Security Directory

S

SeenThis AB

joinapart.co

59

Sitestream, operated by SeenThis AB, is a technology company specializing in optimizing website image delivery to reduce data transfer and improve user experience while contributing to sustainability by lowering internet carbon emissions. The company targets website owners and developers seeking efficient image streaming solutions, offering a SaaS model with easy integration options including a WordPress plugin and script implementation. The website is professionally designed with consistent branding and clear navigation, reflecting a small but focused technology provider based in Sweden. Technically, the website leverages modern frameworks such as Svelte and employs a fast, mobile-optimized infrastructure with CDN usage for content delivery. While the site uses HTTPS and some security headers, there is room for improvement in security policies and headers such as Content-Security-Policy. No analytics or advertising scripts were detected, indicating a privacy-conscious approach. The site provides basic privacy and cookie policies but lacks a cookie consent mechanism. From a security perspective, the site demonstrates good practices with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit incident response information and vulnerability disclosure policies suggests areas for enhancement. The WHOIS data aligns well with the website's claims, supporting legitimacy and trustworthiness. Overall, Sitestream presents a credible and professional online presence with a strong focus on sustainability and web performance. Strategic improvements in security policy transparency, cookie consent, and accessibility would further strengthen its security posture and compliance standing.

L

Livesport Company

livesport.eu

68

Livesport Company is a Czech technology firm specializing in delivering instant sports information to a global audience of approximately 100 million fans. The website reflects a mature digital presence with a modern technical infrastructure based on Nuxt.js and integration of Google Tag Manager for analytics and marketing. The company positions itself as a significant player in the sports information technology sector, targeting sports enthusiasts worldwide. The website design is professional and consistent, optimized for mobile devices with good SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented; however, there is room for improvement in security headers and transparency regarding privacy and incident response policies. Overall, the site is safe, trustworthy, and well-maintained, though it lacks explicit privacy and terms of service documentation.

B

BITWARE j.d.o.o.

bitware.hr

41

BITWARE j.d.o.o. is a Croatian software development company specializing in web and mobile application development, with a strong focus on client relationships and modern technologies. The company has a solid portfolio including projects for cultural institutions, energy companies, and retail businesses, positioning itself as a reputable local technology service provider. Their website is built on WordPress with modern frameworks and includes essential features such as contact forms with reCAPTCHA and cookie consent mechanisms. Security posture is adequate with HTTPS and spam protection, though improvements in security headers and incident response documentation are recommended. Overall, the company demonstrates a professional online presence with clear business information and a trustworthy domain registration history.

B

Meine Onlineanträge - Behörden-Serviceportal

behoerden-serviceportal.de

48

The website www.behoerden-serviceportal.de is a German government service portal designed to provide citizens and businesses with digital access to administrative services and online applications. The portal aims to facilitate 24/7 access to government services, enhancing convenience and efficiency for its target audience. The site is hosted on Deutsche Telekom infrastructure, indicating a reliable hosting environment appropriate for government operations. The technical infrastructure employs modern web technologies including Duet Web Components, ensuring mobile optimization and a good user experience. However, SEO is limited due to the robots meta tag set to noindex, nofollow, which restricts search engine indexing. Security posture is weak as no security headers or explicit security policies are detected, and privacy compliance is minimal with no visible privacy or cookie policies. The domain registration data aligns with the expected hosting and business profile, supporting legitimacy. Overall, the site is functional and professional but requires improvements in security, privacy compliance, and SEO to enhance trust and visibility.

D

die neue welle

die-neue-welle.de

55

Die neue welle is a regional German radio station focused on delivering a diverse music mix spanning several decades. It targets listeners primarily in Baden-Württemberg and the Südpfalz region, offering broadcasts via traditional FM, digital DAB+, and online streaming platforms including apps and smart speakers. The website reflects a professional digital presence with good design and user experience, supporting the station's market position as a trusted regional media outlet. Technically, the site employs modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, hosted on 1&1 IONOS infrastructure. Security posture is adequate with HTTPS enabled but lacks some advanced security headers and explicit privacy and cookie policies, indicating room for compliance improvement. Overall, the site is safe, trustworthy, and well-structured but would benefit from enhanced transparency and security practices.

B

Badische Neueste Nachrichten

bnn.de

61

Badische Neueste Nachrichten (BNN) is a well-established regional daily newspaper serving Karlsruhe and its surrounding regions in Germany. The website provides comprehensive local news coverage, subscription services, and digital ePaper access, positioning itself as a leading regional media outlet. The business model focuses on subscription revenue, classified ads, and digital content delivery, targeting regional readers interested in local news and events. The company operates under Badendruck GmbH, with a consistent and professional brand presence across its digital platforms. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, and Chartbeat analytics, alongside a consent management platform to ensure GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting and DNS are managed via nodesecure.com servers, indicating professional infrastructure. From a security perspective, the site uses HTTPS and cookie consent mechanisms effectively, though explicit security headers are not evident in the provided data. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and terms of service are present and comprehensive, supporting regulatory compliance. The absence of direct contact emails or phone numbers in the HTML suggests contact is managed through dedicated service portals. Overall, BNN.de demonstrates a mature digital presence with strong business credibility and compliance posture. Strategic improvements could include enhanced security header implementation and publishing explicit incident response contacts to further strengthen trust and security posture.

S

Sdružení učňovských zařízení ČR, z. s.

suzcr.cz

53

Sdružení učňovských zařízení ČR, z. s. is a Czech non-profit association dedicated to vocational training institutions. The website serves as an informational platform to present the association's goals, members, and activities, targeting vocational schools and educational stakeholders. The organization has an established presence since 2012, reflected in the domain age and consistent content. Technically, the site is built on WordPress using the GeneratePress theme, providing a modern and responsive user experience. However, the site lacks advanced SEO and accessibility features and does not implement privacy or cookie policies, which are important for GDPR compliance. Security posture is basic with HTTPS enabled but missing security headers and incident response information. Overall, the site is functional and professional but could improve in compliance and security transparency.

Apple's App Store website serves as a global platform for app discovery and distribution, supporting millions of users and developers worldwide. As a flagship service of Apple Inc., it holds a dominant market position in the technology and digital retail sectors. The site emphasizes privacy, security, and content quality, reflecting Apple's brand values and commitment to user trust. The website infrastructure is robust, leveraging modern web technologies and optimized for performance and accessibility across devices. Security measures are strong, including HTTPS enforcement and comprehensive security headers, ensuring safe user interactions. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates a mature digital presence with high professionalism and trustworthiness.

4

4networks SK&CZ, s.r.o.

modrastrecha.cz

64

Modrastrecha.cz is a well-established online platform operated by 4networks SK&CZ, s.r.o., targeting individuals interested in housing, construction, renovation, household, and gardening topics primarily in the Czech Republic and Slovakia. The platform offers a rich ecosystem including forums, photo blogs, a marketplace, professional catalogs, and magazine content, positioning itself as a comprehensive community and content hub in its niche. The business model leverages advertising and professional service listings to generate revenue. Technically, the website employs modern web technologies such as StimulusJS, Turbo (Hotwire), and integrates multiple analytics and advertising services including Google Tag Manager, Gemius, and Plausible Analytics. The site is mobile-optimized with good SEO and accessibility practices, although some accessibility features could be enhanced. Performance is moderate, with asynchronous loading of scripts and a clean, professional design. From a security perspective, the site enforces HTTPS and uses a consent management platform for GDPR compliance. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not clearly present, and there is no public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is strong with clear privacy and cookie policies and user consent mechanisms. Overall, the site presents a low-risk profile with good business credibility and technical maturity. The main concern is the lack of WHOIS data, which reduces domain trustworthiness and should be investigated further. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility compliance.

W

wapteka.pl

wapteka.pl

66

Wapteka.pl operates as an online pharmacy based in Poland, offering a broad range of healthcare products including supplements, vitamins, cosmetics, over-the-counter medicines, dermocosmetics, and medical equipment. The website targets a general audience including adults and children, positioning itself as a convenient e-commerce platform for pharmaceutical and wellness products. The business model focuses on retail sales through an online storefront, leveraging digital marketing and social media to reach customers. The company maintains a consistent brand presence and provides clear contact information, enhancing customer trust.

O

OEM Dealer Parts

oem-dealer-parts.ca

10

OEM Dealer Parts operates a Canadian-based e-commerce platform specializing in the sale of OEM automotive parts, primarily for Volkswagen, Audi, RV, and body shop vehicles. The business leverages dealership overstock inventory to offer customers significant discounts, positioning itself as a niche retailer in the automotive parts market. The website is built on the Shopify platform, utilizing modern web technologies and secure payment processing, which supports a reliable and user-friendly shopping experience. However, the absence of publicly available privacy and cookie policies, as well as contact information, limits transparency and may affect customer trust and regulatory compliance. The domain is well-established since 2012, registered with a reputable registrar, and protected against unauthorized transfers, indicating a legitimate business presence.

P

PLAION

primematter.gg

10

PLAION Support is a dedicated customer support portal for PLAION's gaming and digital entertainment products. The website provides assistance for games and services, targeting gamers and customers seeking help with their PLAION accounts and products. The portal is well-branded and consistent with PLAION's corporate identity, offering a search function and contact options primarily through support forms. The site leverages modern web technologies including Nuxt.js, Tailwind CSS, Google Tag Manager, and Cookiebot for cookie consent management, reflecting a mature digital infrastructure.

S

Saxana Group

saxanagroup.cz

8

Saxana Group is a Czech-based company specializing in cleaning services and building management, positioning itself as one of the largest providers in its region. The website content is professionally presented in Czech, targeting both businesses and households. The company offers comprehensive cleaning and facility management services, reflecting a medium-sized enterprise with a consistent brand presence. Technically, the website is built on the ANT CMS platform and incorporates common analytics tools such as Google Analytics and Seznam.cz tracking. While the site is mobile-optimized and well-structured, it lacks visible privacy and cookie policies, which impacts its compliance posture. Security-wise, the absence of security headers and detailed WHOIS data reduces the overall security confidence, although no immediate vulnerabilities are evident from the provided data. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security hardening.

P

Pneu Drnec

pneudrnec.cz

7

Pneu Drnec is a local automotive service provider specializing in tire and auto repair services in Plzeň, Czech Republic. The business focuses on servicing personal vehicle tires, motorcycle tires, off-road tires, and light truck tires, with a specialization in high-speed large-dimension tires. The website presents a professional and consistent brand image targeting vehicle owners in the local area. However, the absence of WHOIS data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Technically, the site uses modern JavaScript and CSS technologies, integrates Facebook SDK and Google Tag Manager, but lacks proper analytics setup and security headers. The security posture is moderate but could be improved with better SSL configuration and security best practices. Overall, the site is functional and informative but requires enhancements in privacy compliance and security to improve trustworthiness.

softinary is a small personal or freelance website design portfolio showcasing multiple responsive website demos and portfolio work. The site targets individuals or small businesses seeking website design services, presenting a clean and professional user interface with clear navigation. The technical infrastructure is based on standard web technologies including HTML5, CSS3, JavaScript, and jQuery, with hosting likely on Netlify as inferred from demo URLs. The site is mobile optimized with moderate performance but lacks advanced SEO and accessibility features. Security posture is basic with no visible HTTPS or security headers information and no cookie or privacy consent mechanisms. The absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Overall, the site is functional and professional but requires improvements in security, privacy compliance, and domain registration transparency to enhance trust and credibility.

S

Ströer SSP GmbH

adscale.de

10

Ströer SSP GmbH operates a sophisticated supply-side platform (SSP) that enables publishers to optimize their digital advertising inventory across display, video, and mobile channels. The platform supports private deals, private auctions, and real-time advertising, providing advertisers access to premium inventory with strong brand safety and anti-fraud measures. The company is positioned as a leading player in the German digital advertising market, supported by its parent company Ströer Digital Group. The website reflects a professional and business-focused approach, targeting publishers and advertisers seeking programmatic advertising solutions. Technically, the website is built on TYPO3 CMS and integrates privacy-conscious tools such as Cookiebot for consent management and Matomo for analytics with DoNotTrack enabled. Hosting and DNS services are provided via Cloudflare, enhancing performance and security. The site demonstrates good mobile optimization and SEO practices, though accessibility could be improved. Security headers are partially implemented, and HTTPS is enforced, indicating a solid security posture. From a security perspective, the site employs best practices including cookie consent with blocking mode, privacy-focused analytics, and brand safety commitments. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers like Content-Security-Policy and X-Frame-Options could be added to strengthen defenses. Incident response and security policy information are not publicly disclosed on the analyzed page. Overall, the website presents a trustworthy and professional digital advertising platform with good privacy compliance and security awareness. Strategic recommendations include enhancing security headers, improving accessibility, and publishing incident response contacts to further build trust and compliance.

OpenPandora GmbH operates a niche technology business focused on the development and support of the Pandora handheld device, a Linux-based portable gaming and productivity computer. The company maintains a dedicated community and software ecosystem, positioning itself as a leader in open handheld gaming devices. The website provides detailed product information, community links, and contact details, reflecting a small but focused business with a loyal user base. Technically, the website uses legacy JavaScript libraries and lacks modern security headers and privacy policies, indicating areas for improvement in digital maturity. Security posture is moderate with domain registration legitimacy but missing DNSSEC and security best practices. Overall, the website is professional and content-rich but requires enhancements in privacy compliance and security to meet modern standards.

The website www.quartzolit.weber currently presents a Cloudflare security challenge page, blocking direct access to its content. This domain appears to be part of a larger corporate ecosystem related to Saint-Gobain and its Weber brand, as indicated by multiple related domains in the analytics mapping. Due to the WAF challenge, no direct business content, contact information, or policies are accessible, limiting the ability to assess the company's market position or services in detail. Technically, the site uses Cloudflare for protection and Google Tag Manager for analytics, indicating a modern approach to traffic management and data collection. However, the lack of visible content and policies reduces transparency and trustworthiness. Security-wise, the presence of Cloudflare's Turnstile captcha is a positive mitigation against automated threats, but the absence of visible security headers or SSL details in the provided data prevents a full security posture evaluation. Overall, the site is protected but inaccessible for detailed analysis, resulting in a low AI score and recommendations to improve transparency and policy disclosures once access is granted.

Saint-Gobain Glass is a major player in the manufacturing sector specializing in glass products, operating as part of the global Saint-Gobain group. The company targets industrial clients and construction sectors with a B2B business model. The website is currently inaccessible due to a Cloudflare security challenge, limiting direct content analysis. The domain registration data supports the legitimacy and long-standing presence of the company in the market. The technical infrastructure includes modern analytics tools like Google Tag Manager and Google Analytics 4, hosted behind Cloudflare for security and performance. However, the lack of visible privacy policies, contact information, and security headers on the landing page indicates areas for improvement in transparency and compliance. Overall, the website's security posture is difficult to assess fully due to access restrictions, but domain data and hosting choices suggest a mature enterprise environment.

M

Můj Caravan

mujcaravan.cz

53

Můj Caravan is a Czech Republic-based e-commerce retailer specializing in accessories and equipment for caravans, motorhomes, camping, and outdoor activities. The website offers a wide range of products including awnings, furniture, grills, kitchenware, toilets, and outdoor gear, targeting caravan and camping enthusiasts primarily in the Czech market. The business positions itself as a niche market leader with a comprehensive product catalog and customer trust signals such as the Heuréka certification and active social media presence. Technically, the website is built on a proprietary e-commerce platform (Golemos) and leverages modern web technologies including JavaScript frameworks, Google Tag Manager, Facebook SDK, and Matomo analytics. The site is mobile-optimized with good SEO and accessibility basics, providing a professional user experience. The presence of multiple tracking and marketing tools is managed with user consent, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses secure login forms. While some security headers are not explicitly detected, the overall posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the website demonstrates a high level of professionalism and trustworthiness, with no signs of content blocking or WAF interference. The lack of public WHOIS data due to privacy protection is common for retail businesses and does not detract from the legitimacy of the site. Strategic recommendations include enhancing security headers and continuing regular audits of third-party scripts to maintain security and compliance.

R

RE/MAX Česká republika

remax-franchising.cz

58

RE/MAX Česká republika operates a franchising business model focused on real estate opportunities within the Czech Republic. The company offers professional support and a proven business model to individuals and businesses interested in entering the real estate market through franchising. The website positions RE/MAX as an established player in the Czech real estate franchising sector, targeting prospective franchisees seeking growth and stability. Technically, the website is built on the Wix platform, leveraging modern JavaScript polyfills and performance optimizations. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, it lacks explicit privacy and cookie policies and does not expose WHOIS registration data, which impacts trust and compliance perception. From a security standpoint, the site enforces HTTPS and includes scripts to harden fetch and XHR requests, but lacks visible security headers and incident response contacts. No vulnerabilities or malicious indicators were detected. Overall, the site is professional and secure but would benefit from enhanced privacy compliance and transparency. The overall risk is moderate due to missing WHOIS data and privacy documentation. Strategic improvements in compliance and security transparency are recommended to strengthen trust and regulatory adherence.

E

Energetická gramotnost | Přednášky pro základní a střední školy

energeticka-gramotnost.cz

49

The website www.energeticka-gramotnost.cz is an educational platform focused on energy literacy, primarily targeting a Czech-speaking audience. It is built on the Wix platform, utilizing Wix's Thunderbolt framework and standard JavaScript polyfills to ensure compatibility and responsiveness. The site appears to be small in scale, with basic content quality and moderate branding consistency. The absence of WHOIS data and registrant information raises concerns about domain registration transparency. Technically, the site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. Security posture is minimal, with no detected security headers or privacy policies, and no visible contact or incident response information. Overall, the site is accessible without WAF or blocking mechanisms, but the lack of privacy and contact details limits its trustworthiness. Strategic improvements in security, privacy compliance, and business transparency are recommended.

I

ilogs

parkinghq.com

55

ParkingHQ is an established online platform founded in 2006 that provides users with access to over 13,000 parking units worldwide. The service enables searching, viewing detailed information, and prebooking parking spaces, targeting drivers and vehicle owners seeking convenient parking solutions. The platform leverages Google Maps API for geolocation and mapping services and integrates prebooking links for select parking units. Technically, the website is built likely on Ruby on Rails, uses modern JavaScript libraries, and is hosted on Conova infrastructure. The site is moderately optimized for performance and accessibility, with basic mobile responsiveness and SEO features. Security-wise, the site uses HTTPS and includes CSRF protection in forms but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the domain is legitimate and long-standing, with no signs of malicious activity or content safety concerns.

e-kurier.net operates as a European courier and freight exchange platform, facilitating partnerships among direct couriers to optimize cargo space and reduce empty runs. The platform offers services such as a partner shop with cooperative agreements and online support, targeting logistics professionals across Europe. The website content is primarily in German and presents a business-focused, professional image with a moderate user base and partner ecosystem. Technically, the site uses traditional web technologies including JavaScript and CSS, but also relies on deprecated Flash content for its news ticker, indicating some legacy infrastructure. Mobile optimization and accessibility are basic, with room for modernization. Security posture is moderate; while the site uses POST for login forms and implements cookie consent mechanisms indicating GDPR awareness, there is no visible HTTPS enforcement or security headers, and the use of Flash poses security risks. WHOIS data is missing or inaccessible, raising concerns about domain registration legitimacy, although the website content and partner links suggest a legitimate business. Overall, the site scores moderately on content quality, technical implementation, security, privacy compliance, and business credibility, with recommendations to improve security practices, update technology, and clarify domain registration details.

E

DEK

echokardiographie-leipzig.de

41

The website echokardiographie-leipzig.de serves as an informational portal for the DEK conference, a specialized event focused on echocardiography within the cardiology community in Germany. It provides details about the conference program, call for abstracts, sponsors, registration, hotels, and venue information. The target audience is primarily medical professionals and researchers interested in cardiovascular ultrasound. The site is built using Adobe Muse with an older JavaScript stack, indicating moderate digital maturity. Mobile optimization is basic, and the site lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS implied but no visible security headers or modern protections. The absence of privacy and cookie policies represents a compliance gap. Overall, the site is functional and professional but would benefit from technical and security improvements to enhance trust and compliance.

SLV GmbH operates a professional e-commerce platform specializing in high-quality lighting products for both residential and commercial customers, emphasizing German engineering and product reliability. The website is well-structured, multilingual, and targets a broad European market with a focus on Germany. The technical infrastructure leverages modern technologies including Spryker Commerce OS, Google Tag Manager, and Usercentrics for consent management, indicating a mature digital presence. Security posture is strong with HTTPS enforced and consent mechanisms in place, though explicit security policies and incident response details are absent. The lack of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, but the overall professional presentation and trust signals mitigate this concern. Strategic recommendations include publishing detailed security and incident response policies, providing direct contact information, and verifying domain registration details to enhance trust.

ALFA ELECTRONIC s.r.o is a small Czech company specializing in the distribution and wholesale of Nikon golf rangefinders, Nikon Sport Optics products, and Aquapac waterproof cases for the Czech and Slovak markets. The company holds exclusive distribution rights, positioning itself as a key player in this niche retail sector. The website is built on WordPress, reflecting a moderate level of digital maturity with a clean and functional design, though lacking advanced SEO and accessibility features. Security posture is basic, with no explicit HTTPS enforcement or security headers detected, and no privacy or cookie policies implemented, indicating room for improvement in compliance and protection. Overall, the business credibility is strong given the domain age, consistent WHOIS data, and clear contact information. Strategic recommendations include enhancing security configurations, implementing GDPR-compliant privacy and cookie policies, and adding incident response information to improve trust and compliance.

S

Soundhire

soundhire.cz

62

Soundhire.cz is a Czech-based company specializing in the rental and technical support of audio and lighting equipment for cultural, VIP, and film/TV events. Established in 2010, the company offers comprehensive event services including professional sound systems, lighting solutions, and authentic props for productions. Their market position is that of a specialized provider catering to event organizers, production companies, and private clients seeking high-quality technical event support. The website is professionally designed, mobile-optimized, and provides clear contact information, reflecting a mature digital presence. Technically, the site uses modern web standards including WebP images and responsive design but lacks advanced frameworks or CMS indications. Security posture is moderate with cookie consent implemented and email obfuscation, though no advanced security headers or policies are published. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious or adult content.

Z

Za branou, z. s.

zabranou.cz

49

Za branou, z. s. is a Czech non-profit organization founded in 2010 dedicated to supporting families and children of incarcerated individuals. The organization offers counseling, family support, social rehabilitation, educational training, and literary competitions. Their website reflects a focused mission with clear navigation and relevant content tailored to their target audience. Technically, the site is built on the Ghost CMS platform, uses modern web technologies including jQuery and Google Analytics, and is hosted with DNS services via Cloudflare and registrar WEDOS. The website is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the organization's claims, supporting legitimacy and trustworthiness.

Protect ACADEMY, led by Lukáš Pešta, is a specialized training organization based in the Czech Republic offering martial arts, tactical, and shooting courses. The academy serves a diverse audience including civilians, security professionals, and military personnel, leveraging international Israeli training methodologies. The website demonstrates a solid technical foundation using modern CSS frameworks and iconography, with moderate performance and good mobile optimization. However, it lacks formal privacy and cookie policies, and no security headers were detected, indicating room for improvement in security posture. The domain registration is consistent with the business claims, enhancing trustworthiness. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

R

React Norway

reactnorway.com

56

React Norway is a specialized event organizer focusing on the React developer community by hosting an annual conference and festival that combines technology talks with live music performances. The event is held in Oslo, Norway, at the Rockefeller venue, and targets frontend developers, React enthusiasts, and tech professionals. The business model revolves around ticket sales, sponsorships, and community engagement through both in-person and online formats. The company has established a consistent brand presence since its founding in 2018 and maintains partnerships with reputable technology companies and sponsors.

A

Assetto

assetto.com

56

Assetto is a Norwegian entrepreneurial corporate finance advisory firm focused on helping entrepreneurs and business owners develop growth strategies, prepare companies for financial transactions, and support them through funding and exit processes. The company operates as a small, specialized consultancy with a strong emphasis on hands-on partnership and strategic involvement. The website reflects a professional and consistent brand image with clear contact channels and client success stories, positioning Assetto as a trusted advisor in its niche market. Technically, the website is built on modern frameworks such as Next.js and React, with good mobile optimization and moderate performance. However, there is room for improvement in SEO and accessibility features. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional but could enhance its compliance and security transparency.

S

Snowball Digital AS

snowball.digital

67

Snowball Digital AS is a Norwegian-based design and technology agency specializing in digital product strategy, UX/UI design, branding, development, and growth marketing. The company targets growth-focused businesses seeking innovative digital solutions and seamless end-to-end experiences. Their market position is that of a specialized boutique agency with a focus on digital transformation and product innovation. Technically, the website is built on modern frameworks such as React and Next.js, leveraging a headless CMS (Crystallize) and integrating analytics tools like Google Analytics and Hotjar. The site is mobile-optimized and presents a professional, consistent brand image. Security-wise, the website uses HTTPS and asynchronous loading of tracking scripts but lacks some security headers and a cookie consent mechanism, which are recommended for improved compliance and security posture. Overall, the domain WHOIS data is privacy protected, which is typical for small agencies, and the website content and contact information support the legitimacy of the business.

S

Schweizer Casino Verband

switzerlandcasinos.ch

48

The Schweizer Casino Verband website serves as the official information portal for the Swiss casino industry, providing details about physical and online casinos, industry reports, player protection initiatives, and job opportunities. The site targets Swiss residents and stakeholders interested in regulated gambling and casino operations. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with a moderate level of mobile optimization and basic accessibility. However, visible PHP warnings indicate backend code issues that could affect user experience and security. Security posture is moderate but lacks visible security headers and privacy compliance documentation. No privacy or cookie policies are present, which is a compliance gap. The site links to official Swiss online casinos and a dedicated player protection partner site, reinforcing its legitimacy and focus on responsible gambling. Overall, the site is professional and informative but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

Č

Český hokej

ceskyhokej.cz

48

Český hokej is the official national ice hockey federation of the Czech Republic, providing comprehensive information, news, and services related to Czech ice hockey. The website serves a broad audience including fans, players, coaches, referees, and other stakeholders, offering news updates, team details, ticket sales, fan engagement zones, and an official merchandise shop. The domain is well-established since 2001, reflecting a mature and authoritative presence in the sports sector. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and integrates analytics tools like Google Tag Manager and Facebook Pixel, ensuring good performance and user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit privacy and security policies are not found in the provided content. Overall, the site demonstrates high professionalism, consistent branding, and trustworthy digital presence, with room for improvement in explicit privacy disclosures and contact information visibility.

Jiří Rostecký operates a well-established Czech business media platform focused on podcasts, mentoring, and consulting services for entrepreneurs, freelancers, and small business owners. The website serves as a content hub and service portal, featuring extensive business-related content and live event promotions. The platform holds a strong market position in the Czech Republic's business media niche, supported by a decade-long domain history and consistent branding. Technically, the website is built on WordPress with modern SEO and performance optimizations including WP Rocket and All in One SEO Pro. It integrates multiple third-party services such as Vimeo, YouTube, Mailjet, and Spotify for media and marketing functionalities. The site is mobile-optimized, fast-loading, and accessible, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforced, comprehensive cookie consent mechanisms, and use of Google reCAPTCHA for bot protection. Security headers are present, and no vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with GDPR-aligned cookie policies and consent banners. Overall, the site presents low risk with high trustworthiness and professionalism. Strategic recommendations include publishing explicit security and incident response policies, adding contact emails or phone numbers for business inquiries, and maintaining regular security audits to ensure ongoing compliance and protection.

F

fintechcowboys.cz

fintechcowboys.cz

48

fintechcowboys.cz is an online Czech-language magazine focused on fintech innovations and financial technology trends. It provides news, analysis, and articles targeting fintech enthusiasts and professionals in the Czech Republic. The website operates on a content publishing and advertising business model, primarily monetized through Google Adsense. The site is hosted on VAS Hosting infrastructure and uses modern web technologies including Matomo analytics and Google Fonts. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved. WHOIS data shows an unusual future domain creation date, which slightly impacts trust but does not detract from the professional presentation of the site. Overall, fintechcowboys.cz is a credible niche fintech media outlet with moderate technical maturity and good privacy compliance.

F

Frenk.ai

frenk.ai

58

Frenk.ai is a newly founded fintech startup (2025) specializing in AI-driven financial advisory services delivered through an interactive gamified platform. The company targets individuals seeking to improve their financial decision-making and literacy. The website presents a professional and modern design with clear calls to action for joining a waitlist for early access. Technically, the site uses Bootstrap for responsive design, Cloudflare for DNS, and Google Analytics for user tracking. The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS enforced and secure form handling, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is partially addressed with a privacy policy and GDPR mention, but no cookie consent mechanism is present. Business credibility is supported by clear contact information and EU data protection claims. Overall, the site is trustworthy and well-positioned for a fintech startup but can enhance security and privacy practices.

N

Nikita Karamov

kytta.dev

54

The website kytta.dev is a personal portfolio and blog of Nikita Karamov, a full-stack web developer and open-source enthusiast. The site showcases personal projects such as Share₂Fedi and Shareon, targeting developers and technology enthusiasts. It positions itself as an individual developer's platform rather than a commercial business. Technically, the site is built using the Zola static site generator with minimal JavaScript and SVG graphics, delivering fast performance and good mobile optimization. The site uses HTTPS and a privacy-friendly analytics service (GoatCounter), but lacks formal privacy and cookie policies, security headers, and incident response information. Security posture is generally good with no visible vulnerabilities, but could be improved with additional headers and policies. Overall, the site is trustworthy, professional, and safe for general audiences.

S

sicily s. r. o.

nasucetni.cz

45

Náš účetní is a small Czech accounting service provider operating under the company sicily s. r. o. The company offers comprehensive accounting advisory and bookkeeping services including tax evidence, payroll accounting, and personnel management. With over 15 years of experience, the firm emphasizes direct client contact, efficiency, and reducing paperwork by digitizing documents. The website reflects a professional business focused on small and medium-sized enterprises and individual entrepreneurs in the Czech Republic. Technically, the site is built on Joomla CMS with UIkit and RokSprocket frameworks, providing a modern and mobile-optimized user experience. However, the absence of WHOIS data and lack of privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate with some best practices like CSRF tokens but missing HTTP security headers and explicit SSL configuration details. Overall, the site is functional and trustworthy but would benefit from enhanced security and compliance measures.

P

Park Technology

themagicstamp.com

59

Magic Stamp, operated by Park Technology, offers a digital loyalty platform designed for small businesses, focusing on mobile and coffee loyalty solutions. The company provides an easy-to-use app combined with a physical stamp device to enhance customer retention. The website positions Magic Stamp as an affordable and effective loyalty solution with a clear target audience of small businesses seeking simple digital loyalty programs. The domain is well-established since 1999, supporting the business's credibility and longevity. Technically, the website is built on the Squarespace CMS platform, utilizing modern web technologies including JavaScript, jQuery, and integrations with marketing and analytics tools such as Google Analytics, Facebook Pixel, and HubSpot. The site is mobile-optimized and demonstrates good design and user experience, though accessibility features are basic. Performance is moderate, typical for a CMS-based site. From a security perspective, the site enforces HTTPS but lacks DNSSEC and HSTS headers, which are recommended for enhanced security. No explicit security policies or incident response contacts are published, representing an area for improvement. The domain is locked with multiple client prohibitions, indicating protection against unauthorized transfers or deletions. Privacy compliance is partial, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, Magic Stamp's website is professional and trustworthy, with moderate security and privacy compliance. Strategic improvements in security headers, privacy documentation, and incident response transparency would enhance the site's security posture and user trust.

The website musiccityclub.cz is currently a parked domain with no active business content or services. It displays a domain-for-sale message and embeds third-party advertising and tracking scripts. The site lacks any privacy, cookie, or terms of service policies, and no contact or company information is provided. Technically, the site uses basic JavaScript and iframes served via AWS Cloudfront CDN but lacks modern security practices such as HTTPS enforcement and security headers. The WHOIS data is suspicious with a future creation date and parking name servers, indicating the domain is not actively managed for business purposes. Overall, the site has poor content quality, low trustworthiness, and minimal compliance with privacy or security standards.

A

AudioMaster, a. s.

music-city.cz

54

Music City, operated by AudioMaster, a. s., is a Czech Republic-based e-commerce retailer specializing in musical instruments, sound and lighting technology, DJ equipment, and home recording gear. The company maintains a strong market presence with multiple physical stores in Prague, Brno, and Uherské Hradiště, complemented by a comprehensive online store. Their business model focuses on providing musicians and music enthusiasts with a wide range of products at competitive prices, supported by free shipping and a three-year warranty, enhancing customer trust and satisfaction. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, Cookiebot for cookie consent management, and analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized and demonstrates good SEO and accessibility practices. However, there is room for improvement in security headers implementation and further hardening of form security. From a security perspective, the site uses HTTPS and has a robust cookie consent mechanism, indicating compliance with GDPR and privacy best practices. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a notable concern, potentially impacting domain trustworthiness, but the visible business information and contact details mitigate this risk somewhat. Overall, Music City presents a professional and trustworthy online presence with a solid business foundation. Strategic improvements in domain registration transparency and enhanced security headers would further strengthen their security posture and credibility.

M

Metrostav Development

nadskalou.cz

51

Nadskalou.cz is a professionally developed website representing a new residential real estate project called Nad skálou Barrandov, located in Prague 5. The project is managed by Metrostav Development, a reputable construction and development company. The website effectively communicates the project's value proposition, emphasizing proximity to nature and urban amenities. The technical infrastructure is modern, leveraging ProcessWire CMS, Cookiebot for consent management, and Google Tag Manager for analytics and marketing. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent. Overall, the website presents a trustworthy and professional image suitable for its target audience of prospective home buyers seeking quality residential options in Prague.

M

Metrostav Development

viladomyumlyna.cz

50

Viladomy U Mlýna is a real estate development project focused on creating a new urban residential quarter in Vysočany, Prague. The website represents a medium-sized real estate developer, Metrostav Development, offering above-standard housing solutions. The site targets potential home buyers and residents interested in modern city living combined with natural surroundings. The business model centers on property development and sales within the Czech Republic real estate market. Technically, the website is built on the ProcessWire CMS and employs modern front-end technologies such as Swiper.js, Tippy.js, and Google Tag Manager, ensuring a good user experience with mobile optimization and SEO best practices. The site uses HTTPS and integrates a comprehensive cookie consent mechanism via Cookiebot, reflecting good privacy compliance and transparency in advertising and tracking practices. However, the WHOIS data shows a suspicious domain creation date in the future, which raises concerns about registration legitimacy. No explicit contact information or terms of service pages were found, which slightly impacts business credibility. Overall, the website is professional, secure, and compliant with GDPR, but improvements in transparency and WHOIS data accuracy are recommended.

M

Möbelix

moebelix.cz

64

Möbelix.cz is an established Czech Republic-based online retailer specializing in furniture and stylish home accessories. The website offers a broad range of products with a focus on innovative and individual customer approaches, targeting general consumers interested in home furnishing. The platform demonstrates a modern technical infrastructure, leveraging React-based frontend technologies, Dynatrace monitoring, and various third-party marketing and analytics tools. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is generally good with HTTPS enforced and secure cookie practices, though explicit security headers and privacy compliance mechanisms are lacking. The absence of WHOIS data limits domain trust assessment, but the professional presentation and e-commerce functionality suggest legitimate operations. Strategic improvements in privacy policy visibility, cookie consent, and security headers would enhance compliance and trust.

D

Zámecké rezidence Škvorec | Rodinné domy na Prodej

domytrio.cz

57

The website 'Zámecké Rezidence Skvorec' appears to be a small-scale hospitality or real estate service provider based in the Czech Republic, offering residence accommodations. The site is built on the Wix platform, leveraging Wix's hosting and content management infrastructure. The technical setup is standard for Wix sites, with modern JavaScript and CSS but lacks advanced SEO and accessibility features. Security posture is moderate with HTTPS enabled but missing important security headers and no visible incident response or security policies. Privacy compliance is minimal, with no privacy or cookie policies detected. Business credibility is limited by the absence of contact details and trust indicators. Overall, the site is functional but basic, suitable for a small local business.

P

Pozemky Choryne

pozemkychoryne.cz

53

Pozemky Choryne is a small real estate business focused on selling building plots in the Choryně area of the Czech Republic. The website presents information about residential land near nature, targeting individuals or families seeking property close to the city but in a natural setting. The business operates locally with a clear niche in real estate sales. Technically, the website is built on the Wix platform, utilizing standard Wix scripts and polyfills, indicating a moderate level of digital maturity suitable for small businesses. The site is mobile optimized and has basic SEO and accessibility features. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy compliance mechanisms. No WHOIS data is available, likely due to privacy protection, which slightly reduces trust but is common for small businesses. Overall, the site is functional and professional but would benefit from enhanced privacy policies, contact information, and security improvements.

Z

Zámecké rezidence Škvorec | Rodinné domy na Prodej

zameckerezidenceskvorec.cz

56

The website 'Zámecké Rezidence Skvorec' appears to represent a small real estate or residential accommodation business located in the Czech Republic. The site is built on the Wix platform and is primarily in Czech language, targeting local visitors or potential clients interested in residential services. The business model likely revolves around property rental or sales, although explicit business details are sparse. The website's technical infrastructure is standard for Wix-hosted sites, utilizing Wix's JavaScript libraries and assets, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and policies. Privacy and cookie policies are absent, indicating low privacy compliance. No contact information or social media links are provided, limiting business credibility and user trust. WHOIS data is unavailable, suggesting privacy protection or registration issues, which impacts trustworthiness. Overall, the site is functional but basic, with room for improvement in transparency, security, and compliance.

R

BYTY | Šárecká 26

rezidencesarecka.cz

57

Rezidence Sarecka is a small real estate project website hosted on the Wix platform, targeting potential home buyers and investors in Prague, Czech Republic. The site provides information about residential apartments but lacks detailed business and contact information. Technically, the site uses Wix's Thunderbolt framework and standard web technologies, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and security headers, but the absence of privacy and cookie policies, as well as WHOIS transparency, reduces overall trust. There are no detected vulnerabilities or malicious content, and the site is safe for general audiences.