Security Directory

M

Ministerstvo spravodlivosti Slovenskej republiky

slov-lex.sk

58

Slov-Lex is the official Slovak government portal operated by the Ministry of Justice of the Slovak Republic, providing comprehensive access to legal regulations, EU law, court decisions, and related legal information. It serves a broad audience including legal professionals, government officials, and the general public seeking authoritative legal data. The portal is positioned as the primary national legal information system for Slovakia, offering key services such as eLegislation, a legal thesaurus, and court decision databases. Technically, the website employs modern JavaScript frameworks, likely React, and integrates Google Tag Manager for analytics. The design follows a government-mandated design manual ensuring consistent branding and accessibility. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, with chunked CSS and JS assets indicating a single-page application architecture. From a security perspective, the site enforces HTTPS and uses sandboxed iframes for third-party cookie checks, reflecting good security hygiene. However, explicit security headers are not evident, and there is no published security policy or incident response information. Privacy compliance is basic, with a cookie policy present but lacking a consent mechanism. Contact information is clearly provided, enhancing trust and credibility. Overall, Slov-Lex is a trustworthy, well-maintained government portal with strong business credibility and good technical implementation. Strategic improvements could focus on enhancing privacy compliance, publishing security policies, and implementing cookie consent mechanisms to further strengthen user trust and regulatory adherence.

G

GTO Solutions s.r.o.

sedesatka.cz

51

Sedesatka.cz is a Czech-language news and lifestyle portal operated by GTO Solutions s.r.o., offering a broad range of content including verified reviews, user guides, horoscopes, financial and political news, and cultural topics. The site targets Czech internet users seeking trustworthy and diverse information. Technically, the website employs modern web technologies such as Google Fonts, Google Tag Manager, Google Analytics, and Google Adsense for content delivery, analytics, and monetization. The site is well-structured, mobile-optimized, and includes a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and no critical vulnerabilities detected, though additional security headers could enhance protection. The absence of WHOIS data for the domain is a notable concern, reducing domain registration trustworthiness, but the website content and business information appear professional and credible. Overall, the site presents a reliable and user-friendly experience with moderate to good technical and security maturity.

W

Warner Bros. Discovery

warnermediaprivacy.com

58

The Warner Bros. Discovery Privacy Center website serves as a portal for users to understand their privacy rights and access related policies. It is part of the larger Warner Bros. Discovery media conglomerate, targeting consumers of its media and entertainment services. The site is professionally branded and consistent with the parent company's identity, providing links to privacy policies and terms of use. However, the main page content is minimal, indicating possible regional restrictions or limited public content exposure. Technically, the site is built on WordPress with multilingual support and uses Google Tag Manager for analytics and tracking. The site is mobile optimized and uses HTTPS with a good SSL configuration. However, no explicit security headers were detected, and no direct contact information or security policies beyond privacy and cookie policies were found. The absence of WHOIS data for the domain is a notable concern, as it reduces transparency and trustworthiness. From a security perspective, the site enforces HTTPS and cookie consent mechanisms, but lacks visible advanced security headers and incident response contacts. There are no indications of vulnerabilities or exposed sensitive data in the provided content. Overall, the site demonstrates a moderate security posture but would benefit from enhanced transparency and security best practices. The overall risk is moderate due to the missing WHOIS data and limited contact information, but the professional branding and presence of privacy policies mitigate some concerns. Strategic recommendations include improving domain registration transparency, adding security headers, publishing incident response information, and enhancing accessibility and contact options.

B

Bookimed Limited

bookimed.com

67

Bookimed Limited operates an international medical tourism platform facilitating hospital search and treatment arrangements worldwide. The website targets patients seeking verified clinics and doctors abroad, offering extensive patient reviews and treatment options. The platform is well-established with a strong market position in healthcare travel, supported by a medium-sized team and multiple international contact points. Technically, the site uses modern frameworks such as Nuxt.js and Vue.js, with integrated analytics and tracking tools for marketing and user behavior analysis. Security posture is strong with HTTPS, security headers, and secure forms, although dedicated security and incident response policies are not publicly found. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving a general audience safely.

S

Sestra Emmy

sestraemmy.cz

58

Sestra Emmy is a Czech Republic based digital healthcare platform providing a virtual nurse service to facilitate secure communication between patients and their doctors. Founded in 2020 by a team of Czech medical professionals, the platform aims to reduce phone call overload in medical offices by enabling appointment scheduling, document submission, and message exchange through a secure web application. The service is positioned as an emerging player in the Czech healthcare digital transformation space, targeting both patients and healthcare providers. Technically, the website is built on Webflow CMS, hosted on AWS infrastructure, and integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and bot protection, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the website is trustworthy, professional, and safe for general audiences.

Q

Quartex s.r.o

qinvoice.cz

48

Q.Invoice, operated by Quartex s.r.o., is a Czech Republic-based technology company specializing in AI-powered automation of incoming invoice processing. The platform offers automated data extraction, multi-level approval workflows, and integration with accounting software, targeting businesses seeking to streamline their invoice management. The website demonstrates a professional digital presence with clear business information, client testimonials, and compliance with privacy regulations. Technically, the site is built on WordPress with modern libraries and includes cookie consent mechanisms and Google Tag Manager for analytics. Security posture is solid with HTTPS and session management, though explicit security headers and incident response policies are absent. Overall, Q.Invoice presents a credible and mature SaaS offering in the invoice automation niche, with room for enhanced security transparency and WHOIS data availability.

Q

QUARTEX Praha, s.r.o.

quartex.cz

46

QUARTEX Praha, s.r.o. is a Czech-based IT company specializing in enterprise resource planning (ERP) solutions, primarily on Microsoft platforms including Dynamics NAV and Dynamics 365 Business Central, as well as their proprietary Q.MAN platform. With over 25 years of experience, they position themselves as a trusted Microsoft partner delivering digital transformation and business process optimization services. Their offerings include ERP implementation, audits, consulting, outsourcing, and web application development. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, supporting a B2B audience seeking advanced IT solutions. Technically, the site is built on WordPress 6.8.3 and integrates modern libraries such as Google Tag Manager and Google reCAPTCHA v3 for security and analytics. The site uses Bootstrap and other UI frameworks for responsive design. Security headers are partially implemented, and HTTPS is enforced, indicating a good security posture, though some headers like Content-Security-Policy are missing. Cookie consent mechanisms are present, supporting privacy compliance, but no explicit privacy policy or terms of service pages were detected on the homepage. The security posture is solid with HTTPS and anti-bot protections, but the absence of WHOIS data reduces trustworthiness and raises questions about domain registration transparency. No incident response or vulnerability disclosure information is publicly available, which could be improved. Overall, the site is safe, professional, and business-focused with moderate tracking via Google Tag Manager. Strategically, QUARTEX Praha should enhance transparency by publishing privacy and security policies, improve security headers, and verify domain registration details to strengthen trust. These steps will support compliance and reinforce their market position as a reliable IT partner.

R

RALTON s.r.o.

ralton.cz

52

RALTON s.r.o. is a Czech Republic-based manufacturer specializing in unique glass stones and comprehensive jewelry services. The company serves a global clientele including designers and leading fashion brands, offering a vast catalog of shapes and color effects. Their business model focuses on B2B manufacturing and custom jewelry solutions, leveraging traditional craftsmanship combined with modern techniques. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the website employs modern web technologies including Google Tag Manager and YouTube API, with a responsive design optimized for mobile devices. While performance is moderate, the site includes essential SEO and accessibility features. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is adequate but could be improved by implementing explicit security headers and publishing incident response information. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site presents a low-risk profile with good business credibility. Strategic recommendations include enhancing security headers, adding incident response contacts, and improving accessibility and performance to further strengthen the digital presence and trustworthiness.

F

fortell s.r.o.

fortell.cz

72

Fortell s.r.o. is a well-established Czech manufacturing company specializing in injection molds, stamping tools, and mass production of plastic and metal parts. With over 30 years of tradition, the company serves industrial and engineering clients primarily in the Czech Republic and surrounding regions. Their website reflects a professional B2B business model focused on tooling and manufacturing services, supported by strong trust signals such as ISO 9001 and ISO 14001 certifications and positive customer testimonials. Technically, the website employs modern web technologies including Google Tag Manager and YouTube integration, hosted on a reputable Czech hosting provider. The site is mobile-optimized with good SEO practices and a cookie consent mechanism that respects GDPR compliance. Performance is moderate with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site could enhance security by implementing additional HTTP security headers and publishing incident response or security policies. Privacy compliance is good, with clear privacy and cookie policies and user consent mechanisms. Overall, the website and domain registration data indicate a legitimate, trustworthy business with a strong market position in manufacturing. Strategic recommendations include enhancing security headers, publishing security policies, and continuous monitoring of third-party scripts to maintain compliance and security.

O

O2 Czech Republic a.s.

o2tvproduction.cz

66

O2TV Production, a division of O2 Czech Republic a.s., specializes in professional content production services including sports broadcasting, television shows, and wireless solutions. The company operates state-of-the-art broadcast facilities and OB trucks across Europe, serving a broad audience of broadcasters and media companies. The website reflects a well-established market position with trusted partnerships and a clear service offering. Technically, the site employs modern JavaScript libraries, video streaming technologies, and a robust consent management platform, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and captcha-protected forms, though explicit security policies and headers could be improved. The domain WHOIS data shows an unusual future creation date, which is a concern but likely a data anomaly. Overall, the site is professional, GDPR compliant, and trustworthy with room for security enhancements.

B

BRICKS agency

bricksagency.sk

60

BRICKS agency is a Slovak digital marketing agency specializing in comprehensive marketing solutions including web development, e-commerce, social media management, PPC campaigns, SEO, branding, and print graphics. Established in 2018 and based in Poprad, Slovakia, the agency serves a diverse client base ranging from small to large enterprises. The website demonstrates a strong market position with a professional portfolio and clear service offerings. Technically, the site is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js, and integrates SEO and cookie consent tools effectively. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers could be improved. Overall, the site is well-structured, mobile-optimized, and compliant with GDPR requirements. The domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

F

Finance Watch

finance-watch.org

68

Finance Watch is a non-profit association dedicated to reforming finance in the interest of citizens. The website presents a professional and consistent brand image with a clear mission focused on financial reform advocacy. The technical infrastructure is based on WordPress CMS, enhanced with modern SEO and marketing tools such as HubSpot and Google Tag Manager, indicating a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies could further strengthen defenses. Privacy compliance is well addressed with clear privacy and cookie policies, reflecting GDPR awareness. Overall, the website is trustworthy and serves its advocacy purpose effectively.

N

Nederlandse Vereniging van Banken

nvb.nl

70

The Nederlandse Vereniging van Banken (NVB) is a Dutch banking industry association representing both Dutch and foreign banks active in the Netherlands. The organization focuses on fostering a prosperous, sustainable, and inclusive society, maintaining strong connections with Europe and the global financial community. Their key services include industry representation, public awareness campaigns such as fraud prevention, policy advocacy, and providing information resources to stakeholders and the public. The NVB holds a leading market position as the primary banking sector association in the Netherlands. Technically, the NVB website employs modern web technologies including Vue.js, Google Tag Manager, and Cookiebot for consent management. The site is mobile-optimized with good SEO practices and moderate performance. The infrastructure is secure with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. From a security perspective, the NVB website demonstrates a mature security posture with good privacy compliance, including GDPR adherence and cookie consent. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which could enhance trust and preparedness. The domain registration data aligns well with the organization's claims, indicating a legitimate and consistent online presence. Overall, the NVB website is professional, trustworthy, and well-aligned with its business objectives. Strategic recommendations include enhancing security headers, publishing a security policy and vulnerability disclosure, improving accessibility, and providing direct security contact information to strengthen the security culture and stakeholder trust.

The International Swaps and Derivatives Association (ISDA) operates a comprehensive and professionally designed website serving as a global hub for derivatives market participants. The organization provides industry standards, legal frameworks, digital regulatory reporting solutions, and membership services to a diverse audience including financial institutions, corporations, and regulators. The website reflects ISDA's position as a leading global association with a strong focus on market integrity and risk management. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag. The infrastructure leverages Amazon AWS for content delivery, ensuring reliable performance and good mobile optimization. Security measures include HTTPS enforcement and CAPTCHA on forms, though explicit security headers could be enhanced. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. The absence of WHOIS data limits domain registration insights, but the website's professionalism and content quality strongly support legitimacy. Overall, ISDA's website is a trustworthy, authoritative resource for derivatives market stakeholders, combining rich content, robust technical implementation, and sound security practices.

T

The International Capital Market Association

icmagroup.org

61

The International Capital Market Association (ICMA) is a well-established global association representing financial institutions active in the international capital markets. The website clearly targets financial professionals and institutions, providing market standards, education, and research services. The business model is membership-based, focusing on advocacy and market development. The site is professionally designed with consistent branding and good content quality, reflecting a large organization in the finance sector. Technically, the website is built on the SilverStripe CMS platform, utilizing modern web technologies including jQuery, Google Tag Manager, and Cookiebot for consent management. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. The presence of a cookie consent mechanism and use of HTTPS indicate a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent to comply with privacy regulations. However, security headers are not explicitly detected, and no public security or incident response policies are found. No vulnerabilities or exposed sensitive data were identified in the HTML content. The WHOIS data is unavailable due to privacy protection, which is common and justified for organizations in this sector. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements include adding security headers, publishing security policies, and enhancing accessibility. These steps would further strengthen the security posture and trustworthiness of the site.

F

Fese

fese.eu

59

Fese is an industry federation representing European securities exchanges, providing advocacy, research, and policy influence services to its members. The website presents a professional and consistent brand image with a focus on finance and securities markets in Europe. The technical infrastructure is based on WordPress with integrations such as Google Tag Manager and Google Analytics, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and standard security headers present, though there is room for improvement in content security policies and incident response transparency. Privacy compliance is limited due to the absence of visible privacy and cookie policies. Overall, the website is legitimate and trustworthy but would benefit from enhanced transparency and compliance documentation.

E

European Banking Federation

ebf.eu

67

The European Banking Federation (EBF) serves as the representative voice of the European banking sector, uniting national banking associations across Europe. It focuses on advocacy, regulatory engagement, and fostering a stable and inclusive financial ecosystem. The organization is positioned as a key stakeholder in European financial policy, offering services such as knowledge partnerships, financial education, and event hosting. The website reflects a mature digital presence with a professional design and comprehensive content tailored to industry professionals and policymakers. Technically, the site is built on WordPress using modern plugins and themes, with good SEO and mobile optimization. Security posture is strong with HTTPS enforced and privacy compliance evident through detailed policies and consent mechanisms. However, explicit security headers and incident response information are lacking. Overall, the domain appears legitimate and consistent with the organization's profile, despite WHOIS data being redacted due to EURid policies. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure policies to further strengthen trust and compliance.

The Charities Aid Foundation (CAF) operates a professional and comprehensive website focused on facilitating impactful charitable giving for individuals, corporations, and charities. The organization positions itself as a leading non-profit entity in the UK, offering a range of services including personal giving solutions, corporate philanthropy, and support for charitable organizations. The website content is well-structured, with clear navigation and rich resources aimed at donors and charities alike. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and OneTrust for cookie consent, indicating a mature digital infrastructure. The use of Sitefinity CMS suggests a robust content management system supporting the site. Performance and mobile optimization are good, with accessibility and SEO best practices largely observed. From a security perspective, the site enforces HTTPS and integrates cookie consent mechanisms, reflecting compliance with privacy regulations such as GDPR. However, explicit security headers and incident response policies are not clearly published, representing an area for improvement. No vulnerabilities or suspicious elements were detected in the visible content. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a large non-profit organization. The absence of WHOIS data due to privacy protection does not detract from the legitimacy, given the strong trust signals and comprehensive content. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding a vulnerability disclosure program to further strengthen trust and security posture.

A

Adopce.com

adopce.com

41

Adopce.com is a well-established non-profit website dedicated to supporting individuals interested in adoption and foster care within the Czech Republic. It operates in partnership with the Tereza Maxová Foundation and the Center for Adopting and Foster Care, providing comprehensive resources, guidance, and contact support to prospective adoptive and foster parents. The website is professionally designed, content-rich, and targets a general audience seeking trustworthy information on child welfare and substitute family care. Technically, the site is built on WordPress using modern plugins such as Breakdance, Yoast SEO Premium, and integrates Google Analytics and Tag Manager for visitor tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Security posture is adequate with HTTPS enabled and secure forms, but lacks visible security headers and formal security policies. From a security and compliance perspective, the absence of WHOIS data for the domain raises transparency concerns, although the website content and partner associations support legitimacy. No privacy or cookie policies were detected, which may impact GDPR compliance. There is no evidence of vulnerability disclosure or incident response information, suggesting room for improvement in security governance. Overall, Adopce.com presents a trustworthy and professional resource for adoption and foster care information, but should enhance transparency, privacy compliance, and security practices to strengthen its risk posture and user trust.

N

Nadace Sirius

nadacesirius.cz

50

Nadace Sirius is a Czech private non-profit foundation established in 2008, dedicated to improving the lives of disadvantaged children through grant programs, social projects, and direct aid. The foundation is led and fully funded by Radka and Jiří Šmejc and collaborates with various organizations and events to support child welfare. The website is professionally designed using Joomla CMS and modern web technologies, providing clear navigation and rich content primarily in Czech. It includes a cookie consent mechanism and uses analytics tools such as Google Analytics and Microsoft Clarity. Security posture is good with HTTPS enforced, though security headers are missing and no explicit privacy policy page was found. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for non-profits. Overall, the site is trustworthy, well-maintained, and focused on social impact.

P

Pražská plynárenská

galeriesmecky.cz

66

Galerie Smečky is a Prague-based cultural exhibition space specializing in contemporary art and a significant collection of Czech collage art owned by Pražská plynárenská. The website reflects a medium-sized cultural institution with a clear focus on art exhibitions and events. Technically, the site is built on Drupal 10 with modern front-end libraries such as Bootstrap and Slick Carousel, and integrates third-party services like Google Tag Manager and Cookiebot for analytics and cookie compliance. The security posture is moderate with a cookie consent mechanism in place but lacks visible security headers and explicit privacy or terms of service documentation. The domain is well-established since 2005, consistent with the business history, and no blocking or WAF mechanisms interfere with content access.

S

Systém Jóga v denním životě

joga.cz

42

Systém Jóga v denním životě operates a well-established yoga education platform primarily serving the Czech Republic. The website offers a broad range of authentic yoga courses for various skill levels and demographics, including seniors and those with specific health concerns. The organization maintains a strong market position as a leading yoga course provider in the region, supported by certified instructors and a rich content offering including books and partner projects. Technically, the website is built on Joomla CMS and leverages modern JavaScript libraries and analytics tools, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses common tracking and analytics services but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. Overall, the domain's long age and consistent WHOIS data support the legitimacy of the business. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing incident response contacts to strengthen trust and security posture.

A

Asombroso.cz

asombroso.cz

10

Asombroso.cz is a Czech Republic-based e-commerce website specializing in premium cosmetics, perfumes, clothing, and luxury bedding products. The brand emphasizes local production and quality, targeting consumers seeking high-end beauty and lifestyle products. The website is built on the Shoptet platform and integrates multiple marketing and analytics tools, including Google Analytics, Facebook Pixel, and Microsoft Clarity, with a clear cookie consent mechanism in place. Despite the absence of WHOIS data, the site presents strong trust indicators such as certifications and customer reviews. Security practices include HTTPS, CSRF protection, and cookie consent, though the use of an outdated jQuery version poses a potential risk. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

M

Mironet.cz a.s.

mironet.cz

69

Mironet.cz a.s. operates a well-established e-commerce platform in the Czech Republic, specializing in consumer electronics, household items, and hobby products. The website offers a broad product catalog, seasonal promotions, and customer services such as PC configuration and support. The company targets general consumers primarily in the Czech market and neighboring countries. Technically, the site uses modern JavaScript libraries and tracking tools, with a focus on user experience and mobile optimization. Security measures include HTTPS and content security policies, though some security headers could be enhanced. Privacy compliance is addressed with clear policies and consent mechanisms. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further investigation. Overall, the site presents a professional and trustworthy e-commerce presence with room for security and transparency improvements.

E

Ensana

ensanahotels.com

67

Ensana is a leading European health hotel chain specializing in wellness and integrative medical treatments using natural remedies and modern diagnostics. The company targets health-conscious travelers seeking effective and holistic health hotel experiences. The website reflects a mature digital presence with a modern Angular-based frontend, integration of multiple analytics and marketing tools, and a clear cookie consent mechanism. Security posture is good with HTTPS enforced and domain transfer protections in place, though explicit security policies and vulnerability disclosures are absent. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting Ensana's market position as a reputable health hospitality provider.

T

The Australian National University

anu.edu.au

68

The Australian National University (ANU) is a leading educational institution in Australia, renowned for its research excellence and comprehensive academic offerings. The website serves a diverse audience including prospective and current students, researchers, and alumni, providing detailed information on study programs, research initiatives, and campus life. ANU maintains a strong market position as a top-tier university with extensive services and affiliations with prominent research alliances. Technically, the website is built on Drupal CMS and leverages modern web technologies including Font Awesome, Google Tag Manager, and OneTrust for consent management. The site is hosted on AWS Cloudfront CDN, ensuring fast performance and excellent mobile optimization. Accessibility and SEO practices are well implemented, contributing to a high-quality user experience. From a security perspective, the website enforces HTTPS and uses consent management tools to comply with privacy regulations. However, it lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerability disclosure or security.txt files were found, indicating room for improvement in transparency and security communication. Overall, the website is professional, trustworthy, and well-maintained, with a strong focus on user experience and compliance. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen the security posture and trustworthiness.

S

SikkerhedsBranchen

sikkerhedsbranchen.dk

40

SikkerhedsBranchen is a Danish industry association representing over 270 companies specializing in security and safety. The organization provides certification, training, and industry representation services to its members. The website is professionally designed using WordPress with modern plugins such as Elementor and Yoast SEO, indicating a mature digital presence. The site is well-structured, mobile-optimized, and includes cookie consent mechanisms to comply with GDPR requirements. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the website content and certifications suggest a legitimate and established organization. Overall, the site serves as a credible resource for security professionals in Denmark.

Brandveilig Bouwen Nederland (BBN) is a specialized organization focused on building fire prevention expertise in the Netherlands. The website serves as a hub for professionals seeking training, resources, and membership benefits related to fire safety in construction. BBN positions itself as a trusted authority with a clear market presence supported by partnerships and member engagement. Technically, the website is built on WordPress with modern libraries and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements in security headers and cookie consent are recommended. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the professional content and clear contact information mitigate risk. Overall, BBN's digital presence supports its business goals effectively with room for enhanced compliance and security transparency.

R

Remembership

remembership.cz

57

Remembership is a Czech-based design studio specializing in product design, UX, and customer experience services. The company targets business leaders such as CEOs, Heads of Product, and internal teams, offering tailored design and facilitation services to improve digital products and services. Their client portfolio includes notable companies in fintech, insurtech, and SaaS sectors, indicating a strong market position within the Czech technology industry. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Webflow CMS and Splide.js for interactive elements. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and privacy/cookie policies suggests room for improvement. The lack of WHOIS data reduces domain trustworthiness, but the website content and client testimonials provide strong legitimacy signals. Overall, the site demonstrates a mature digital presence with minor compliance gaps.

P

Platforma pro sociální bydlení

socialnibydleni.org

10

Platforma pro sociální bydlení is a Czech non-profit organization dedicated to ending homelessness by creating infrastructure and advocating for social housing legislation. The website serves as a platform to promote social housing laws and assist municipalities in establishing social housing systems. The organization has a clear market position as an important non-profit entity in the Czech social housing sector, targeting local governments and stakeholders involved in social welfare. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Getwid, hosted likely by WEDOS, and uses Google Tag Manager for analytics. The site is mobile-optimized and well-structured, though some accessibility features are basic. Security posture is good with HTTPS enabled and domain registration stable, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is professional and trustworthy but could improve transparency and security practices.

Č

Český rozhlas

mujrozhlas.cz

9

The website www.mujrozhlas.cz serves as the official audio portal for Český rozhlas, the Czech public radio broadcaster. It offers a wide range of audio content including podcasts, interviews, audiobooks, fairy tales, sports, radio plays, and historical recordings, positioning itself as the largest audio portal on the Czech internet. The site targets Czech-speaking audiences interested in diverse spoken-word content. Technically, the site is built on Drupal 10 and integrates modern analytics and tracking tools such as Google Tag Manager, Microsoft Clarity, and Gemius. The design is professional, mobile-optimized, and provides a good user experience with clear navigation and relevant content.

Amalthea z. s. is a Czech non-profit organization dedicated to supporting families and children through social, educational, and therapeutic services primarily in the Pardubice region. The organization focuses on preventing child placement outside of families, supporting substitute families, and providing education to both professionals and the public. The website reflects a well-structured and content-rich platform targeting families, social workers, and educators. Technically, the site uses common web technologies including Google Analytics and jQuery, but some components like jQuery are outdated, and security headers are missing, indicating room for improvement in security posture. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, showing awareness of GDPR requirements. However, the absence of WHOIS data and lack of explicit contact information on the site slightly reduce trustworthiness. Overall, the site is professional and trustworthy but would benefit from enhanced security measures and clearer business contact details.

S

Středisko náhradní rodinné péče, spolek

nahradnirodina.cz

45

Středisko náhradní rodinné péče, spolek is a Czech non-profit organization dedicated to supporting children who cannot live with their biological parents by facilitating substitute family care such as adoption and foster care. Established since 1994, it holds a reputable position in the Czech social services sector, providing comprehensive support to adoptive and foster families, children, and applicants for substitute family care. The organization emphasizes family care over institutional care and actively engages in education, counseling, and awareness activities. Technically, the website is built on WordPress using the Breakdance theme builder and employs modern technologies such as Google reCAPTCHA v3 for form security and Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, with good SEO practices and structured data enhancing search visibility. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no visible privacy or cookie policies, which is an area for improvement. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. Strategic improvements in privacy compliance and security policy transparency would enhance trust and regulatory adherence.

S

Salinger, z.s.

salinger.cz

46

Salinger, z.s. is a Czech non-profit organization dedicated to supporting families, children, and youth through various social programs since 1997. Their website presents a professional and consistent brand image, highlighting key activities such as substitute family care, youth support, and mental health assistance. The organization maintains partnerships with multiple reputable entities, enhancing its credibility and outreach. Technically, the website employs standard modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Google Analytics and reCAPTCHA for analytics and security. The site is mobile-optimized with good navigation and content relevance, although some accessibility features could be improved. The absence of a CMS or hosting provider information limits deeper infrastructure insights. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. WHOIS data is unavailable, which slightly reduces trustworthiness but does not negate the legitimacy suggested by the website content and contact details. Overall, the website is well-structured and serves its non-profit mission effectively, but could benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

S

Slezská diakonie

slezskadiakonie.cz

50

Slezská diakonie is a well-established Czech non-profit organization dedicated to providing social services and support to individuals and communities in need. The website reflects a mature digital presence with comprehensive content about their services, volunteer opportunities, and donation projects. The organization maintains a strong market position in the social services sector with a large employee base and active community engagement. Technically, the site uses modern web technologies including Google Analytics 4 and retargeting scripts, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of organization. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

STŘED, z.ú.

stred.info

49

STŘED, z.ú. is a Czech non-profit organization providing social, preventive, and therapeutic services primarily targeting children, families, and educational professionals in the Vysočina region. The organization operates a community center and offers a range of supportive services with a focus on human values such as openness, professionalism, and trustworthiness. The website reflects a well-established regional presence with over 20 years of operation and partnerships with reputable organizations. Technically, the website uses a mix of legacy and modern JavaScript libraries including jQuery 1.10.2, Google Analytics, and Swiper.js, indicating moderate digital maturity. The site is mobile-optimized and SEO-friendly but could improve accessibility and update outdated libraries. Security posture is moderate; while HTTPS is presumably enabled, no security headers were detected and the use of an outdated jQuery version poses potential risks. Privacy compliance is basic with a cookie consent banner but no explicit privacy policy page found. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.

S

SOS dětské vesničky

sos-vesnicky.cz

48

SOS dětské vesničky is a well-established Czech non-profit organization dedicated to supporting vulnerable children and families through various social services including foster care, crisis centers, and educational programs. The organization has a strong market position as the oldest charity of its kind in the Czech Republic, with nearly 60 years of experience. Their website reflects a professional and trustworthy image with clear messaging and calls to action for donations and support. Technically, the site is built on modern frameworks such as Next.js and React, with good mobile optimization and accessibility. Security posture is strong with HTTPS and security headers in place, although the absence of a public privacy policy and WHOIS data are notable compliance and trust gaps. Overall, the site is safe, well-maintained, and effectively communicates its mission to its target audience of families, donors, and social workers.

S

Sdružení pěstounských rodin z.s.

pestouni.cz

48

Sdružení pěstounských rodin z.s. is a Czech non-profit organization dedicated to supporting foster families and other caregivers in providing safe and loving homes for children in need. Founded in 1995, it offers a range of services including counseling, psychological support, education, and respite care. The organization maintains a strong digital presence with a professionally designed website, active social media channels, and comprehensive informational resources. The website is built on WordPress and integrates modern technologies such as Google Analytics and GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the organization's transparency through published legal documents and certifications supports its legitimacy. Overall, the site demonstrates a mature digital infrastructure and a clear commitment to privacy and user experience.

C

Charita Česká republika

charita.cz

50

Charita Česká republika is a well-established non-profit organization operating in the Czech Republic, providing the largest network of non-governmental social and health services nationwide. The website reflects a mature digital presence with professional design, multi-language support, and active engagement through social media channels. The technical infrastructure leverages modern web technologies including Google Tag Manager and Google Fonts, ensuring a responsive and accessible user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. The absence of WHOIS data limits domain trust assessment, but the website's content and partner affiliations strongly indicate legitimacy. Strategic recommendations include enhancing transparency with published privacy and security policies, improving security headers, and establishing vulnerability disclosure processes.

B

Breakfast & Brunch | Bella Vida Café | Prague Lesser Town

bvcafe.cz

51

The website en.bvcafe.cz is a Wix-hosted site with limited publicly accessible content and no visible business description or contact information. The site uses standard Wix technologies and Google Tag Manager for analytics. The absence of WHOIS data and registrant information reduces the trustworthiness of the domain, although no malicious or suspicious content was detected. Security posture is moderate with HTTPS enabled but lacking security headers and privacy compliance documentation. Overall, the site appears to be a small-scale business or informational site with basic technical implementation but lacking in transparency and compliance features.

The European Parliamentary Financial Services Forum (EPFSF) is a well-established non-profit organization founded in 2002, dedicated to facilitating effective dialogue between the financial industry and Members of the European Parliament. The website reflects a professional and consistent brand presence, targeting financial professionals and policymakers within the European Union. It offers key services such as educational seminars, workshops, and membership opportunities, supported by a broad network of financial industry members and observers. Technically, the website employs modern web technologies including Google Analytics and Tag Manager, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and published security policies. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious or malicious content.

P

Power Exchange Central Europe, a.s.

pxe.cz

67

Power Exchange Central Europe, a.s. (PXE) operates as a regional energy commodity exchange focused on the Central European market, primarily the Czech Republic and Slovakia. It provides market participants with trading platforms, market data, and commodity price information, serving large consumers and traders in the energy sector. The company is part of the EEX Group, which enhances its market position and credibility. The website reflects a professional and well-structured digital presence, offering comprehensive market data, news, and trading information. The target audience includes energy market participants, large consumers, and traders seeking transparent and efficient commodity exchange services. Technically, the website is built on modern web technologies including Angular 12, uses Google Tag Manager for analytics, and integrates third-party widgets for market data visualization. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although accessibility could be further improved. Performance is moderate, with a clean and consistent design that supports user navigation and engagement. From a security perspective, the site enforces HTTPS, implements key security headers such as Content Security Policy and Strict-Transport-Security, and uses a cookie consent mechanism compliant with GDPR. However, explicit security policies, incident response information, and vulnerability disclosure mechanisms are not published, representing areas for improvement. No vulnerabilities or suspicious content were detected, and the domain registration data supports the legitimacy and trustworthiness of the business. Overall, PXE's website presents a secure, professional, and business-credible platform that effectively supports its role as a regional energy exchange. Strategic enhancements in security transparency and accessibility would further strengthen its digital maturity and stakeholder trust.

W

Wiener Börse AG

wienerborse.at

74

Wiener Börse AG operates as Austria's primary stock exchange, providing a platform for trading equities, bonds, certificates, ETFs, and options. The website serves investors and financial market participants with up-to-date market data and index information such as the ATX. The company holds a significant market position within Austria's financial sector, focusing on transparency and accessibility. Technically, the website is built on TYPO3 CMS with Bootstrap, integrating modern web technologies and accessibility tools to ensure compliance with diverse user needs. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies are not fully visible. The absence of WHOIS data limits domain trust assessment but the professional presentation and domain usage suggest legitimacy. Overall, the site is well-structured, accessible, and serves its business purpose effectively.

L

Liquid Design s.r.o.

lqd.cz

59

Liquid Design s.r.o. is a Czech-based small technology company specializing in custom development of e-commerce platforms, B2B portals, information systems, and web applications. With over 15 years of experience and a portfolio of hundreds of projects, they serve primarily B2B and B2C clients seeking tailored digital solutions. Their website presents a professional image with clear service offerings and client testimonials, positioning them as a trusted provider in the Czech market. Technically, the site uses established web technologies including Bootstrap, jQuery, Font Awesome, and Google Analytics, indicating a mature but not cutting-edge tech stack. The site is mobile optimized and SEO friendly, though accessibility could be improved. Security posture is adequate with HTTPS enabled but lacks visible security headers and cookie consent mechanisms, which are recommended for GDPR compliance. The absence of WHOIS data limits domain trust verification, though the website content and contact information support legitimacy. Overall, the company demonstrates solid digital maturity with room for security and compliance enhancements.

W

Wowza

wowza.com

54

Wowza is a well-established technology company specializing in video streaming platforms, offering cloud, private cloud, and hybrid streaming solutions. Their platform supports live and on-demand video streaming with integrated content management, analytics, and CDN services. The company targets developers, broadcasters, publishers, and enterprises requiring scalable and reliable streaming infrastructure. The website reflects a mature digital presence with comprehensive resources, developer documentation, and community engagement. Technically, the website is built on WordPress with a modern tech stack including multiple analytics and tracking tools such as PostHog, HubSpot, Google Tag Manager, and LinkedIn Insight. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though accessibility could be further improved. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy, incident response contacts, and vulnerability disclosure mechanisms suggests areas for enhancement in transparency and readiness. Overall, the website and business appear legitimate and professional, though the lack of publicly available WHOIS data introduces some uncertainty. Strategic recommendations include publishing security policies, enhancing accessibility, and formalizing vulnerability disclosure to strengthen trust and compliance.

CasusGrill.cz is an e-commerce website operated by Adventure Centrum, the exclusive importer and distributor of the Casus Grill portable ecological grill for the Czech Republic and Slovakia. The business focuses on retailing innovative, environmentally friendly portable grills and related accessories, targeting outdoor enthusiasts and consumers seeking convenient grilling solutions. The website demonstrates a solid market position with exclusive distribution rights and a recognized design award, enhancing its credibility and appeal. Technically, the website is built on WordPress with Bootstrap and jQuery frameworks, integrating popular marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized with good SEO practices and includes standard security measures like HTTPS and Google reCAPTCHA on forms. However, there is room for improvement in security headers and explicit security policies. From a security perspective, the site maintains a good posture with encrypted communications and spam protection on forms. No critical vulnerabilities or malicious indicators were found. Privacy compliance is addressed with a cookie consent banner and a privacy policy, though more comprehensive security and incident response policies are absent. Overall, CasusGrill.cz presents a trustworthy, professional online presence with a clear business focus and adequate technical infrastructure. Strategic enhancements in security headers and formal security policies would further strengthen its risk posture and compliance standing.

A

Adventure Centrum Shop

adventurecentrumshop.cz

63

Adventure Centrum Shop is a specialized e-commerce retailer focused on camping, caravaning, outdoor, and water sports equipment. The company offers products from globally recognized brands such as Hobie, GoSun, CasusGrill, and others, with exclusive representation in the Czech Republic, Slovakia, and parts of the EU. Their target audience includes outdoor enthusiasts and travelers seeking quality gear for their adventures. The website demonstrates a professional online presence with clear navigation, product categorization, and customer support contact information. Technically, the website is built on the Shoptet e-commerce platform, utilizing technologies like jQuery, Google Analytics, Google Tag Manager, and Facebook SDK for marketing and analytics. The site is served over HTTPS, includes cookie consent mechanisms, and implements secure forms with CSRF protection. Performance and mobile optimization are adequate, though some accessibility features could be enhanced. From a security perspective, the site follows good practices such as HTTPS enforcement and cookie consent compliance. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be added to strengthen security. No vulnerabilities or exposed sensitive data were found in the analyzed content. The WHOIS data is unavailable due to privacy protection, which is common for small e-commerce businesses and does not raise immediate concerns. Overall, the website presents a trustworthy and professional e-commerce platform with a solid security posture and compliance with privacy regulations. The lack of WHOIS transparency is mitigated by the presence of clear contact information and business policies.

R

Raiffeisenbank a.s.

rbclub.cz

70

Raiffeisenbank a.s. is a well-established financial institution in the Czech Republic offering a broad range of banking services including accounts, loans, mortgages, and investment products. The website RB Club serves as a customer loyalty and benefits platform integrated with the bank's credit card and banking services. The company targets retail and business customers with a strong digital presence and mobile banking capabilities. Technically, the website employs modern frameworks such as Angular and integrates analytics and user engagement tools like Google Tag Manager, Hotjar, and Unblu chat, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, secure authentication methods, and cookie consent mechanisms, although explicit security policies and vulnerability disclosure information are not publicly available. The absence of WHOIS data limits domain trust assessment, but the overall professional presentation and consistent branding support legitimacy. Strategic recommendations include publishing detailed security policies, incident response contacts, and vulnerability disclosure channels to enhance transparency and trust.

New Living Center is a Prague-based real estate and design center offering a comprehensive range of showroom services and design brands targeted at architects, designers, developers, and design enthusiasts. The website presents a professional and visually appealing platform showcasing multiple showrooms and services, emphasizing quality materials and design uniqueness. Technically, the site employs modern web technologies including Google Analytics, Facebook Pixel, and SmartEmailing for marketing and tracking, with good mobile optimization and performance. Security posture is solid with HTTPS and secure form validation, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is unavailable, which reduces transparency and trustworthiness. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

P

Proceram

proceram-shop.cz

46

Proceram is a Czech Republic-based small e-commerce retailer specializing in premium tiles and bathroom equipment. The website offers a variety of products including stone, marble, concrete, and wood designs, targeting customers interested in home improvement and renovation. The business operates primarily online with stock availability and multiple payment options, positioning itself as a niche player in the Czech market. Technically, the website employs common analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager, and uses a proprietary or custom e-shop platform. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS but lacks visible security headers and detailed privacy or terms of service documentation, which are areas for improvement. The absence of WHOIS data reduces trustworthiness slightly but is likely due to privacy protection. Overall, the site is functional and moderately secure but would benefit from enhanced transparency and security practices.