Security Directory

U

Union Sport & Cycle (USC)

filieresport.com

44

Filière Sport is a French media platform dedicated to the sports industry, providing news, data, and insights on topics such as economy, corporate social responsibility, health, territories, and market data. It serves professionals and stakeholders in the sports sector, offering a mix of free and premium content. The website is linked to Union Sport & Cycle, a recognized entity in the sports industry, which acts as the parent organization. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, Facebook SDK, and reCAPTCHA, ensuring a functional and moderately performant user experience with good mobile optimization. Security practices include HTTPS enforcement and use of CAPTCHA for forms, though some security headers could be improved. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service found on the homepage. The WHOIS data for the domain is unavailable, which slightly reduces trust but the professional presentation and consistent branding mitigate concerns. Overall, the site is a credible and useful resource for its target audience, with room for improvement in privacy transparency and security headers.

N

NUTRISENS ITALIA S.B.R.L

nutrisens-medical.it

60

Nutrisens Italia S.B.R.L is a medium-sized Italian company specializing in clinical nutrition and special alimentation products. The company offers a broad range of nutritional solutions designed for healthcare professionals, patients, and consumers, focusing on effective, safe, and palatable products that enhance quality of life. Nutrisens holds a strong market position in Italy with a well-established brand, supported by active social media presence and customer testimonials. The website reflects a professional and comprehensive digital presence with clear navigation and rich content. Technically, the site is built on a custom ASP.NET platform using modern libraries such as Bootstrap and jQuery, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policy disclosures and advanced security headers. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, Nutrisens demonstrates a mature digital infrastructure and trustworthy business profile.

F

Fédération Française de Boxe

ffboxe.com

53

The Fédération Française de Boxe (FFBoxe) is the official French boxing federation, serving as the national governing body for amateur and professional boxing in France. The website provides comprehensive information about boxing practice, training, professional boxing, teams, and federation governance. It targets athletes, clubs, officials, and boxing enthusiasts in France. The federation is positioned as a key sports organization with over 60,000 licensed members, offering services such as licensing, training certifications, event organization, and information dissemination. Technically, the website is built on WordPress using Oxygen Builder, with modern JavaScript libraries like Alpine.js and jQuery. It employs SEO best practices with Yoast SEO and uses Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and publicly available incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with visible privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, the site is trustworthy and professional, though the absence of WHOIS data for the domain www.ffboxe.com is a concern that warrants verification. The domain may be newly registered or privacy protected, which is unusual for an official federation. Strategic recommendations include enhancing security headers, publishing incident response details, and verifying domain registration to strengthen trust.

N

NEWTON University Group, s.r.o.

newton.university

63

NEWTON University Group is a private higher education institution focused on preparing students for success in the business world through practical and innovative programs. The university operates campuses in Prague, Brno, Bratislava, and offers online courses in multiple languages including Czech, English, and Slovak. The institution is well-positioned in the education sector with recognized accreditations such as AACSB and partnerships with other educational entities like Vysoká škola Sting. The website demonstrates a mature digital presence with modern technologies, good content quality, and compliance with privacy regulations including GDPR. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain and website present a trustworthy and professional image suitable for prospective students and partners.

I

Instant System

instant-system.com

62

Instant System is a French-based company founded in 2013 specializing in white-label passenger information applications and Mobility as a Service (MaaS) solutions. The company collaborates closely with local public transport authorities and operators to deliver scalable and modular mobility solutions across 80 territories worldwide. Their offerings include journey planning, ticketing integration, and back office management tools tailored for cities, transport partners, and corporations managing employee mobility. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting B2B clients in the transportation sector. Technically, the site uses modern JavaScript frameworks such as Knockout.js and integrates cookie consent management via tarteaucitron.io, ensuring GDPR compliance in cookie handling. Security posture is adequate with HTTPS enabled and domain protections in place, though improvements are recommended in security headers and explicit security policies. Overall, the site demonstrates high business credibility and technical maturity with minor gaps in privacy documentation.

FRANZ JOSEF KAISER, operated by GASTON, s.r.o., is a premium food brand focused on high-quality products such as tuna, seafood, olives, oils, pasta, and related specialties. The website serves as a marketing and informational platform offering recipes and product details to a general consumer audience primarily in the Czech Republic. The brand holds a recognized consumer trust certification (Superbrands Consumer 2025), indicating a positive market position within its niche. Technically, the website is built on WordPress with modern plugins and frameworks, providing a good user experience with multilingual support and GDPR-compliant cookie management. Security posture is solid with HTTPS and consent mechanisms, though some improvements in security headers and contact transparency are recommended. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the professional presentation and compliance measures mitigate this risk. Overall, the site is functional, trustworthy, and well-positioned for its market segment.

T

TILL CONSULT a.s.

dunashop.cz

37

DUNA SHOP is a Czech B2B order management system provided by TILL CONSULT a.s., a software company established in 1991. The platform targets business customers, offering a modern, integrated ordering system optimized for regular clients and seamless communication with other DUNA systems. The website reflects a mature business with consistent branding and a clear focus on B2B software solutions. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Owl Carousel, with integrations for chat support and Google Analytics. While the site is mobile optimized and well-structured, it lacks some advanced security headers and explicit cookie consent mechanisms. The domain registration data is consistent with the business profile, indicating legitimacy and trustworthiness.

S

Sklopísek Střeleč, a. s.

glassand.eu

51

Sklopísek Střeleč, a. s. is a Czech-based medium-sized manufacturing company specializing in the supply of high-quality quartz sands for various industrial applications including glassmaking, foundry, filtration, and sports surfaces. The company positions itself as a reliable supplier with a focus on quality and availability, targeting industrial and commercial customers. The website reflects a professional business presence with clear product categorization and regular news updates, supporting its market position. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and popular carousel libraries, along with analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, some technical improvements could enhance accessibility and performance further. From a security perspective, the website uses HTTPS and avoids exposing sensitive data, but lacks important security headers and visible privacy and cookie policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency and readiness. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve trustworthiness. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and establishing a vulnerability disclosure process.

MSV Liberec, s.r.o. is a Czech manufacturing company specializing in elevators and lifting devices, offering comprehensive services including manufacturing, installation, modernization, and maintenance. The company operates primarily in the Czech Republic with branches in Prague, Mladá Boleslav, and Liberec, and exports to international markets such as England. Their website reflects a mature business with over 25 years of experience and thousands of completed projects, targeting businesses and institutions requiring elevator solutions. Technically, the website uses a legacy but functional technology stack including jQuery, jQuery UI, Owl Carousel, and Google reCAPTCHA, hosted on a CMS platform called IPO. The site is mobile optimized and includes a cookie consent mechanism, but lacks visible security headers and up-to-date privacy documentation. Analytics are handled via Matomo, indicating some privacy awareness. Security posture is moderate with some best practices like CAPTCHA and cookie consent, but missing key elements such as security headers and published privacy policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate and professional. Overall, the website is functional and professional but would benefit from enhanced security measures, updated privacy compliance, and domain registration transparency to improve trust and compliance.

U

UnionOcel s.r.o.

unionocel.cz

51

UnionOcel s.r.o. is a Czech-based medium-sized manufacturing and wholesale company specializing in steel sheets, cuttings, and CNC machining services. Established in 2001, it has developed a strong market position as a leader in its sector, offering a broad portfolio of metalworking services supported by modern facilities and technologies. The website reflects a professional and consistent brand image, targeting industrial clients and manufacturers. Technically, the site employs modern web technologies including Bootstrap, jQuery, and integrates advanced analytics and marketing tools such as Google Tag Manager and Microsoft Clarity. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, although some security headers are missing and no explicit security policy is published. Overall, the site is well-structured, GDPR compliant, and trustworthy, with no signs of malicious activity or content safety concerns.

F

Fédération Française de Judo

1000dojos.fr

43

1000 Dojos is a French social initiative led by the Fédération Française de Judo aiming to establish 1000 new community dojos by 2026. These dojos serve as educational, social, and alternative spaces primarily in priority neighborhoods, supported by local authorities and social landlords. The website reflects a well-structured project with clear calls to action targeting municipalities, social landlords, and judo clubs. Technically, the site is built on WordPress with modern plugins and frameworks, including Slider Revolution and Owl Carousel, and uses Matomo analytics with privacy by design, indicating a mature approach to user privacy. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. Overall, the domain registration data is consistent with the business timeline and geographic focus, enhancing trustworthiness.

D

Dojo Academy

dojoacademy.fr

61

Dojo Academy is a specialized educational institution focused on training professionals in the sports sector, particularly judo and related disciplines. Founded in 2021, it offers a range of diploma programs, continuing education, and workshops, including partnerships with prestigious institutions such as Université Paris Dauphine – PSL. The website reflects a well-structured and professional digital presence with clear branding and comprehensive course offerings. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is basic, with no explicit privacy or terms of service pages detected. Overall, the site is trustworthy and well-positioned within its niche market.

R

RIGHT POWER

rightpower.cz

62

RIGHT POWER is a medium-sized energy company operating primarily in the Czech Republic and Europe, specializing in the supply of green electricity sourced exclusively from renewable energy. The company positions itself as a market leader with a strong emphasis on customer service, competitive pricing, and environmental responsibility. Their business model focuses on providing certified green energy, supported by guarantees of origin and ISO 27001 certification, enhancing trust and compliance. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, and GDPR-compliant cookie management, reflecting a mature digital presence. Security posture is strong with HTTPS, reCAPTCHA integration, and privacy policies, although some HTTP security headers could be improved. Overall, the site is professional, well-structured, and trustworthy, though the absence of WHOIS data for the domain registration introduces some uncertainty regarding domain legitimacy. Strategic recommendations include enhancing security headers, maintaining plugin updates, and conducting regular security audits to sustain compliance and trust.

N

Nadace Partnerství

stromroku.cz

54

Nadace Partnerství operates the Strom roku website as a non-profit platform dedicated to promoting environmental awareness and community engagement through an annual tree contest. The organization has a strong market presence in the Czech Republic with over two decades of activity, supported by recognized partners such as Ondrášovka mineral water and the European Tree of the Year initiative. The website effectively communicates its mission and engages its audience with clear navigation, social media integration, and relevant content. Technically, the site uses a modern stack including AngularJS, jQuery, Bootstrap, and Kentico CMS, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The absence of WHOIS data reduces transparency but does not significantly detract from the site's legitimacy given the strong business signals and partner ecosystem.

T

TILL CONSULT a.s.

duna.cz

50

TILL CONSULT a.s. operates the website duna.cz, offering a suite of economic and accounting software products under the DUNA brand, targeting small to medium businesses, accounting firms, and specialized sectors such as medical offices and energy distributors. The company has a strong market presence with 28 years of experience and a comprehensive product portfolio including DUNA BUSINESS, TOP, SMART, TRADING, and related web extensions. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content including testimonials and industry news. Technically, the site uses modern JavaScript libraries, Bootstrap framework, and integrates Google Tag Manager and Seznam retargeting for marketing purposes. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and certifications are not published. Contact information is clearly provided with phone, email, and physical address. Overall, the site reflects a mature business with a solid digital presence but could improve transparency on privacy and security policies.

U

Union sport & cycle

unionsportcycle.com

50

Union sport & cycle is a French membership organization serving the sports and leisure industry, providing advocacy, studies, events, and member services. The website demonstrates a professional and consistent brand presence targeting industry professionals and stakeholders in France. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and moderate performance. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though no explicit security policy or incident response information is published. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a concern but does not critically undermine trust given the professional site content and social media presence.

U

Ubytování U Nás

ubytovani-unas.cz

66

Ubytování U Nás is a small hospitality business offering affordable and comfortable accommodation in the Pálava region of the Czech Republic. The website provides detailed information about their apartments and facilities, including a reservation system with calendar availability. The business targets tourists seeking a quiet and nature-rich environment near Mikulov. Technically, the website uses a modern tech stack with jQuery, Bootstrap, and various UI libraries, hosted by a reputable Czech registrar. Security measures include HTTPS and Google ReCAPTCHA, but lack advanced security headers and published security policies. Privacy compliance is basic with a cookie consent banner but no explicit privacy policy or terms of service pages. Overall, the site is professional and trustworthy with clear contact details and positive user testimonials.

J

Jezdecký areál Stará Pošta

jkstaraposta.cz

40

Jezdecký areál Stará Pošta is a small equestrian facility located near Brno, Czech Republic, offering horseback riding lessons, camps, and related services. The business emphasizes horse welfare and quality riding experiences in a natural setting. The website is professionally designed using WordPress with modern JavaScript libraries and Bootstrap for responsiveness. It provides clear contact information and social media presence but lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is generally good with HTTPS enabled, but security headers and incident response mechanisms are missing. Overall, the website is functional and trustworthy for its target audience but could improve compliance and security practices.

E

Elektrobit

elektrobit.com

73

Elektrobit is a well-established automotive software company specializing in embedded software products for ECU, AUTOSAR, automated driving, connected vehicles, and user experience solutions. The company targets automotive industry professionals, OEMs, and Tier 1 suppliers with a B2B business model. Their market position is strong, supported by a comprehensive portfolio of software products and engineering services, including cybersecurity and software-defined vehicle technologies. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Owl Carousel, supported by a CDN (Cloudfront) for performance optimization. SEO and accessibility are well implemented, with Yoast SEO plugin usage and responsive design. Security measures include HTTPS, cookie consent mechanisms, and security incident reporting, although some security headers could be explicitly added for enhanced protection. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is primarily via web forms, with no direct emails or phone numbers publicly listed. WHOIS data is unavailable, possibly due to privacy protection, but the domain and website content indicate legitimacy and professionalism. Overall, Elektrobit's website demonstrates a mature digital presence with strong business credibility and security awareness. Minor improvements in explicit security headers and incident response transparency are recommended to further enhance trust and compliance.

R

Restaurace Stará Pošta

staraposta.cz

40

Restaurace Stará Pošta is a small hospitality business based in the Czech Republic, specializing in restaurant dining, event hosting including weddings and corporate events, catering, and accommodation services. The venue emphasizes a historical ambiance and family-friendly environment, with additional attractions such as baroque stables. The website reflects a local market position with a focus on personalized event services. Technically, the site is built on WordPress using modern libraries like Bootstrap and jQuery, providing a good user experience with mobile optimization and clear navigation. Security posture is moderate with HTTPS enabled but lacks important security headers and privacy policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, though the website content and social media presence support legitimacy. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

E

ELEKTRO Skalka s.r.o

e-elektro.cz

49

ELEKTRO Skalka s.r.o operates the e-commerce website www.e-elektro.cz, specializing in the sale of vacuum cleaner bags, HEPA filters, and related household electronic accessories primarily targeting customers in the Czech Republic. The company positions itself as a niche retailer with a focus on vacuum cleaner parts and small electrical appliances, offering a broad catalog of products with clear pricing and availability. The website is professionally designed with good navigation and mobile optimization, supporting customer engagement through contact forms, phone, and email. Privacy and cookie policies are implemented with GDPR compliance in mind, including consent mechanisms.

S

SackyVysavace.cz

sackyvysavace.cz

56

SackyVysavace.cz is a Czech Republic based specialized e-commerce retailer focused on vacuum cleaner bags, filters, and accessories. The website offers a broad catalog of products with clear categorization and supports online ordering with options for delivery and 24/7 personal pickup at a physical location in Prague. The business targets consumers and small businesses needing vacuum cleaner supplies. Technically, the website uses a mix of modern JavaScript libraries and tracking tools, including Google Analytics and Tag Manager, with a proprietary or custom e-commerce platform (Shopion.cz). The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and published security policies. WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective, but the website content and contact details appear legitimate and professional. Overall, the site is safe, compliant with GDPR, and suitable for general audiences.

B

BEST, a.s.

best.cz

65

BEST, a.s. is a well-established Czech manufacturer and retailer specializing in concrete products for terraces, gardens, and outdoor construction. With over 30 years in the market and a broad product portfolio exceeding 4,000 variants, BEST holds a leading position in its industry. The company offers a comprehensive range of products including paving stones, fences, palisades, drainage systems, and construction blocks, supported by physical showrooms and digital tools like BEST VISIO for product visualization. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to both professional contractors and end consumers. Technically, the website employs modern web technologies including Google Tag Manager, reCAPTCHA, and various JavaScript libraries to enhance user experience and security. The site is mobile-optimized and implements cookie consent mechanisms compliant with GDPR. Security measures include HTTPS enforcement and spam protection on forms, though some security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data for the domain is unavailable from the CZ NIC WHOIS server, which limits verification of domain registration details. Despite this, the website's professional appearance, certifications, and business information support its legitimacy. No signs of malicious activity or content blocking were detected, and the site maintains a high level of trustworthiness. Overall, BEST, a.s. demonstrates a strong business and digital maturity with good security posture and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and adding incident response contacts to further strengthen trust and compliance.

C

Clarity Creation

claritycreation.com

47

Clarity Creation is a small, established marketing and communications agency based in Liverpool, UK, specializing in web development, corporate branding, graphic design, advertising campaigns, SEO, and email marketing. The company has been operating since 1999 and serves a diverse client base including public and private sector organizations. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information. Technically, the site runs on WordPress with common marketing and analytics tools such as Yoast SEO and Google Analytics. Security posture is moderate with HTTPS enabled but lacks visible security headers and dedicated security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and business information appear credible. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site presents a trustworthy business front but would benefit from improved security transparency and domain registration clarity.

B

BEST, a.s.

best.info

10

BEST, a.s. is a well-established Czech manufacturer specializing in concrete products for terraces and gardens, including various types of paving stones, fences, palisades, and construction blocks. The company positions itself as a market leader with over 30 years of experience and a broad product portfolio exceeding 4,000 variants. Their business model combines manufacturing with retail and customer support services, including physical showrooms and digital tools like the BEST Visio application for product visualization. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency.

A

Accredio, a.s.

accredio.cz

51

Accredio, a.s. is a well-established private asset management company based in the Czech Republic, specializing in individualized investment strategies for high net worth individuals, families, and foundations. Founded in 2003, it holds a strong market position as the largest independent asset manager in its category within the country. The company emphasizes conservative investment approaches, currency risk hedging, and stable returns, collaborating closely with Swiss private banks to provide comprehensive financial services. The website reflects a professional and trustworthy image with detailed business descriptions, client testimonials, and clear contact information. Technically, the website employs a modern but custom technology stack including jQuery, Bootstrap, and popular UI libraries. It is hosted via Webglobe and shows good mobile optimization and user experience. Cookie consent mechanisms and GDPR compliance are implemented effectively, although some security best practices such as HTTP security headers and explicit security policies are not evident. Analytics usage is minimal and privacy-conscious. From a security perspective, the site shows no signs of blocking or WAF interference, no exposed sensitive data, and uses consent-based cookie management. However, it lacks visible incident response contacts, vulnerability disclosure, and formal security policy documentation. The WHOIS data is consistent with the business claims, supporting legitimacy and trustworthiness. Overall, Accredio’s digital presence is solid with good content quality and business credibility. Security posture is adequate but could be improved with additional headers and policies. Privacy compliance is strong. Strategic recommendations include enhancing security documentation, adding vulnerability disclosure, and improving accessibility features to further strengthen trust and compliance.

I

Instituto Nacional de tecnologías educativas y formación del profesorado

intef.es

57

INTEF (Instituto Nacional de Tecnologías Educativas y Formación del Profesorado) is a Spanish government entity under the Ministry of Education and Vocational Training focused on advancing educational methodologies through digital transformation and teacher training. It offers a broad range of digital educational resources, training programs, and initiatives aimed at improving digital competence in schools across Spain. The website serves as a central hub for these resources and initiatives, targeting educators, students, families, and educational institutions nationwide. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Owl Carousel, enhanced with Google reCAPTCHA and Matomo analytics for security and user behavior insights. The site is well-optimized for SEO and mobile devices, with good accessibility features and professional design. HTTPS is enforced, and basic security best practices are observed, though some security headers could be improved. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant. However, explicit incident response contacts and vulnerability disclosure mechanisms are not present, which could be enhanced to improve trust and security readiness. Overall, INTEF presents a trustworthy, professional, and well-maintained digital presence consistent with its role as a national educational institution. Strategic recommendations include enhancing security headers, adding vulnerability disclosure information, and providing clearer contact channels for security incidents to further strengthen its security posture and compliance.

M

Megève

megeve.fr

10

The website represents the official municipal portal for the Commune of Megève, France, providing residents, seasonal workers, tourists, and professionals with comprehensive information about local government services, news, and community resources. It holds a strong market position as the authoritative source for municipal information and services in Megève. The site is well-structured, bilingual (French and English), and offers multiple user engagement points including contact forms, newsletters, and social media links. Technically, the site is built on WordPress with a modern plugin ecosystem including Yoast SEO, Elementor, and WP Rocket, indicating a mature digital infrastructure. Performance and mobile optimization are good, with accessibility features implemented. Analytics are managed via Google Tag Manager, with cookie consent mechanisms in place, reflecting compliance with privacy regulations. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers suggests room for improvement. The lack of WHOIS data limits domain trust analysis, but the domain's alignment with official municipal branding and contact information supports legitimacy. Overall, the website is a reliable, professional municipal platform with good content quality and user experience. Strategic recommendations include enhancing security headers, maintaining plugin updates, and monitoring for any suspicious external content to ensure ongoing trust and compliance.

E

eSports s.r.o.

marken.cz

43

Marken.cz is a Czech Republic based e-commerce platform specializing in sports-related books, DVDs, magazines, and memorabilia. Established in 2005 and operated by eSports s.r.o., the website targets sports enthusiasts looking for both new and antiquarian sports publications. The business model focuses on niche retail with options for personal pickup in Prague, positioning itself as a specialized online bookstore within the sports domain. The website demonstrates consistent branding and good content quality with clear navigation and product categorization.

SIGMA GROUP a.s. is a well-established Czech industrial company specializing in the research, development, and manufacturing of industrial pumps and pumping units. With a history dating back to 1868, it holds a leading market position in the Czech Republic and serves clients globally across multiple industrial sectors including energy, agriculture, and metallurgy. The company offers a broad product portfolio with over 70 product lines and maintains a strong international presence with installations in 76 countries. The website reflects a professional corporate identity with detailed company history, certifications, and contact information. Technically, the site uses modern JavaScript libraries and Google Analytics, with good mobile optimization and SEO practices. Security posture is moderate with HTTPS usage but lacks visible security headers and explicit cookie consent mechanisms. WHOIS data is missing, which slightly reduces domain trustworthiness but does not detract from the overall legitimacy indicated by the website content and certifications. Strategic recommendations include improving security headers, adding cookie consent, and publishing vulnerability disclosure policies to enhance trust and compliance.

H

Health and Safety Authority

hsa.ie

63

The Health and Safety Authority (HSA) is the national government body responsible for workplace health and safety regulation and enforcement in Ireland. Established in 1989, it provides comprehensive guidance, education, and support to employers, employees, and various industry sectors to promote safe and healthy working environments. The website serves as a central resource hub with extensive information on legislation, safety topics, training, and compliance requirements. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes. Hosting is provided by Hosting Ireland, and the domain is well-established with a long registration history. The site is mobile-optimized with good navigation and accessibility features, though some improvements in accessibility and security headers could be made. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a cookie management system and consent mechanism, but no explicit privacy policy or terms of service were found in the provided content. Overall, the website is professional, trustworthy, and serves its government regulatory function effectively. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and adding vulnerability disclosure information to improve transparency and compliance.

C

Chance Liga

chanceliga.cz

47

Chance Liga is the official online portal for the Czech First Football League, providing comprehensive information including match schedules, standings, player and team statistics, news, and multimedia content. The website targets football fans and sports enthusiasts primarily in the Czech Republic, serving as a central hub for league-related information and fan engagement. The business model is media-focused, leveraging official league branding and partnerships to deliver timely sports content. Technically, the website employs modern web technologies such as Bootstrap for responsive design, Google Analytics for traffic analysis, Google reCAPTCHA for form security, and Typekit fonts for typography. The site is mobile-optimized and features good navigation and content structure, although accessibility features are basic. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS and includes reCAPTCHA to protect forms, but lacks advanced security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is limited due to the absence of explicit privacy and terms of service pages, though a cookie consent mechanism is present. Overall, the website is professional and trustworthy in content and design but would benefit from enhanced privacy disclosures and security hardening. The lack of WHOIS data reduces domain trust assessment, but the official nature of the content and partnerships supports legitimacy.

CMASS Ltd is a specialized electronic manufacturing services provider based in the United Kingdom, established in 2010. The company focuses on delivering complete product build, assembly, testing, and printed circuit board assembly (PCBA) services primarily for Original Equipment Manufacturers (OEM) and Original Design Manufacturers (ODM). Their market position is supported by ISO 9001:2015 certification, indicating a commitment to quality management systems. The website targets businesses in telecommunications, power, defence, aerospace, and medical sectors, offering flexible and cost-effective manufacturing solutions from prototype to production. Technically, the website employs a range of established JavaScript libraries and frameworks such as jQuery, Bootstrap, Owl Carousel, and Revolution Slider, hosted likely on 1&1 IONOS infrastructure. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Analytics are implemented via Google Analytics and Google Tag Manager, indicating moderate user tracking without advanced privacy compliance mechanisms. From a security perspective, the website uses HTTPS and domain registration locks to protect domain integrity. However, it lacks DNSSEC, security headers, privacy and cookie policies, and vulnerability disclosure information, which are areas for improvement. No forms are present to collect user data, reducing some risk vectors. The WHOIS data is consistent and supports the legitimacy of the business, with a domain age appropriate for the company's history. Overall, the website presents a professional and trustworthy front for CMASS Ltd but would benefit from enhanced privacy compliance and security best practices to strengthen its posture and regulatory adherence.

I

ipstack

ipstack.com

67

IPstack is a mature and reputable technology company specializing in providing accurate IP geolocation API services to developers and businesses worldwide. Established in 2001 and operating under the parent company APILayer, IPstack offers a scalable, secure, and easy-to-integrate API with global coverage and multiple subscription plans. The website demonstrates strong market positioning as a G2 Leader with trusted customer testimonials and a comprehensive suite of geolocation-related services including location, currency, timezone, connection, and security modules. The technical infrastructure leverages modern web technologies, including Google Analytics, Microsoft Clarity, and Cloudflare DNS, ensuring fast performance and mobile optimization. Security posture is solid with HTTPS, SSL encryption, and reCAPTCHA integration, though explicit security policies and incident response information are not publicly disclosed. Overall, IPstack presents a professional, trustworthy, and business-ready platform with good privacy compliance and transparent pricing.

L

Le Vestiaire

le-vestiaire.fr

46

Le Vestiaire is a well-established French retailer specializing in hockey, skating, roller hockey, and related sports equipment. Founded in 2001, it operates both an e-commerce platform and 11 physical stores across France, positioning itself as a trusted supplier in the sports retail sector. The website is professionally designed, with clear navigation and comprehensive product offerings targeting sports enthusiasts and athletes in France. The company also provides technical services such as blade sharpening and bootfitting, enhancing its value proposition. Technically, the website is built on the PrestaShop CMS platform, leveraging modern web technologies including jQuery, Google reCAPTCHA v2 for form security, and various modules for enhanced user experience such as sliders and carousels. Hosting is provided by OVH, a reputable provider, and the site employs HTTPS with good SSL configuration. While some security headers are not explicitly detected, the overall security posture is solid with no visible vulnerabilities or exposed sensitive data. From a security and compliance perspective, the site includes a comprehensive privacy policy and cookie consent mechanism, indicating GDPR compliance. Contact information is clearly presented, including email, phone, and physical address. However, no explicit security policy, incident response page, or vulnerability disclosure mechanism was found, which could be areas for future improvement. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, Le Vestiaire presents a secure, professional, and user-friendly online presence with strong business credibility in the French sports retail market. Strategic enhancements in security headers and formal incident response documentation could further strengthen its security posture and compliance standing.

D

Département de la Haute-Savoie

hautesavoie.fr

57

The Département de la Haute-Savoie operates an official government website serving the Haute-Savoie region in France. The site provides comprehensive information about departmental actions, events, employment opportunities, public services, and subsidies. It targets residents and stakeholders within the region, positioning itself as a key public sector information portal. The website is built on a modern WordPress CMS infrastructure, leveraging SEO and caching plugins, and integrates social media channels for broader engagement. Technically, the site is well-optimized for mobile and desktop, with good performance and accessibility standards. Security posture is strong with HTTPS enforcement, CAPTCHA usage, and cookie consent mechanisms, although explicit privacy and security policies are not found in the provided content. Overall, the site demonstrates high professionalism and trustworthiness consistent with a government entity.

K

Kalisport

kalisport.com

59

Kalisport is a French software company providing an all-in-one sports management solution tailored for clubs, committees, and associations. Their platform offers a comprehensive suite of services including member management, accounting, sponsor management, online payments, event management, communication tools, and mobile applications. Positioned as a specialized SaaS provider in the sports technology sector, Kalisport targets small to medium-sized sports organizations primarily in France. The website is professionally designed with a clear focus on usability and accessibility, supporting both web and mobile platforms. Technically, the site leverages modern front-end technologies such as Bootstrap, jQuery, and FontAwesome, and implements cookie consent mechanisms with GDPR compliance in mind. Security posture is moderate; while HTTPS and cookie consent are implemented, the absence of visible security headers and incident response information suggests room for improvement. The lack of WHOIS data raises some concerns about domain registration legitimacy, though the active and professional website presence partially mitigates this risk. Overall, Kalisport presents a credible business with a solid digital presence but would benefit from enhanced transparency and security disclosures.

C

Chamonix Hockey Club

chamonixhockeyclub.com

56

Chamonix Hockey Club is a regional ice hockey sports club based in the Chamonix Mont-Blanc valley, France, catering to youth players aged 4 to 20 and adult leisure players. The club organizes training, tournaments, and seasonal events, positioning itself as a key local sports entity in Haute Savoie. The website reflects this focus with detailed match schedules, team information, and event announcements. Technically, the site uses a modern but somewhat dated tech stack including Bootstrap 3, jQuery, and various UI libraries, hosted by OVH sas. It implements HTTPS and cookie consent mechanisms aligned with GDPR requirements, though lacks some advanced security headers and explicit security policies. No contact emails or phone numbers are directly visible, which may impact user engagement and trust. Overall, the site is functional, well-branded, and provides relevant content for its audience.

H

Hockey Club 74

hc74.fr

10

Hockey Club 74 is a regional alliance of ice hockey clubs based in Haute-Savoie, France, representing teams from Chamonix, Megève, Morzine, and St Gervais. The website serves as a hub for club information, upcoming matches, tournaments, and partner acknowledgments, targeting hockey players, fans, and the local community. The club is positioned as a key regional sports entity with institutional and private partnerships supporting youth development and competitive hockey. Technically, the website is built on a custom sports club platform (Kalisport) leveraging Bootstrap 3, jQuery, and various JavaScript libraries for UI components and event management. It is hosted by OVH and uses HTTPS with a good SSL configuration. The site is mobile responsive and includes SEO and accessibility considerations, though some accessibility features are basic. From a security perspective, the site enforces HTTPS, uses a cookie consent mechanism with high privacy settings, and employs Matomo analytics for privacy-conscious tracking. However, explicit security headers and incident response policies are not evident. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for the hockey club alliance with good content quality and privacy compliance. Strategic improvements could include adding explicit security policies, terms of service, and enhanced security headers to further strengthen the security posture.

A

Anglet Hormadi Pays Basque

hormadi.fr

45

Anglet Hormadi Pays Basque is a professional ice hockey club based in France, competing in the Synerglace Ligue Magnus. The website serves as the official digital presence of the club, providing comprehensive information about the team, season schedules, news updates, ticketing options, and partner relations. The site targets sports fans and the local community, offering a well-structured and branded experience consistent with a medium-sized sports organization. Technically, the website is built on WordPress with a modern tech stack including popular plugins and libraries such as WPBakery, Bootstrap, and Google Analytics. The site demonstrates good mobile optimization, SEO practices, and user experience. Privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policies. From a security perspective, the site uses HTTPS and implements some best practices, though security headers could be enhanced. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common for such organizations, and does not raise immediate trust concerns. Overall, the website is professional, trustworthy, and suitable for its business purpose. Strategic recommendations include improving security headers, maintaining plugin updates, and enhancing incident response visibility.

LiveWiseMS is a specialized healthcare resource website dedicated to providing trusted, evidence-based information and multimedia content for people living with multiple sclerosis, their caregivers, and healthcare providers. The platform offers a comprehensive resource library including podcasts, journal articles, videos, and clinical handbooks, supported by educational grants from major pharmaceutical companies. The website is professionally designed with consistent branding and clear navigation, targeting a niche healthcare audience with educational content. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Font Awesome, hosted with GoDaddy as registrar and Cloudflare for DNS services. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and CSRF protections in place, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong, featuring a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. Contact information is limited to a contact form, with no direct emails or phone numbers publicly listed. Overall, the website is trustworthy, safe, and professionally maintained, serving as a valuable educational platform in the healthcare sector.

D

Digitální agentura ARSY line s.r.o.

arsyline.cz

59

ARSY line s.r.o. is a Czech digital agency specializing in custom web design, e-commerce development, branding, marketing, and IT support services. With over 20 years of experience, the company targets businesses and organizations seeking tailored digital solutions primarily in the Czech Republic. The website demonstrates a professional and consistent brand presence with comprehensive service offerings and client references. Technically, the site uses modern JavaScript libraries and tracking tools, is mobile optimized, and implements GDPR-compliant privacy and cookie policies with user consent mechanisms. Security posture is good with HTTPS enforced and CAPTCHA on forms, though security headers are not detected and no explicit security or incident response policies are published. WHOIS data is missing, which limits domain trust assessment. Overall, the site is well-designed, user-friendly, and trustworthy from a business perspective but would benefit from improved transparency in domain registration and security policies.

H

HP TRONIC, s.r.o.

valachy.cz

61

Resort Valachy is a well-established hospitality business operating in the Beskydy region of the Czech Republic, offering hotel accommodations, wellness and spa services, golf, and various leisure activities year-round. The website presents a professional and comprehensive digital presence with detailed information about services, events, and booking options. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and user experience. Security posture is moderate with HTTPS usage and cookie consent mechanisms, though explicit security headers are not detected in the provided data. The absence of WHOIS data limits domain trust assessment, but the business information and online presence indicate legitimacy. Overall, the site is suitable for general audiences, with no adult or questionable content detected.

I

IVF Zlín Czech Republic, s.r.o.

ivf-zlin.cz

51

IVF Zlín Czech Republic, s.r.o. operates a specialized reproductive medicine and gynecology clinic based in Zlín, Czech Republic. The clinic offers a comprehensive range of services including IVF treatments, egg and sperm donation, fertility preservation, and gynecological care. With a history dating back to 2000 and over 7000 children born through their assisted reproduction techniques, the clinic holds a strong regional market position. Their business model integrates medical services with hospitality offerings such as an on-site hotel and pharmacy, enhancing patient comfort and convenience. Technically, the website employs modern web technologies including jQuery, Google Analytics, and Google Tag Manager, ensuring a responsive and user-friendly experience. The site is well-structured with good SEO practices and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. From a security and compliance perspective, the site demonstrates GDPR awareness with a comprehensive privacy policy and cookie consent mechanism. However, no explicit incident response or vulnerability disclosure policies were found. WHOIS data is unavailable due to privacy protection, which is typical for healthcare providers. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and implementing a vulnerability disclosure program to further strengthen trust and compliance.

H

HP TRONIC, s.r.o.

hotelprior.cz

63

Hotel Prior & Energy Spa is a modern four-star hotel located in the center of Zlín, Czech Republic, offering upscale accommodation, a large spa facility with panoramic views, gastronomy, and conference services. The business targets both leisure and business travelers seeking relaxation and event spaces. The website demonstrates a professional digital presence with comprehensive content, clear navigation, and multilingual support via Google Translate. The technical infrastructure includes modern JavaScript libraries, marketing tools, and analytics services, indicating a mature digital marketing approach. Security posture is good with HTTPS enforced and cookie consent mechanisms implemented; however, explicit security headers and incident response information are absent. The lack of WHOIS data limits domain trust assessment but the overall website and business information appear legitimate and professional.

Q

Qítko korálky

qitko-koralky.cz

48

The website www.qitko-koralky.cz operates as a Czech e-commerce platform specializing in beads, components, and materials for jewelry making. It targets hobbyists and crafters within the Czech Republic, offering a wide range of products including wooden beads, glass beads, metal components, and tools. The site is built on the BohemiaSoft e-commerce platform and uses a variety of JavaScript libraries, some of which are outdated, indicating a need for modernization. Contact information is clearly provided, including a Czech phone number and an email address linked to a related domain, suggesting a small but legitimate business presence. Technically, the site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices appear adequate with proper meta tags and structured navigation. However, the use of outdated jQuery versions introduces potential security vulnerabilities. The site implements a cookie consent banner with detailed cookie categorization, reflecting some level of privacy compliance, though no explicit privacy policy page was found. Security posture is moderate; while HTTPS and CSRF protections are implied, the absence of security headers and outdated libraries reduce the overall security score. WHOIS data is unavailable, which raises concerns about domain registration transparency but does not necessarily indicate malicious intent. Overall, the site is functional and serves its niche market but would benefit from technical and security improvements. Strategic recommendations include updating all JavaScript libraries to current secure versions, implementing comprehensive security headers, publishing a clear privacy policy, and conducting regular security audits. These steps will enhance trust, compliance, and resilience against potential threats.

A

Alukov

alukov.sk

68

Alukov is a reputable European manufacturer specializing in high-quality pool enclosures and terrace coverings, targeting homeowners and businesses seeking premium outdoor enclosure solutions. The website reflects a medium-sized business with a consistent brand presence and a good level of content quality and user experience. Technically, the site employs modern JavaScript libraries and analytics tools, including Google Analytics, Google Tag Manager, and Facebook Pixel, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, though the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the risk profile is moderate with recommendations to enhance privacy compliance and security best practices.

V

Vinařství Procházka Valtice

valtickavina.cz

65

Vinařství Procházka Valtice is a well-established family-owned winery based in the Czech Republic, specializing in the production and sale of quality Moravian wines. Founded in 1999, the company operates on 73 hectares of vineyards and produces up to 350,000 bottles annually. Their business model combines traditional wine production with modern technology, selling directly to consumers via an e-shop and a physical wine shop in Valtice. The website reflects a professional and consistent brand image, targeting wine consumers primarily within the Czech Republic. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Analytics, and implements appropriate mechanisms such as cookie consent and age verification for alcohol sales. Security posture is solid with HTTPS and reCAPTCHA, though some improvements in security headers and published policies are recommended. Overall, the website is trustworthy and well-positioned in its market niche.

R

Růžový EDEN

ruzovy-eden.cz

45

Růžový EDEN is a Czech-based online florist specializing in high-quality flower bouquets, including large 100-rose arrangements, wedding decorations, and gift floral services. The company emphasizes freshness, quality, and social responsibility by donating a portion of sales to charitable organizations. The website is built on the PrestaShop platform, featuring a modern e-commerce infrastructure with responsive design and SEO-friendly structured data. Security posture is solid with HTTPS and anonymized analytics, though some security headers and explicit policies could be improved. Contact information is clearly presented, supporting customer trust and engagement. Overall, the site is professional, trustworthy, and well-positioned in the Czech retail flower market.