Security Directory

Unicorn a.s. is a well-established European IT company founded in 1990, specializing in delivering large-scale information systems and IT solutions. The company targets business customers primarily in the Czech Republic and broader European market, offering a range of IT products, services, and solutions that provide competitive advantages and high added value. The website reflects a professional business presence with consistent branding and clear contact information, supporting its market position as a reputable technology provider. Technically, the website employs modern web technologies including React and UU5 frameworks, with integration of Google Tag Manager for analytics and marketing. The site is hosted with a reputable registrar and DNS providers, though DNSSEC is not enabled. Performance and mobile optimization are good, though accessibility features are basic. SEO is adequately addressed with proper meta tags and structured data. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit privacy or cookie policies, which impacts GDPR compliance. No incident response or vulnerability disclosure information is published, indicating room for improvement in security transparency and governance. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, security header implementation, and published security policies to strengthen its security posture and regulatory adherence.

P

Prešovský samosprávny kraj

psk.sk

51

The website psk.sk serves as the official online presence of the Prešov Self-Governing Region, a governmental entity in Slovakia. It provides regional governance information, public announcements, and administrative services targeted at residents and stakeholders of the region. The site is built on WordPress CMS, leveraging Yoast SEO for optimization and Google Tag Manager and Hotjar for analytics and user behavior tracking. The technical infrastructure is modern and adequately maintained, hosted by websupport.sk with DNSSEC and HTTPS enabled, ensuring a secure browsing experience. Security posture is solid with best practices like cookie consent and stop user enumeration plugin, though it lacks explicit security policies and vulnerability disclosure mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve privacy compliance and transparency by publishing privacy and terms of service pages and providing clear contact information.

I

Inovačné centrum Košického kraja

ickk.sk

55

Inovačné centrum Košického kraja operates as a regional startup and innovation hub in Slovakia, providing coworking spaces, startup acceleration, mentoring, and educational programs. The website clearly targets startups, entrepreneurs, and students seeking business growth and innovation support. The business model focuses on bridging ideas to successful business outcomes through modern coworking and accelerator programs. Technically, the website is built on WordPress with Elementor and Yoast SEO, hosted likely by Websupport, and integrates modern analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms, though privacy policy and terms of service pages are missing, representing compliance gaps. Overall, the website is professional, well-branded, and trustworthy, with room for improvement in privacy and contact transparency.

S

Soitron

soitron.sk

53

Soitron is a well-established IT services company with over 30 years of experience operating in seven countries, primarily in Central Europe. The company offers a broad portfolio of IT solutions including cybersecurity, data centers, communication and network solutions, IoT, IT outsourcing, and automation services. Positioned as a long-term leader in IT infrastructure and services, Soitron targets business clients across various sectors such as industry, finance, public administration, energy, and healthcare. The website reflects a professional and consistent brand image with comprehensive service descriptions and client testimonials, supporting its market credibility. Technically, the website is built on WordPress with modern technologies including WPBakery Page Builder, Google Tag Manager, and EWWW Image Optimizer for performance and SEO. It employs HTTPS with strong SSL configuration and security headers, and integrates reCAPTCHA v2 on forms to mitigate spam. Privacy compliance is robust, featuring GDPR-aligned privacy and cookie policies with explicit consent mechanisms. The site is mobile optimized and SEO friendly, though accessibility could be improved. From a security perspective, Soitron demonstrates good practices such as HTTPS enforcement, security headers, and secure form handling. However, explicit security policies and incident response contacts are not publicly detailed, and no vulnerability disclosure or security.txt files were found. The domain registration data aligns well with the company's identity and history, reinforcing trustworthiness. Overall, Soitron's website presents a secure, professional, and compliant digital presence suitable for its business model and target audience. Strategic recommendations include publishing detailed security policies, incident response information, and vulnerability disclosure mechanisms to further enhance trust and compliance.

3

Events in Jablonec | 365 Jablonec

365jablonec.cz

47

The website 365jablonec.cz serves as a local event listing platform for Jablonec nad Nisou, Czech Republic, providing up-to-date information on cultural, sports, educational, and leisure events. It targets a general audience interested in local happenings and offers features such as event search and organizer information. The site uses modern web technologies including React and Next.js, indicating a contemporary technical infrastructure with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data raises concerns about domain legitimacy and trustworthiness, impacting the overall risk profile. Strategic recommendations include enhancing security headers, publishing privacy and cookie policies, and providing clear contact and incident response information to improve compliance and trust.

The website www.jablonec.com serves as the official tourism information center for Jablonec nad Nisou, Czech Republic. It provides comprehensive information on local attractions, cultural events, sports activities, and accommodations, targeting tourists and visitors to the region. The site is professionally designed with clear navigation and multilingual support, enhancing accessibility for international visitors. Technically, it is built on WordPress using the Avada theme and several plugins including Yoast SEO and Google Tag Manager, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data raises concerns about domain registration legitimacy, warranting further investigation. Overall, the site is trustworthy, content-rich, and compliant with privacy regulations, making it a reliable resource for tourism information.

S

SHERWOOD Digital a.s.

sherwood.cz

50

SHERWOOD Digital a.s. is a well-established Czech digital agency founded in 2006, specializing in premium custom websites, robust e-commerce platforms, online marketing, and digital ecosystems for events and festivals. The company holds a strong market position in the Czech Republic, serving both domestic and export-oriented businesses with a portfolio of reputable clients and multiple industry awards. Their business model focuses on delivering tailored digital solutions that drive measurable business results for B2B clients. Technically, the website employs modern tracking and analytics tools such as Google Tag Manager and Leady, hosted on reliable Czech hosting providers, with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS and cookie consent mechanisms, though it lacks explicit security policies and advanced security headers. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a mature digital presence.

R

Rubena, s.r.o.

rubena.cz

55

Rubena, s.r.o. is a Czech manufacturing company specializing in a broad range of rubber products including V-belts, air springs, flexible and inflatable rubber products, hockey pucks, technical molded rubber, rubber compounds, and mold production. The company operates multiple e-commerce platforms targeting industrial and commercial customers, indicating a diversified business model and a solid market position in the manufacturing sector. The website is professionally designed with clear navigation and consistent branding, supporting a positive user experience and trustworthiness. Technically, the website employs modern analytics tools such as Google Analytics and Google Tag Manager, alongside a comprehensive cookie consent management system via CookieScript. The site appears to be custom-built or uses a proprietary CMS platform by SHERWOOD Media s.r.o. Performance is moderate with good mobile optimization and basic accessibility features. However, security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security perspective, the site enforces HTTPS and implements a detailed cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were identified in the HTML content. The absence of explicit incident response contacts or a security.txt file indicates an opportunity to enhance transparency and readiness for security incidents. Overall, the domain WHOIS data is unavailable or privacy protected, which is common for medium-sized enterprises but limits direct verification of domain registration details. The website’s content, social media presence, and compliance measures provide strong trust signals. Strategic recommendations include implementing security headers, publishing incident response information, and enhancing accessibility compliance to further strengthen the security posture and user trust.

R

Rubena Tyres

rubena-tyres.com

73

Rubena Tyres operates an e-commerce website specializing in cycling tyres designed and manufactured in Europe. The company targets cycling enthusiasts and outdoor sports consumers, positioning itself as a European manufacturer with a focus on quality and performance. The website is built on the Shopify platform, leveraging modern e-commerce technologies and third-party marketing and analytics tools to enhance user experience and business operations. The technical infrastructure is solid, with good mobile optimization and SEO practices, although some security headers could be improved. The security posture is good with HTTPS enforced and GDPR compliance evident through cookie consent mechanisms and privacy policies. However, explicit security policies and incident response information are not published, which could be enhanced to improve trust and transparency. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

M

MERKUR.com AG

merkur.com

54

MERKUR.com AG operates a comprehensive German-language website focused on gaming, sports betting, and casino entertainment. The company is well-established with a domain age dating back to 1997, indicating a mature market presence. The website offers rich content including articles, news, and links to partner sites, targeting gaming enthusiasts and bettors. Technically, the site uses modern frameworks like Bootstrap and integrates advanced marketing and analytics tools such as Dynamic Yield, Matomo, and Google Tag Manager. Privacy compliance is supported by a Usercentrics consent management platform, although no explicit privacy policy or terms of service were found in the provided content. Security posture is generally good with HTTPS enforced and domain transfer protections, but could be improved by enabling DNSSEC and publishing security policies. Overall, the site is professional, content-rich, and trustworthy, serving a large audience in the gaming sector.

S

Stratacache

stratacache.com

11

Stratacache is a well-established technology company specializing in digital signage solutions and retail media networks. Founded in 1999 and headquartered in Dayton, Ohio, the company offers scalable end-to-end digital signage hardware, software, and managed services tailored for various business sectors. Their market position is strong, supported by partnerships with major retailers such as Albertsons and Loblaw Advance, and a global presence with millions of managed devices. Technically, the website is built on a modern WordPress platform with advanced plugins like Gravity Forms, Yoast SEO, and WP Rocket for performance optimization. The site demonstrates good mobile responsiveness, accessibility, and SEO practices. Tracking and analytics are implemented via Google Tag Manager and Hotjar, providing moderate user behavior insights. From a security perspective, the site uses HTTPS with a strong SSL configuration and employs Google reCAPTCHA v3 to protect forms. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, Stratacache's website reflects a professional, trustworthy, and mature digital presence aligned with its business objectives. Strategic improvements in privacy compliance and security policy transparency would further strengthen its security posture and regulatory adherence.

У

Українська національна лотерея

unl.ua

51

The website represents the official Ukrainian National Lottery, providing state lottery services and online ticket purchases. It targets Ukrainian citizens interested in participating in national lotteries. The site uses modern web technologies including React and integrates multiple analytics and tracking services such as Google Analytics, TikTok Pixel, and Facebook Pixel. The technical infrastructure appears moderately optimized for performance and mobile usage, with a good level of design and user experience. Security posture is adequate with HTTPS enabled, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of accessible privacy and cookie policies and no clear consent mechanisms. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

S

SBC Connect

sbcconnect.com

53

SBC Connect operates as a specialized networking and event planning platform primarily serving the iGaming and sports betting industries. The platform facilitates seamless meeting scheduling, attendee discovery, and real-time event updates, positioning itself as a premier tool for professionals attending industry conferences. The website reflects a mature business with a domain age dating back to 2012 and a consistent brand presence across its digital assets. Technically, the site leverages modern frameworks such as Angular and integrates multiple analytics and marketing tools including Matomo, Google Analytics, Hotjar, and HubSpot, indicating a well-developed digital infrastructure. Hosting and DNS services are provided via reputable providers like Windows Azure and Cloudflare, enhancing reliability and security. From a security perspective, the site enforces HTTPS and provides a comprehensive cookie consent mechanism, though it lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Overall, SBC Connect demonstrates a solid security posture and compliance with privacy regulations, though improvements in security header implementation and transparency around incident response would strengthen its security maturity. The site is professionally designed, mobile-optimized, and offers clear navigation, contributing to a positive user experience and high trustworthiness.

The website www.pawduketreats.com/retail-order-form/ presents itself as an e-commerce platform promoting an online slot gaming application named WASLOT, targeting the Indonesian market. It offers bonus promotions and claims a high user rating with numerous reviews. The site is built on or heavily integrated with the Etsy platform, utilizing various modern JavaScript libraries and tracking tools such as Google Tag Manager, Bing Ads, and Sentry for error monitoring. However, the absence of WHOIS registration data and domain legitimacy concerns reduce overall trust. The site lacks visible privacy, cookie, or terms of service policies, which impacts compliance and user trust. Security headers are not detected, and no explicit company contact information is provided, limiting transparency. Overall, the site appears functional but has significant gaps in security posture and compliance.

C

CADENAS GmbH

cadenas.de

53

CADENAS GmbH is a reputable German software company specializing in Strategic Parts Management and Electronic Product Catalogs, serving a broad range of engineering and manufacturing clients globally. The company holds a strong market position with significant adoption among top manufacturers and global players. Their website reflects a mature digital presence with comprehensive product information, multilingual support, and active social media engagement. Technically, the site uses modern web technologies including Contao CMS, jQuery, Plyr, and integrates analytics tools with GDPR-compliant consent management. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. Overall, the domain and website content align well, indicating a trustworthy and professional business. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

The website hitachimorava.cz represents Tepelná čerpadla Mazur s.r.o., a small Czech company specializing in the sale, installation, and servicing of heat pumps and HVAC systems, primarily under the HITACHI brand. The company positions itself as an official distributor in the Czech Republic with over 60 years of experience in the industry. The site targets residential and commercial customers seeking high-quality, energy-efficient heating and cooling solutions. The business model focuses on product sales, professional installation, and after-sales service, supported by a user-friendly website with clear product offerings and contact channels. Technically, the website employs a modern but somewhat dated technology stack including AngularJS 1.6.7, jQuery, Bootstrap, and integrates Google Analytics, Google Tag Manager, and Smartsupp live chat for customer engagement and analytics. The site is hosted likely via WEDOS, a Czech hosting provider, consistent with the domain registrar information. The site is mobile optimized and SEO friendly with proper meta tags and structured navigation. From a security perspective, the website demonstrates good privacy compliance with a comprehensive GDPR policy and cookie consent mechanism. However, no explicit security headers were detected, and the use of an older AngularJS version may pose some security risks. There is no visible incident response or vulnerability disclosure information, which could be improved. The site uses HTTPS for all external resources, but direct SSL configuration details are not available. Overall, the website is professional, trustworthy, and well-aligned with the business goals. The risk level is moderate with recommendations to enhance security headers, update frameworks, and publish incident response contacts. The domain registration data is consistent with the business claims, supporting legitimacy. The site contains no adult or questionable content and is safe for general audiences.

K

KK NEPTŪNAS

bcneptunas.lt

40

KK Neptūnas is a professional basketball club based in Lithuania, operating an official website that provides comprehensive information about the team, match schedules, ticket sales, and merchandise. The website targets basketball fans and sports enthusiasts primarily in Lithuania and Europe. The business model revolves around sports entertainment, sponsorships, and fan engagement through digital channels. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern web technologies such as Bootstrap and Owl Carousel for UI components. Google Analytics and Tag Manager are used for visitor tracking with IP anonymization enabled, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but visible PHP warnings and lack of security headers indicate areas for improvement. Privacy and cookie policies are absent, which is a compliance gap. Overall, the website is functional and professional but requires backend fixes and enhanced privacy compliance to improve trust and security.

A

Agricultural Industries Confederation

agindustries.org.uk

66

The Agricultural Industries Confederation (AIC) is a leading UK trade association representing the agri-supply industry. The organization provides a broad range of services including trade assurance schemes, policy advocacy, member support, and industry events. Their website reflects a mature digital presence with comprehensive content targeting UK agri-supply businesses and stakeholders. The site emphasizes sustainability, regulatory compliance, and industry collaboration. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates Google Tag Manager for analytics, and implements a robust cookie consent mechanism, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and cookie security best practices, though there is room for improvement in publishing explicit security policies and enhancing security headers. Overall, the website is professional, trustworthy, and well-structured, supporting the organization's market position as a key industry voice.

ArgoMed.cz is a Czech Republic-based e-commerce platform specializing in the distribution and retail of medical supplies, disinfectants, diabetic care products, and healthcare accessories. Powered by Promedica, the company targets healthcare professionals, medical institutions, and individual consumers within the Czech and Slovak markets. The website presents a well-structured catalog of products with clear navigation and consistent branding, reflecting a medium-sized business with a focused healthcare sector presence. Technically, the website is built on ASP.NET WebForms with jQuery and leverages Amazon Cloudfront CDN for content delivery. Google Tag Manager is used for analytics and marketing tracking. The site is mobile-optimized with good SEO practices but shows signs of legacy technology use, which may pose modernization challenges. Performance is moderate, and accessibility is basic. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism with opt-in/out capabilities, indicating some privacy awareness. However, the absence of explicit security headers and lack of detected privacy policy or terms of service pages represent compliance and security gaps. The WHOIS data is unavailable, limiting domain legitimacy verification and reducing trust scores. Overall, ArgoMed.cz appears to be a legitimate healthcare e-commerce business with room for improvement in security posture, privacy compliance, and domain registration transparency. Strategic enhancements in these areas will strengthen trust and regulatory adherence.

V

Všeobecná zdravotní pojišťovna ČR

zdravakariera.cz

63

The website zdravakariera.cz serves as the official career portal for Všeobecná zdravotní pojišťovna ČR (VZP), the largest health insurance company in the Czech Republic. It provides detailed information about employment opportunities across various professional fields including healthcare, IT, law, marketing, and HR. The site emphasizes benefits, trainee programs, and inclusion initiatives for handicapped individuals, targeting job seekers, students, and graduates. The website is well-branded, consistent, and professionally designed, reflecting the stature of a major public institution. Technically, the site employs modern web technologies including Microsoft Azure hosting, Google Tag Manager, Microsoft Application Insights, and Facebook Pixel for analytics and marketing. It is mobile-optimized, accessible, and uses HTTPS with a cookie consent mechanism that complies with GDPR requirements. However, explicit security headers are not evident in the HTML source, and no direct contact or security incident response information is provided. From a security perspective, the site demonstrates good practices such as encrypted connections and privacy-aware analytics. The absence of WHOIS data is notable but likely due to registry policies or privacy protection rather than malicious intent. No vulnerabilities or exposed sensitive data were detected. Overall, the site presents a low-risk profile with strong business credibility. Strategically, the site could improve by publishing explicit security policies, incident response contacts, and implementing security.txt for vulnerability disclosure. Enhancing security headers would further strengthen its security posture. The site’s comprehensive privacy and cookie policies, combined with official social media presence, contribute to user trust and compliance.

M

Ministr zdraví z. ú.

ministrzdravi.cz

39

Ministr zdraví z. ú. is a Czech non-profit think tank dedicated to improving public health by extending the healthy life expectancy of the Czech population by five years. The organization focuses on data-driven policy recommendations, healthcare system reform, and public awareness. Their website is professionally designed, content-rich, and targets policymakers, healthcare professionals, and the general public. The organization actively engages with its audience through multiple social media channels and transparent donation mechanisms. Technically, the site is built on WordPress with modern plugins for GDPR compliance and analytics integration. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and trust signals on the site.

P

PAUL HARTMANN AG

hartmann.info

76

PAUL HARTMANN AG operates a global healthcare business specializing in medical and hygiene products. Their website serves as a country selection portal, directing users to localized content and product information. The company maintains a strong market position with a professional online presence and comprehensive privacy and cookie policies, reflecting compliance with GDPR and other regulations. Technically, the site uses modern technologies including Sitecore CMS, Cloudflare hosting, and various analytics and marketing tools, ensuring good performance and user experience. Security posture is solid with HTTPS enforcement and consent mechanisms, though additional security headers could enhance protection. Overall, the website is trustworthy and professionally managed, with no signs of malicious activity or content blocking.

Bezpecnostpersonalu.cz is a Czech informational website dedicated to the safety of healthcare personnel, operated by CZECH MULTIMEDIA INTERACTIVE s.r.o. The site serves as an educational platform targeting healthcare professionals such as nurses and doctors, focusing on topics like injury prevention, hygiene, and professional infection risks. The website is positioned as a niche resource within the Czech healthcare sector, providing relevant and timely content to its audience. Technically, the site is built on WordPress, leveraging popular technologies such as Bootstrap for responsive design, Yoast SEO for search optimization, and Cookiebot for GDPR-compliant cookie management. Integration with Google Analytics and Tag Manager indicates a moderate level of digital maturity and analytics usage. Security-wise, the site enforces HTTPS and employs a comprehensive cookie consent mechanism, but lacks explicit security policies or incident response information. No critical vulnerabilities or suspicious patterns were detected, and the domain registration data aligns well with the website's claims, supporting its legitimacy. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, making it a trustworthy resource for its intended audience.

P

PROMEDICA PRAHA GROUP, a.s.

promedica-praha.cz

58

Promedica Praha Group, a.s. is a well-established Czech healthcare distribution and logistics company founded in 1991. The company focuses on supplying medical devices and healthcare products to professionals and providers within the Czech Republic. Their website reflects a professional and modern digital presence built on WordPress, featuring clear navigation, multilingual support, and integration with Google Analytics and Google Ads for marketing and tracking purposes. The company maintains a GDPR-compliant privacy policy and provides clear contact information, including phone, email, and physical address, enhancing business credibility. Technically, the website employs modern web technologies such as jQuery, Yoast SEO, and slick sliders, ensuring a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and secure cookie settings, though there is room for improvement by adding security headers and explicit security policies. The absence of WHOIS data limits domain trust analysis, but the website content and business information appear legitimate and consistent with a medium-sized healthcare distributor. Overall, the site is safe, professional, and trustworthy, with moderate user tracking and advertising integration. Strategic recommendations include implementing cookie consent mechanisms, publishing security and incident response policies, and improving WHOIS transparency to enhance trust and compliance.

C

COOP MORAVA, s.r.o.

coopmorava.com

44

COOP MORAVA, s.r.o. operates the largest retail grocery network in the Moravia region of the Czech Republic, with over 800 stores under the COOP brand. The company targets general consumers seeking quality products and promotional offers. Their business model focuses on cooperative retail with strong supplier partnerships and customer engagement through recipes and a mobile app. Technically, the website uses a mature but somewhat outdated technology stack including jQuery 1.10.2 and Bootstrap 3, with integrations for Google Maps, Google Tag Manager, and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced but lacks important security headers and uses outdated libraries, which may pose risks. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. WHOIS data is unavailable, which reduces trust but the website's active presence and contact details support legitimacy. Overall, the site is functional and professional but would benefit from improved security and privacy practices.

T

Trade Association Forum

taforum.org

58

Trade Association Forum (TAF) is a well-established UK non-profit organization serving as an association of trade associations. Founded in 2001, it supports over 180 UK trade associations by promoting best practices and advocating their role to government, industry, and the public. The website reflects a mature business model focused on membership services, events, training, and resources tailored to trade associations. The organization holds a strong market position as a central hub for trade associations in the UK.

J

James Hardie Europe GmbH

jameshardie.eu

66

James Hardie Europe GmbH is a leading manufacturer and marketer of fiber cement cladding and fiber gypsum products in Europe, with a strong market position as the world’s number one producer in its sector. The company offers a range of high-performance building materials including Hardie® Plank and Hardie® Panel products, emphasizing durability, fire protection, and sustainability. Their operations span multiple continents with thousands of employees and several R&D and manufacturing sites. The website reflects a mature digital presence built on ASP.NET Kentico CMS, with modern tracking and cookie consent mechanisms in place. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional, trustworthy, and well-structured, supporting the company’s strong brand and market leadership.

J

James Hardie Europe GmbH

fermacell.com

57

The website represents James Hardie Europe GmbH's fermacell® brand, a leading manufacturer of gypsum fibreboards and related building materials in Europe. The company has a strong market position as a European market leader with a broad product portfolio targeting construction professionals and distributors. The digital infrastructure is built on ASP.NET with Kentico CMS, supported by Cloudflare DNS and CDN services, and includes modern marketing and consent tools such as Google Tag Manager and OneTrust. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks DNSSEC and explicit security headers. Privacy compliance is partial with cookie consent but no visible privacy or terms policies. Overall, the site is professional, trustworthy, and content-rich, supporting a large enterprise manufacturing business.

The Università degli Studi di Padova is a prestigious public university in Italy, founded in 1222, offering a wide range of academic courses, research opportunities, and community engagement initiatives. It holds a strong market position, ranked among the top 250 universities worldwide, and serves students, researchers, and academic staff with comprehensive educational and support services. The website reflects a mature digital presence with consistent branding and high-quality content tailored to its diverse audience. Technically, the site is built on Drupal 7 with modern enhancements such as jQuery, slick carousel, and multiple analytics platforms including Google Analytics, Matomo, and TikTok Pixel. It implements GDPR-compliant cookie consent mechanisms and accessibility tools, ensuring good user experience and compliance with privacy regulations. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site enforces HTTPS, uses consent-based tracking, and avoids exposing sensitive data. However, it lacks explicit security policy pages and incident response contacts, and could improve by adding security headers and a vulnerability disclosure mechanism. Overall, the security posture is solid but with room for enhancement. The domain registration details align well with the university's identity, showing consistency and legitimacy. Contact information is clearly provided with official emails, phone numbers, and physical address. The site is free from WAF blocks or content restrictions, and contains no adult or questionable content, making it safe for general audiences.

B

Bidfood Slovakia

bidfood.sk

58

Bidfood Slovakia is a well-established leader in the Slovak gastronomy market, specializing in food production, distribution, and wholesale services. The company operates a professional e-commerce platform and offers additional services such as culinary workshops and smart applications to enhance customer experience. The website reflects a mature digital presence with a modern Drupal 10 CMS, good mobile optimization, and compliance with GDPR and cookie consent regulations. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly disclosed. Overall, the site is professional, trustworthy, and well-aligned with the business's market position and operational scope.

S

Sdružení celiaků ČR

celiaci.cz

54

Sdružení celiaků ČR is a Czech non-profit organization dedicated to supporting individuals who must adhere to a gluten-free diet due to health reasons, primarily celiac disease. The website serves as an information and advocacy platform, providing resources, community support, and awareness for its target audience. The organization maintains an active presence on social media platforms including Facebook, Instagram, and YouTube, enhancing its outreach and engagement. Technically, the website is built on WordPress using the Divi theme and incorporates modern SEO practices via the Yoast SEO plugin. It employs Google Tag Manager for analytics and uses HTTPS with several security headers, indicating a good baseline security posture. The site is mobile-optimized and provides a user-friendly experience with clear navigation and relevant content. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and security headers but lacks a published security policy, incident response information, and a security.txt file, which are recommended for transparency and vulnerability management. The absence of WHOIS data for the domain is a notable concern, reducing the overall trust score and suggesting the need for further domain registration verification. Overall, the website is a credible and professional resource for the celiac community in the Czech Republic, with solid technical implementation and privacy compliance. Strategic improvements in domain transparency and security disclosure would enhance its trustworthiness and security posture.

Unie ROSKA is a Czech non-profit organization dedicated to supporting patients with multiple sclerosis (MS) and their families. With over 30 years of experience, it provides education, rehabilitation, social services, and advocacy to improve the quality of life and societal integration of people living with MS. The organization maintains partnerships with international MS federations and reputable healthcare and donor entities, reinforcing its established market position in the Czech healthcare non-profit sector. The website reflects a professional and consistent brand image, targeting patients, caregivers, and donors with relevant content and resources. Technically, the website employs a mature technology stack including jQuery, Google Tag Manager, Matomo analytics, and a donation widget from Darujme.cz. It uses the IPO CMS platform and demonstrates good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy page. Overall, the website is trustworthy and professionally maintained, with no signs of malicious activity or content safety concerns. The absence of WHOIS registrant data is due to EURid privacy policies and does not detract significantly from legitimacy given the organization's transparency and partner ecosystem. Strategic improvements in privacy documentation, security headers, and incident response disclosures would enhance the security and compliance posture.

Č

Česká asociace pro vzácná onemocnění z.s.

vzacna-onemocneni.cz

36

The website represents the Česká asociace pro vzácná onemocnění z.s., a Czech non-profit association dedicated to supporting individuals and organizations affected by rare diseases. It provides information, educational resources, advocacy, and collaboration with medical and European networks. The site is well-structured, professionally designed, and uses modern WordPress technologies including Elementor and Yoast SEO, indicating a mature digital presence. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and incident response information. Overall, the site is trustworthy and serves its target audience effectively.

U

Unie pacientů ČR

uniepacientu.cz

63

Unie pacientů ČR is a Czech non-profit organization operating a reservation system to facilitate placement of patients and applicants into social and inpatient healthcare facilities. The website serves as an information hub and booking platform, targeting patients and applicants within the Czech Republic. The organization has been established since 2005, supported by partnerships such as the Ministry of Labour and Social Affairs of the Czech Republic. Technically, the website uses a custom stack with jQuery, Google Maps API, and Google Analytics for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is moderate with HTTPS usage but missing key security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

O

Odborový svaz zdravotnictví a sociální péče České republiky

zdravotnickeodbory.cz

48

The website represents the Odborový svaz zdravotnictví a sociální péče České republiky, a Czech trade union organization focused on healthcare and social care workers. It serves as a platform for news, advocacy, member support, and communication with its constituency. The organization is well-established with a history dating back to 1990 and is affiliated with national and international trade union confederations. The website is built on WordPress, leveraging common SEO and analytics tools such as Yoast SEO and Google Tag Manager. Privacy and cookie consent mechanisms are implemented, reflecting compliance with GDPR requirements. However, the absence of WHOIS data for the domain raises some concerns about domain registration transparency. No critical security vulnerabilities were detected, but the site lacks explicit security policies and incident response information. Overall, the site is professional, content-rich, and trustworthy for its intended audience.

C

CLA Czech Republic

claczech.cz

67

CLA Czech Republic is a professional services firm providing integrated consulting services including audit, tax advisory, financial and payroll accounting, legal consulting, corporate finance, and IT support. The company positions itself as a reliable partner for successful businesses on an international level, supported by its affiliation with the CLA Global network. The website reflects a mature digital presence with a professional design, multilingual support, and comprehensive service descriptions. Technically, the site is built on WordPress with modern SEO and analytics tools, ensuring good performance and accessibility. Security measures include HTTPS, Google reCAPTCHA, and GDPR-compliant cookie consent, though some security headers could be enhanced. Overall, the website demonstrates a strong security posture with no evident vulnerabilities or exposed sensitive data. The absence of WHOIS data limits domain registration insights, but the professional presentation and network affiliation support legitimacy. Strategic recommendations include improving security headers, maintaining updated software, and publishing explicit security policies to enhance trust and compliance.

Česká asociace sester, z.s. is a professional nursing association based in the Czech Republic, providing membership services, educational programs, events, and advocacy for nursing professionals. The website serves as an information hub for members and the public, offering news, event registrations, and resources. The organization maintains partnerships with reputable healthcare companies and educational institutions, enhancing its credibility and service offerings. Technically, the website employs standard web technologies including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA for security and analytics. The site is accessible, mobile-optimized, and presents content in Czech with some multilingual options. Security posture is generally good with HTTPS enforced and bot protection via reCAPTCHA, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is unavailable, which limits full domain legitimacy verification. Overall, the site is professional and trustworthy for its intended audience but would benefit from enhanced privacy compliance and security disclosures.

B

Brothers Wines s.r.o.

brotherswines.cz

50

Brothers Wines s.r.o. operates a professional e-commerce platform specializing in the sale of wines, including red, white, rosé, and curated wine packages. The website targets wine consumers primarily in Czechia and offers features such as customer accounts, wishlists, and email alerts for stock availability. The company displays multiple wine-related certifications and awards, enhancing its market credibility. Technically, the site is built on the PrestaShop platform, leveraging modern tracking and marketing technologies such as Google Tag Manager, Facebook Pixel, and Smartlook. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers are not detected. Privacy policies and cookie usage statements are comprehensive and GDPR compliant. However, the absence of WHOIS data limits domain registration transparency and trust assessment. Overall, the site is suitable for adult audiences due to alcohol sales and includes age verification. The business is small-sized, focused on retail within the Czech market.

K

KB SmartPay

kbsmartpay.cz

57

KB SmartPay operates as a payment solutions provider specializing in payment terminals and payment gateways for businesses and e-commerce platforms primarily in the Czech Republic. The website presents a professional and consistent brand image, targeting business customers seeking comprehensive payment solutions. The technical infrastructure leverages WordPress CMS, modern JavaScript libraries such as jQuery, and integrates multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Adform tracking. Cookiebot is used for cookie consent management, reflecting a basic level of privacy compliance. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and explicit privacy policies indicates room for improvement. WHOIS data is not publicly available, suggesting privacy protection which is common in financial services but reduces transparency. Overall, the website is functional, secure, and business credible but would benefit from enhanced privacy disclosures and security best practices.

T

TSC Hospital, s.r.o.

tsc-hospital.com

52

TSC Hospital, s.r.o. is a specialized service provider offering comprehensive cleaning and hygiene services tailored for healthcare and social care facilities across the Czech Republic. As part of the larger TSC Group holding, it benefits from a strong market position and extensive industry experience, focusing on high standards of hygiene in critical environments such as hospitals, clinics, and laboratories. Their service portfolio includes cleaning services, supply of hygiene products, and consultancy, emphasizing compliance with strict hygiene regulations and certifications such as ISO standards. Technically, the website employs modern web technologies including Google Tag Manager for analytics, Swiper.js for interactive content, and Nette Framework for form validation. The site is mobile-optimized with good navigation and content structure, though some accessibility features could be improved. Security-wise, the site uses HTTPS and integrates reCaptcha in forms, but lacks explicit security headers and published incident response policies. The security posture is solid but could be enhanced by adding security headers and formal vulnerability disclosure mechanisms. Privacy compliance is well addressed with clear GDPR and cookie policies, including consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency, slightly impacting trustworthiness. Overall, TSC Hospital presents a professional and trustworthy online presence aligned with its business focus, but should address domain registration transparency and strengthen security policies to improve trust and compliance.

L

Leastex, a.s.

leastex.cz

49

Leastex, a.s. is a well-established Czech company specializing in comprehensive laundry and textile rental services, primarily serving healthcare and industrial sectors. Founded in 1992, it operates as part of the larger TSC Group, which encompasses multiple subsidiaries focused on cleaning, facility management, and related services. The company leverages modern RFID technology to provide efficient textile management and detailed tracking for clients. The website reflects a professional and modern digital presence with multimedia content and clear navigation. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and reCaptcha for form security. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though it lacks some advanced security headers and explicit incident response information. The absence of WHOIS data limits domain registration trust assessment, but the website content and business information appear legitimate and consistent with a professional service provider. Privacy and cookie policies are present and linked to the parent group, indicating compliance with GDPR. Contact information is comprehensive, including physical addresses and a secure contact form. Overall, Leastex, a.s. presents a trustworthy and professional business with a strong market position in the Czech Republic's healthcare and industrial laundry service sectors. Security and compliance practices are good but could be enhanced with additional policies and security headers.

I

ICZ Group

iczgroup.com

61

ICZ Group is a leading Czech IT solutions provider specializing in integrated software and network solutions primarily for public administration, healthcare, defense, transportation, finance, manufacturing, and logistics sectors. The company offers a broad range of services including IT consulting, system integration, cybersecurity risk management, and custom software development. Their market position is strong within the Czech Republic and Slovakia, with an expanding presence in other countries. The website reflects a professional and mature digital presence with multilingual support and comprehensive content tailored to their target audience. Technically, the website is built on WordPress using the Divi Builder framework, enhanced with modern tools such as Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. The site demonstrates good SEO practices, mobile optimization, and accessibility features, although performance is moderate. Security posture is solid with HTTPS enforced and use of CAPTCHA, but could be improved by adding explicit security headers and publishing dedicated security policies. The WHOIS data for the domain is missing or not publicly available, which is inconsistent with the professional nature of the business and may warrant further verification. Despite this, the website provides clear contact information, privacy and cookie policies, and shows trust indicators such as ISO 27001 certification and client references. Overall, the site is trustworthy and well-maintained, with minor areas for security and transparency enhancement.

L

L I N E T spol. s r.o.

linet.com

73

LINET spol. s r.o. is a leading global manufacturer specializing in advanced care hospital beds and related medical furniture. The company offers a comprehensive product portfolio including hospital beds, stretchers, chairs, mattresses, and various accessories, targeting healthcare providers and medical facilities worldwide. Their market position is strong as a top manufacturer in their niche, supported by a professional and content-rich website that reflects their business focus and expertise. Technically, the website employs modern web technologies such as JavaScript, Google Tag Manager, Cookiebot for consent management, and reCAPTCHA for bot protection. The site is mobile-optimized with good SEO practices and moderate performance. However, some accessibility features could be improved to enhance user experience for all visitors. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security policies or incident response contacts. No critical vulnerabilities were detected in the provided content, but the absence of WHOIS data and privacy policy pages slightly reduces trust and compliance confidence. Overall, the website presents a professional and trustworthy front for LINET, but improvements in transparency, security documentation, and accessibility would strengthen their digital maturity and compliance posture.

Z

Zdravotní pojišťovna ministerstva vnitra České republiky

zpmvcr.cz

58

Zdravotní pojišťovna ministerstva vnitra České republiky operates as a modern, financially stable public health insurance provider in the Czech Republic, serving over 1.35 million insured clients. The website offers comprehensive information about insurance benefits, client services, and health-related programs, targeting insured individuals, payers, and healthcare providers. The organization maintains a strong market position with extensive client centers and digital engagement through social media and online services. Technically, the site is built on Drupal 10 with modern libraries such as FontAwesome and Leaflet.js, and integrates analytics tools like Google Tag Manager and Microsoft Clarity, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks explicit security policies and some security headers. WHOIS data is unavailable, which limits domain trust assessment but the website content and structure indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

V

Všeobecná zdravotní pojišťovna ČR

vzp.cz

70

Všeobecná zdravotní pojišťovna ČR (VZP ČR) is the largest public health insurance provider in the Czech Republic, serving insured persons, payers, and healthcare providers. The website offers comprehensive information and services including electronic communication platforms, client support, and insurance product offerings. The company maintains a strong market position as a government-related essential healthcare entity with a large client base. Technically, the website is built on a modern infrastructure leveraging Microsoft Azure services, Application Insights, and Google Tag Manager, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforcement, consent-based tracking, and no visible vulnerabilities, although explicit security policies and vulnerability disclosure mechanisms are not publicly documented. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. The lack of WHOIS data is likely due to privacy protection but does not detract from the legitimacy of the site given the official branding and contact information.

S

SATUM CZECH s.r.o.

satum.cz

49

SATUM CZECH s.r.o. is a well-established insurance brokerage company operating primarily in the Czech Republic, serving various sectors including healthcare, transportation, industry, and finance. The company positions itself as one of the largest insurance brokers in the region, offering risk analysis, insurance brokerage, claims handling, and compliance services. Their website reflects a professional business model targeting corporate clients with industry-specific insurance solutions. Technically, the website employs a moderate technology stack including jQuery, Google Analytics, and tracking tools, with a responsive design suitable for mobile users. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks advanced security headers and uses an outdated jQuery version, which could pose risks. The absence of WHOIS data is a notable concern, impacting domain trustworthiness despite the professional presentation and clear contact information. Overall, the website is functional, professional, and compliant with GDPR, but improvements in security and transparency are recommended.

A

AGEL a.s.

agel.cz

72

AGEL a.s. is a leading private healthcare provider in Central Europe, operating a comprehensive network of hospitals, clinics, pharmacies, laboratories, and educational institutions primarily in the Czech Republic and Slovakia since 2006. The company targets patients, healthcare professionals, students, and the general public, offering a broad range of medical and healthcare services including premium care, family maternity hospitals, and laboratory testing. The website reflects a mature digital presence with professional design, clear navigation, and rich content supporting business operations and stakeholder engagement. Technically, the website employs modern web technologies such as Bootstrap, jQuery, LayerSlider, and integrates Google Analytics and Tag Manager for analytics and marketing. The site is mobile-optimized and includes cookie consent mechanisms compliant with GDPR. However, some security headers are missing, and no explicit security or incident response policies are published, indicating room for improvement in security posture. Security-wise, the site enforces HTTPS and includes anti-phishing iframe detection scripts, but lacks detailed security policy disclosures and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. The absence of WHOIS data limits domain trust verification, but the website content and structure suggest a legitimate and professional organization. Overall, AGEL's website is a well-constructed digital asset supporting its healthcare business, with good privacy compliance and moderate security maturity. Strategic enhancements in security headers, incident response transparency, and WHOIS data availability would strengthen trust and resilience.

R

RESPECT, a.s.

respect.cz

69

RESPECT, a.s. is a well-established Czech insurance brokerage firm specializing in tailored insurance solutions for businesses and entrepreneurs. With over 30 years of experience, the company offers comprehensive risk management, insurance program design, and claims handling services. The website reflects a mature market position with a focus on B2B clients across various industry sectors. Technically, the site employs modern JavaScript frameworks and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. The lack of WHOIS data reduces domain trust slightly but is mitigated by strong business content and contact transparency.

InterSystems Corporation is a leading enterprise software company specializing in data management and healthcare information systems. The company offers a broad portfolio of high-performance, cloud-first platforms designed to make data AI-ready, clean, and accessible across industries such as healthcare, finance, manufacturing, and supply chain. Positioned as a market leader, InterSystems competes with major cloud and data platform providers and is recognized in industry rankings such as the ISG/Ventana Buyers Guide. The website reflects a mature digital presence with comprehensive product information, customer success stories, and developer resources. Technically, the site employs modern web technologies, including Google Tag Manager, HubSpot, and OneTrust for privacy compliance, and is hosted on a robust CDN infrastructure likely powered by Akamai. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit vulnerability disclosure and incident response contacts are not publicly detailed. Overall, the website and business presence indicate a trustworthy and professional enterprise with a focus on data-driven digital transformation.