Security Directory

Č

Čarovné Česko

carovne-cesko.cz

61

Čarovné Česko is a Czech Republic-based e-commerce retailer specializing in books, maps, and map-themed clothing and gifts that celebrate the beauty and stories of Czech and Slovak regions. The website is professionally designed, featuring a clear product catalog and navigation tailored to regional interests. The business targets customers interested in regional culture, tourism, and unique map-related products. Technically, the site leverages the Shoptet e-commerce platform with integrations such as Google Analytics, Facebook SDK, and Doofinder for search and recommendations. Security posture is solid with HTTPS, CSRF protections, and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data for the domain is a concern for domain legitimacy but does not detract from the professional presentation and contact transparency of the site. Overall, the site is a well-structured niche e-commerce platform with moderate technical maturity and good privacy compliance.

F

Fundación Conama

fundacionconama.org

51

Fundación Conama is a Spanish non-profit foundation dedicated to promoting sustainable development through knowledge exchange, events, reports, and collaborative projects. It holds a leading position in Spain and Iberoamerica as an organizer of major environmental congresses and networking platforms. The website is professionally designed using WordPress and Elementor, with strong SEO and accessibility features. It integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, while providing clear privacy and cookie policies with consent management. Security posture is good with HTTPS and no evident vulnerabilities, though some security headers could be improved. WHOIS data is privacy protected, which is justified for this type of organization. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively.

P

Porsche Česká republika s.r.o.

cupraofficial.cz

59

CUPRA Česká republika operates as a premium automotive brand website focused on high-performance sports and electric vehicles. The site is professionally designed, featuring rich multimedia content, detailed product offerings including plug-in hybrids and electric models, and integrated configurator and stock vehicle listings. The brand is affiliated with Porsche Česká republika s.r.o., indicating strong market positioning in the Czech automotive sector. Technically, the website leverages modern frameworks such as Next.js and React, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the site presents a trustworthy and professional digital presence with minor areas for improvement in security transparency.

A

Audi Česká republika

audi.cz

58

Audi Česká republika operates as the official regional website for the Audi brand in the Czech Republic, providing comprehensive information about Audi's vehicle models, electric vehicles, financing options, servicing, and promotional offers. The site targets consumers interested in premium automotive products and services, supporting Audi's market position as a leading luxury car manufacturer. The website demonstrates a high level of digital maturity, utilizing modern web technologies such as Next.js and Google Tag Manager, and incorporates cookie consent management via OneTrust. Security posture is generally strong with HTTPS enforced, though some security headers and explicit privacy policies are not detected in the provided content. The absence of WHOIS data limits domain registration trust verification, but the website's branding and content strongly indicate legitimacy. Overall, the site offers a professional, user-friendly experience with rich multimedia content and clear navigation.

D

Digital Depo | Strategický online marketing a weby do celého světa

digitaldepo.cz

43

Digital Depo is a Czech-based digital agency specializing in strategic online marketing and website development services aimed at businesses seeking to expand their online presence globally. The website is built on WordPress using the Elementor framework, incorporating modern web technologies and multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. The absence of public WHOIS data due to privacy protection limits full trust assessment, and no explicit privacy or cookie policies were found, indicating room for compliance improvement.

W

Windcoop SCIC SA

wind.coop

52

Windcoop SCIC SA is a French maritime cooperative based in Lorient specializing in low-carbon cargo transport using sail-powered container ships. The company operates an innovative business model focused on sustainability and cooperative ownership, targeting individuals, businesses, and communities interested in ethical and ecological maritime transport. Their flagship project is a 90-meter sail cargo ship designed to reduce CO2 emissions by 60% compared to conventional vessels, with operations planned between Marseille and Madagascar starting in 2027. The website reflects a professional and modern digital presence built on WordPress, featuring comprehensive content, multimedia, and clear calls to action for investment and membership. Technical infrastructure includes Matomo analytics and Google Tag Manager, with a strong emphasis on privacy and cookie consent compliance. Security posture is good with HTTPS and domain transfer protections, though improvements such as DNSSEC and explicit security policies are recommended. Overall, Windcoop presents a credible, transparent, and innovative player in the sustainable transportation sector.

R

Réseau Citiz

citiz.coop

56

Réseau Citiz operates as a cooperative carsharing network in France, providing flexible vehicle rental services across more than 80 cities. The website presents a professional and consistent brand image, targeting both individual and professional users seeking shared mobility solutions. Technically, the site employs modern tracking and consent management tools, including Google Analytics, Facebook Pixel, and tarteaucitron.js for cookie consent, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies are absent. Privacy compliance is partial, with cookie consent present but no dedicated privacy policy page found. Overall, the site is trustworthy and well-positioned in its market niche.

L

laNef

lanef.com

63

La Nef is a French cooperative ethical bank established in 1988, focusing on financing projects with ecological, social, and cultural impact. It serves both individuals and professionals, offering savings products, loans, and cooperative membership opportunities. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, it is built on WordPress with modern libraries and analytics tools, ensuring good performance and SEO. Security posture is strong with HTTPS and security headers, though it lacks a public vulnerability disclosure and incident response contacts. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be investigated further. Overall, the site demonstrates high trustworthiness and professionalism, suitable for its target audience.

T

TeleCoop

telecoop.fr

51

TeleCoop is a French cooperative telecommunications operator founded in 2012, offering transparent, no-contract mobile plans with a strong focus on ecological and social responsibility. Positioned as the first cooperative telecom operator in France, it targets consumers who value sustainability and democratic governance in telecom services. The company provides a variety of mobile plans including options for children and teenagers, leveraging the 4G network of Orange, France's leading mobile network. TeleCoop emphasizes customer service based in France and promotes digital sobriety and ecological impact reduction among its subscribers. Technically, the website is built on the Kirby CMS platform and employs modern web technologies such as Matomo for analytics, Google Tag Manager, and Axeptio for cookie consent management. The site is well-optimized for mobile devices, fast loading, and accessible, with good SEO practices and structured data enhancing search engine visibility. Hosting and domain registration are managed by GANDI, a reputable registrar, with consistent WHOIS data supporting the legitimacy of the business. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers like Content-Security-Policy and does not publish a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie management in place. The business credibility is reinforced by clear contact information, verified customer reviews, and social proof. Overall, TeleCoop presents a professional, trustworthy, and well-maintained online presence aligned with its cooperative and ecological mission. Strategic improvements could include publishing a security policy, adding security headers, and establishing a vulnerability disclosure channel to further enhance trust and security posture.

E

Enercoop

enercoop.fr

54

Enercoop is a French cooperative network providing 100% renewable electricity sourced from a broad network of citizen and local authority-owned production sites. The company positions itself as a key player in the energy transition with a cooperative and citizen-focused business model. Their services include electricity supply, energy efficiency consulting, and support for renewable energy producers. The website is professionally designed, mobile-optimized, and uses modern technologies including Prismic CMS, Matomo analytics, and Google Tag Manager. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit privacy and terms of service pages are not detected in the provided content. Overall, Enercoop demonstrates a mature digital presence aligned with its cooperative values and market positioning.

N

NEONUS, s.r.o.

neonus.sk

69

NEONUS, s.r.o. is a Slovak digital agency specializing in custom web development, e-commerce, B2B online shops, design, and data synchronization services. The company targets businesses seeking tailored digital solutions and technical support for their online presence. With over 15 years of experience and more than 500 projects completed, NEONUS holds a solid regional market position. The website reflects a professional and consistent brand image with comprehensive service offerings and client references. Technically, the website employs modern web technologies including GSAP for animations, Google Tag Manager and Analytics for tracking, and Tawk.to for live chat support. The site is built likely on WordPress with WooCommerce integration, optimized for mobile devices, and demonstrates good SEO and accessibility practices. Performance is moderate, with room for improvement in accessibility and loading speed. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and secures user data collection via forms with CAPTCHA. However, it lacks a publicly available security policy, incident response contacts, and vulnerability disclosure information. Security headers are not explicitly detected, suggesting potential areas for enhancement. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The risk profile is low, but strategic improvements in security transparency and technical optimizations are recommended to further strengthen the security posture and user trust.

H

HZ Vinařství s.r.o.

valtickepodzemi.cz

49

Valtické Podzemí is a hospitality and wine tourism business based in the Czech Republic, specializing in historic wine cellar tours, wine tastings, and cultural events. The company operates a unique project connecting 13 historic wine cellars dating back to the 13th century, offering individual visits, group programs, and private events. The business holds a prestigious award, CHAMPION TOP VINAŘSKÝ CÍL ČR, underscoring its quality and reputation in the local market. The website is professionally designed, mobile-optimized, and rich in relevant content targeting wine enthusiasts, tourists, and corporate clients. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and AOS for animations. It employs performance optimization tools like WP Rocket and SEO enhancements via Yoast SEO. The site uses Google Tag Manager and Microsoft Clarity for analytics and tracking, with a GDPR-compliant cookie consent mechanism in place. Social media integration and partner links further enhance its digital presence. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security policy and incident response information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the presence of clear contact information and business details supports legitimacy. Overall, the site demonstrates a strong security posture with room for improvement in transparency and formal security documentation. Strategically, the business should focus on publishing a security policy, establishing incident response contacts, and enhancing domain registration transparency to improve trust. Continued monitoring of third-party scripts and regular security audits will help maintain a robust security posture. The website's excellent content quality and user experience position it well for growth in the wine tourism sector.

E

ESSENS Restaurant

essensrestaurant.cz

41

ESSENS Restaurant is a fine dining establishment located in South Moravia, Czech Republic, offering Michelin-quality gastronomic experiences focused on regional and seasonal ingredients. The website presents a professional and visually appealing interface with clear navigation and multilingual support, targeting discerning clients seeking high-end culinary experiences. The technical infrastructure leverages popular front-end libraries such as Bootstrap, jQuery, and Flexslider, alongside tracking and marketing tools including Google Tag Manager, Facebook Pixel, and Adform. While the site is mobile optimized and performs moderately well, some libraries are outdated and security headers are not evident, indicating room for improvement in security posture. The absence of privacy and cookie policies and missing WHOIS data represent compliance and trust concerns. Overall, the website is functional and professional but would benefit from enhanced security and privacy measures to align with best practices and regulatory requirements.

V

Vinařství Hraniční Zámeček

hzvinarstvi.cz

47

Vinařství Hraniční Zámeček is a small premium winery based in Lednice, Czech Republic, offering exclusive wines and hospitality services including a hotel resort and wine tastings. The website is professionally designed using WordPress and Elementor, featuring modern SEO practices and structured data to enhance search visibility. Privacy and cookie policies are implemented with GDPR compliance, and tracking technologies such as Google Tag Manager and Facebook Pixel are used for marketing and analytics. However, no direct contact emails or phone numbers are found on the site, and WHOIS data is unavailable, which slightly reduces transparency. Security posture is good with HTTPS and cookie consent, but could be improved with additional security headers and explicit vulnerability disclosure. Overall, the site presents a trustworthy and mature brand image targeting wine consumers and hospitality guests.

S

SUNLUX, s.r.o.

sunlux.cz

45

SUNLUX, s.r.o. is a Czech Republic-based company specializing in photovoltaic energy solutions for residential, commercial, and industrial clients. With over 15 years of experience since 2009, the company offers comprehensive services including design, consultation, installation, and ongoing maintenance of photovoltaic systems. Their market position is supported by multiple certifications and memberships in industry organizations, reflecting a strong local presence and expertise in renewable energy solutions. The website is professionally designed using WordPress and Elementor, optimized for performance and mobile devices, and includes a cookie consent mechanism to comply with privacy regulations. However, explicit privacy and terms of service pages are not found, which could be improved for better compliance and transparency. The company uses Google Tag Manager for analytics and tracking, indicating a moderate level of user data collection.

S

Svatební centrum Caxa Brno

caxabrno.cz

49

Svatební centrum Caxa Brno is a well-established wedding and formal wear rental and sales business located in Brno, Czech Republic. The company offers a wide range of wedding dresses, formal dresses, men's suits, and accessories, complemented by wedding coordination services. The website reflects a professional and comprehensive digital presence with rich content, customer testimonials, and active social media engagement. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern plugins and tracking tools such as Google Analytics and Facebook Pixel. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the overall business credibility is supported by consistent branding and detailed service offerings. Privacy compliance is strong with clear policies and consent management. Strategic recommendations include enhancing security headers, adding incident response information, and maintaining up-to-date software to mitigate vulnerabilities.

S

studio AMMI

ammi.cz

63

Studio AMMI is a small, established florist business based in Brno, Czech Republic, specializing in fresh flower arrangements, delivery services, wedding flowers, funeral wreaths, and houseplants. The company has a strong local market presence supported by a professional website that offers e-commerce capabilities and detailed product galleries. The business emphasizes quality and customer satisfaction, as evidenced by testimonials and references to awards. Technically, the website is built on WordPress with the MioWeb theme and uses modern tracking and consent management tools such as Google Tag Manager and Cookiebot. Security posture is good with HTTPS enforced and no visible vulnerabilities, although security headers and incident response information are lacking. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

H

Hudební agentura Arte per tutti

artepertutti.cz

59

Hudební agentura Arte per tutti is a small Czech music agency specializing in live music performances for weddings, concerts, corporate events, and other celebrations. Founded in 2017 by Jitka Břízová, who also acts as manager and violinist, the agency emphasizes quality, originality, and personalized service. Their offerings include tailored musical ensembles and guaranteed substitutes for musicians in case of illness. The website presents a professional image with testimonials and clear contact information, targeting clients seeking live music experiences in the Czech Republic. Technically, the website is built on the Webnode CMS platform, leveraging modern web technologies such as HTML5, CSS3, JavaScript, and uses Amazon Cloudfront CDN for content delivery. It integrates Google Tag Manager and Facebook SDK for analytics and marketing. The site is mobile-optimized and features a cookie consent mechanism, though it lacks some advanced security headers and a published privacy policy. From a security perspective, the site uses HTTPS with a good SSL configuration but does not implement common security headers like Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data and privacy policy reduces trustworthiness. There is no visible incident response or vulnerability disclosure information. Overall, the website is functional, professional, and safe for general audiences, but improvements in transparency, security headers, and domain registration verification are recommended to enhance trust and compliance.

A

Artyp

artyp.cz

49

Artyp is a small artisanal e-commerce business based in the Czech Republic specializing in handcrafted, hand-painted wedding invitations, birthday and christening invitations, and related paper goods. The company emphasizes originality, quality, and eco-friendly packaging, targeting individuals planning special events. The website is professionally designed with good content quality, clear navigation, and mobile optimization. It uses a modern technology stack including jQuery, Bootstrap, Google Analytics, and Facebook Pixel, supporting a mature digital presence. Security posture is solid with HTTPS and CAPTCHA protections, though lacking some HTTP security headers and formal security policies. Privacy compliance is partial with a cookie consent mechanism but no dedicated privacy policy page found. Contact information is clear and trustworthy, supported by customer testimonials and social media presence. However, the absence of WHOIS registration data limits domain trust assessment, which is a notable risk factor.

C

Catering Brno Slunečnice

cateringbrnoslunecnice.cz

49

Catering Brno Slunečnice is a small hospitality business specializing in comprehensive catering services for events such as weddings, corporate parties, and family celebrations in Brno and surrounding areas. The company operates under the Slunečnice Food network with multiple related venues, emphasizing quality and customer service. The website is professionally designed using the Webnode CMS platform, leveraging modern CDN and analytics technologies to deliver content efficiently. However, the absence of privacy and cookie policies and lack of visible contact information limit its compliance and trustworthiness. The security posture is generally good with HTTPS enforced, but missing security headers and incident response details are areas for improvement. The domain WHOIS data is unavailable, which raises concerns about registration transparency and business legitimacy. Overall, the site is safe, well-structured, and suitable for its target audience but requires enhancements in privacy compliance and business transparency to improve trust and security.

Demcon is a well-established technology group headquartered in the Netherlands, specializing in innovative product development and manufacturing across diverse sectors such as aerospace, healthcare, energy, and smart industry. The company operates through multiple specialized subsidiaries, leveraging collective expertise to deliver advanced technological solutions that create social impact. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to technology-minded audiences. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, integrates Google Tag Manager and reCAPTCHA for analytics and security, and employs a cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and bot protection in place, though some security headers and explicit policies could be improved. Overall, Demcon demonstrates high business credibility and digital maturity with room for enhanced transparency in security policies and incident response.

V

VT Symposium

vtsymposium.com

51

VT Symposium is a specialized healthcare educational event focusing on ventricular arrhythmias, offering both in-person and virtual attendance options. The website provides detailed information about the symposium's agenda, faculty, and registration, targeting medical professionals and researchers in cardiology. Technically, the site uses a modern CMS (ProgressSitefinity) with Bootstrap and jQuery frameworks, and integrates Google Analytics and Twitter widgets for analytics and social media engagement. Security posture is moderate with HTTPS implied but lacking visible security headers and privacy policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the professional content and branding suggest a credible event. Overall, the site is well-designed and informative but would benefit from enhanced privacy compliance and clearer domain registration transparency.

BeSignal is a specialized software provider offering whistleblowing reporting platforms tailored to meet the requirements of the European Whistleblowing Directive and data protection standards. Founded in 2021 and based in France, the company targets organizations in both the corporate and public sectors, including schools, to streamline whistleblowing report management and resolution. Their business model is primarily SaaS, delivering compliance-focused solutions with multi-language support and a professional online presence. Technically, the website leverages modern JavaScript frameworks such as Vue.js, integrates HubSpot for marketing and analytics, and employs Cookiebot for cookie consent management. The hosting is provided by OVH sas, a reputable European hosting provider. Security-wise, the site enforces HTTPS and has domain protections against unauthorized transfers or deletions, but lacks DNSSEC and some security headers. No explicit privacy policy or terms of service were found, which is a compliance gap. Overall, the website is professional and functional with moderate security posture and good business credibility.

B

BussinesMC

ulicenarodni.cz

45

The website www.ulicenarodni.cz serves as a local informational portal focused on the Národní street area in Prague 1, providing visitors and locals with details about hotels, restaurants, bars, cultural venues, theaters, and clubs. The site targets tourists and residents interested in cultural and hospitality services, positioning itself as a niche guide for this specific locality. The business model appears to be promotional and informational, likely monetized through partnerships and advertising. The site is operated by BussinesMC, a small entity with no publicly disclosed parent or subsidiaries. Technically, the website employs a traditional web stack with HTML5, CSS3, JavaScript, jQuery, and Bootstrap, supplemented by third-party analytics and marketing tools such as Google Analytics, Facebook Pixel, and SmartLook. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with GDPR-aligned cookie consent and a basic privacy policy. Overall, the website is trustworthy and professionally maintained, though it could benefit from enhanced security practices and more transparent business contact information.

H

Hradčanské náměstí, Praha

hradcanske-namesti.cz

44

The website www.hradcanske-namesti.cz serves as a local informational and promotional platform focused on Hradčanské Square in Prague, highlighting restaurants, cafes, shops, and historical buildings. It targets tourists and local visitors interested in exploring this historic area. The business model appears to be centered on providing curated content and promoting local businesses, supported by newsletter subscriptions and partner listings. The site is small in scale and focused on hospitality and tourism within the Czech Republic. Technically, the website employs a moderately modern tech stack including jQuery, Bootstrap, Google Analytics, Google Tag Manager, and SmartLook for analytics and user interaction tracking. The site is mobile optimized with good user experience and basic SEO practices. However, no CMS or hosting provider details are evident. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS and implements cookie consent with reCaptcha for form protection. However, no advanced security headers such as CSP or HSTS are detected, and there is no visible privacy policy or terms of service, which are important for compliance and trust. The WHOIS data is unavailable, likely due to privacy protection, limiting domain trust analysis. No contact emails or phone numbers are explicitly provided, which reduces business credibility slightly. Overall, the website is legitimate and functional for its purpose but would benefit from enhanced security headers, clearer privacy and contact information, and improved compliance documentation to strengthen trust and security posture.

C

Centrum léčby pohybového aparátu, s.r.o.

clpa-mediterra.cz

53

Centrum léčby pohybového aparátu (CLPA) is a specialized healthcare provider in the Czech Republic focusing on orthopedics, rehabilitation, and physiotherapy. It operates under the parent company Group Mediterra and holds recognized certifications such as the SAK accreditation, indicating high-quality medical care. The website presents a professional image with comprehensive service descriptions, clear contact information, and a user-friendly interface optimized for both desktop and mobile users. The target audience primarily includes patients seeking specialized musculoskeletal treatment and rehabilitation services. Technically, the site is built on WordPress with common plugins and modern JavaScript libraries, ensuring moderate performance and good SEO practices.

N

Nemocnice Tanvald, s.r.o.

nemocnice-tanvald.cz

50

Nemocnice Tanvald, s.r.o. is a regional healthcare provider located in Tanvald, Czech Republic, offering a broad range of ambulatory and inpatient medical services. Founded in 1889, the hospital operates in a modern renovated facility and is part of the Group Mediterra network, which includes several other healthcare and rehabilitation centers. The website presents a professional image with clear information about services, departments, and patient resources, targeting patients and visitors primarily in the Czech Republic. The business model focuses on comprehensive patient care with multidisciplinary medical teams across various specialties. Technically, the website is built on WordPress and employs modern JavaScript libraries such as jQuery and Owl Carousel for UI components. It integrates Google Analytics and Google Tag Manager for traffic analysis and marketing. The site is mobile optimized and provides a cookie consent mechanism compliant with GDPR. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent for privacy compliance. The absence of WHOIS data for the domain reduces trustworthiness slightly, but the website content and affiliation with Group Mediterra support legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Recommendations include adding security headers, publishing security policies, and implementing a vulnerability disclosure mechanism. Overall, Nemocnice Tanvald's website is a well-structured, professional healthcare portal with good privacy compliance and moderate technical maturity. Addressing minor security and transparency gaps will enhance trust and security posture further.

N

Nemocnice Sedlčany

nemocnice-sedlcany.cz

53

Nemocnice Sedlčany is a regional healthcare provider in the Czech Republic offering a wide range of medical services including surgeries, rehabilitation, and various specialized ambulances. The hospital is part of the Group Mediterra, indicating a structured parent company relationship. The website is professionally designed using WordPress CMS, with modern technologies such as jQuery, Owl Carousel, and Google Tag Manager integrated for analytics and user experience. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy in Czech language. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though security headers could be improved. Overall, the site reflects a trustworthy and professional healthcare institution with active communication channels and social media presence.

M

Mělnická zdravotní, a. s.

nemocnice-neratovice.cz

43

Nemocnice Mělník is a regional healthcare provider in the Czech Republic offering a wide range of medical services including surgery, gynecology, radiology, and rehabilitation. The hospital operates under the parent company Group Mediterra and maintains a network of related hospitals and clinics. The website is professionally designed, targeting patients and regional healthcare consumers, providing detailed information about ambulances and departments. Technically, the site is built on WordPress with modern tracking and analytics tools, and it is mobile optimized with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response information. The absence of WHOIS data reduces domain trustworthiness, but the overall business credibility remains high due to comprehensive contact information, certifications, and social media presence. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to improve trust.

M

Mělnická zdravotní, a. s.

nemocnice-melnik.cz

44

Nemocnice Mělník is a significant multidisciplinary regional hospital in the Středočeský kraj of the Czech Republic, serving approximately 110,000 residents. It offers a broad spectrum of healthcare services including acute 24-hour care across multiple specialties such as surgery, traumatology, orthopedics, internal medicine, gynecology, neonatology, neurology, infectious diseases, anesthesiology, and rehabilitation. The hospital is part of the Group Mediterra healthcare network, which manages several related healthcare facilities and clinics. The website reflects a professional healthcare provider with comprehensive patient resources and clear communication channels. Technically, the website is built on WordPress and employs modern web technologies including jQuery, Owl Carousel, and Google Analytics for tracking. It uses HTTPS with strong SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. The site is mobile-optimized and provides good SEO and accessibility features, although some accessibility improvements could be made. From a security perspective, the website enforces HTTPS, uses security headers, and has secure contact forms. However, it lacks a publicly available security policy, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy with consistent registrant information matching the healthcare entity's claims. Overall, Nemocnice Mělník's website demonstrates a high level of professionalism, security, and compliance suitable for a healthcare provider. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and security posture further.

N

Nemocnice sv. Zdislavy, a.s.

nemocnice-mostiste.cz

52

Nemocnice sv. Zdislavy, a.s., operating under the brand Nemocnice Mostiště, is a modern healthcare provider based in the Czech Republic offering a wide range of ambulatory and inpatient medical services including advanced robotic surgeries and specialized care. The hospital serves both domestic and international patients and is part of the Group Mediterra healthcare network. The website is professionally designed, multilingual, and provides comprehensive information about services, departments, and patient care. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics and reCAPTCHA for security and analytics. Privacy and cookie policies are implemented with GDPR compliance. However, WHOIS data for the domain is unavailable, which slightly impacts trustworthiness. Overall, the site demonstrates a good security posture with HTTPS and consent mechanisms but could improve by adding security headers and explicit security policies.

B

b2match

b2match.com

68

b2match is a technology-driven SaaS company specializing in event management platforms focused on networking and matchmaking for in-person, virtual, and hybrid events. The platform offers a comprehensive suite of tools including registration, ticketing, agenda management, AI-powered matchmaking, mobile apps, and analytics, positioning itself as a trusted solution for event professionals globally. The website demonstrates a mature digital presence with modern technologies such as Next.js, React, and integration of major analytics and advertising platforms. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the website and business exhibit high professionalism and trustworthiness, though WHOIS data is privacy-protected, which is common for SaaS providers. Strategic recommendations include enhancing security header implementation and publishing security policies to further improve trust and compliance.

Smart Slider 3 is a well-established WordPress plugin provider specializing in slider creation tools for WordPress and Joomla platforms. With over 800,000 users, the company NEXTENDWEB LTD. holds a strong market position in the WordPress plugin ecosystem, offering advanced editing capabilities and a freemium business model. The website demonstrates professional design, excellent content quality, and clear branding consistency, targeting web developers and site owners seeking enhanced slider functionality. Technically, the site is built on WordPress, leveraging modern web technologies including Google Tag Manager and Google Analytics for marketing and analytics purposes. Hosting and domain registration are managed via Cloudflare, ensuring reliable infrastructure and domain security. Security posture is good with HTTPS enforced and standard security headers present; however, improvements such as enabling DNSSEC and publishing explicit security policies are recommended. Privacy compliance is basic, with no visible privacy or cookie policies or consent mechanisms, which should be addressed to meet GDPR and other regulations. Overall, the website is trustworthy and professional, with minor gaps in privacy and security documentation.

H

Heilsuvera

heilsuvera.is

9

Heilsuvera is a public health information portal serving the Icelandic population, providing health-related content and secure access to personal medical records. The website targets the general public and healthcare service users, positioning itself as a trusted national health resource. The platform supports multiple languages and integrates secure login functionality for personalized services. Technically, the site employs modern web technologies including Google Tag Manager, CookieHub for cookie consent, LiveChat for user support, and Google Analytics for traffic analysis. Hosting appears to be on Microsoft Azure, inferred from cookie data. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, though explicit security headers are not detected. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service pages. WHOIS data is missing, which raises concerns about domain registration transparency but does not detract from the site's apparent legitimacy as a government or public health entity. Overall, the site is professionally designed, accessible, and trustworthy, though improvements in privacy disclosures and domain registration transparency are recommended.

M

MAGNET PRESS, SLOVAKIA S. R. O.

magnetpress.online

10

MAGNET PRESS, SLOVAKIA S. R. O. operates a professional media publishing website focused on multiple magazine brands covering topics such as aviation, modeling, health, psychology, and food. The company targets Slovak and Czech audiences with a digital-first approach, offering subscriptions and advertising services. The website is built on WordPress with Elementor and uses modern SEO and privacy tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and DNSSEC could be improved. The domain registration is consistent with the business timeline and location, supporting legitimacy. Overall, the website presents a trustworthy and professional media presence in the regional market.

M

MAGNET PRESS

epredplatne.sk

9

The website www.epredplatne.sk is a Slovak digital subscription platform operated by MAGNET PRESS, offering electronic access to a variety of magazine titles through an online library service. It targets general users interested in digital magazine subscriptions, providing features such as early access to content, electronic payments, and a practical internet library accessible anywhere. The business model is subscription-based digital content delivery, focusing on niche regional media content. The site integrates with a partner eshop www.press.sk for magazine purchases and maintains a Facebook presence for social engagement. Technically, the site uses legacy JavaScript libraries including jQuery 1.7.1 and jQuery UI 1.8.18, along with Google Analytics and Google Tag Manager for user tracking. The site is served over HTTPS, but lacks modern security headers and uses outdated libraries that may expose it to vulnerabilities. The design is functional with good content relevance and navigation clarity, but mobile optimization and accessibility are basic. No CMS or hosting provider details are evident from the page. From a security perspective, the site enforces HTTPS and uses secure forms but lacks explicit privacy and cookie policies, consent mechanisms, and security headers such as Content-Security-Policy. The use of outdated JavaScript libraries is a notable risk. No incident response or vulnerability disclosure information is provided. User tracking is moderate via Google services without visible privacy compliance features. No contact emails or phone numbers are present on the login page, limiting direct user support visibility. Overall, the site is legitimate and consistent with its business claims, but improvements are needed in security posture, privacy compliance, and technical modernization to enhance trust and reduce risk. Strategic recommendations include updating libraries, implementing security headers, adding privacy and cookie policies with consent, and improving accessibility and mobile responsiveness.

M

Magnet Press Slovakia

magnetpress.cz

9

Magnet Press Slovakia is a well-established media company operating for over 31 years in the Czech and Slovak markets, specializing in the sale and publishing of books, magazines, and related media products. Their website serves as an e-commerce platform offering a wide range of categories including military, history, IT, gastronomy, and children's literature. The company targets readers and enthusiasts in these regions with a focus on both physical and electronic subscriptions. Technically, the website is built on the CREATIVE shop CMS platform, utilizing common web technologies such as jQuery, Google Analytics, Google Tag Manager, Facebook Pixel, and Sentry for error tracking. The site is served over HTTPS, ensuring encrypted communications, and employs Google reCAPTCHA to protect forms from abuse. However, there is room for improvement in security headers and cookie consent mechanisms to enhance compliance and protection. From a security perspective, the site demonstrates good practices like HTTPS enforcement and CSRF token usage but lacks explicit security policies and incident response contacts. The absence of WHOIS data for the domain reduces transparency and trustworthiness, although the website content and business presence suggest legitimacy. No vulnerabilities or sensitive data exposures were detected in the content analysis. Overall, the website presents a professional and trustworthy front for Magnet Press Slovakia, with moderate technical maturity and compliance. Strategic improvements in privacy compliance, security headers, and domain registration transparency would further strengthen their security posture and user trust.

H

hub.info

1819.brussels

11

hub.info is a government-supported platform providing comprehensive entrepreneurial guidance and support services to independent workers, merchants, and entrepreneurs in Brussels. The website offers multilingual content, including guides, events, financial aid information, and networking opportunities, positioning itself as a central resource for the Brussels entrepreneurial ecosystem. Technically, the site is built on Drupal 10, employs modern web technologies, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR regulations.

Actiris is the official Brussels regional public employment service dedicated to supporting job seekers through a comprehensive digital platform offering job listings, training opportunities, coaching, and employment aid. The website is professionally designed with excellent content quality, clear navigation, and multilingual support, targeting citizens of Brussels seeking employment assistance. The platform leverages modern web technologies including Google Analytics and Tag Manager for analytics and marketing, embedded YouTube videos for engagement, and likely uses Umbraco CMS for content management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and a formal security policy is absent. Privacy compliance is robust with clear cookie and privacy policies and consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness as a government entity.

F

finance&invest.brussels

finance.brussels

65

finance&invest.brussels is a regional financial support organization focused on providing financing solutions and investment assistance to businesses and independent professionals in Brussels, Belgium. The website serves as a portal to help users find the best financing options to launch and grow their projects. The organization positions itself as a key partner for Brussels-based projects, offering advisory and financial services tailored to the local market. The digital presence is built on a mature WordPress infrastructure using the Divi theme and Gravity Forms for interactive elements, supported by modern web technologies and SEO best practices. The site includes a comprehensive cookie consent mechanism aligned with GDPR requirements, reflecting a strong commitment to privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the website is professional, trustworthy, and well-optimized for its target audience, though direct contact information is not prominently displayed in the analyzed content.

W

Wake-up Clean-up

wakeupcleanup.brussels

66

Wake-up Clean-up is a Brussels-based non-profit organization dedicated to promoting environmental cleanliness through community clean-up events. The website serves as a platform for citizens and groups to join the movement, organize or participate in clean-ups, and access educational resources. The site is well-branded, multilingual, and provides clear calls to action for engagement. Technically, it is built on Drupal 10 with modern libraries and integrates common marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security practices include HTTPS enforcement and basic security headers, though there is room for improvement in advanced security configurations and accessibility compliance. Privacy and cookie policies are present and GDPR compliant, supporting user consent mechanisms. Overall, the website demonstrates a solid digital presence for a small non-profit with a focus on community and sustainability.

N

nova-Art s.r.o.

novaart.cz

51

Nova-Art s.r.o. is a Czech-based event and artistic agency specializing in organizing events, representing artists across various genres, and providing own production services such as concert production and dubbing studios. The company targets corporate clients and event organizers, leveraging an extensive network of artists and creative professionals. The website reflects a mature business with professional branding and a clear service offering. Technically, the site uses modern JavaScript frameworks like Alpine.js, integrates Google Tag Manager and Analytics, and employs Cloudflare Turnstile captcha for form security. The site is mobile-optimized and well-structured, providing a positive user experience. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and incident response information are lacking. The absence of WHOIS data for the domain is a concern for domain legitimacy but does not detract from the professional presentation of the business. Overall, the website is trustworthy, compliant with GDPR, and serves its business purpose effectively.

F

Flamengo květiny s.r.o.

flamengo.cz

61

Flamengo květiny s.r.o. operates as a medium-sized flower retail business in the Czech Republic, with approximately 200 physical stores. The company specializes in florist-arranged fresh flowers, emphasizing quality and customer satisfaction. Their website serves as a digital storefront and information hub, featuring product promotions, florist advice, and store location maps. The company maintains an active social media presence to engage customers and promote brand awareness. Technically, the website is built using modern JavaScript frameworks such as Nuxt.js and Vue.js, supported by a headless CMS likely Strapi, enabling dynamic content management. The site includes cookie consent mechanisms and integrates Google Tag Manager for analytics, reflecting a moderate level of digital maturity. Mobile optimization and SEO practices are adequately implemented, providing a good user experience across devices. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks visible advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the analysis. The absence of WHOIS data due to privacy protection is common for commercial entities and does not raise immediate concerns. Overall, the security posture is adequate but could be improved with additional headers and formal security documentation. The overall risk assessment indicates a legitimate and professionally maintained retail website with moderate technical sophistication and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving contact information transparency to strengthen trust and compliance.

G

GlaxoSmithKline plc

gsk.cz

72

GlaxoSmithKline plc (GSK) is a leading global healthcare company specializing in pharmaceuticals, vaccines, and consumer healthcare products. The Czech Republic location page reflects GSK's strong presence in the region, targeting healthcare professionals, patients, and partners with comprehensive information about their operations. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, reinforcing GSK's market position as a large multinational enterprise in the healthcare sector. Technically, the site leverages modern JavaScript frameworks such as Nuxt.js and Vue.js, ensuring a responsive and performant user experience. Analytics and marketing tools like Google Analytics and Google Tag Manager are used responsibly with privacy compliance in mind. Security-wise, the website enforces HTTPS, implements key security headers, and shows no signs of vulnerabilities or exposed sensitive data, indicating a mature security posture. However, the absence of WHOIS data for the domain is noted, likely due to registry restrictions rather than malicious intent. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

H

Hortim

hortim.cz

65

Hortim is a well-established Czech company specializing in the wholesale and comprehensive service of fresh fruit and vegetables, including farming, packing, storage, ripening, and logistics. The company operates multiple subsidiaries and brands, serving a broad market with significant annual throughput. Their website reflects a mature digital presence with multilingual support and detailed service descriptions. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA, though some security headers and explicit incident response information are missing. The absence of WHOIS data limits domain trust verification, but the professional presentation and certifications support business credibility. Overall, Hortim demonstrates a strong market position with room for enhanced transparency and security documentation.

T

THE PLAYGROUND

theplayground.cz

64

THE PLAYGROUND is a Czech-based family entertainment and retail business offering a variety of attractions such as arcade games, laser games, virtual reality, and a butterfly house, alongside an e-commerce platform for toys and collectibles. The website is built on Shopify, indicating a modern e-commerce infrastructure with integrated marketing and analytics tools. The business targets families and children primarily in Prague, positioning itself as a local entertainment hub with retail capabilities. The domain is newly registered in 2023, consistent with a recently launched or rebranded business.

T

Topspo

topsports.cz

55

Topspo is a Czech-based company specializing in organizing diverse sports events and activities for both children and adults, including cycling camps, skating schools, triathlons, and equipment rentals. The company positions itself as a professional and experienced organizer with over 10 years in the market, focusing on engaging and motivating participants through quality instruction and fun experiences. The website is well-structured, visually appealing, and optimized for mobile devices, providing clear navigation and relevant content in Czech language. Technically, the site uses modern tracking and marketing tools such as Google Tag Manager, Facebook Pixel, and Usercentrics for cookie consent, hosted on a CMS platform called Solidpixels. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and incident response information. WHOIS data is missing, which reduces domain trustworthiness and calls for further verification. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a niche sports event market in the Czech Republic.

Nartes.cz is the official website for Nartes, a brand of high-quality artesian spring water sourced from a protected underground source in the Nízký Jeseník foothills of the Czech Republic. The company, NUTREND D.S., a.s., markets this water as suitable for infant nutrition and offers various packaging options. The website positions Nartes as a premium water brand with exclusive access to a rare artesian source, supported by hydrogeologist endorsements and distribution partnerships with major retailers. Technically, the website uses modern JavaScript libraries and frameworks such as jQuery, Foundation, Owl Carousel, and Google Analytics for tracking. The site is mobile-optimized and well-structured, though it lacks a CMS and some advanced accessibility features. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks visible security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the domain registration data is consistent and supports the legitimacy of the business. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and improving GDPR compliance to enhance trust and security posture.

L

Lawi sport s.r.o.

lawi.cz

61

Lawi sport s.r.o. is a leading Czech manufacturer and retailer specializing in sportswear, particularly cycling apparel. The company operates a professional e-commerce platform offering a wide range of products including custom-made jerseys, cycling accessories, sports nutrition, and body care products. Their market position is strong within the Czech Republic, targeting sports enthusiasts and athletes with quality products and services. The website reflects a mature digital presence with comprehensive product offerings and customer engagement features.