive Tyre24® database, providing access to millions of tire and rim products, enabling retailers to offer a wide range of inventory without manual stock management. The company behind the platform, TEC Systems - Systemhaus GmbH, is based in Kaiserslautern, Germany, and provides comprehensive support and customization options for its clients. Technically, the website is built on ASP.NET WebForms with common libraries such as jQuery and Bootstrap, ensuring a responsive and user-friendly interface. The site includes Google Analytics for visitor tracking and uses Google Maps for location display. While the site is mobile-optimized and well-structured, there is room for improvement in security headers and advanced security practices. From a security perspective, the site uses HTTPS and includes form validation but lacks explicit security headers like Content-Security-Policy and HSTS. The privacy policy is comprehensive and GDPR-compliant, though no cookie consent mechanism is implemented. No critical vulnerabilities or suspicious content were detected, indicating a generally secure posture but with opportunities for enhancement. Overall, Tyre Store presents a professional and trustworthy online presence with clear business information and contact channels. The site is suitable for its target audience of tire retailers and customers, providing a solid foundation for e-commerce operations in this niche market.

S

StudentPoint.cz

studentpoint.cz

53

StudentPoint.cz is a Czech online media portal primarily targeting students and young adults interested in lifestyle, travel, and product reviews. The site offers a broad range of articles covering student life, pop culture, and adult-oriented content such as erotic products and dating site reviews. Its business model relies heavily on affiliate marketing, especially for adult and dating services. The website is built on a modern WordPress infrastructure using Elementor and Astra theme, with performance optimizations and tracking tools like Google Analytics and Sentry integrated. Security posture is adequate with HTTPS enabled and some monitoring in place, but lacks comprehensive security headers and explicit privacy or cookie policies. The absence of WHOIS registrant data reduces domain trustworthiness, though the professional presentation and consistent branding support legitimacy. Overall, the site serves a niche adult audience with a focus on content and affiliate revenue.

A

Asociace organizací v oblasti vězeňství

aoov.cz

47

Asociace organizací v oblasti vězeňství (AOOV) is a Czech non-profit association founded in 2019, focused on advocacy, knowledge sharing, and progressive reforms in the prison and criminal justice sector. The organization aims to support the integration of formerly incarcerated individuals into society and restore relationships disrupted by crime. The website reflects a professional and consistent brand presence with clear communication of its mission and activities, targeting organizations and professionals in the criminal justice field. Technically, the site is built on WordPress using Elementor and several plugins for SEO, user management, and event/calendar features, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and explicit privacy and cookie policies, which are areas for improvement. Overall, the site is trustworthy, safe for general audiences, and provides clear contact information and social media links, supporting its credibility and outreach efforts.

Protect ACADEMY, led by Lukáš Pešta, is a specialized training organization based in the Czech Republic offering martial arts, tactical, and shooting courses. The academy serves a diverse audience including civilians, security professionals, and military personnel, leveraging international Israeli training methodologies. The website demonstrates a solid technical foundation using modern CSS frameworks and iconography, with moderate performance and good mobile optimization. However, it lacks formal privacy and cookie policies, and no security headers were detected, indicating room for improvement in security posture. The domain registration is consistent with the business claims, enhancing trustworthiness. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

F

Farstad & Co

farstad.co

59

Farstad & Co is a specialty coffee roastery and coffee bar located in Skien, Norway, with a rich history dating back to 1955. The company operates a physical coffee bar, an online store offering specialty single-origin coffees, subscription services, and corporate coffee solutions. Positioned as Skiens eneste kaffebrenneri, Farstad & Co emphasizes quality, origin transparency, and a passion for the coffee experience. The website reflects a modern digital presence built on Next.js and Crystallize, integrating analytics and marketing tools such as Google Analytics and Facebook Pixel. Security posture is strong with HTTPS and security headers, though cookie consent mechanisms are absent. Contact information is clearly presented, enhancing business credibility. The domain registration aligns well with the business claims, supporting legitimacy.

S

Snowball Digital AS

snowball.digital

67

Snowball Digital AS is a Norwegian-based design and technology agency specializing in digital product strategy, UX/UI design, branding, development, and growth marketing. The company targets growth-focused businesses seeking innovative digital solutions and seamless end-to-end experiences. Their market position is that of a specialized boutique agency with a focus on digital transformation and product innovation. Technically, the website is built on modern frameworks such as React and Next.js, leveraging a headless CMS (Crystallize) and integrating analytics tools like Google Analytics and Hotjar. The site is mobile-optimized and presents a professional, consistent brand image. Security-wise, the website uses HTTPS and asynchronous loading of tracking scripts but lacks some security headers and a cookie consent mechanism, which are recommended for improved compliance and security posture. Overall, the domain WHOIS data is privacy protected, which is typical for small agencies, and the website content and contact information support the legitimacy of the business.

N

New Normal Group

newnormalgroup.com

62

New Normal Group is an entrepreneurial software group focused on incubating and building technology companies that redefine industry norms through intelligent API-driven solutions. Their portfolio includes subsidiaries specializing in e-commerce, IoT, cybersecurity, AI, digital services, and financial services, positioning them as a versatile player in the technology sector. The company targets forward-looking enterprises and high-growth ventures, leveraging over 20 years of entrepreneurial experience. Technically, the website is built on modern frameworks such as Next.js and integrates analytics and user behavior tools like Google Analytics and Hotjar, indicating a mature digital infrastructure. However, there are gaps in privacy compliance and explicit security policies. Security posture is generally good with HTTPS and domain transfer protections, but lacks DNSSEC and security headers. Overall, the website is professional, trustworthy, and well-branded, though improvements in privacy and security transparency are recommended.

A

Ateliér ŠUM

kurzyuzuzy.cz

47

Ateliér ŠUM is a small art education business based in Prague 1, offering a wide range of creative courses including drawing, painting, ceramics, jewelry making, and online lessons. The website is professionally designed using WordPress with modern plugins such as Yoast SEO and Google Analytics integration, providing a good user experience and clear navigation. Contact information including phone, email, and physical address is prominently displayed, supporting business credibility. However, the absence of privacy and cookie policies indicates a compliance gap that should be addressed. The WHOIS data is unavailable, which slightly reduces domain trustworthiness but does not detract from the overall legitimacy of the site based on content and contact details. Security posture is good with HTTPS and reCAPTCHA usage, but could be improved by adding security headers and a vulnerability disclosure policy.

T

Technické služby Velké Popovice, příspěvková organizace

tsvp.cz

57

Technické služby Velké Popovice is a municipal service organization providing essential technical and environmental services to the local community of Velké Popovice, Czech Republic. Their offerings include sewer cleaning, waste collection, water supply, and sewage management. The website serves as an information portal for residents, providing updates, service announcements, and contact details. The organization operates as a public entity, likely funded by local government and service fees, positioning itself as a key local utility provider. Technically, the website is built on the Webnode CMS platform, utilizing Cloudfront CDN for content delivery and Google Analytics for visitor tracking with IP anonymization enabled. The site is accessible, with a moderate performance profile and basic mobile optimization. However, it lacks advanced SEO and accessibility features. No blocking or WAF mechanisms were detected, indicating open access. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is provided. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information suggest legitimacy. Overall, the security posture is moderate but could be improved with better compliance and security controls. The overall risk is moderate with recommendations to implement privacy and cookie policies, add security headers, and verify domain registration details. Enhancing compliance and security transparency will improve trust and reduce potential risks.

P

Prague Morning - Czech Republic's biggest media outlet in English

praguemorning.cz

56

Prague Morning is a prominent English-language media outlet based in the Czech Republic, established in 2016. It serves as the largest English news source in the country, targeting English-speaking residents and visitors interested in local news and events. The website offers news publishing services with monetization primarily through advertising and subscription-based premium content. The business maintains a consistent brand presence and leverages social media platforms to engage its audience. Technically, the website is built on WordPress CMS using Elementor for page building and Yoast SEO for search engine optimization. It integrates modern web technologies including jQuery and Google Analytics for tracking. Hosting utilizes Cloudflare DNS services, and the site employs HTTPS with good SSL configuration. Advertising is managed through Google Adsense and Vidverto, with multiple tracking and marketing tools embedded. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, it lacks published privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. No explicit incident response or vulnerability disclosure policies are available. Security headers are assumed but not explicitly confirmed in the HTML content. Overall, the security posture is moderate but could be improved with clearer policies and enhanced security controls. The website content is safe for general audiences, with no adult or questionable material detected. WHOIS data confirms the domain's legitimacy and consistent registration since 2016, aligning with the business's operational history. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding terms of service, implementing a vulnerability disclosure program, and enhancing accessibility and security headers to improve compliance and trust.

F

Frenk.ai

frenk.ai

58

Frenk.ai is a newly founded fintech startup (2025) specializing in AI-driven financial advisory services delivered through an interactive gamified platform. The company targets individuals seeking to improve their financial decision-making and literacy. The website presents a professional and modern design with clear calls to action for joining a waitlist for early access. Technically, the site uses Bootstrap for responsive design, Cloudflare for DNS, and Google Analytics for user tracking. The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS enforced and secure form handling, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is partially addressed with a privacy policy and GDPR mention, but no cookie consent mechanism is present. Business credibility is supported by clear contact information and EU data protection claims. Overall, the site is trustworthy and well-positioned for a fintech startup but can enhance security and privacy practices.

V

VR|SPACE

vrspace.cz

48

VR|SPACE is a Czech-based company specializing in virtual reality and augmented reality solutions tailored for industries such as architecture, healthcare, engineering, and education. Established in 2015, the company positions itself as an innovative service provider focused on digitization and immersive technology applications to enhance productivity and safety. The website reflects a professional and consistent brand image, targeting business clients seeking VR/AR services. Technically, the site employs a modern tech stack including Google Analytics, Facebook Pixel, and Google Tag Manager, with a CMS identified as HAPPY admin and hosting by WEDOS. While the site is mobile-optimized and accessible, some outdated libraries like jQuery 1.11.1 are used, and security headers are minimal. Security posture is adequate with HTTPS and reCAPTCHA on forms, but could be improved with additional headers and updated libraries. Privacy compliance is basic with a clear cookie consent mechanism and a privacy policy page, though terms of service and explicit security policies are absent. Overall, the site is trustworthy and professionally maintained, with room for technical and security enhancements.

M

Metrostav Development a.s.

metrostavdevelopment.cz

56

Metrostav Development a.s. is a well-established real estate developer in the Czech Republic, focusing on residential and commercial projects primarily in Prague. The company is part of the larger Metrostav Group and has a domain age consistent with its business history, indicating a stable market presence. Their website provides comprehensive information about ongoing and completed projects, targeting property buyers and investors in the region. Technically, the website employs modern web technologies such as Bootstrap, jQuery UI, and integrates Google Analytics and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements CSRF tokens in forms, but lacks explicit security headers and published security policies, which are recommended for improvement. Privacy compliance is strong with a visible cookie consent mechanism and a detailed privacy policy. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, with room for enhancement in security transparency and incident response readiness.

M

MeetFactory o. p. s.

meetfactory.cz

49

MeetFactory o. p. s. is a well-established non-profit cultural organization based in Prague, Czech Republic, founded in 2000. The organization provides a vibrant space for live art, including music, theater, residencies, galleries, and workshops. Supported by a significant grant from the city of Prague, MeetFactory serves a general audience interested in contemporary art and culture. The website reflects this mission with detailed event listings and structured data to enhance user experience and search engine visibility. Technically, the site uses a combination of older JavaScript libraries and Bootstrap framework, hosted on WEDOS infrastructure, with moderate performance and basic mobile optimization. Security posture is moderate, with HTTPS implied but lacking visible security headers and modern security practices. Privacy compliance is limited, with no explicit cookie consent or comprehensive privacy policy clearly accessible. Business credibility is high due to consistent domain registration data, clear physical address, and active social media presence. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.

S

SHERWOOD Digital a.s.

majales.cz

9

The website www.majales.cz serves as the central portal for the Majáles 2026 student festivals held across multiple Czech cities including Prague, Brno, Ostrava, and Hradec Králové. Operated by SHERWOOD Digital a.s., the site promotes large-scale student celebrations and provides event information and ticketing details. The business is positioned as a leading festival organizer in the Czech Republic, targeting students and young adults interested in cultural and social events. The site content is primarily in Czech with an option for English, reflecting a regional focus with some international accessibility. Technically, the website employs a modern tech stack including Bootstrap, Owl Carousel, Swiper, and integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Cookie consent is managed via CookieScript, demonstrating compliance with EU cookie regulations. The site is mobile-optimized with good SEO practices and moderate performance. However, no CMS or hosting provider details were identified, and accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent with opt-in for targeting and performance cookies, which is positive. Security headers are implied but not explicitly confirmed. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a publicly accessible privacy policy and terms of service pages is a compliance gap. Additionally, WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency and trustworthiness. Overall, the website presents a professional and trustworthy front for a regional event organizer but would benefit from enhanced transparency in privacy and security policies, explicit contact information, and verification of domain registration details to strengthen trust and compliance posture.

R

ROXY

roxy.cz

42

ROXY Prague is a well-established entertainment venue specializing in concerts, DJ events, and cultural activities since 1992. The website effectively showcases upcoming events, integrates multiple social media platforms, and provides a merchandise shop, targeting music and nightlife enthusiasts primarily in the Czech Republic. Technically, the site uses a modern JavaScript stack including jQuery, Google Analytics, Facebook Pixel, and asynchronous loading of Vue.js and Moment.js, indicating a moderate level of digital maturity. However, the absence of explicit privacy and cookie policies and lack of visible security headers highlight compliance and security gaps. The WHOIS data confirms the domain's legitimacy and long-term presence, supporting business credibility. Overall, the site is functional and professional but requires improvements in privacy compliance and security hardening.

A

AudioMaster, a. s.

music-city.cz

54

Music City, operated by AudioMaster, a. s., is a Czech Republic-based e-commerce retailer specializing in musical instruments, sound and lighting technology, DJ equipment, and home recording gear. The company maintains a strong market presence with multiple physical stores in Prague, Brno, and Uherské Hradiště, complemented by a comprehensive online store. Their business model focuses on providing musicians and music enthusiasts with a wide range of products at competitive prices, supported by free shipping and a three-year warranty, enhancing customer trust and satisfaction. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, Cookiebot for cookie consent management, and analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized and demonstrates good SEO and accessibility practices. However, there is room for improvement in security headers implementation and further hardening of form security. From a security perspective, the site uses HTTPS and has a robust cookie consent mechanism, indicating compliance with GDPR and privacy best practices. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a notable concern, potentially impacting domain trustworthiness, but the visible business information and contact details mitigate this risk somewhat. Overall, Music City presents a professional and trustworthy online presence with a solid business foundation. Strategic improvements in domain registration transparency and enhanced security headers would further strengthen their security posture and credibility.

C

Centrum Stromovka

centrumstromovka.cz

57

Centrum Stromovka operates as a retail and commercial center in the Czech Republic, providing shopping and vendor services primarily targeting local consumers and businesses. The website is built on WordPress and integrates common marketing and analytics tools such as Google Analytics, Google Ads, Facebook Pixel, and Cookiebot for cookie consent management. The technical infrastructure is moderately modern with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though explicit security headers are not detected and WHOIS data is missing, which impacts domain transparency. Overall, the site presents a professional and functional online presence for the business. Strategic improvements in security headers and privacy policy publication would enhance trust and compliance.

S

SIKO KOUPELNY A KUCHYNĚ

siko.cz

62

SIKO KOUPELNY A KUCHYNĚ is a leading Czech retailer specializing in stylish bathroom and kitchen solutions, offering a wide range of quality products, project planning, and turnkey realization services. The company targets general consumers primarily in the Czech Republic and neighboring countries, positioning itself as a market leader in home improvement retail. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on a modern Angular framework integrated with SAP Commerce Cloud, leveraging multiple marketing and analytics tools with user consent mechanisms. Security posture is strong with HTTPS enforcement and security headers, though the absence of a public security policy and incident response information is noted. The lack of WHOIS data reduces domain trust slightly but does not detract significantly from the overall legitimacy. Strategic recommendations include publishing security policies, enhancing incident response transparency, and verifying domain registration details to improve trust. Overall, SIKO demonstrates a mature digital presence with room for security and compliance enhancements.

S

sicily s.r.o.

sicily.cz

41

sicily s.r.o. operates a hospitality and accounting services business primarily targeting local customers in the Czech Republic. The company emphasizes ethical business practices and minimal ecological impact. Their website is built on Joomla! CMS and integrates common web technologies such as jQuery, Bootstrap, and Google Analytics. The site is moderately optimized for mobile and SEO, with a professional design and clear navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and formal privacy or terms of service documentation. The domain registration data is consistent and supports the legitimacy of the business. Overall, the website presents a trustworthy and professional image but would benefit from enhanced privacy compliance and security practices.

B

Bookio

bookiopro.com

62

BookioPro is a specialized online reservation and restaurant management system targeting restaurant owners and managers. The platform offers a comprehensive suite of tools including reservation books, online booking, guest management, statistics, and advanced features such as gift vouchers and event management. The business model is SaaS-based with a 30-day free trial to attract new customers. The website is professionally designed with consistent branding and clear navigation, supporting multiple languages and mobile optimization. Technically, the site leverages established front-end libraries like Bootstrap and Font Awesome, integrates Google Analytics and Tag Manager for tracking, and uses Smartsupp for live chat support. Cookie consent is managed via CookieYes with granular user controls, indicating a basic level of privacy compliance. However, no explicit privacy policy page was found, and WHOIS data for the domain is missing, which raises concerns about domain legitimacy. From a security perspective, the site uses HTTPS (assumed from external scripts loaded via HTTPS), but no security headers were detected in the provided data. The use of third-party scripts introduces potential risks that should be regularly audited. No incident response or security policy information is publicly available, which is a gap in transparency and preparedness. Overall, the website presents a solid business offering with good technical implementation but has room for improvement in security posture and privacy transparency. The lack of WHOIS data and explicit privacy policies slightly reduce trustworthiness. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and verifying domain registration details to improve credibility.

L

Litea Solution s.r.o.

usbmedia.cz

60

USB Media, operated by Litea Solution s.r.o., is a Czech-based company specializing in the custom manufacturing and sale of promotional USB flash drives and IT-related corporate gifts. Established in 2010, the company offers a range of services including laser engraving, printing on flash drives, and production of IT gadgets such as Bluetooth speakers and wireless chargers. Their market position is that of a specialized provider catering primarily to business clients seeking unique promotional items. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, supporting a positive user experience. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, Google Analytics, Google reCAPTCHA, and Owl Carousel. It uses Google Fonts and integrates Google Maps API for location services. Performance is moderate with good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on its contact form, which helps mitigate spam and abuse. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection against common web attacks. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak due to the absence of a privacy policy and cookie consent mechanism, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and legitimate, supported by consistent WHOIS data showing domain registration since 2010. Contact details are transparent with dedicated customer service representatives. The site does not contain any adult or questionable content and targets a general business audience. Strategic improvements in privacy compliance and security headers would enhance the site's security posture and regulatory adherence.

Centrum tance s.r.o. operates the website TanecniDarky.cz, offering e-commerce sales of gift vouchers redeemable for a variety of dance and fitness classes. The business targets individuals seeking unique gifts for friends and family interested in physical activities such as salsa, zumba, ballet, yoga, and pole dance. The company has a local presence in Prague and Brno with over 25 years of experience, positioning itself as a trusted provider in the dance and fitness sector. Technically, the website uses modern frontend technologies including Bootstrap and jQuery, and integrates Google Analytics and Google Ads for marketing and tracking purposes. The site is mobile responsive and provides a good user experience with clear navigation and professional design. Security posture is moderate; HTTPS is implied but no explicit security headers were detected, and privacy compliance is lacking due to absence of privacy and cookie policies. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but does not contradict the professional presentation of the business. Overall, the website is functional and credible but would benefit from enhanced security and compliance measures.

G

Google

go.dev

63

The website go.dev is the official site for the Go programming language, an open source language developed and supported by Google. It serves as a comprehensive resource hub for developers, offering documentation, learning materials, downloads, and community engagement. The site is well-positioned in the technology sector as a leading programming language platform with strong industry adoption and backing by a major enterprise, Google. The content is highly relevant to software developers and teams focused on building scalable, secure systems. From a technical perspective, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and Analytics for performance and user behavior tracking. The site is hosted on Google infrastructure, ensuring fast performance and excellent mobile optimization. Accessibility and SEO practices are well implemented, contributing to a positive user experience. Security-wise, the site enforces HTTPS and uses best practices such as asynchronous loading of analytics scripts. However, it lacks explicit security policy documentation and incident response contact information, which are recommended for transparency and trust. No vulnerabilities or exposed sensitive data were detected in the content. Privacy and cookie policies are present and link to Google's official policies, indicating good compliance with GDPR and related regulations. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity. The domain registration details align with the business claims, reinforcing legitimacy. Strategic recommendations include publishing dedicated security and incident response policies, enhancing security headers, and maintaining regular audits of third-party scripts to further strengthen security posture.

C

CarSoul

carsoul.cz

49

CarSoul.cz is a Czech-based automotive company specializing in operational leasing and sales of new and certified used vehicles. The company aggregates offers from multiple dealers, providing customers with a wide selection of cars including financing options. The website presents a professional and user-friendly interface with clear navigation, customer testimonials, and certifications such as CEBIA, indicating a trustworthy market presence. The target audience includes both individual customers and companies seeking fleet management solutions. Technically, the site employs modern JavaScript frameworks and libraries including Laravel Livewire, Swiper.js, and Google Tag Manager, supporting a responsive and interactive user experience. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks visible security headers and explicit privacy or security policies. WHOIS data for the domain is unavailable, which slightly impacts trustworthiness but does not detract from the overall professional presentation. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and verifying domain registration details to improve legitimacy and compliance.

B

Bonavita, spol. s r.o.

bonavita.cz

46

Bonavita, spol. s r.o. is a leading Czech manufacturer specializing in breakfast cereals, oat flakes, and soy products. The company operates a professional website that supports its retail and e-commerce business models, including a bonus program and an online shop. The website is well-structured, with clear navigation and relevant content targeting general consumers interested in healthy breakfast options. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, and integrates analytics and marketing tools like Google Analytics and Seznam Retargeting. While the website is mobile-optimized and user-friendly, there is room for improvement in security headers and accessibility compliance. The security posture is moderate, with HTTPS implied but no explicit security headers detected in the provided data. Privacy and cookie policies are present and GDPR compliant, reflecting a good privacy compliance stance. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness, but the overall business credibility remains high due to clear contact information and professional presentation.

V

Velkopopovická Kozlovna - restaurace Velké Popovice

velkopopovickakozlovna.cz

62

Velkopopovická Kozlovna is a traditional restaurant located in Velké Popovice, Czech Republic, closely associated with the world-famous Velkopopovice brewery. The business offers authentic dining experiences featuring tank and unfiltered Kozel beer, group menus, event catering, conference spaces, accommodation, and brewery tours. The website reflects a small hospitality business with a local market focus, emphasizing traditional Czech cuisine and beer culture. Technically, the site is built on WordPress using the Divi theme, incorporating modern web technologies such as Google reCAPTCHA and Google Analytics, and hosted by Active24 with CDN support. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and spam protection, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent banner present but no privacy policy or terms of service pages found. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. The content is safe for general audiences except for alcohol-related content, which is appropriate for the hospitality sector.

R

Restaurace Pod Ledem Velké Popovice

restauracepodledem.cz

62

Restaurace Pod Ledem Velké Popovice is a small hospitality business specializing in restaurant dining, local brewery beer, and event hosting services located in Velké Popovice, Czech Republic. The website presents a professional and consistent brand image with clear contact information and social media presence. Technically, the site is built on WordPress using the Divi theme, with standard plugins for GDPR compliance and analytics. The site is moderately performant and mobile-optimized, with good SEO practices. Security posture is adequate with HTTPS and cookie consent, but lacks advanced security headers and vulnerability disclosure mechanisms. Privacy compliance is basic, with no explicit privacy policy or terms of service pages found. WHOIS data confirms domain legitimacy and consistency with the business location and history.

H

Hotel u Ledu*** / Wellness

hoteluledu.cz

62

Hotel u Ledu is a hospitality business located in Velké Popovice, Czech Republic, offering comfortable accommodation, wellness services, and gastronomic experiences. The website positions the hotel as an ideal location for both leisure and corporate events, targeting a general audience seeking quality hospitality services. The business appears to be small-sized and has been operating since 2015, with a consistent brand presence and good content quality on its website. Technically, the website is built on WordPress using the Divi theme, leveraging modern web technologies such as Google Tag Manager and Google Analytics for tracking and marketing purposes. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features. Hosting and domain registration are consistent with the business location and sector, indicating a stable digital infrastructure. From a security perspective, the website uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers and incident response policies are not evident, suggesting room for improvement in security posture. No vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, the website presents a professional and trustworthy online presence for the hotel business, with moderate tracking and marketing tools in use. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and maintaining regular updates to the CMS and plugins to mitigate potential vulnerabilities.

B

Bohemia

bohemiachips.cz

44

Bohemia Chips is a Czech snack food brand specializing in potato chips and related products, with a strong market presence supported by official partnerships such as with Czech hockey. The website is built on WordPress and uses a variety of modern web technologies and plugins to deliver a visually appealing and content-rich experience. While the site is well-designed and mobile-optimized, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing key security headers and vulnerability disclosure mechanisms. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and branding appear professional and consistent with a legitimate business.

O

Obecní úřad Velké Popovice

velkepopovice.cz

47

Velké Popovice's official municipal website serves as a comprehensive portal for local residents and visitors, providing essential information such as public notices, contact details, event calendars, and citizen services. The site is positioned as a trusted local government resource with a clear focus on community engagement and transparency. Technically, the website employs a modern CMS (vismo), uses HTTPS, integrates Google Analytics with consent management, and includes accessibility and mobile optimization features. Security measures include the use of Google reCAPTCHA on forms and cookie consent banners, though explicit security policies and headers could be improved. The absence of WHOIS data limits domain trust assessment, but the website's content and contact information strongly indicate legitimacy. Overall, the site is well-maintained, user-friendly, and compliant with privacy regulations, making it a reliable digital presence for the municipality.

Č

Český svaz ledního hokeje & eSports.cz, s.r.o.

pojdhrathokej.cz

45

The website 'Pojď hrát hokej' is a Czech initiative focused on promoting ice hockey among children and their parents. It organizes events such as 'Týden hokeje' and provides resources to find local hockey clubs and information on equipment. The site is supported by reputable partners including Kaufland and Český hokej, indicating a strong market position within the Czech sports non-profit sector. The business model centers on community engagement and sports promotion rather than commercial sales. Technically, the website employs a modern tech stack including Bootstrap for responsive design, jQuery, Google Tag Manager, Facebook Pixel, and Google Analytics for tracking and marketing. Hosting appears to be managed by REG-ZONER, a Czech registrar and hosting provider. The site is mobile-optimized with good navigation and basic accessibility features, though some SEO and security header enhancements could be made. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected. Tracking is moderate, using common analytics and marketing tools. Overall, the website is professional, trustworthy, and safe for general audiences, with a strong focus on sports promotion. Recommendations include improving security headers, publishing security policies, and adding incident response information to enhance trust and compliance.

P

PAMAX

pamax.cz

50

PAMAX is a traditional Czech family-owned business specializing in the custom manufacture and retail of beds, mattresses, and furniture with a focus on health-certified products. Established in 1997, the company leverages its long-standing expertise to serve customers seeking high-quality, tailor-made sleep and home comfort solutions. The website reflects a professional e-commerce platform built on PrestaShop, integrating modern tracking and marketing tools such as Google Analytics and Facebook SDK. Contact information and social media presence are clearly provided, enhancing customer trust and engagement. Security posture is solid with HTTPS and secure forms, though improvements are recommended in security headers and privacy consent mechanisms. Overall, PAMAX demonstrates a credible and mature digital presence aligned with its business history and market positioning.

S

Saratoga County Chamber of Commerce

saratoga.org

58

The Saratoga County Chamber of Commerce website serves as a regional hub for local business support, community engagement, and event promotion within Saratoga County, United States. The site targets local businesses and community members, offering services such as networking opportunities and promotional campaigns. The business model is membership-based, focusing on fostering local economic growth and community involvement. The website is professionally designed with consistent branding and good content quality, reflecting a small-sized organization with a clear regional focus. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO Premium, and various analytics and tracking tools such as Google Analytics and Facebook Pixel. Hosting is supported by Azure CDN, contributing to moderate performance and good mobile optimization. SEO practices are well implemented with structured data and meta tags, although accessibility features are basic. From a security perspective, the site enforces HTTPS and includes some best practices such as reCAPTCHA integration. However, explicit security headers are not detected, and no vulnerability disclosure or incident response policies are present. The WHOIS data is privacy protected or unavailable, which is common for such organizations but slightly reduces transparency. Overall, the security posture is good but could be improved with enhanced headers and formal policies. The overall risk assessment indicates a legitimate and professionally maintained website with moderate user tracking and some gaps in privacy compliance. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and establishing vulnerability disclosure mechanisms to improve trust and compliance.

I

Innovation Center at Saratoga

innovationcentersaratoga.org

50

The Innovation Center at Saratoga operates as a regional business incubator focused on fostering startups and entrepreneurial growth in the Saratoga area. The website provides basic information about its services and mission but lacks comprehensive privacy, cookie, and security policies. Technically, the site is built on WordPress using the Divi theme and WooCommerce, with Google Analytics integrated for visitor tracking. While HTTPS is enabled and domain registration is consistent with the business age, the absence of DNSSEC and security headers indicates room for improvement in security posture. The lack of visible contact information and privacy compliance elements suggests a need for enhanced transparency and user trust mechanisms. Overall, the site is functional but would benefit from stronger security and privacy practices to align with modern compliance standards.

R

ResponsiveAds

responsiveads.com

65

ResponsiveAds is a mature technology company specializing in creative automation for digital advertising, offering a comprehensive suite of tools and services to brands, agencies, and publishers. Their platform supports high-impact, fluid HTML5 ads across multiple channels including web, mobile, DOOH, and CTV, with advanced analytics and dynamic creative optimization capabilities. The website reflects a professional and well-branded presence with extensive case studies and trusted partner logos, indicating strong market positioning. Technically, the website is built on WordPress with modern frameworks like Elementor and Yoast SEO, hosted on AWS infrastructure. It integrates multiple advertising and analytics technologies such as Google Tag Manager, DoubleClick, StackAdapt, and Microsoft Clarity. The site is mobile-optimized, accessible, and employs a detailed cookie consent mechanism compliant with GDPR principles. From a security perspective, the site uses HTTPS with good SSL configuration and standard security practices including bot management and secure cookies. However, it lacks DNSSEC and explicit security headers, and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements include enhancing security headers, publishing privacy and security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

W

Working Chance

workingchance.org

57

Working Chance is a UK-based non-profit charity dedicated to supporting women with convictions to find employment and education opportunities. The organization provides tailored support including CV preparation, interview coaching, confidence building, and employer training. It holds a unique market position as the only UK charity solely focused on this demographic, working closely with employers and policymakers to break down barriers and stigma. The website reflects a professional and consistent brand with excellent content quality and user experience. Technically, the site uses modern analytics tools and is hosted on DigitalOcean with a CDN, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is good with clear cookie and privacy policies. Overall, the domain registration data supports the legitimacy and trustworthiness of the organization.

L

Lady Virtual

ladyvirtual.cz

44

Lady Virtual is a small Czech-based SEO consultancy led by Michaela Matanelli, specializing in SEO, linkbuilding, copywriting, and keyword analysis with over 15 years of experience. The website presents a professional image with clear service offerings, client testimonials, and certifications such as Google Analytics Individual Qualification. Technically, the site is built on WordPress with modern plugins and tracking tools, including Google Tag Manager and Smartlook, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and consent-based data collection, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical for small consultancies. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations.

N

Nadace 3WFoundation

3wfoundation.org

49

3WFoundation is a philanthropic foundation established in early 2022 by the Wałach brothers and their families, focusing on supporting Christian, charitable, cultural, and local community projects primarily in the Czech Republic and Central/Eastern Europe. The foundation emphasizes strategic philanthropy grounded in Christian values such as love, solidarity, and forgiveness, aiming for impactful societal change. The website presents clear information about the foundation's mission, supported projects, and founders, with content available in Czech, English, and Polish. Technically, the site uses modern web technologies including jQuery, Google Fonts, and Google Analytics, and implements a cookie consent mechanism compliant with GDPR principles. However, it lacks a dedicated privacy policy and terms of service pages, which are important for full compliance and transparency. Security-wise, the site uses HTTPS but does not show advanced security headers or incident response information.

C

CasinosOnlineSchweiz24

casinosonlineschweiz24.com

52

CasinosOnlineSchweiz24.com is a specialized online platform providing detailed reviews, guides, and information about online casinos tailored for Swiss players. The site offers comprehensive content on casino bonuses, payment methods, game types, and legal regulations relevant to Switzerland. It targets adult gambling enthusiasts seeking trustworthy casino recommendations and insights. Technically, the website is built on WordPress, uses jQuery, and integrates Google Analytics and Tag Manager for tracking. It employs HTTPS and Cloudflare DNS for security and performance. Security posture is moderate with room for improvement in headers and vulnerability disclosure. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is professional, content-rich, and trustworthy for its niche audience.