Security Directory

Z

Zátiší Catering Group a.s.

vzatisi.cz

49

V Zatisi is a fine dining restaurant located in Prague, Czech Republic, specializing in modern interpretations of Slavic flavors using seasonal and traditional ingredients. It operates under the umbrella of Zátiší Catering Group a.s., a recognized hospitality group. The website presents a professional and well-structured digital presence with clear business information, reservation capabilities, and rich content showcasing menus and philosophy. Technically, the site uses modern web technologies including Vue.js, jQuery, and Google Tag Manager, with a Kentico CMS backend inferred from cookies. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers are not explicitly detected. Privacy compliance is well addressed with a comprehensive privacy and cookie policy linked and a consent banner in place. The lack of WHOIS data limits domain registration trust analysis, but the business legitimacy is supported by consistent branding and external affiliations. Overall, the site is trustworthy, user-friendly, and compliant with relevant privacy regulations.

C

Czech Restaurant Mgt. Co. spol.s.r.o.

mlynec.cz

51

Restaurant Mlýnec is a well-established fine dining restaurant located in the center of Prague, offering modern Czech and international cuisine with a scenic view of the Charles Bridge. It operates under the Zátiší Group umbrella, a recognized hospitality group. The website reflects a professional and polished digital presence with clear business information, customer ratings, and event hosting services. The business targets tourists, locals, and business clients seeking premium dining experiences. Technically, the site is built on ASP.NET with Kentico CMS, integrating modern tools like Google Tag Manager and CookieYes for analytics and privacy compliance. Security practices include HTTPS enforcement and CSRF protection, though some security headers could be improved. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS data reduces domain trustworthiness but does not detract from the professional business presentation. Overall, the site demonstrates a mature digital infrastructure suitable for its hospitality market position.

N

Neocamino

neocamino.com

60

Neocamino is a French technology company founded in 2011, offering a comprehensive digital marketing SaaS platform designed to help small and medium businesses increase sales and save time through digital tools. The company positions itself as a complete solution for business revenue growth leveraging digital channels. The website is professionally designed using WordPress and the Divi theme, with a mature digital marketing infrastructure including multiple tracking and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and Smartlook. Security posture is good with HTTPS enabled and domain registration stable and consistent with business claims, though there is room for improvement in security headers and privacy compliance documentation. Overall, the website reflects a credible and professional business with strong digital presence but lacks explicit privacy and cookie policies.

E

Euro-BioImaging

eurobioimaging-access.eu

55

Euro-BioImaging Access Portal serves as a European research infrastructure platform providing access to advanced imaging technologies and image data analysis services for biological and biomedical sciences. The portal targets researchers and scientists across Europe, facilitating proposal submissions for imaging services. The website reflects a professional and consistent brand image aligned with its scientific mission. Technically, the site employs modern frontend technologies including jQuery, Bootstrap 5, RequireJS, and integrates Google Analytics and Tag Manager for user tracking and analytics. The site is mobile optimized with good navigation and content relevance. Security posture is moderate with HTTPS enabled and cookie consent implemented; however, security headers and explicit security policies are absent, representing areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies, indicating GDPR awareness. WHOIS data is privacy protected, which is typical for research infrastructure domains, and no suspicious patterns were detected. Overall, the site is trustworthy, professional, and safe for general audiences.

N

NAPEC

napec.app

55

NAPEC is a professional event organizer focused on the energy sector, specifically hosting the Africa & Mediterranean Energy & Hydrogen Exhibition and Conference scheduled for October 2025 in Oran, Algeria. The website serves as a portal for attendee registration, information dissemination, and sponsor promotion, targeting energy and hydrocarbons professionals. The business model revolves around event participation fees, sponsorships, and exhibition opportunities. Technically, the website is built on Angular with modern libraries and integrates a consent management platform and Google Analytics for tracking. The site is mobile optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enforced and domain protections in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic with a privacy policy and cookie consent mechanism present but lacking detailed GDPR indicators. Overall, the website is trustworthy and professionally maintained, with no signs of malicious activity or content safety concerns.

I

iNEXT-Discovery

inext-discovery.eu

55

iNEXT-Discovery is a European Commission funded Horizon 2020 project providing open access to advanced structural biology research infrastructures such as NMR, electron microscopy, and X-ray technologies. The project targets researchers, including non-experts, aiming to facilitate translational research and discovery through a collaborative consortium model. The website serves as a portal for access requests, training, networking, and dissemination of project outputs. Technically, the site employs a modern web stack including Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for tracking. Security posture is solid with HTTPS and bot protection via reCAPTCHA, but lacks visible security headers and cookie consent mechanisms. The domain registration is consistent with the project's timeline and legitimacy, registered through a reputable registrar without privacy protection, appropriate for a public EU-funded initiative.

C

canSERV

canserv.eu

60

canSERV is a multidisciplinary European consortium focused on providing cutting-edge cancer research services across Europe. The consortium comprises 19 partners including research infrastructures, key oncology organizations, patient organizations, and sustainability experts. The website presents a professional image with clear branding and a focus on collaboration and research support. Technically, the site is built on WordPress using the Divi theme, incorporating modern tools such as Google Tag Manager and Cookiebot for analytics and consent management. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are not clearly published. The absence of publicly available WHOIS data is consistent with EURid's privacy policies for .eu domains, and the domain appears legitimate based on website content and structured data. Overall, the site serves its target audience of researchers and oncology professionals effectively but would benefit from enhanced transparency in privacy and security policies.

V

Vyfakturuj.cz

vyfakturuj.cz

10

Vyfakturuj.cz is a Czech Republic-based online invoicing and accounting platform operated by Redbit s.r.o., founded in 2016. It offers a professional SaaS solution for small and medium businesses and freelancers to create, manage, and send invoices efficiently. The platform supports multiple integrations including bank connections and provides mobile applications for Android, iOS, and Huawei devices, enhancing accessibility and user convenience. With over 60,000 users and a strong customer rating of 4.5/5 from more than 3,200 reviews, Vyfakturuj.cz holds a solid position in the Czech online invoicing market. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Embla carousel, optimized for fast loading and excellent mobile responsiveness. SEO best practices are implemented, including structured data and meta tags. The site uses HTTPS and Google Tag Manager for analytics and marketing, with a cookie consent mechanism in place, indicating good privacy compliance. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks visible HTTP security headers and does not publish a dedicated security policy or incident response information, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and comprehensive contact information mitigate concerns. Overall, Vyfakturuj.cz is a well-established, trustworthy online invoicing service with strong business credibility and technical maturity. Strategic enhancements in security transparency and domain registration visibility would further strengthen its security posture and trust profile.

N

nclud

nclud.com

53

nclud is a well-established creative digital and branding agency founded in 2007, specializing in strategy, branding, user experience, design, and development services. The company serves a broad range of notable clients including Amazon, Google, Tesla, and others, positioning itself as a reputable player in the technology and creative services sector. The website reflects a professional and consistent brand image with good content quality and clear navigation aimed at business clients seeking high-end digital creative solutions. Technically, the website employs modern tools such as Google Analytics, HubSpot forms, and Typekit fonts, indicating a mature digital infrastructure. However, there is room for improvement in accessibility and performance optimization. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy compliance is weak due to the absence of explicit privacy and cookie policies and consent mechanisms, which could pose regulatory risks. Overall, the website is trustworthy and professional but should address privacy and security gaps to strengthen its posture.

S

SiteGround

siteground.us

71

SiteGround is a large, well-established web hosting provider offering a range of hosting services including managed WordPress hosting, cloud hosting, and domain registration. The company serves over 3 million domains globally, targeting website owners and businesses seeking reliable, fast, and secure hosting solutions. The website is professionally designed with excellent content quality and clear navigation, reflecting a mature digital presence. Technically, the website employs modern technologies such as Cookiebot for cookie consent management, Google Tag Manager, and YouTube APIs. The hosting is self-managed by SiteGround, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and a dedicated security policy page are absent. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR compliance indicators. However, incident response and vulnerability disclosure information are not publicly available, which could be improved. Overall, the website and business demonstrate high trustworthiness and professionalism. The lack of public WHOIS data is due to privacy protection, which is justified for this business type. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

R

Radio-Canada

radio-canada.ca

64

Radio-Canada is the French-language public broadcaster in Canada, providing a comprehensive range of news, radio, television, sports, and arts content. The website serves as a digital platform to inform and entertain a broad audience, primarily French-speaking Canadians. It holds a strong market position as a trusted source of information and cultural programming under the umbrella of the Canadian Broadcasting Corporation. The site features consistent branding and professional content quality, reflecting its status as a major public media entity. Technically, the website employs modern web technologies including React, Google Tag Manager, and Facebook Pixel for analytics and marketing. It is optimized for mobile devices and demonstrates good SEO and accessibility practices. The presence of a PWA manifest indicates a focus on progressive web app capabilities, enhancing user experience across platforms. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements multiple security headers to protect users. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. However, explicit contact information for security or incident response was not found. Overall, Radio-Canada's website presents a low-risk profile with high trustworthiness and professionalism. Strategic recommendations include continuous monitoring of third-party scripts, ensuring secure form handling, and maintaining up-to-date security practices to sustain its strong security posture.

R

Renesans Polska

renesanspolska.pl

43

Renesans Polska is a well-established Polish company specializing in the production and distribution of high-quality artistic painting supplies including paints, pigments, brushes, and related accessories. The company targets both professional and amateur artists, offering a broad product range that supports various painting techniques. With nearly 30 years of brand presence and a medium-sized market position, Renesans Polska combines traditional craftsmanship with modern technology to serve a diverse creative audience. The website reflects this with comprehensive product information and educational content, supported by a professional design and consistent branding. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for user tracking and marketing insights. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. Overall, the website is trustworthy, user-friendly, and compliant with basic privacy regulations, making it a reliable digital presence for the company.

P

Pinault Collection

pinaultcollection.com

73

Pinault Collection operates as a prominent private art collection and cultural institution with museums in Paris and Venice. The website provides detailed information about exhibitions, membership benefits, and off-site events, targeting art enthusiasts and cultural tourists. The digital infrastructure is built on Drupal 10 with integration of modern analytics and marketing tools, reflecting a mature digital presence. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies could be improved. The absence of WHOIS data limits domain trust analysis, but the professional site and consistent branding support legitimacy. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations.

B

Bullet Journal by LEUCHTTURM1917

bullet-journal.eu

60

Bullet Journal by LEUCHTTURM1917 operates a professional e-commerce platform focused on premium stationery products, primarily bullet journals and related writing instruments. The company leverages its long-standing brand heritage dating back to 1917 to position itself as a trusted provider within the European market. The website offers a curated shopping experience with clear navigation, product presentation, and customer support channels. Technically, the site employs modern web technologies including Bootstrap and jQuery, integrates Google Analytics and other marketing tools, and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the site is trustworthy, well-branded, and compliant with privacy regulations, serving a general audience with safe content.

G

GoodAPI Inc

thegoodapi.com

68

theGoodAPI is a sustainability-focused technology company providing tree planting solutions integrated into e-commerce platforms such as Shopify and Squarespace. Their core offering includes an API and apps that automate tree planting for every sale, partnering with Eden Reforestation Projects to support environmental and social impact. The company has established a credible market position with over 2000 merchants and millions of trees planted, supported by positive customer testimonials and recognized sustainability certifications. Technically, the website is built on modern frameworks like Webflow, uses advanced analytics tools including Google Analytics and PostHog, and integrates marketing tools such as Calendly. Security posture is strong with HTTPS, domain protection statuses, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and GDPR-aligned consent. Overall, the website and business demonstrate a mature digital presence with a clear focus on sustainability and e-commerce integration.

B

Bullet Journal

bulletjournal.com

65

Bullet Journal operates as a specialized e-commerce business focused on analog planning tools and bullet journals. Established in 2010, it has a solid market presence within the niche of productivity and journaling enthusiasts. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Klaviyo for marketing, Facebook Pixel for advertising, and Gorgias for customer support. The technical infrastructure is robust, hosted on Media Temple with a consistent domain registration history. Security posture is good with HTTPS enforced and secure payment options like Shopify Pay and Apple Pay, though some improvements such as enabling DNSSEC and publishing explicit privacy and cookie policies are recommended. Overall, the site is professional, trustworthy, and safe for general audiences.

C

Canadian Broadcasting Corporation

cbc.ca

72

CBC.ca is the official website of the Canadian Broadcasting Corporation, Canada's public broadcaster. It offers a comprehensive range of services including news, entertainment, sports, radio, and music streaming. The website targets the Canadian general public and maintains a strong market position as a leading media entity in Canada. CBC operates under a public funding and advertising-supported business model, delivering high-quality content with consistent branding and trust signals. Technically, the site employs modern web technologies such as React, integrates multiple third-party analytics and advertising services, and uses a consent management platform to comply with privacy regulations. The site is well-optimized for performance, mobile responsiveness, accessibility, and SEO. Security posture is strong with HTTPS enforcement, modern security headers, and no visible vulnerabilities. Privacy compliance is robust with clear policies and consent mechanisms. Overall, CBC.ca demonstrates a mature digital infrastructure and a professional, trustworthy online presence.

N

No-IP

no-ip.com

70

No-IP is a well-established technology company specializing in Dynamic DNS and Managed DNS services, catering to both personal and business users globally. With over 25 years of market presence and more than 35 million customers, No-IP offers a comprehensive suite of internet connectivity solutions including free and paid dynamic DNS, domain registration, SSL certificates, and managed email services. The company positions itself as a reliable and trusted DNS provider with a strong focus on uptime and ease of use. Technically, the website demonstrates a mature digital infrastructure leveraging modern frameworks such as Bootstrap, cloud-based CDN delivery via Amazon Cloudfront, and integration with multiple analytics and marketing platforms including Google Analytics, HubSpot, and Bing Ads. The site is mobile-optimized, fast-loading, and SEO-friendly, reflecting a high level of digital maturity. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks explicit security headers and a public security policy or incident response page. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration transparency, but the overall trust signals and professional presentation mitigate concerns. Overall, No-IP presents a low-risk profile with strong business credibility and technical robustness. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving WHOIS transparency to further strengthen trust and compliance.

S

studio sisi

studiosisi.com

58

Studio Sisi is a small creative branding and illustration studio specializing in designing identities and illustrations for emerging and evolving brands. The website presents a professional portfolio showcasing various case studies in branding, art direction, print, packaging, and web design. The business targets niche creative clients seeking bespoke brand identity services. Technically, the website is built on WordPress using the Semplice theme, with modern web technologies including jQuery and integration of Google Analytics and Tag Manager for tracking. The site is mobile optimized and SEO friendly with Yoast SEO plugin. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Contact is available via a web form only, with no direct emails or phone numbers published. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

C

Crea Industria

creaindustria.com

48

Crea Industria is a specialized Mexican advertising agency focusing on B2B digital marketing and lead generation for industrial and technical companies. With over 25 years of experience and more than 100 satisfied clients, the company offers a comprehensive suite of services including web development, digital marketing strategies, SEO, and data analysis tailored to industrial sectors. Their market position is that of a niche expert agency with a strong local presence in Mexico. Technically, the website employs modern frontend technologies such as Bootstrap 5.3.3, Google Fonts, and various JavaScript libraries, with integration of Google Analytics and Mouseflow for user behavior tracking. The site is mobile optimized and well-structured, providing a good user experience. Security-wise, the site uses HTTPS and CAPTCHA on forms but lacks DNSSEC and explicit security headers, which are recommended improvements. Privacy compliance is basic with a privacy policy available but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

N

New York Public Radio

nypublicradio.org

70

New York Public Radio is a well-established non-profit media organization focused on delivering award-winning journalism, innovative podcasting, and classical music programming rooted in New York. The organization operates multiple well-known brands including WNYC, WQXR, Gothamist, and WNYC Studios, positioning itself as a leader in public radio and media in the region. The website reflects a mature digital presence with good content quality and consistent branding. Technically, the site is built on WordPress with modern plugins and analytics tools such as Google Analytics, Google Tag Manager, and New Relic for performance monitoring. Hosting and domain registration are stable and consistent with the organization's profile. The site is mobile optimized and SEO friendly, though some accessibility features could be improved. From a security perspective, the site uses HTTPS and has domain status protections but lacks DNSSEC and explicit security headers like Content Security Policy. There is no visible security policy or vulnerability disclosure, and cookie consent mechanisms are absent, which may impact GDPR compliance. Overall, the security posture is moderate with room for improvement. The risk assessment indicates a trustworthy and professional site with no signs of malicious activity or suspicious content. Strategic recommendations include enhancing DNS security, implementing security headers, adding privacy and cookie consent features, and publishing security policies to improve compliance and trust.

W

WNYC Studios

radiolab.org

60

Radiolab.org is the official podcast website for Radiolab, a well-established investigative storytelling podcast produced by WNYC Studios. The site offers podcast episodes, exclusive member content via 'The Lab', and newsletter subscriptions. It targets podcast listeners interested in arts, culture, science, and investigative journalism. The business model is content-driven with membership and subscription revenue streams. The site is professionally designed with consistent branding and a clear navigation structure, reflecting its position as a reputable media brand in the public radio space. Technically, the website is built using modern web frameworks such as Nuxt.js and Vue.js, hosted on Amazon AWS infrastructure. It integrates analytics and marketing tools including Google Analytics, Google Tag Manager, Algolia Search, and Spotify tracking pixels. The site is mobile optimized and performs moderately well, though accessibility features are basic. The CMS appears custom and internal to WNYC Studios. From a security perspective, the site enforces HTTPS and has domain registration protections in place. However, DNSSEC is not enabled, and no explicit security headers or incident response policies are published on the site. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a comprehensive privacy policy and terms of service hosted on the parent WNYC domain. Cookie consent mechanisms are not evident on the Radiolab domain. Overall, Radiolab.org presents a trustworthy and professional digital presence with strong business credibility and moderate technical maturity. Strategic improvements could include enabling DNSSEC, implementing security headers, and publishing explicit security and incident response policies to enhance trust and compliance.

I

Institute for Nonprofit News

inn.org

60

The Institute for Nonprofit News (INN) operates as a nonprofit membership network supporting over 500 nonprofit news organizations. The website serves as a platform to provide access to nonprofit news coverage on local and global issues, targeting nonprofit news organizations, journalists, and the general public interested in nonprofit news. The organization is well-established, with a domain registered since 1999, reflecting its longstanding presence in the nonprofit news sector. The website employs a WordPress CMS infrastructure with multiple plugins to support donations, events, and user management, indicating a mature digital infrastructure. Technically, the site uses modern web technologies including Google Analytics and Tag Manager for analytics, Font Awesome for icons, and Yoast SEO for search optimization. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security-wise, the site uses HTTPS and domain registration protections but lacks DNSSEC and visible security headers, and does not publish a security policy or incident response contacts. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms in the provided content. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

W

WNYC Studios

wnycstudios.org

58

WNYC Studios is a prominent public media podcast studio producing award-winning content such as Radiolab and On The Media. The website reflects a mature and professional media organization with a strong brand presence and multiple partner sites. The technical infrastructure leverages modern web technologies including Ember.js and integrates widely used analytics and advertising platforms. Security posture is strong with HTTPS and Content Security Policy headers implemented, though privacy and cookie policies are not explicitly visible, indicating room for improvement in compliance transparency. Overall, the site is safe, well-branded, and trustworthy, serving a general audience interested in culture, news, and storytelling.

Philly Bike Ride is a small event organization focused on hosting Philadelphia's premier recreational bike ride, targeting riders of all ages and skill levels. The website promotes a family-friendly, car-free 20-mile bike ride event scheduled for October 18, 2025, including ride passes, bike rentals, and a finish festival with entertainment. The business operates primarily through event ticket sales and related merchandise partnerships. Technically, the site is built on WordPress using Elementor and related plugins, with embedded YouTube videos and social media tracking integrations. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is good with HTTPS and domain locking, but lacks DNSSEC and advanced security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

V

Volvista.cz - Największy wybór samochodów Volvo w Czechach

volvista.pl

48

Volvista.pl is a professional automotive dealership website specializing in Volvo cars, offering new and used vehicles, leasing options, and servicing primarily targeting customers in Poland and the Czech Republic. The site is well-branded and consistent with a clear focus on Volvo models, providing a comprehensive selection and related services. Technically, the website employs modern JavaScript libraries such as Vue.js, jQuery, and Livewire, ensuring dynamic and responsive user experience. The presence of Google Tag Manager and Microsoft Clarity indicates a mature approach to analytics and user behavior tracking. Security-wise, the site uses HTTPS with CSRF protection in forms and asynchronous loading of tracking scripts, though some security headers could be improved. Privacy and cookie policies are present and appear GDPR compliant, with consent mechanisms implemented. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but does not raise immediate concerns given the professional site presentation. Overall, the website is safe, well-structured, and suitable for general audiences.

V

Volvista

volvista.eu

54

Volvista is a professional automotive dealership specializing in Volvo vehicles, offering the largest selection of new and used Volvo cars in the Czech Republic. Their services include car sales, operational leasing, and modern car servicing, targeting Volvo enthusiasts and buyers primarily in the Czech market. The website is well-structured, mobile-optimized, and uses modern web technologies such as Vue.js, jQuery, and Livewire, indicating a mature digital infrastructure. Security posture is solid with HTTPS and CSRF protections, though some security headers could be enhanced. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the site presents a trustworthy and professional business presence with moderate tracking and analytics integration.

S

Sportovní základní škola Kometka s.r.o.

szskometka.cz

42

Sportovní základní škola Kometka s.r.o. is a Czech Republic based educational institution specializing in primary education combined with sports training. The website presents a professional and well-structured platform targeting parents and children interested in sports-focused schooling. The school offers preparatory classes, regular classes, and extracurricular activities, positioning itself as a niche provider in the education sector. Technically, the website is built on WordPress with Elementor, leveraging modern plugins for GDPR compliance and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are absent. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

S

STAREZ – SPORT, a.s.

starez.cz

72

STAREZ – SPORT, a.s. is a medium-sized company founded in 2004 and owned by the statutory city of Brno, Czech Republic. It manages 18 sports facilities in Brno and organizes various sports activities and events for the public, focusing on community engagement and public service. The company offers services such as facility management, event organization, and digital tools like a mobile app and chip watches for discounts. The website reflects a professional and well-maintained digital presence with clear branding and comprehensive content. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. WHOIS data is unavailable, likely due to registry policies, but the site shows no signs of illegitimacy. Overall, the risk is low, and the company appears credible and trustworthy.

H

Hiporehabilitace Brno z. s.

hiporehabilitacebrno.cz

47

Hiporehabilitace Brno z. s. is a Czech non-profit organization specializing in hiporehabilitation and physiotherapy services for children with special needs. The website presents a professional and consistent brand image with detailed descriptions of their therapeutic approach, team, and facilities. The organization has established partnerships and funding sources, indicating a stable market position within the regional healthcare non-profit sector. Technically, the website is built on Drupal 8 with modern integrations such as Google Analytics and Tag Manager, providing moderate performance and good mobile optimization. However, the absence of privacy and cookie policies and lack of security headers highlight compliance and security gaps. No contact emails or phone numbers are explicitly provided, which may affect user trust and communication. Overall, the site is safe, trustworthy, and well-positioned but would benefit from enhanced privacy compliance and security practices.

P

Premiere Cinemas Praha Hostivař

premierecinemas.cz

46

Premiere Cinemas Praha Hostivař operates as a regional multiplex cinema chain in the Czech Republic, offering movie screenings with advanced audio-visual technology such as Dolby Atmos and 4K projection. The website provides detailed programming schedules, online ticket booking, and loyalty programs, targeting general moviegoers and families. The presence of multiple regional subdomains indicates a medium-sized business with a local market focus. Technically, the website uses modern JavaScript libraries and tracking tools, with a custom CMS platform. Security posture is adequate with HTTPS and consent management but lacks advanced security headers and published policies. The absence of WHOIS data limits domain trust assessment but the website content and branding appear legitimate and professional.

JAKUB Group operates a Czech-based business specializing in the distribution and sale of electrical products such as cables, lighting, modular devices, and related accessories. The company maintains a professional website with a product catalog, supplier listings, and a B2B e-commerce platform. It has multiple branch locations across Czechia and Slovakia, indicating a medium-sized enterprise with a regional presence. The website content is primarily in Czech and targets B2B customers in the energy sector. Technically, the website uses legacy JavaScript libraries like jQuery 1.10.2 and integrates Google Analytics and Tag Manager for tracking. While the site is accessible and professionally designed, it lacks modern security headers and cookie consent mechanisms, which are important for compliance and security. The WHOIS data is not publicly available, likely due to privacy protection, which is common for commercial entities but reduces transparency. Overall, the website is functional and credible but would benefit from technical and security updates.

JAKUB Group operates the Dabok brand website, serving as a regional distributor and retailer of electrical products primarily in the Czech Republic. The company offers a broad product catalog, supplier listings, and an e-shop platform targeting electrical professionals and businesses. The website is professionally designed with clear navigation and multiple branch locations highlighted, indicating a medium-sized enterprise with a solid market presence in the energy sector. Technically, the website employs legacy JavaScript libraries such as jQuery 1.10.2 and Fancybox 2.1.5, alongside Google Analytics and Google Tag Manager for tracking. While the site is accessible and moderately optimized for performance and mobile use, it lacks modern security headers and cookie consent mechanisms, which are important for compliance and security posture. Security-wise, the site uses HTTPS but does not implement advanced security headers or explicit incident response policies. The absence of WHOIS data raises concerns about domain transparency and legitimacy, although the website content and business network suggest a legitimate operation. No critical vulnerabilities or exposed sensitive data were detected, but updating libraries and enhancing privacy compliance are recommended. Overall, the website scores moderately well in content quality, business credibility, and technical implementation but has room for improvement in security and privacy compliance. Strategic enhancements in these areas will strengthen trust and regulatory adherence.

JAKUB Group operates the e-centrum.cz website, a regional electrical supplies distributor primarily serving Moravia, Silesia, and parts of the Czech Republic and Slovakia. The company offers a broad catalog of electrical products, supplier listings, and an e-shop, supported by multiple branch locations. The website is professionally designed with clear navigation and relevant content targeting electrical professionals and businesses. Technically, the site uses legacy JavaScript libraries such as jQuery 1.10.2 and fancybox, alongside Google Analytics and Tag Manager for tracking. While the site is accessible and functional, it lacks modern security headers and uses outdated libraries, which may expose it to vulnerabilities. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. The WHOIS data is unavailable, reducing domain trustworthiness, though the business presence and partner domains suggest legitimacy. Overall, the site demonstrates moderate digital maturity with room for security and compliance improvements.

JAKUB Group operates the website elkas.cz, serving as a distributor and retailer of electrical materials, lighting, and related products primarily in the Czech Republic and Slovakia. The company has a long-standing presence with multiple branch locations and a professional e-commerce platform. The website content is well-structured, targeting professional electricians and industry customers. Technically, the site uses legacy JavaScript libraries such as jQuery 1.10.2 and includes Google Analytics and Tag Manager for tracking. While the site is accessible and functional, it lacks modern security headers and uses outdated libraries, which pose potential security risks. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. WHOIS data is unavailable, indicating privacy protection, which reduces transparency but is likely justified for business privacy. Overall, the site demonstrates moderate digital maturity with room for security and privacy improvements.

JAKUB Group is a medium-sized company operating primarily in the electrical supplies sector within the Czech Republic and Slovakia. The company offers a broad range of products including cables, lighting, modular devices, and tools through multiple physical stores and an online e-shop. Their market position is strong regionally, especially in northwestern Czech Republic, supported by a network of partner domains and subsidiaries. The website is professionally designed with good content quality and clear navigation, targeting electrical contractors and retail customers. Technically, the site uses legacy JavaScript libraries such as jQuery 1.10.2 and integrates Google Analytics and Tag Manager for tracking. Mobile optimization and accessibility are basic but functional. Security posture is moderate with HTTPS assumed but lacking visible security headers and using outdated libraries, which presents some risk. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website is trustworthy and legitimate but could improve security and privacy practices.

S

SuperSaaS

supersaas.cz

63

SuperSaaS.cz is a Czech localized version of the SuperSaaS online booking and reservation system, offering a flexible SaaS platform for various service providers and businesses. The website demonstrates a mature market presence with over 205,000 customers worldwide and integrates multiple payment and calendar services to enhance user experience. The platform targets small to medium businesses and individual professionals seeking efficient scheduling solutions. Technically, the site employs modern web technologies, including asynchronous JavaScript, SVG graphics, and Google Analytics, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. However, WHOIS data is unavailable, limiting domain registration transparency. Overall, the site is professional, trustworthy, and well-optimized, with minor recommendations for enhanced security headers and incident response documentation.

Graphic House s.r.o. is a Czech-based creative agency established in 1999, offering a wide range of services including corporate branding, print design, website development, SEO, marketing strategies, and campaign management. The company targets businesses seeking comprehensive graphic and digital marketing solutions. The website is currently under heavy reconstruction, which is reflected in the basic content and design quality. Technically, the site uses Adobe Muse, jQuery 1.8.3, Google Analytics, and Google Tag Manager, hosted likely by WEDOS. Security posture is moderate but impacted by the use of outdated libraries and lack of visible HTTPS or security headers. Privacy and cookie policies are absent, indicating compliance gaps. Contact information is detailed and professional, supporting business credibility.

I

ISSA CZECH s.r.o.

issa.cz

60

ISSA CZECH s.r.o. is a Czech Republic based technology company established in 1997, specializing in web development, e-commerce solutions, internet marketing, custom information systems, and hosting services. The company operates its own data center and uses a proprietary CMS platform, positioning itself as a full-service IT and digital marketing provider for small to large businesses. The website is professionally designed, mobile-optimized, and includes references to reputable clients, enhancing its market credibility. Technically, the site uses modern web technologies including Google Fonts, jQuery, Lightbox, and Google Tag Manager with consent integration, hosted on their own infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published privacy or security policies. Overall, the site is trustworthy and business-focused with minimal user tracking and no suspicious content.

P

PIXIO, s. r. o.

pixio.cz

58

PIXIO, s. r. o. is a Czech Republic based digital agency specializing in custom web development, mobile applications, CRM systems, and business process automation. Established in 2011, the company has built a solid market position with over 15 years of experience and more than 410 completed projects. Their services target businesses and organizations seeking tailored digital solutions, emphasizing professionalism and client trust. The website reflects a well-structured and content-rich platform with clear service offerings and contact information. Technically, the site uses a mix of legacy and modern technologies including jQuery, OwlCarousel, and Google Analytics, hosted via WEDOS. Security posture is good with HTTPS enforced and cookie consent implemented, though some improvements are recommended such as updating libraries and adding security headers. Privacy compliance is strong with a clear privacy policy and cookie management. Overall, PIXIO presents as a credible and professional digital agency with a trustworthy online presence.

M

MEDIA AGE s.r.o.

mediaage.cz

67

Media Age s.r.o. is a Czech media agency established in 2005, specializing in creating successful media campaigns and strong brand strategies. The company serves a diverse clientele including market leaders, public organizations, and startups, offering services such as campaign analysis, strategy development, creative design, media planning, and execution. Their market position is reinforced by multiple industry awards and a portfolio of reputable clients. Technically, the website is built on modern frameworks like Next.js and uses DatoCMS for content management, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enabled, but lacks some security headers and cookie consent mechanisms, which are recommended for compliance and enhanced protection. The absence of WHOIS data reduces transparency but does not detract from the professional presentation and trustworthiness of the business. Overall, Media Age demonstrates a mature digital presence with room for improvement in privacy compliance and security best practices.

P

Pathmonk | Web Assistant

pathmonk.com

59

Pathmonk is a technology company specializing in AI-driven marketing personalization and conversion optimization solutions. Founded in 2018, it offers a SaaS platform that helps businesses such as marketing agencies, e-commerce, professional services, SaaS, financial services, and manufacturing companies increase leads, sales, and customer engagement through real-time personalization and analytics. The company positions itself as a trusted provider with over 2500 customers and industry-leading partners. Technically, the website is built on WordPress with Elementor and integrates multiple modern marketing and analytics tools including Google Analytics, Facebook Pixel, TikTok Pixel, and others. The hosting infrastructure appears to be on AWS, ensuring reliable performance and scalability. Security posture is good with HTTPS enabled and 2FA plugin usage, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic with no explicit privacy or cookie policies detected in the provided content. Overall, the website is professional, well-branded, and technically mature, but could enhance transparency and compliance documentation.

Z

ZM SERVIS MORAVIA, s.r.o.

zmservis-moravia.cz

66

ZM SERVIS MORAVIA, s.r.o. is a Czech-based medium-sized company specializing in the design, manufacture, and servicing of industrial burner systems, gas devices, compressors, and related technical equipment. With over 30 years of experience, the company positions itself as a leading global supplier in its sector, serving industrial clients worldwide. Their business model focuses on B2B manufacturing and engineering services, complemented by sales of spare parts and software solutions. The website reflects a professional and comprehensive digital presence, supporting their market position with clear service offerings and contact channels. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Google Tag Manager, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement and a Content Security Policy, although additional security headers could enhance protection. The site implements GDPR-compliant cookie consent mechanisms and provides a detailed privacy policy, reflecting a mature approach to privacy and compliance. The security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Despite this, the website's content quality, business information, and social media presence support the company's credibility. Overall, the site is trustworthy, well-maintained, and aligned with industry best practices. Strategic recommendations include enhancing security headers, publishing a formal security policy, and verifying domain registration details to strengthen trust. These steps will improve the company's digital security posture and compliance readiness, supporting continued growth and customer confidence.

P

Pires s.r.o.

pires.cz

58

Pires s.r.o. is a Czech Republic-based company specializing in the supply, installation, repair, and servicing of industrial gas burner systems, industrial furnaces, and related gas technology equipment. With over 35 years of industry experience and ISO 9001:2015 certification, the company targets industrial clients requiring high-quality gas systems and maintenance services. Their business model focuses on B2B technical services and sales of spare parts from reputable brands. The website is professionally designed, multilingual, and provides comprehensive information about their services and projects. Technically, the website uses a custom CMS with a technology stack including jQuery, Google Tag Manager, Facebook SDK, and cookie consent scripts. The site is mobile-optimized and moderately performant, with good SEO practices. Security-wise, HTTPS is enforced, and cookie consent is implemented, but the absence of security headers and a security.txt file indicates room for improvement. The security posture is solid but could be enhanced by adding security headers and formalizing incident response disclosures. The lack of WHOIS data is a concern for domain legitimacy verification, although the website content and certifications support trustworthiness. Overall, the site presents a professional and credible business presence with moderate technical maturity and good privacy compliance. Strategically, the company should focus on improving domain registration transparency, enhancing security headers, and publishing security policies to strengthen trust and compliance.

JAKUB Group is a well-established company specializing in the distribution and retail of electrical materials, serving primarily the Czech Republic and Slovakia. With a network of 55 physical stores and a comprehensive e-shop, the company targets electrical professionals and retail customers. The website reflects a mature business with a consistent brand presence and a broad product catalog. Technically, the site uses legacy JavaScript libraries and standard tracking tools like Google Analytics, indicating moderate digital maturity. Security posture is adequate but could be improved by updating outdated libraries and implementing stronger security headers. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. Overall, the website is professional and trustworthy, though domain registration data is missing, which slightly impacts trust verification.

G

Galerie Šantovka, a. s.

galeriesantovka.cz

46

Galerie Šantovka is a large retail shopping center located in Olomouc, Czech Republic, recognized as one of the largest in the region and among the top ten in the country. The website showcases a broad range of retail shops, entertainment options such as cinemas and bowling, and various customer services including parking and gift vouchers. The site targets general consumers and local visitors, providing event information and promotional activities to engage its audience. Technically, the website employs modern JavaScript libraries like jQuery and uses Google Tag Manager for analytics, indicating a mature digital infrastructure. The site is mobile optimized and includes structured data for SEO benefits. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, though it lacks some advanced security headers and explicit vulnerability disclosure information. Overall, the website is professionally maintained, trustworthy, and compliant with GDPR requirements, but could improve its security posture by adding security headers and incident response details.

K

Kitty Care

kittycare.cz

45

Kitty Care is a Czech-based e-commerce business specializing in premium cat care products including 100% meat-based cat food, probiotic dry food, wet food, and premium cat litter. The website targets cat owners seeking high-quality, natural, and locally produced pet products. The company emphasizes health, sustainability, and local sourcing in its product offerings. Technically, the website uses modern frontend frameworks such as Bootstrap and integrates multiple analytics and marketing tools including Google Tag Manager, Microsoft Clarity, Facebook Pixel, and Smartlook. Hosting appears to leverage Microsoft Azure Blob Storage for media assets. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and formal privacy/cookie policies. WHOIS data is unavailable, which limits domain trust assessment but the website content and contact information appear professional and consistent with a legitimate retail business. Overall, the site provides a good user experience with clear navigation and product information but should improve privacy compliance and security headers to enhance trust and compliance.

N

Nadační fond Kometa

nadacnifondkometa.cz

42

Nadační fond Kometa is a Czech non-profit foundation established in 2015, focused on charitable activities including support for children with autism and community events. The foundation operates an e-shop for fundraising and maintains partnerships with local organizations such as HC Kometa Brno. The website is built on WordPress and uses common web technologies including jQuery, Google Analytics, and WPBakery Page Builder. The site is well-branded and provides relevant content for its audience, though it lacks explicit privacy and cookie policies. Security posture is moderate with HTTPS enabled but missing security headers and incident response contacts. Overall, the website is functional and trustworthy but could improve compliance and security transparency.

Volvo Cars Czech Republic s.r.o. operates a professional and well-branded website targeting consumers in the Czech Republic interested in Volvo vehicles. The site offers vehicle browsing and customization services, reflecting Volvo's position as a premium automotive manufacturer. The website is built on modern technologies including React and Next.js, with integration of Google Tag Manager and OneTrust for privacy compliance. The technical infrastructure supports fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. The absence of WHOIS data is noted but does not detract from the site's legitimacy given the brand and content quality. Overall, the website demonstrates a mature digital presence with good privacy compliance and user experience.