Security Directory

S

sportmap.cz

sportmap.cz

51

Sportmap.cz is a Czech sports information platform providing a comprehensive calendar of sports events and a directory of sports clubs primarily focused on the Czech Republic. The website targets sports fans and local communities, offering free event submission and detailed listings of amateur and professional sports activities. It maintains partnerships with major Czech sports associations, enhancing its credibility and market position. Technically, the site uses a modern tech stack including Bootstrap, jQuery, Google Analytics, and Mapy.cz API, although it currently employs a deprecated version of the Mapy.cz JavaScript SDK which should be updated. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes standard security headers, but lacks publicly available security policies or incident response information. Privacy compliance is strong with GDPR-aligned cookie consent mechanisms and a comprehensive privacy policy. The absence of WHOIS data is a transparency concern but does not detract significantly from the overall legitimacy given the site's content and partnerships. Strategic recommendations include updating deprecated libraries, enhancing security headers, and publishing security and incident response policies to improve trust and compliance.

T

TRAVEL FAMILY s.r.o.

travelfamily.cz

53

Travel Family s.r.o. operates a comprehensive travel agency website specializing in family vacations primarily to Croatia and surrounding Adriatic destinations. The company holds a strong market position in the Czech Republic as a leading provider of holiday packages, last minute deals, and travel-related services including flights, bus, and train transport. The website is professionally designed with good content quality, clear navigation, and mobile optimization, supporting a positive user experience for its target audience of families and general travelers. Technically, the site is built on ASP.NET WebForms with integration of modern JavaScript libraries and marketing tools such as Google Tag Manager, Facebook Pixel, and Smartsupp chat. While the site uses HTTPS and some security best practices, there is room for improvement in security headers and publishing formal security policies. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Security posture is solid but could be enhanced by adding explicit security headers and incident response information. The absence of WHOIS data limits domain trust assessment, but the presence of industry certifications and clear contact information supports legitimacy. Overall, the website presents a trustworthy and professional digital presence for a medium-sized travel agency. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, updating legacy JavaScript libraries, and maintaining transparency in privacy and data protection practices to further strengthen trust and compliance.

S

statutární město Třinec

fajnytrinec.cz

55

The website fajnytrinec.cz serves as the official digital presence of the statutory city of Třinec in the Czech Republic. It provides residents and visitors with information about city projects, citizen proposals, participatory budgeting, and local priorities. The site is designed to engage the community in shaping the city's future and offers interactive features such as maps and project listings. Technically, the site employs modern web technologies including HTTPS, Cloudflare DNS/CDN, Google Tag Manager, Google Analytics, and Mapbox for mapping services. The design is professional and mobile-optimized, providing a good user experience. Security posture is solid with HTTPS and Cloudflare integration, though explicit security headers and policies are not confirmed. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and credible as a government entity but would benefit from enhanced privacy and security disclosures.

A

Aluna

aluna.eu

59

Aluna is a Polish-based manufacturer specializing in telescopic pool enclosures and related products, positioning itself as a European leader in this niche. The company emphasizes product quality, environmental sustainability, and innovation, holding the AFNOR +A1 certification which underscores its commitment to standards. The website is professionally designed using WordPress and Elementor, integrating modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, with appropriate privacy and cookie consent mechanisms in place. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Overall, the digital infrastructure supports a medium-sized manufacturing business with a clear market focus in Poland and Europe.

S

Sauny Salus

sauny-salus.cz

40

Sauny Salus is a Czech Republic based company specializing in sauna and wellness products and services, including design, installation, and sales of saunas, whirlpools, steam cabins, and related wellness equipment. With over 30 years of experience and more than 30,000 projects completed, the company holds a strong regional market position targeting both individual consumers and business clients. The website is professionally designed using WordPress with modern plugins and technologies, providing good user experience and clear contact information. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is adequate with HTTPS and some security best practices, but could be improved by adding standard security headers and vulnerability disclosure mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

Filix d.o.o. is a Croatian-based manufacturer specializing in innovative LED lighting solutions for architectural, underwater, and urban applications. With over 35 years of industry experience and a presence in 50 countries, the company offers durable, energy-efficient products supported by comprehensive customer services including warranty and technical tools. The website reflects a professional business with clear branding, detailed product showcases, and customer testimonials, positioning Filix as a reputable player in the energy-efficient lighting sector. Technically, the site employs modern web technologies such as PHP, Bootstrap, and integrates Google Analytics and Tag Manager for data insights. The site is mobile-optimized and accessible, with a cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS, session management, and CSRF protection, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the domain registration is consistent with the business profile, enhancing trustworthiness.

M

Malmsten AB

malmsten.com

53

Malmsten AB is a well-established Swedish company specializing in aquatic sports equipment and swimming pool construction products. They hold a strong market position as official suppliers to major aquatic sports organizations such as World Aquatics and LEN. Their product portfolio includes racing lane lines, water polo equipment, diving boards, goggles, and movable pool floors, targeting aquatic sports professionals and pool constructors globally. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website uses a modern tech stack including Bootstrap, jQuery, Google Analytics, and Hotjar, hosted likely on AWS infrastructure. The site is mobile optimized with moderate performance and basic accessibility features. However, there is room for improvement in SEO and accessibility compliance. Security-wise, HTTPS is used, but no advanced security headers are detected, and DNSSEC is not enabled. Privacy and cookie policies are missing, indicating compliance gaps with GDPR and related regulations. Overall, the security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies and security headers reduces the compliance and security score. The WHOIS data confirms a legitimate and long-standing domain registration consistent with the business claims. Social media presence and ISO certifications add to the trustworthiness. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, publishing a vulnerability disclosure policy, and enhancing accessibility and SEO to improve compliance, security, and user experience.

S

Slant - Branding collective

slant.cz

60

Slant - Branding collective is a small branding agency based in Brno, Czech Republic, specializing in web design, brand creation, and graphic brand growth. The company emphasizes a thorough analysis of client needs to deliver design solutions that attract and retain the right customers. The website is built on WordPress using the Elementor page builder and integrates multiple analytics and marketing tools including Google Analytics, Google Tag Manager, Facebook Pixel, and Matomo. The technical infrastructure is modern and supports good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks security headers and formal security policies. Privacy compliance is minimal with no visible privacy or cookie policies or consent mechanisms. Business credibility is supported by consistent WHOIS data and professional website content. Overall, the website is functional and professional but would benefit from enhanced privacy and security practices.

P

Penzion pod Drátníkem

poddratnikem.cz

58

Penzion pod Drátníkem is a small family-run hospitality business located in the Vysočina region of the Czech Republic. The website presents a well-structured and content-rich platform promoting their lodging services, including amenities such as a private sauna, indoor pool, and child-friendly facilities. The business targets families, tourists, and outdoor enthusiasts seeking a peaceful vacation in the protected landscape area of Žďárské vrchy. Technically, the website is built on the Webnode CMS platform, leveraging Amazon Cloudfront CDN for content delivery and integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS with a valid SSL certificate but lacks advanced security headers and explicit privacy and terms of service pages. Cookie consent is implemented with granular user options, indicating some level of privacy compliance. The absence of public WHOIS data suggests domain privacy protection, which is typical for small businesses. Overall, the website is legitimate, functional, and suitable for its business purpose but could improve in security and compliance documentation.

S

SurGal Clinic s.r.o.

surgalclinic.cz

59

SurGal Clinic s.r.o. is a private healthcare provider based in Brno, Czech Republic, specializing in surgery, orthopedics, gastroenterology, plastic surgery, rehabilitation, and intensive care among other medical services. The clinic targets both local and foreign patients, offering standard healthcare services covered by health insurance as well as premium paid services under the GRAND CLASS brand. The website reflects a professional healthcare institution with comprehensive patient information, contact details, and certifications, positioning it as a reputable medium-sized healthcare provider in the region. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and AOS, and uses the Foundation framework for responsive design. Google Analytics and Tag Manager are used for visitor tracking, with a clear cookie consent mechanism in place, indicating good privacy compliance. Security posture is moderate; while HTTPS is implied, explicit security headers are not detected in the provided data, and no incident response or vulnerability disclosure information is present. The WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the website is well-structured, user-friendly, and trustworthy, with room for improvement in security headers and explicit security policies.

M

Machač Dentist, s.r.o.

machacdentist.cz

46

Machač Dentist, s.r.o. is a family-owned dental clinic located in Brno, Czech Republic, offering a wide range of dental services including preventive care, dental hygiene, implants, and cosmetic dentistry. The clinic emphasizes modern dental technologies and a patient-friendly approach, positioning itself as a trusted local provider with a strong reputation and a medium-sized operation founded in 2019. The website reflects this professionalism with comprehensive service descriptions, clear contact information, and a modern design. Technically, the site is built on WordPress using popular plugins such as Contact Form 7, Slider Revolution, and Google Site Kit, hosted on infrastructure associated with REG-WEDOS and SiteGround. Security posture is solid with HTTPS enforced and CAPTCHA protection on forms, though some improvements could be made by adding security headers and explicit cookie consent mechanisms. Overall, the site is well-structured, SEO optimized, and trustworthy, with no signs of blocking or malicious activity.

A

Acare, s.r.o.

acare.eu

58

Acare, s.r.o. is a Czech Republic based company specializing in customized air conditioning, cooling, and ventilation solutions. Established since 1993 and headquartered in Brno, the company serves clients primarily within the Czech market, offering comprehensive services including design, installation, and maintenance of HVAC systems. The website reflects a stable local business with ISO 9001 certification, indicating a commitment to quality standards. The target audience includes both business and individual customers seeking tailored climate control solutions. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google Analytics, ensuring a responsive and user-friendly experience. The presence of a cookie consent mechanism demonstrates awareness of privacy compliance, although explicit privacy and terms of service pages are not found. Security posture is adequate with HTTPS enforced but lacks advanced security headers and published security policies. WHOIS data is unavailable due to privacy protection typical for .eu domains, but no suspicious patterns were detected. Overall, the website is professional, trustworthy, and well-positioned within its niche.

P

PC HELP, a.s.

koala.cz

47

Koala Elektronik, operated by PC HELP, a.s., is a Czech-based wholesale distributor specializing in electronic components such as power supplies, converters, displays, cables, and connectors. The website targets B2B customers in the electronics and industrial sectors, offering a broad catalog of products and custom solutions. The company positions itself as an established player in the Czech electronics wholesale market, providing comprehensive product offerings and customer support. Technically, the website employs modern web technologies including jQuery, Bootstrap, and various UI libraries, alongside Google Analytics and Tag Manager for tracking and Smartsupp for live chat support. The site is mobile-optimized with good navigation and professional design. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks some advanced security headers like CSP and X-Frame-Options. No WHOIS data was retrievable, which raises some concerns about domain registration transparency, though the website content and structure appear legitimate and professional. Overall, the site demonstrates moderate digital maturity with room for security enhancements and improved transparency in domain registration data.

Nadace Lenky a Romana Šmidberských is a Czech non-profit foundation established in 2015, focused on supporting individuals, organizations, cultural initiatives, and charitable events. The foundation actively engages with the community through recurring events such as the Metrostav Handy Cyklo Maraton and supports handicapped children and cultural projects. Their target audience includes donors, charitable organizations, and the Czech-speaking community interested in philanthropy and cultural support. Technically, the website uses a modern JavaScript stack including jQuery, Foundation framework, and popular UI libraries, hosted under a Czech registrar and nameservers consistent with the domain's origin. The site is mobile optimized and provides a good user experience with clear navigation and multimedia content. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism but lacks explicit security headers and published security policies. No forms collecting sensitive data were detected, reducing immediate risk. Overall, the domain registration data aligns well with the website content, supporting legitimacy. The site uses Google Analytics and Tag Manager for visitor tracking with moderate privacy compliance. The absence of a privacy policy and terms of service pages is a notable compliance gap. The website content is safe for general audiences with no adult or questionable content.

SmarTech Transport, s.r.o. is a Czech Republic-based transportation company specializing in freight transport services across Europe and Russia. Their offerings include transport by trucks and vans for shipments ranging from small parcels to heavy loads up to 24 tons, including refrigerated and hazardous goods. The company holds an ISO 9001:2016 quality management certification, underscoring their commitment to service quality. The website presents clear business and contact information, targeting businesses and individuals needing reliable freight transport solutions in the region. Technically, the website employs standard web technologies including jQuery and Google Analytics for tracking. The site is accessible, mobile-optimized, and professionally designed, though it uses an outdated jQuery version which may pose security risks. There is no evidence of a CMS or advanced frameworks. SEO and accessibility are basic but functional. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. From a security perspective, the site uses HTTPS (assumed from URL), but lacks visible security headers and does not disclose incident response or abuse contacts. The WHOIS data is missing, which reduces domain trustworthiness and raises questions about domain registration transparency. No critical vulnerabilities or exposed sensitive data were detected, but updating libraries and adding security policies is recommended. Overall, the website is professional and trustworthy from a business perspective but requires improvements in privacy compliance, security best practices, and domain registration transparency to enhance its security posture and regulatory adherence.

E

Event Service, s.r.o.

eventservice.cz

40

Event Service, s.r.o. is a Czech Republic-based sports marketing agency providing a broad range of services including strategic consulting, online communication, event organization, and digital marketing. They also operate Týmuj.cz, a popular online platform for sports team management used by thousands in Czechia and Slovakia. The company targets sports teams, athletes, and businesses seeking sports marketing solutions, positioning itself as a regional player with a professional online presence. Technically, the website uses standard web technologies such as jQuery and Google Analytics, with moderate performance and good mobile optimization. However, the absence of WHOIS data and lack of visible security headers present concerns regarding domain legitimacy and security posture. Privacy compliance is weak due to missing privacy and cookie policies, and no explicit GDPR indicators are present. Overall, the site is professional and content-rich but requires improvements in security and compliance to enhance trust and reduce risk.

M

Medicon a.s.

incare.cz

55

INCARE is a premium healthcare service provider operating under the Medicon a.s. group, offering a wide range of specialized medical services including annual care, preventive packages, physiotherapy, and psychotherapy. The website targets both individual clients and corporate customers seeking high-quality healthcare with minimal waiting times. The company positions itself strongly in the Czech healthcare market with over 40 specializations and a large team of medical experts. Technically, the website is built on a custom CMS (Tom Atom) and employs a modern technology stack including Bootstrap, jQuery, Google Analytics, and Hotjar for analytics and user experience enhancement. The site is mobile-optimized and provides clear navigation and professional design. Security-wise, the site uses HTTPS and implements cookie consent and reCAPTCHA, but lacks explicit security headers and published security policies. WHOIS data is unavailable, which reduces transparency and trust slightly. Overall, the website is professional, secure, and compliant with privacy regulations, but could improve in security policy transparency and WHOIS data availability.

P

PRONATAL

pronatal.cz

60

PRONATAL is a Czech healthcare provider specializing in assisted reproduction and fertility treatments, operating since 1999. The website presents comprehensive information about their services, targeting couples facing infertility. The business is positioned as a medium-sized, established clinic with a focus on personalized care and modern medical technology. The site uses modern digital tools including Google Tag Manager, Cookiebot for GDPR compliance, Hotjar for user behavior analytics, and Google Analytics for traffic analysis. The technical infrastructure is solid with HTTPS enforced and integration of reCAPTCHA for security. However, explicit security policies and incident response contacts are not found, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of blocking or WAF interference.

C

CLINICUM a.s.

jednodenni-chirurgie.cz

52

Centrum jednodenní chirurgie Poliklinika Vysočany, operated by CLINICUM a.s. and part of the MEDICON group, provides specialized day surgery and gynecological services in Prague. The center emphasizes modern medical techniques allowing patients to avoid long hospital stays, offering a range of laparoscopic, classic surgical, and ambulatory procedures. The website reflects a professional healthcare provider with clear operational hours, contact details, and patient-focused information. Technically, the site uses modern frameworks like Bootstrap and integrates Google Analytics, Tag Manager, and Hotjar for user insights, while maintaining GDPR compliance through explicit privacy and cookie policies. Security posture is solid with HTTPS and cookie consent, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which is common and justified in healthcare contexts. Overall, the site is trustworthy, well-structured, and serves its target audience effectively.

M

MEDICON Pharm s.r.o.

pharmacentrum.cz

52

Pharmacentrum.cz is a Czech Republic-based retail pharmacy chain operated by MEDICON Pharm s.r.o., offering pharmaceutical products, healthcare supplies, and professional advice. The company operates multiple pharmacy locations in Prague and provides online services such as medicine availability checking and reservation, supported by a loyalty program called Klub Pharmacentrum. The website is professionally designed with clear navigation and content relevant to its target audience of patients and healthcare consumers in Prague. Technically, the site uses modern web technologies including React, Google Tag Manager, Google Analytics, and Facebook Pixel, with proper cookie consent mechanisms in place. Security posture is good with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie policy. However, WHOIS data is unavailable, which slightly reduces trustworthiness but does not detract significantly from the overall legitimacy of the business. The site is free from adult or NSFW content and is fully accessible without WAF or blocking mechanisms.

D

Dream PRO, s.r.o.

dreamvanlife.cz

44

Dream PRO, s.r.o. operates the website www.dreamvanlife.cz, offering camper van rental services focused on Volkswagen Grand California 600 vehicles. The business targets travelers seeking flexible and comfortable travel experiences in the Czech Republic, providing insurance and camping equipment as part of the rental. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, the site uses common JavaScript libraries and Google services for analytics and marketing, with cookie consent mechanisms implemented to comply with GDPR. Security posture is adequate with HTTPS enforced, but could be improved by updating libraries and adding security headers. The absence of WHOIS data reduces domain transparency and trust slightly, but the business information and social media presence support legitimacy. Overall, the site is a reliable platform for camper van rentals with room for technical and security enhancements.

S

SeniorPointy.cz

seniorpointy.cz

45

SeniorPointy.cz is a Czech Republic based non-profit organization providing free social and legal support services to senior citizens across eight regions. The website serves as a portal to locate Senior Points, access online counseling, and learn about related projects and partners. It is well-positioned in the non-profit sector with strong regional government and institutional partnerships. The site offers a comprehensive range of services including consumer advice, social-legal counseling, and leisure activities, targeting seniors in a friendly and accessible manner. Technically, the website is built on WordPress with modern plugins and integrates Google Analytics for visitor insights. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS and GDPR compliance, though some security headers are missing and no incident response contacts are published. The absence of WHOIS data reduces domain trust but the website content and partner affiliations strongly indicate legitimacy. Overall, the site is a valuable resource for seniors in the Czech Republic with a good balance of content quality, technical implementation, and privacy compliance.

I

Infocentrum Třinec

info-trinec.cz

61

Infocentrum Třinec operates as a local government-affiliated information center providing comprehensive services to residents and visitors of Třinec city, Czech Republic. The website offers detailed information on accommodation, dining, cultural and sporting events, transportation, and public services. It also features an e-shop for promotional materials and ticket pre-sales, positioning itself as a key local tourism and community engagement hub. The business model focuses on public service and tourism promotion with a small organizational size and a clear local market focus. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, Blueimp Gallery, Owl Carousel, and the Nette PHP framework for forms and AJAX. It integrates Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized with good navigation and content quality, though accessibility features are basic. Performance is moderate, with room for improvement in SEO and security headers. From a security perspective, the site benefits from HTTPS encryption and a cookie consent banner, indicating some privacy awareness. However, it lacks critical security headers such as Content-Security-Policy and X-Frame-Options, and no explicit privacy policy page was found, which may impact GDPR compliance. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and contact details suggest a legitimate entity. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional front for the Infocentrum Třinec, but improvements in security policies, privacy disclosures, and domain registration transparency are recommended to enhance trust and compliance.

T

TOROLA racing s.r.o.

ktm-fm.cz

57

TOROLA racing s.r.o. operates an authorized dealership website for KTM and GASGAS motorcycles and electric bikes, targeting customers primarily in Northern Moravia, Czech Republic. The site offers a comprehensive e-commerce platform featuring new models, accessories, and rental services, supported by warranty and post-warranty servicing. The business positions itself as a premium retailer with a strong focus on customer service and product authenticity. Technically, the website employs a custom MVC UI framework with modern JavaScript and CSS, integrates Google Analytics and Tag Manager for tracking, and maintains good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit incident response policies. The absence of WHOIS data due to privacy protection limits domain transparency but does not detract from the overall legitimacy of the business. The website is safe for general audiences, free from adult or questionable content, and demonstrates good privacy compliance aligned with GDPR requirements.

S

svetzbrani.cz

svetzbrani.cz

58

Svetzbrani.cz is a Czech Republic based e-commerce retailer specializing in firearms, airsoft equipment, self-defense products, and pyrotechnics. Established since 2013, the company offers a wide range of products from well-known brands such as Umarex, Walther, and Beretta, targeting consumers interested in these categories. The website is professionally designed with clear navigation and multiple language and currency options, supporting a medium-sized business model focused on retail sales. Technically, the site is built on the Shoptet platform, utilizing common web technologies including jQuery, Google Analytics, Facebook SDK, and Hotjar for analytics and marketing purposes. Mobile optimization and SEO practices are good, though accessibility is basic. Security posture is adequate with HTTPS enforced but lacks comprehensive security headers and published security policies. The absence of WHOIS data limits domain trust assessment, though the website content and business presence appear legitimate. Cookie consent mechanisms are implemented, but privacy and terms of service pages are missing, indicating room for compliance improvements.

B

Brainmedia, s.r.o.

naum.studio

65

Naum Studio is a Slovakia-based multi-disciplinary design studio specializing in branding, UI/UX, and product development for startups, fintech, health, and web3 sectors. The company positions itself as a creative partner solving complex challenges with simple solutions, targeting innovative and technology-driven clients. Their business model revolves around providing comprehensive design and development services, supported by a professional portfolio and client testimonials that enhance their market credibility. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, GSAP, and various analytics and tracking tools such as Google Analytics, Microsoft Clarity, and Hotjar. The site is mobile-optimized with good SEO practices and uses HTTPS with reCAPTCHA for security. However, some security headers and DNSSEC are missing, indicating room for improvement in security hardening. From a security perspective, the site demonstrates a moderate security posture with HTTPS and anti-bot measures in place but lacks explicit security policies and incident response contacts. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. The domain registration data is consistent and supports the legitimacy of the business. Overall, the website is professional, trustworthy, and well-structured, with minor technical and security enhancements recommended to elevate its security posture and compliance maturity.

S

Sixt Leasing

sixtleasing.cz

47

Sixtleasing.cz is a professional website offering premium operational leasing and fleet management services primarily targeting corporate clients in the Czech Republic. The company is part of the larger Sixt group, a well-known international vehicle rental and leasing brand. The website provides comprehensive information about leasing products, services, and customer support, with clear navigation and a modern design. Technically, the site uses common JavaScript libraries such as jQuery and Slick Carousel, integrates Google Analytics and LinkedIn tracking, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and published security policies could enhance trust. The absence of WHOIS data reduces domain transparency but does not significantly impact the overall credibility given the strong brand presence and professional content. Overall, the site is well-structured, compliant, and trustworthy for its business purpose.

A

AB MOTORS CZ s.r.o.

mgmotor-czech.cz

54

AB MOTORS CZ s.r.o. operates the official MG Motor Czech Republic website, serving as the authorized importer and dealer network for MG automobiles in the Czech market. The website offers comprehensive information on new and used MG vehicles, including petrol, hybrid, plug-in hybrid, and electric models, along with pricing, configurators, test drives, financing, and authorized service locations. The target audience is Czech consumers interested in MG vehicles, with a medium-sized business presence and consistent branding. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google Tag Manager, Google Analytics, and Google Maps API. It is mobile-optimized with good SEO and accessibility basics. The site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers could be improved. No public security policy or incident response contacts are disclosed. Privacy compliance is strong with clear privacy and cookie policies and consent management. Business credibility is high with detailed contact information, authorized dealer listings, and professional content. Overall, the website is trustworthy and professionally maintained, though WHOIS data is unavailable, likely due to privacy protection. Recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party libraries for vulnerabilities.

MPI TECH CZ s.r.o. operates a professional e-commerce website specializing in electrical materials and installation services primarily targeting electrical contractors and retail customers in the Czech Republic. The company offers a broad product catalog including switches, sockets, frames, communication technology, circuit breakers, distribution boards, and smart home solutions. The website is built on the Shoptet platform and integrates standard web technologies such as jQuery and Google Analytics, with a focus on user privacy and GDPR compliance through cookie consent mechanisms and a privacy policy page. Despite the absence of WHOIS registration data, the website presents a professional and trustworthy front with secure HTTPS connections and appropriate security headers. However, the lack of direct contact emails or phone numbers in the visible content and missing WHOIS data slightly reduce the overall trustworthiness. The site is free from adult or questionable content and provides a good user experience with clear navigation and relevant content.

Horimex Cars, s.r.o. is a medium-sized automotive dealership and authorized service provider based in the Czech Republic, specializing in Hyundai and MG vehicle sales and servicing, with additional expertise in BMW servicing. The company holds a strong market position as the sole authorized Hyundai dealer and service center in Olomouc, offering a comprehensive range of services including vehicle sales, servicing, spare parts, and tire services. Their target audience primarily consists of car buyers and vehicle owners in the Olomouc region and surrounding areas. The website reflects a professional and consistent brand image with good content quality and customer trust signals such as positive reviews and partnerships with financial and insurance institutions. Technically, the website is built on WordPress 6.6.2 using Bootstrap and jQuery, integrating Google Analytics and Tag Manager for tracking, and employing a cookie consent mechanism compliant with GDPR. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but could be improved by adding security headers and explicit security policies. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site presents a trustworthy and functional digital presence for Horimex Cars, supporting their business operations effectively. Strategic improvements in security headers, transparency of domain registration, and formal security policies would enhance their security posture and compliance further.

P

PRAHA.cz

praha.cz

36

PRAHA.cz is a well-established Czech information portal focused on providing comprehensive news, cultural events, tourist guides, transportation updates, and real estate information related to Prague. The site targets residents and visitors of Prague, offering a broad range of city-related content. The business model centers on content provision and advertising revenue, supported by Google Adsense and analytics tools. The website demonstrates consistent branding and a professional presentation, with content quality rated as good and navigation clear and user-friendly. Technically, the site is built on Joomla CMS with legacy JavaScript libraries such as MooTools. It employs HTTPS and integrates Google services for analytics and search. Performance is moderate, with basic mobile optimization and accessibility features. SEO practices are adequate, with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial; a privacy policy and terms of service exist but no cookie consent mechanism or GDPR compliance indicators are evident. WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness. Overall, PRAHA.cz is a functional and content-rich portal with moderate technical and security maturity. The absence of WHOIS data and cookie consent mechanisms are notable gaps. Strategic improvements in security headers, privacy compliance, and domain registration transparency would enhance trust and compliance.

M

Městská policie Kladno

mpkladno.cz

45

Městská policie Kladno is the official municipal police authority serving the city of Kladno in the Czech Republic. The website provides comprehensive information about police services, recent news, citizen services such as forensic marking of bicycles, dog catching, and crime prevention assistance. The target audience is primarily local residents seeking public safety information and contact details. The business model is a government public service entity with a clear local market position. Technically, the website is built on the VismoWeb5 CMS platform, utilizing modern web technologies including JavaScript, CSS, and Google Analytics for visitor insights. The site is mobile optimized, accessible, and SEO friendly with proper meta tags and structured navigation. Performance is moderate with good user experience and clear content relevance. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, it lacks explicit security policy documentation and incident response contacts. No vulnerabilities or suspicious scripts were detected. The WHOIS data confirms domain legitimacy and consistency with the municipal police identity. Overall, the website is trustworthy, professionally maintained, and suitable for its public service role. Strategic improvements include publishing formal security and incident response policies, enhancing security headers, and possibly adding a vulnerability disclosure policy to strengthen security posture and transparency.

D

Defense Pro

defensepro.sk

54

Defense Pro is a Slovak private security company established in 2014, offering a broad range of security services including physical guarding, technical security installations, detective services, and dog catching. The company operates primarily in western Slovakia but serves clients nationwide through partners and trained personnel. Their website reflects a professional and trustworthy business with clear service offerings and client testimonials. Technically, the site is built on WordPress with Elementor and integrates modern security and privacy tools such as GDPR compliance plugins and Google reCAPTCHA. The security posture is solid with HTTPS, DNSSEC, and no visible vulnerabilities, though additional security headers could enhance protection. Overall, Defense Pro demonstrates a mature digital presence aligned with their business operations and market position.

M

Město Kopřivnice

koprivnice.cz

47

The website koprivnice.cz serves as the official digital presence of the city of Kopřivnice in the Czech Republic. It provides residents and visitors with municipal news, event calendars, contact information, and access to various public services and portals. The site is well-positioned as a trusted government resource with consistent branding and comprehensive content tailored to its local audience. The business model is that of a government municipal portal, focusing on transparency and citizen engagement. Technically, the site is built on the vismoWeb5 CMS platform, utilizing modern web technologies including HTML5, CSS3, and JavaScript libraries such as SmoothScroll and Google Translate integration. The site is mobile-optimized and accessible, with good SEO practices and moderate performance. Hosting and domain registration are consistent with a European municipal entity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy documentation and incident response contacts, which could enhance its security posture. Google Analytics is used for minimal user tracking, with privacy compliance measures in place. Overall, koprivnice.cz is a professionally maintained municipal website with a strong trust profile and good technical implementation. Strategic improvements in security transparency and incident response readiness would further strengthen its risk posture.

JK Catering is a small hospitality business based in the Moravskoslezský region of the Czech Republic, specializing in catering services for weddings, corporate events, celebrations, and other occasions. The company emphasizes quality and fresh ingredients, targeting both individual and business clients within its regional market. The website reflects a professional and consistent brand presence with clear service offerings and client testimonials, supporting its local market position. Technically, the website is built on WordPress and employs common web technologies such as jQuery, Bootstrap, and Google Analytics. It is hosted by Wedos, a Czech hosting provider, and uses HTTPS with Google reCAPTCHA for form security. The site is moderately optimized for performance and mobile devices, with good SEO practices implemented via Yoast SEO plugin and structured data. From a security perspective, the site benefits from HTTPS and anti-bot measures but lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No vulnerabilities or exposed sensitive data were detected. The absence of direct contact emails or phone numbers on the site limits immediate contact options but the presence of a contact form with reCAPTCHA mitigates spam risks. Overall, JK Catering’s website is a trustworthy and professional digital presence for a small catering business, though improvements in privacy compliance and security hardening are recommended to enhance user trust and regulatory adherence.

Ž

Židek tisk s.r.o.

tiskneme.com

41

Židek tisk s.r.o. operates the website tiskneme.com, a Czech printing company specializing in various printing services including large format printing, stickers, decorative printing, sublimation printing, and custom cutting. The company emphasizes nearly 20 years of experience with a small team and multiple printing machines, targeting local businesses and individuals in the Opava and Ostrava regions. Their business model focuses on direct manufacturing and quick turnaround times, supported by an online presence including an e-shop. Technically, the website uses a range of JavaScript libraries including jQuery 1.11.0, Google Analytics, and UI plugins, but some scripts are loaded over HTTP causing mixed content issues. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is moderate with HTTPS usage but no visible security headers and outdated libraries present. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Contact information is clearly provided, enhancing business credibility. WHOIS data is missing, which raises concerns about domain registration legitimacy despite the professional website content.

A

AGENTURA Hana s.r.o.

ckhana.cz

54

AGENTURA Hana s.r.o. operates the website www.ckhana.cz as a travel agency specializing in flight-based and other transport holiday packages from cities such as Ostrava, Katowice, Brno, Prague, and Vienna. The company offers a variety of travel services including last-minute deals, exotic destinations, and European vacations. The website targets Czech-speaking travelers and provides a comprehensive catalog of travel offers with booking capabilities. Technically, the site is built on the CeSYS travel agency system, utilizing modern web technologies such as jQuery, Bootstrap, Google reCAPTCHA, and Google Analytics. The site is mobile-optimized and includes SEO best practices with proper metadata and Open Graph tags. Security posture is solid with HTTPS enforced and spam protection on forms, but lacks some security headers and explicit privacy policy documentation. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, though the website content and business information appear professional and trustworthy. Overall, the site is functional and well-structured but would benefit from enhanced transparency and security documentation.

Galerie města Třince operates as a local cultural institution focused on art exhibitions, educational activities, and community events in Třinec, Czech Republic. The website presents a professional and consistent brand image with clear navigation and relevant content for its target audience interested in arts and culture. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, and integrates Google Analytics for visitor tracking. However, the absence of WHOIS registration data and lack of explicit privacy and terms of service pages indicate gaps in transparency and compliance. Security posture is moderate with cookie consent implemented but missing security headers and unclear SSL configuration. Overall, the site is functional and informative but would benefit from enhanced compliance and security measures.

K

Knihovna Třinec

knihovnatrinec.cz

63

Knihovna Třinec is a public library serving the Třinec region in the Czech Republic, offering book lending, cultural events, educational programs, and regional library functions. The website targets children, youth, adults, schools, and libraries, positioning itself as a leading local cultural and educational institution. The business model is focused on public service and community engagement, supported by partnerships with government and cultural organizations. Founded in 2014, it operates as a medium-sized entity with a consistent brand presence and good content quality.

J.M. POST is a Czech Republic-based IT service provider established in 1994, specializing in web development, e-commerce solutions, custom software, and online marketing services. The company serves a diverse clientele including small and medium businesses, large enterprises, public institutions, and international partners. Their website demonstrates a solid technical infrastructure with HTTPS, modern JavaScript libraries, and integration of Google Analytics and Tag Manager for tracking. However, the absence of visible privacy and cookie policies indicates compliance gaps. Security posture is moderate with HTTPS enabled but lacking advanced security headers and explicit incident response information. Overall, the website is professional and trustworthy, but the lack of WHOIS data and privacy documentation suggests areas for improvement.

B

Brutal Kruháč

brutalkruhac.cz

45

Brutal Kruháč is a Czech Republic-based fitness training organization specializing in circuit training for beginners and advanced participants. Established in 2012, it operates in multiple cities offering diverse training sessions both in-person and online. The website is professionally designed using WordPress with WooCommerce for e-commerce capabilities and integrates modern marketing and analytics tools such as Google Analytics and Facebook Pixel. The business targets fitness enthusiasts seeking dynamic and effective workouts in a community environment. The company maintains a consistent brand presence with active social media engagement and customer testimonials enhancing trust. Technically, the site is well-structured, mobile-optimized, and SEO-friendly, hosted by Wedos, a reputable Czech hosting provider. Security posture is solid with HTTPS enforced and standard security headers present, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website reflects a credible and mature business with good digital maturity and moderate tracking practices balanced by basic GDPR compliance.

D

Dream PRO

dreampro.cz

48

Dream PRO is a professional and reputable event agency based in the Czech Republic, offering a wide range of event-related services including event organization, programs, artist services, and equipment rental. The company targets businesses, municipalities, and individuals, positioning itself as a trusted regional player with a strong portfolio of client references and active social media presence. The website reflects a modern and professional digital presence with good content quality and user experience. Technically, the site uses established JavaScript libraries such as jQuery and Swiper, integrates Google Analytics and Tag Manager for tracking, and implements cookie consent mechanisms to comply with GDPR requirements. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the absence of security headers and explicit security policies suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the overall business credibility remains high based on website content and social signals. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to improve trust.

C

CloudSailor s.r.o.

cloudsailor.eu

47

CloudSailor s.r.o. operates a Czech-language e-commerce platform solution aimed at enabling businesses to efficiently manage and operate online shops. The company positions itself as a provider of smart, intuitive, and modern tools with features such as product administration, integration with external systems, personalization, pricing management, and advanced search capabilities. The website demonstrates a professional design with clear navigation and references to notable clients, indicating a stable market presence in the Czech Republic's technology and e-commerce sectors. Technically, the site employs common analytics and marketing tools including Google Analytics, Facebook Pixel, and Leady tracking, and uses jQuery and Owl Carousel for UI components. While HTTPS is used, no explicit security headers were detected in the HTML content, and no privacy or cookie policies were found, indicating room for improvement in compliance and security transparency. The absence of WHOIS registrant data is due to EURid privacy policies, but the domain and website content appear consistent and legitimate. Overall, the site is functional and professional but could enhance its security posture and privacy compliance.

C

Coworking Riga

coworkingriga.lv

51

Coworking Riga is a small, locally focused coworking space provider based in Riga, Latvia, offering flexible office solutions including coworking desks, private offices, meeting rooms, and a photo studio. The website is built on WordPress using a modern theme and plugins, providing a good user experience with mobile optimization and clear navigation. The technical infrastructure includes common web technologies and Google Analytics for visitor tracking. Security posture is adequate with HTTPS enabled and domain protections in place, though DNSSEC is not enabled and security headers are not detected. Privacy compliance is limited, with no explicit privacy policy or terms of service pages found, but a cookie consent mechanism is implemented. Overall, the website is professional and trustworthy, though improvements in privacy transparency and security hardening are recommended.

A

AlpicAir

alpicair.com

34

AlpicAir is a small-sized company specializing in air conditioning and climate control systems, offering a range of products including residential and commercial air conditioners, heat pumps, and ventilators. The company operates a partner program and targets both B2B partners and end customers. The website is built on OpenCart 2.0 with a technology stack including jQuery, Bootstrap, and Google Analytics, reflecting a moderate level of digital maturity. The site is mobile optimized with good navigation and content relevance. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is basic with presence of privacy and cookie policies but limited GDPR indicators. WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website is professional and trustworthy with room for security and privacy improvements.

S

SIA "Klimata Konsultanti"

toshibalatvija.lv

50

The website toshibalatvija.lv represents a small Latvian business specializing in the sales and servicing of Toshiba air conditioning and heat pump systems. The company, identified as SIA "Klimata Konsultanti", targets residential and small commercial customers seeking modern HVAC solutions. The site offers product information, user manuals, and contact details, positioning itself as a local authorized distributor and service provider for Toshiba products. The business appears established since at least 2009, based on copyright information. Technically, the website is built on the anaZana CMS platform and uses legacy JavaScript libraries such as jQuery 1.8.1. It integrates Google Analytics and Alexa tracking scripts for visitor analytics and advertising purposes. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features and modern SEO practices. No explicit HTTPS enforcement or security headers were detected in the provided content, which may expose users to risks. From a security perspective, the site does not display privacy or cookie policies, nor does it provide incident response or security contact information. The absence of WHOIS data due to query limits restricts full domain legitimacy verification, but the visible business information and consistent branding suggest a legitimate operation. However, the use of outdated libraries and missing security best practices indicate areas for improvement. Overall, the website is functional and professional but requires enhancements in security posture, privacy compliance, and technical modernization to better protect users and improve trustworthiness.

I

I-STYLE

i-style.lv

44

I-STYLE is a Latvian-based small e-commerce retailer specializing in gold-plated jewelry, Swarovski crystal products, Bulgarian rose cosmetics, and gift items. The website is professionally designed using OpenCart CMS and incorporates modern web technologies such as jQuery, Bootstrap, and Google Analytics. The site offers multilingual support (Latvian and Russian) and multiple currency options, targeting consumers interested in jewelry and cosmetics. The business model focuses on online retail with a niche market position emphasizing quality and original gift products. Technically, the website is moderately optimized for performance and mobile devices, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. Contact information is available via phone and contact form, and privacy and terms pages exist but are basic. WHOIS data could not be retrieved due to query limits, limiting full domain legitimacy verification. Overall, the website is trustworthy and safe for general audiences, with room for improvement in security and privacy compliance.

A

Automatisko Ātrumkārbu Remonts Rīgā

atrumkarburemonts.lv

54

Automatisko Ātrumkārbu Remonts Rīgā is a specialized automotive service provider based in Riga, Latvia, focusing on automatic transmission repair and diagnostics. The company is led by Vladimirs Raščoskins, a recognized expert in the field with a strong reputation and over 2000 repairs since 2009. The website presents a professional image with clear service offerings, pricing, and multiple contact channels including phone, email, and popular messenger platforms. The business targets vehicle owners in Riga and surrounding areas seeking reliable transmission repair services. Technically, the website employs modern analytics and tracking tools such as Google Analytics and Facebook Pixel, and uses responsive design with good SEO practices. However, explicit security headers and detailed security policies are not evident, which could be improved to enhance trust and compliance. The WHOIS data could not be retrieved due to query limits, limiting domain legitimacy verification. Overall, the site is well-structured, content-rich, and trustworthy from a business perspective but would benefit from enhanced security and compliance transparency.

S

Sia NomsK

nomsk.lv

57

Sia NomsK is a Latvian small business specializing in forestry and land management services, including purchase of forest land, property evaluation, preparation for logging, and excavator services for clearing overgrowth. Established in 2018, the company positions itself as a sustainable and responsible forestry service provider targeting local clients. The website is built on the Webador CMS platform and hosted by Webador, utilizing modern web technologies and analytics tools such as Google Analytics and Plausible Analytics. The site is accessible, with a clear structure and basic mobile optimization, but lacks comprehensive privacy and terms of service documentation. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers are missing and no vulnerability disclosure information is provided. Overall, the website presents a professional image with moderate trustworthiness but could improve compliance and security practices.

N

Norit

norit.com

66

Norit is a global leader in the production and application of activated carbon, with over 100 years of industry experience. The company operates multiple manufacturing plants and joint ventures across three continents, serving a diverse range of industrial sectors including food and beverage, pharmaceuticals, chemicals, water treatment, and energy. Their product portfolio includes over 400 activated carbon grades used for purification and catalytic applications. The website reflects a mature B2B business model focused on industrial clients, supported by comprehensive regional contact information and certifications such as ISO 22000 for food safety. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies including jQuery, Google Analytics, and Font Awesome. The site is well-structured, mobile-optimized, and demonstrates good SEO and accessibility practices. Performance is moderate, with no critical technical issues detected. Privacy and cookie policies are present and GDPR compliant, indicating attention to regulatory requirements. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the company's claimed history and geographic presence, enhancing trustworthiness. Overall, Norit's website presents a professional, trustworthy, and business-focused digital presence with strong content quality and compliance posture. Strategic improvements could include enhancing security headers and publishing explicit security and vulnerability disclosure policies to further strengthen security posture and stakeholder trust.