Security Directory

M

Město Kroměříž

vasekromeriz.cz

51

The website 'Vaše Kroměříž' is a government-run participatory budgeting platform for the city of Kroměříž, Czech Republic. It enables residents to propose, discuss, and vote on community improvement projects funded by a dedicated city budget. The platform is designed to foster civic engagement and transparency in local government spending. The site provides detailed information about the phases, rules, and voting system, including secure two-factor authentication for voting. Technically, the site is built on WordPress with UIkit and jQuery, hosted by Wedos, and uses Google Analytics for visitor tracking. While HTTPS is properly implemented, the site lacks explicit privacy and cookie policies and some security headers, which are areas for improvement. Contact information is clearly provided with official city emails and phone numbers, enhancing trust. Overall, the site is professional, content-rich, and serves its civic purpose effectively.

A

AF themes

afthemes.com

45

AF themes is a specialized WordPress theme and hosting provider focused on news, magazine, and blog websites. Founded in 2018, the company offers a comprehensive platform including over 1,000 ready-made starter sites, premium and free themes, fully managed hosting, setup, migration, and expert growth consulting services. Their market position is strong within the independent publishing niche, powering over 200,000 websites worldwide. The business model revolves around theme/plugin sales, managed hosting, and consulting services tailored for independent publishers and small businesses.

Městské muzeum Česká Třebová is a municipal museum established in 1888, dedicated to documenting the history and culture of the city and its inhabitants. It serves a broad audience including tourists, researchers, schools, and the general public by offering exhibitions, cultural programs, research facilities, and a tourist information center. The museum maintains an active online presence with event calendars, online collections, and partnerships with local event and travel platforms. Technically, the website is built on WordPress with modern plugins and frameworks, providing a responsive and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response disclosures are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the museum's mission and community engagement.

P

PROGEO DATA SPOL. S R.O.

progeodata.cz

42

PROGEO DATA SPOL. S R.O. is a small Czech company specializing in geodetic services and modern 3D scanning technologies primarily serving the Vysočina region, especially Jihlava. Their website presents a professional image with clear descriptions of their key services including 3D interior scanning, open space scanning, and data provision from previous surveys. The company positions itself as a regional specialist leveraging modern technology to deliver precise measurements. The website is built on WordPress with common plugins for contact forms, analytics, and sharing, indicating a moderate level of digital maturity. Security measures include HTTPS and Google reCAPTCHA integration, but lack advanced security headers and published policies. Overall, the site is functional, professional, and trustworthy but could improve compliance and security transparency.

T

TRASKO BVT, s.r.o.

traskobvt.cz

60

TRASKO BVT, s.r.o. is a Czech Republic-based company specializing in trenchless repairs of water supply and sewer systems, leveraging modern technologies and extensive experience. The company targets water utilities, municipalities, industrial sites, and construction firms, positioning itself as a reliable and innovative service provider within the energy infrastructure sector. TRASKO BVT is part of the larger TRASKO a.s. holding, enhancing its market credibility and operational scale. The website reflects a professional business model focused on B2B services with a clear emphasis on quality and comprehensive solutions. Technically, the website is built on WordPress with modern plugins for SEO and GDPR compliance, showing good digital maturity and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations, but the absence of WHOIS data introduces moderate uncertainty regarding domain registration transparency.

D

DDmen

ddmen.com

49

DDmen is a Czech pro-sales agency established in 2000, specializing in helping brands develop and realize their business potential through creative and reliable projects. The website reflects a medium-sized agency with a clear business focus and consistent branding. Technically, the site uses modern JavaScript frameworks such as Vue.js and RequireJS, with additional libraries for animation and polyfills, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and has good SEO practices, though accessibility is basic. Security posture is moderate, with no DNSSEC enabled and no visible security headers, but no critical vulnerabilities detected. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though no terms of service or incident response policies are published. Overall, the website is professional and trustworthy, with room for improvement in security and contact transparency.

Webgame.cz is a Czech online multiplayer strategic game operated by Webgame s.r.o., established since 2000. The platform offers a free-to-play browser-based game targeting Czech-speaking players interested in strategy and multiplayer competition. The website presents active player statistics, rankings, and game news, reflecting a mature and engaged community. Technically, the site uses jQuery, Google Analytics, and CookieYes for cookie consent management, hosted by WEDOS, a Czech hosting provider. The site shows moderate performance and basic mobile optimization with good SEO and accessibility features. Security posture is adequate with cookie consent and no visible vulnerabilities, though security headers and explicit incident response policies are absent. Privacy compliance is strong with a comprehensive privacy policy and granular cookie consent. WHOIS data confirms domain legitimacy with consistent registration details and long domain age. Overall, the site is professional, trustworthy, and well-maintained, though improvements in security headers and contact transparency could enhance trust further.

S

Senior Pas z.s.

seniorpasy.cz

52

Senior Pas z.s. operates a Czech Republic-based non-profit project aimed at providing seniors aged 55 and above with discounts and benefits across various services. The website offers free registration for a Senior Pas card, a mobile application, and a dedicated helpline to support seniors. The project is supported by multiple regional governments, enhancing its credibility and reach within the target demographic. Technically, the website employs a mix of legacy and modern web technologies including jQuery, Google Analytics, Facebook SDK, and Firebase messaging for push notifications. While the site is mobile-optimized and user-friendly, some technical debt is evident with the use of outdated libraries. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks explicit security headers and a comprehensive privacy policy page. The absence of WHOIS data reduces trustworthiness from a domain registration perspective, though the visible business and contact information support legitimacy. Overall, the website is a well-structured, government-backed platform serving a clear social purpose with room for improvement in security and compliance documentation.

B

BD SENSORS

destovkabd.cz

46

BD SENSORS operates the website destovkabd.cz to promote and sell their Dešťovka product, a specialized water level measurement set designed for retention tanks. The company targets both home DIY users and professionals in water management, positioning itself as a niche manufacturer in the Czech Republic. The website provides detailed product descriptions, downloadable datasheets, and contact information, supporting customer engagement and sales inquiries. Technically, the site is built on WordPress with Elementor, uses Google Analytics for visitor tracking, and is hosted by Active24, a Czech hosting provider. The site is mobile optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS and implements a cookie consent mechanism but lacks visible security headers and published security policies. No privacy policy or terms of service pages were found, which is a compliance gap. Overall, the website is functional and credible but could improve in privacy and security transparency.

D

DataFly

datafly.cz

55

DataFly is a Czech Republic-based company specializing in IoT hub solutions and sensor integration for industrial measurement applications. Their website presents a professional and focused business offering wireless sensor communication technologies including WiFi and LoRa, targeting industrial and commercial clients. The company appears to be a small-sized entity founded in 2018, with partnerships evident with IoT platform provider Tanix and sensor hardware provider BD Sensors. Technically, the website is built using Mobirise CMS with Bootstrap and includes modern tracking tools like Google Analytics and Tag Manager. The site is mobile optimized and provides clear navigation and contact information, including a named product manager with direct contact details. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is basic, with no privacy policy or terms of service found. Overall, the website is trustworthy and professionally presented but could improve in privacy and security transparency.

B

BD SENSORS s.r.o.

bdsat.cz

43

BDSAT.cz is the official website for the BDSAT nanosatellite project managed by BD SENSORS s.r.o., a Czech company specializing in electronic pressure measurement technology. The website provides detailed information about the nanosatellite, its mission to test pressure sensors and supercapacitor banks in space, and support for the radio amateur community. The company is positioned as a significant global player in its sector with government-backed funding and partnerships with academic and industry entities. Technically, the website uses modern web technologies including JavaScript libraries and Google Analytics for tracking, hosted likely via Active24 in the Czech Republic. The site is well-designed, mobile-optimized, and offers clear navigation, though it lacks explicit privacy and cookie policies and security headers. Security posture is moderate with HTTPS usage but missing advanced headers and incident response contacts. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

HugeDomains.com operates as a reputable domain marketplace specializing in the sale of premium domain names such as PlrBlogs.com. The platform offers flexible purchasing options including full payment and payment plans, supported by a professional and user-friendly website. The company has been in operation since 2005, establishing a strong market presence with trust signals like a 30-day money back guarantee and customer testimonials. Technically, the website employs modern web technologies including HTTPS, Google Analytics, and reCAPTCHA Enterprise to ensure security and performance. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Security posture is solid with SSL encryption and secure forms, though some security headers could be improved. Overall, the site presents a low-risk profile with no signs of malicious activity or content safety concerns.

SafeTravelUSA is a traffic and weather information service operated by Iteris, Inc., a recognized technology company specializing in transportation systems. The website aggregates and links to state-specific 511 traffic and weather services across the United States, targeting travelers and commuters seeking real-time travel information. The platform serves as a centralized hub for accessing multiple state transportation resources, enhancing travel safety and planning. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and Google Analytics for tracking. It is mobile optimized and features a clean, navigable interface with interactive maps and state links. While the site uses HTTPS and standard web technologies, it lacks some advanced security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance and security hardening. From a security perspective, the site demonstrates a good baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the domain raises some concerns about registration transparency. The site does not provide explicit security policies or incident response contacts, which could be enhanced to improve trust and compliance. Overall, the risk is moderate given the affiliation with Iteris, but improvements in security posture and privacy compliance are recommended. Strategically, SafeTravelUSA is a valuable informational resource with a clear niche in transportation safety and travel planning. Strengthening security policies, adding cookie consent, and clarifying domain registration details would enhance credibility and user trust. Continued technical modernization and accessibility improvements will support broader user engagement and compliance with evolving regulations.

G

GeoPas.cz

geopas.cz

50

GeoPas.cz is a Czech Republic-based web application focused on aggregating and presenting comprehensive data about real estate and territorial units. The platform targets a broad audience including citizens, real estate professionals, investors, and public officials, providing detailed property information, risk assessments, and geographic data through an interactive map and API services. The business is relatively young, founded in 2022, and positions itself as a niche data service provider in the Czech real estate market. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and ECharts, with Google Analytics integrated for user tracking. The site is well-structured, mobile-optimized, and offers rich content including blogs and data visualizations. Security posture is good with HTTPS enforced and secure form practices, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is addressed with GDPR and cookie policies present, though a cookie consent mechanism is missing. Overall, the site is professional, trustworthy, and provides valuable services with room for security and privacy enhancements.

I

Inovcorp Lda

inovcorp.com

70

Inovcorp Lda is a Portuguese group of companies specializing in technology, design, management, and marketing services. Established since 2009, it has a solid market presence with diversified investments in subsidiaries such as Design Binário, Ativait, Aniwair, and Sharebuzz. The company targets businesses and professionals worldwide, offering digital solutions, brand image creation, social media management, and CRM data visualization. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website employs modern JavaScript libraries including jQuery, Google Analytics, Google Tag Manager, and integrates Google Maps API. Hosting and DNS services are managed via Cloudflare, providing reliable infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate with room for optimization. From a security perspective, HTTPS is enforced, and domain registration includes clientTransferProhibited status, enhancing domain security. However, DNSSEC is not enabled, and no explicit security headers or published security policies were detected. Cookie consent is implemented with granular user options, indicating good privacy compliance. No incident response or vulnerability disclosure policies are published, representing an area for improvement. Overall, Inovcorp demonstrates a mature digital presence with strong business credibility and moderate security posture. Strategic enhancements in DNS security, security headers, and transparency around security policies would further strengthen trust and compliance.

The website www.zusmeeting.cz represents an educational event organizer focused on the ZUŠ Meeting, a networking and training event for directors and staff of basic art schools in the Czech and Slovak Republics. The organizing companies, Sensio.cz s.r.o. and Sensio.cz Školení s.r.o., also develop and operate related information systems for these schools. The website provides detailed event information, past event archives, and registration links, targeting a niche educational audience. Technically, the site uses modern web technologies including Google Fonts, Google Analytics, and Smartlook for session recording, with a cookie consent mechanism implemented to comply with privacy regulations. However, no explicit privacy policy or terms of service pages are present, which is a compliance gap. Security posture is decent with HTTPS and consent mode for analytics, but lacks security headers and vulnerability disclosure information. WHOIS data is unavailable, which reduces domain trustworthiness and raises concerns about domain registration transparency. Overall, the site is professional and content-rich but would benefit from improved privacy and security disclosures to enhance trust and compliance.

D

Dicastero per l'Evangelizzazione

iubilaeum2025.va

68

The website iubilaeum2025.va is the official digital platform for the Jubilee 2025 organized by the Dicastero per l'Evangelizzazione of Vatican City. It serves as a comprehensive informational and service portal aimed at pilgrims, tourists, and the general public interested in the Jubilee events. The site provides multilingual support, event calendars, pilgrimage registration, and volunteer opportunities, positioning itself as a key resource for the 2025 Jubilee. Technically, the site leverages modern web technologies including Google Analytics, jQuery, and slick carousel components, and is likely built on Adobe Experience Manager, reflecting a mature digital infrastructure. The website is mobile-optimized with good navigation and professional design quality. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and does not expose sensitive data or vulnerable libraries, though it could improve by adding explicit security headers and publishing incident response information. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements, reflecting its official Vatican affiliation.

S

Sontex Hungária

sontex.hu

45

Sontex Hungária is a specialized Hungarian company focused on providing heat meters, water meters, and cost allocators primarily for residential buildings and energy efficiency solutions. Established in 2005, the company maintains a professional online presence with a well-structured website built on WordPress using Elementor and WooCommerce, indicating a moderate level of digital maturity. The website features good SEO practices and a cookie consent mechanism, reflecting awareness of privacy compliance requirements. However, explicit privacy policies and terms of service are not clearly presented, which could be improved. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and incident response information. Overall, the website is trustworthy and professional, targeting Hungarian customers in the energy sector.

S

Sontex SA

sontex.it

72

Sontex SA is a Swiss-based company specializing in innovative metering systems for energy and water resource management. The company offers a broad portfolio of products including thermal energy meters, heat cost allocators, electronic water meters, and radio communication modules. Their business model focuses on manufacturing, software solutions, and providing professional support to partners and customers. Sontex maintains a strong market position with international subsidiaries and a wide partner network. The website demonstrates a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern frameworks and includes SEO and accessibility considerations. Security posture is good with HTTPS and cookie consent mechanisms, though some improvements in security headers and library updates are recommended. Overall, Sontex SA presents a trustworthy and professional online presence aligned with its business operations.

S

Sontex SA

sontex.eu

73

Sontex SA is a Swiss-based company specializing in innovative measurement systems for energy and water resource optimization. The company offers a broad range of metering products including thermal energy meters, heat cost allocators, electronic water meters, and radio modules, supported by digital platforms such as My Sontex. Sontex maintains a strong international presence with subsidiaries and partners across Europe and beyond. The website reflects a professional and consistent brand image with comprehensive business and legal information, targeting energy suppliers, realtors, and building automation professionals. Technically, the site is built on WordPress with modern plugins and libraries, though some components like jQuery are outdated. Security posture is good with HTTPS and cookie consent mechanisms, but could be improved with updated libraries and enhanced security headers. Overall, the domain registration and WHOIS data align well with the business claims, indicating a legitimate and trustworthy entity.

C

CEIM, Confederación Empresarial de Madrid

ceim.es

49

CEIM, Confederación Empresarial de Madrid, is a well-established business association representing over 237,000 companies and more than 150 business associations in the Madrid region since 1978. The organization focuses on defending and promoting the interests of Madrid's business community through various services including labor affairs, innovation, investor services, and communication. The website reflects a mature digital presence built on WordPress with Elementor, featuring modern SEO and accessibility practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though lacks a dedicated security policy or incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a broad business audience effectively.

A

Albert Schweitzer Stiftung für unsere Mitwelt

albert-schweitzer-stiftung.de

56

Albert Schweitzer Stiftung für unsere Mitwelt is a German non-profit organization dedicated to animal welfare, specifically targeting the abolition of factory farming. The website serves as an educational and advocacy platform, providing detailed information on animal species affected by intensive farming, current campaigns, and ways for the public to engage and support the cause. The organization maintains a strong presence on multiple social media platforms and offers newsletters to keep supporters informed. Technically, the website employs modern web technologies including Bootstrap 5.2, Select2, and integrates third-party services such as Google Tag Manager, Google Analytics, Facebook Pixel, and CleverReach for newsletters. Hosting appears to be on Amazon AWS infrastructure, ensuring reliable performance and scalability. The site is mobile-optimized with good accessibility and SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security headers and a published security policy or incident response plan are not evident. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. The lack of direct contact emails or phone numbers is mitigated by a contact form. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

V

Vaizdozmones.lt

vaizdozmones.lt

57

Vaizdozmones.lt is a Lithuanian-based professional video production company offering a wide range of creative services including videoreklama, social advertising, product filming, TV projects, event filming, live streaming, podcasts, and photography. The company targets businesses and organizations seeking high-quality video content to enhance their marketing and communication efforts. Their market position is supported by a portfolio of known clients and a consistent brand presence. Technically, the website is built on WordPress with a modern theme and plugins, optimized for mobile and SEO, and hosted by a reputable provider. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and formal security policies. Privacy compliance is basic with no visible privacy or terms pages. Overall, the website is professional, trustworthy, and content-rich, but could improve in security and compliance documentation.

E

eD group

ed.cz

61

eD group is a large technology holding operating primarily in Central Europe, focusing on IT distribution, software solutions, digital marketing, and e-commerce. The group comprises several subsidiaries specializing in various IT and technology sectors, serving a broad B2B audience. Their market position is strong, with partnerships with major global brands and a comprehensive portfolio of services. The website reflects a mature digital presence with modern technologies and good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and policies could be improved. The absence of WHOIS data limits domain trust assessment but the professional presentation and detailed business information support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response policies, and adding a security.txt file.

I

Inovcorp

workky.com

65

Workky is a Portuguese web-based platform developed by Inovcorp, focused on simplifying internal business process management through modular solutions tailored for various executive roles. The platform integrates with multiple ERP systems and includes compliance features such as a whistleblowing portal, positioning itself as a comprehensive B2B SaaS solution for medium-sized businesses. The website demonstrates good digital maturity with modern technologies including jQuery, Google Tag Manager, and Crisp chat, and shows good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response contacts. The absence of WHOIS domain registration data is a notable concern, impacting domain legitimacy and trustworthiness. Overall, the platform appears professional and trustworthy from a business and technical perspective but would benefit from improved transparency in domain registration and enhanced security disclosures.

S

SigmaNet

sigmanet.lv

68

SigmaNet is a well-established Latvian hosting and telecommunications provider with over 25 years of experience, offering a range of services including email hosting, web hosting, domain registration, VPS, server colocation, and SSL certificates. The website reflects a professional and consistent brand image targeting businesses and individuals in Latvia seeking reliable hosting solutions. The company maintains a strong market position supported by partnerships with recognized organizations such as NIC.lv and CERT.lv. Technically, the website employs a modern JavaScript stack including jQuery, jQuery UI, Remodal, Photoswipe, and integrates analytics and marketing tools like Google Analytics, Facebook Pixel, and Hotjar. The site is mobile optimized with good SEO practices and clear navigation, although accessibility features are basic. Performance is moderate with room for improvement. From a security perspective, the site uses HTTPS and SSL certificates, includes a login form with POST method, and implements cookie consent mechanisms. However, explicit security headers are not detected, and no dedicated security or incident response policies are published. WHOIS data is unavailable due to query limits, slightly reducing trust but the overall legitimacy is supported by the website content and partner affiliations. Overall, SigmaNet's website demonstrates a solid business and technical foundation with good privacy compliance and marketing transparency. Strategic improvements in security headers, incident response documentation, and WHOIS transparency would enhance trust and security posture.

M

Magnite

spotx.tv

66

Magnite is a leading independent sell-side advertising company specializing in programmatic advertising technology across multiple channels including Connected TV (CTV), streaming, online video, display, and audio. The company serves media owners and advertisers globally, providing advanced technology and services to optimize advertising revenue and audience targeting. The website reflects a mature enterprise with a strong market position, supported by multiple industry awards and recognitions. Technically, the site is built on WordPress with modern analytics and marketing tools such as Google Tag Manager, Marketo, Hotjar, and LinkedIn Insight, ensuring good digital maturity and SEO optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR indicators. Overall, Magnite presents a professional, trustworthy, and well-structured online presence suitable for its enterprise audience.

S

STEEL RING TŘINEC s.r.o.

steelring.cz

46

STEEL RING TŘINEC s.r.o. operates a professional motorsport racing circuit in Třinec, Czech Republic, specializing in kart racing, motorbike training, and hosting various motorsport events. The company also offers hospitality services including a restaurant and breakfast terrace, targeting motorsport enthusiasts, racers, and corporate clients for private events. The website reflects a well-established regional business with a clear focus on motorsport and entertainment services. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, ensuring a responsive and user-friendly experience. The presence of cookie consent and GDPR compliance pages indicates attention to privacy regulations. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers could be improved. The absence of public WHOIS data suggests privacy protection, which is reasonable for a small business. Overall, the site is professional, trustworthy, and provides clear contact information and social media presence.

The website www.comenius.cz represents a small Czech non-profit organization named COMENIUS, operated by PIXMAN s.r.o., focused on promoting education, culture, science, and technical cooperation. Founded in 1990, it supports international contacts and projects aimed at societal development in the Czech Republic. The website content is primarily in Czech and includes references to cultural heritage and educational initiatives. Technically, the site uses older JavaScript libraries such as jQuery 1.7.2 and jQuery UI 1.8.20, along with Bootstrap and Google Analytics for visitor tracking. The site includes a cookie consent banner with express consent, indicating some level of privacy compliance, but lacks visible privacy policy or terms of service pages. Security posture is moderate with no HTTPS or security headers explicitly confirmed in the data, and outdated libraries present potential vulnerabilities. WHOIS data is unavailable, limiting domain legitimacy verification and reducing trust scores. Overall, the site is functional but basic in design and technical implementation, with moderate trustworthiness and compliance.

ELEKTRO-LUMEN, s. r. o. is a Czech-based manufacturer specializing in innovative and environmentally responsible LED lighting solutions for public and urban spaces. With over 30 years of experience, the company emphasizes certified products such as DarkSky Approved and BLUE FREE™ technologies that minimize light pollution and blue light emissions. Their market position is strengthened by multiple design awards and ISO certifications, targeting municipalities, urban planners, and lighting designers across Europe. Technically, the website employs modern JavaScript libraries and tracking tools, hosted on a Czech provider, with good mobile optimization and user experience. Security posture is adequate with HTTPS and secure forms, but lacks some advanced security headers and explicit cookie consent mechanisms. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements in security policies and incident response disclosures are recommended.

ELEKTRO-LUMEN, s. r. o. is a Czech company specializing in the development and manufacturing of LED lighting solutions for public and interior spaces, with over 30 years of experience. The company emphasizes environmentally responsible lighting solutions, including products certified under DarkSky Approved and BLUE FREE™ standards, targeting municipalities, urban planners, and environmentally conscious customers. Their market position is strong within the Czech Republic and Europe, supported by international design awards and certifications. Technically, the website employs modern web technologies including Google Tag Manager and responsive design, offering a professional user experience with good SEO and mobile optimization. Security posture is solid with HTTPS and secure form practices, though improvements are recommended in security headers and cookie consent mechanisms. The WHOIS data is privacy protected, which is common for .eu domains, and does not raise immediate concerns. Overall, the website and business present a trustworthy and professional image with room for enhanced privacy compliance and security transparency.

Linguaschools is a reputable network of Spanish language schools operating primarily in Spain and Latin America, offering a wide range of Spanish courses including intensive, combined, individual, semi-intensive, exam preparation, and online classes. The company emphasizes cultural immersion alongside language learning, targeting students and travelers seeking authentic experiences. The website is professionally designed, multilingual, and provides comprehensive information about courses, destinations, and staff, reflecting a mature digital presence. Technically, the website employs modern tracking and analytics tools such as Google Tag Manager and Google Analytics, integrates Google Maps for location visualization, and uses a cookie consent tool to comply with privacy regulations. The site is mobile-optimized and loads with moderate performance. However, some security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating good privacy compliance. No critical vulnerabilities or suspicious patterns were detected. The lack of WHOIS data limits domain registration analysis, but the overall trust signals and business consistency support legitimacy. Overall, Linguaschools presents a low-risk profile with strong business credibility and good privacy practices. Strategic improvements in security headers and incident response disclosures could further enhance their security posture.

GM Approved Special Tools and Equipment operates an e-commerce platform specializing in the sale of GM approved special service tools and equipment targeted primarily at automotive dealers and service professionals. The website offers an online catalog, dealer services requiring login, promotions for authorized dealers, and additional resources such as software downloads and virtual tool crib access. The business appears to be newly established in 2024, focusing on a niche market within automotive manufacturing and retail sectors. The platform is designed to serve authorized dealers and professionals with specialized equipment needs.

C

Cēsis 2025

cesis2025.lv

57

The website www.cesis2025.lv is dedicated to promoting Cēsis as the Latvian Cultural Capital for the year 2025. It serves as a platform to inform visitors about national and international cultural events throughout the year, emphasizing the theme “Culture in heads, castles, yards.” The site targets the Latvian cultural community and the general public interested in cultural activities in Latvia. The business model revolves around cultural promotion and event hosting, positioning Cēsis prominently in the cultural landscape of Latvia. Technically, the site is built on WordPress using the Astra theme and Elementor page builder, integrating plugins for event management and SEO optimization. It employs Google Analytics for visitor tracking and demonstrates good mobile optimization and SEO practices. Security-wise, the site uses HTTPS and modern WordPress components but lacks explicit security headers and visible privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain legitimacy verification, but the site content and branding appear consistent and professional. Overall, the site is well-structured and trustworthy for its cultural promotion purpose.

T

TagFly

tagfly.io

56

TagFly is a technology company specializing in providing precise marketing tracking solutions for Shopify stores by combining client-side and server-side tracking to deliver accurate data to Google Analytics 4. The company operates a professionally designed WordPress website with a focus on ease of integration and enhanced data accuracy for e-commerce merchants. Their market position is niche, targeting Shopify store owners and digital marketers seeking improved tracking and analytics capabilities. The business is relatively new, founded in 2024, and registered in Vietnam under XIPAT Flexible Solutions. Technically, the website leverages modern web technologies including WordPress with the Bricks theme builder, Yoast SEO for optimization, and integrates Google Analytics and Google Tag Manager for tracking. Hosting and domain registration are managed via Cloudflare, ensuring good SSL configuration and performance. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the website uses HTTPS and employs client and server-side tracking to reduce data loss. However, it lacks advanced security headers and does not publish formal security or incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Contact information is clearly provided, enhancing business credibility. Overall, TagFly presents a trustworthy and professional online presence suitable for its target market. Strategic improvements in privacy compliance, security headers, and incident response transparency would further strengthen its security posture and user trust.

G

Gregor Tools & Moulds

nastrojarna-gregor.cz

46

Gregor Tools & Moulds is a Czech family-owned manufacturing company specializing in engineering production, including the manufacture of moulds, jigs, fixtures, stamping, and bending tools. With over 30 years of experience and a stable customer base, the company positions itself as a reliable provider in the manufacturing sector. The website reflects a professional and consistent brand image, targeting industrial clients and businesses requiring precision tooling services. The business model is primarily B2B, focusing on quality and engineering expertise. Technically, the website is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The presence of Google Analytics and cookie consent mechanisms shows awareness of digital marketing and privacy compliance, though explicit privacy and terms policies are missing. Security posture is adequate with HTTPS and some best practices but lacks explicit security policies or incident response information. Overall, the website is trustworthy and professional, with room for improvement in privacy and security transparency.

K

KOHUT Třinec s.r.o.

kohut.eu

45

KOHUT Třinec s.r.o. is a Czech Republic-based company specializing in comprehensive gas and piping works, including repair and maintenance of gas equipment, CNC laser and plasma cutting, and metal fabrication services. The company targets industrial clients primarily in the Moravskoslezský region, offering specialized technical services with a focus on quality, reliability, and flexibility. Their market position is that of a regional specialist with a medium-sized operational scale. Technically, the website employs modern JavaScript libraries and Google Analytics, but lacks advanced CMS or hosting details. Security posture is moderate with HTTPS usage but missing security headers and cookie consent mechanisms. The company maintains GDPR compliance through a dedicated policy page and provides clear contact information and certifications, enhancing business credibility. Overall, the website is professional and trustworthy, though improvements in security and privacy compliance are recommended.

D

DREAM PROperty s.r.o.

kolejjinak.cz

44

Kolej Jinak is a small hospitality business providing student and group accommodation in Ústí nad Labem, Czech Republic. The company operates seven newly renovated apartments located near the UJEP university campus and city center, targeting students and individuals seeking convenient housing. The business is owned by DREAM PROperty s.r.o., which is disclosed in the website content and EU funding project information. The website is professionally designed with clear navigation, mobile optimization, and relevant content focused on accommodation services. Technically, the website uses a modern but somewhat dated tech stack including jQuery 1.11.1, Slick Carousel, and Magnific Popup, integrated with Google Tag Manager and Google Analytics for marketing and analytics. The site is served over HTTPS with cookie consent mechanisms implemented, indicating good privacy compliance. However, some security best practices such as security headers and incident response information are missing. From a security perspective, the site shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and business information appear trustworthy. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, Kolej Jinak presents a credible and professional online presence for its accommodation services, with room for improvement in security policies and domain registration transparency. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to improve trustworthiness.

S

Úvod - Sklípek na masaryčce

sklipeknamasarycce.cz

45

The website www.sklipeknamasarycce.cz represents a small hospitality business offering a unique wine cellar rental experience in the city center of Ústí nad Labem, Czech Republic. The business targets individuals and companies seeking venue space for private celebrations, corporate events, and wine tastings. The site provides detailed information about rental options, pricing, catering, and additional services such as accommodation. The presence of an age verification popup indicates compliance with legal requirements for alcohol-related content. Technically, the website employs a modern JavaScript stack including jQuery, Slick Carousel, Magnific Popup, and Google Tag Manager for analytics and marketing. The site is mobile responsive with a cookie consent mechanism, although it lacks explicit privacy and terms of service pages. Security posture is moderate with HTTPS enforced and some privacy controls, but missing HTTP security headers and formal policies reduce overall security maturity. From a security and compliance perspective, the site shows good practices such as age verification and cookie consent but lacks documented privacy policies and incident response contacts. The absence of WHOIS data limits domain legitimacy verification, though the website content and contact details appear professional and consistent with a legitimate small business. Overall, the site is functional and professionally presented with moderate technical and security maturity. Strategic improvements in privacy documentation, security headers, and WHOIS transparency would enhance trust and compliance.

A

AK 1324

ak1324.cz

36

AK 1324 is a Czech Republic-based specialist company in stainless steel materials and metal processing services, operating since 1997. They offer a wide range of stainless steel products including sheets, tubes, profiles, rods, and cuttings, alongside custom machining, waterjet cutting, and plasma cutting services. The company targets industrial and manufacturing clients, positioning itself as a trusted supplier with modern equipment and skilled production capabilities. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, and integrates Google Analytics and GDPR-compliant cookie management. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers. WHOIS data is unavailable, which limits domain trust assessment but the website content and contact information suggest a legitimate business. Overall, the site is professional, well-structured, and compliant with privacy regulations.

D

Drivalia Lease Czech Republic s.r.o.

drivalia.cz

64

Drivalia Lease Czech Republic s.r.o. operates a professional website offering operativní leasing (operational leasing) and fleet management services primarily targeting businesses and drivers in the Czech Republic. The company positions itself as a world leader in car-as-a-service with over 50 years of experience across 30 countries, providing tailored leasing products, fleet solutions, and digital assistance services. The website is well-structured, multilingual, and integrates modern web technologies including Google Tag Manager and analytics, ensuring a professional digital presence. Social media channels and sustainability initiatives further enhance brand trust. Technically, the site is well-optimized for performance, mobile responsiveness, and accessibility, with comprehensive privacy and cookie policies indicating GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and a security.txt file added. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but the overall business legitimacy is supported by the website content and external references. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure info, and improving incident response transparency.

C

Cityprint s.r.o.

cityprint.sk

58

Cityprint s.r.o. is a Slovak-based small graphic design studio offering a comprehensive range of creative services including graphic design, 3D visualization, product photography, video and audio editing, social media content creation, and web services. The company has a well-established online presence since 2013 and leverages modern web technologies such as WordPress with Elementor and WooCommerce to deliver its services. The website features a custom-built barcode generator tool that requires user consent, demonstrating attention to user privacy and interactivity. Social media integration and structured data enhance the company's digital footprint and SEO performance. Technically, the website is built on a mature and widely used CMS platform with modern plugins and libraries. It employs HTTPS with valid SSL certificates and includes cookie consent mechanisms compliant with GDPR. However, the site lacks explicit privacy and terms of service pages, and no advanced security headers were detected, indicating room for improvement in security hardening. Analytics usage is moderate, primarily through Google Analytics and Jetpack Stats. From a security perspective, the site shows good baseline practices such as HTTPS enforcement and cookie consent but could benefit from implementing additional security headers and publishing security policies or incident response contacts. No vulnerabilities or suspicious activities were detected in the content or WHOIS data. The domain registration is consistent with the business claims, with DNSSEC enabled and a domain age appropriate for the business history. Overall, Cityprint s.r.o. presents a professional and trustworthy online presence with solid technical foundations. Strategic enhancements in privacy documentation, security headers, and incident response transparency would further strengthen its security posture and compliance standing.

G

Grandem Group

grandem.lv

42

Grandem Group is a creative and dynamically progressing agency based in Latvia, specializing in graphic design and web solutions. Their services include website development, graphic design, SEO optimization, branding, banner creation, video production, and logo design. The company targets both corporate and private clients, emphasizing an individual approach and responsibility, positioning itself as a reliable partner in its industry. The website is professionally designed, mobile-optimized, and uses modern technologies such as WordPress, Bootstrap, and Google Analytics, supported by Cloudflare DNS services. Security posture is good with HTTPS enforced and no exposed sensitive data, though some improvements are recommended such as adding security headers and fixing broken images. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the website is trustworthy and professional, with clear contact information and social media presence.

B

Ballery decoration

ballery.lv

55

Ballery decoration is a Latvian small business specializing in event decoration services for private and corporate events, including weddings, corporate parties, and private celebrations. The company offers a range of decoration services such as balloon garlands, photo zones, table and room decorations, lighting elements, floristics, and aerodesign. Operating since 2018, Ballery targets local Latvian customers and maintains an active online presence with social media integration. The website is built on the Tilda platform, leveraging various Tilda scripts and widgets to provide an interactive user experience including a multi-step cost estimation quiz form. The technical infrastructure includes modern tracking and marketing tools such as Google Analytics, Google Ads, and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and secure form handling, but lacks advanced security headers and published privacy policies, which are recommended for compliance and trust enhancement. Overall, the website is professional, user-friendly, and trustworthy, though improvements in privacy compliance and security best practices would strengthen its risk profile.

F

FURNBALTIC

furnbaltic.com

54

FURNBALTIC is a newly established small retail e-commerce business specializing in Baltic-inspired furniture, accessories, and interior design services. The website presents a professional and consistent brand image targeting general consumers interested in Baltic design aesthetics. The business model focuses on curated furniture sales and consultation services, positioning itself in a niche market segment. Technically, the website uses a modern tech stack including Bootstrap 4, jQuery, and popular analytics tools such as Google Analytics and Facebook Pixel. The site is mobile optimized with good user experience and clear navigation. Security posture is moderate with basic client-side validation and cookie consent mechanisms but lacks advanced security headers and DNSSEC. Privacy compliance is addressed with a privacy policy and cookie banner indicating GDPR awareness. The domain is very new, consistent with a recent business launch, and registered through a reputable registrar without privacy protection. Overall, the website is functional and professional but could improve security and compliance transparency.

K

Krone Art SIA

kroneart.com

61

Krone Art SIA is a Latvian small business specializing in premium tiling services, including bathroom and shower tiling. The company positions itself as a provider of high-quality craftsmanship and premium customer service within the Latvian market. Their website reflects a professional and consistent brand image, targeting customers seeking excellence in tiling and renovation services. Technically, the website is built on the Multiscreensite CMS platform, utilizing modern JavaScript libraries such as jQuery, Google Analytics, and Snowplow for analytics, and Snipcart for e-commerce capabilities. The site is mobile-optimized and includes privacy and cookie policies compliant with GDPR standards. Security posture is adequate with HTTPS enforced, but lacks some recommended security headers and explicit security policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts trustworthiness. Overall, the website is professional, functional, and trustworthy from a business and user perspective, but would benefit from improved domain registration transparency and enhanced security headers.

S

SIA RĪGAS JURISTS

rigasjurists.lv

53

SIA RĪGAS JURISTS is a Latvian legal and translation services provider specializing in professional legal consultations, document preparation, and certified translations with notary attestations. The company targets clients locally in Riga and across Latvia, as well as international clients requiring legal and translation support. The website presents a professional image with clear service offerings and contact information, positioning the company as a trusted small business in its sector. Technically, the website is built on the Tilda CMS platform, utilizing standard web technologies including jQuery and Google Analytics. The site is mobile-optimized and provides a good user experience, although some improvements in accessibility and SEO could be made. Security posture is moderate; HTTPS is implied but no security headers were detected, and no privacy or cookie policies are present, indicating room for compliance improvements. Overall, the site is safe, professional, and functional, but lacks some advanced security and privacy features.

1PetShop.lt is an established online retailer specializing in pet supplies and veterinary pharmacy products, primarily serving customers in Lithuania and Latvia. The business operates under the legal entity SIA "Vet Pro" and offers a wide range of products including pet food, accessories, and hygiene items. The website is professionally designed with clear navigation and a focus on user experience, targeting pet owners seeking convenient online shopping options. The company leverages modern digital marketing and analytics tools such as Google Analytics and Facebook Pixel to optimize customer engagement and sales. Technically, the website employs Cloudflare for DNS and CDN services, ensuring reliable hosting and performance. The site uses custom CSS and JavaScript, with no common CMS detected, indicating a proprietary or custom-built platform. Mobile optimization and SEO practices are well implemented, contributing to a good overall technical maturity. However, some security headers are missing, and there is room for improvement in explicit security policies and incident response disclosures. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR, reflecting a responsible approach to privacy and data protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data shows a recently registered domain consistent with the business profile, suggesting a domain renewal or rebranding rather than a new business. Trust indicators such as Visa Secure and MC ID Check logos enhance customer confidence. Overall, 1PetShop.lt presents a trustworthy and professional e-commerce platform with solid business credibility and a good security posture. Strategic improvements in security headers and incident response transparency would further strengthen its risk management and compliance standing.

V

Votre voyage SIA

votrevoyagesia.com

59

Votre voyage SIA is a small, specialized travel agency based in Latvia, offering comprehensive travel-related services including flight bookings, visa assistance, study abroad consultancy, and citizenship application support. The company targets travelers, students, and professionals primarily in Europe and the Middle East, positioning itself as a trusted partner for global mobility. The website is built on the Webador CMS platform, leveraging modern web technologies and analytics tools, with a focus on user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though the absence of privacy and terms of service pages indicates room for compliance improvement. The missing WHOIS registration data raises concerns about domain legitimacy, impacting overall trust. Strategic recommendations include enhancing privacy compliance, adding security headers, and clarifying domain registration status to improve credibility and security.