Security Directory

M

Krby a kamna

mojekrby.cz

60

The website www.mojekrby.cz is a Czech e-commerce platform specializing in the sale of fireplaces, stoves, and related accessories. It targets residential customers and craftsmen seeking heating solutions. The business operates a niche retail model with a clear product catalog and online shopping capabilities, including user registration and newsletter subscription. The site is professionally designed with good navigation and mobile optimization, leveraging modern web technologies such as jQuery, Swiper.js, and Google Analytics for tracking and marketing. Technically, the site uses the K2 e-shop system and integrates several third-party services including Google Tag Manager and Packeta for logistics. Performance is moderate with good SEO practices and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though no advanced security headers or explicit security policies are published. The absence of WHOIS registration data is a concern for domain legitimacy and trust. Overall, the site presents a professional and trustworthy front for its business, but the lack of publicly available domain registration details and direct contact information slightly reduces its credibility. There are no indications of malicious content or security vulnerabilities in the visible content. Strategic improvements in security transparency and contact information disclosure would enhance trust and compliance.

G

GECV: Grupo Español para el Crecimiento Verde

grupocrecimientoverde.org

50

The Grupo Español para el Crecimiento Verde (GECV) is a Spanish non-profit association established in 2016, dedicated to fostering public-private collaboration to address environmental challenges and promote sustainable, circular, and efficient economic growth. The website serves as a platform to share news, documents, working groups, and member information, targeting stakeholders interested in green growth and sustainability in Spain. The organization holds a solid market position as a recognized environmental non-profit with a medium-sized membership base. Technically, the website is built on WordPress with Elementor and Yoast SEO, hosted by Webempresa, and integrates modern web technologies including jQuery, Swiper.js, and GDPR compliance plugins. The site demonstrates good mobile optimization, SEO practices, and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and advanced security headers are not explicitly detected, representing areas for enhancement. No critical vulnerabilities or exposed sensitive data were found. Privacy policies and cookie policies are comprehensive and clearly accessible, supporting strong privacy compliance. Overall, the website is professional, trustworthy, and well-maintained, with no signs of adult or questionable content. The domain registration is consistent with the business history and shows legitimacy. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security headers to further strengthen the security posture.

A

AEDIVE

aedive.es

56

AEDIVE is a Spanish business association dedicated to the development and promotion of electric mobility, representing a broad industrial, technological, service, and institutional value chain. The organization holds a strong market position in Spain, supported by institutional partners and a diverse membership base. Their services include advocacy, networking, events, consultancy, and legislative influence, positioning them as a key player in the electric vehicle ecosystem. Technically, the website employs a modern technology stack including jQuery, Handlebars, RequireJS, Bootstrap 5, and Swiper.js, with good mobile optimization and performance. The site integrates analytics and marketing tools with a GDPR-compliant cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent controls, but lacks visible security headers and explicit incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to .es domain query restrictions, but the website's professional presentation and institutional backing support its legitimacy. Overall, AEDIVE's website is professional, secure, and compliant, with strong business credibility and user experience. Strategic improvements in security headers and incident response transparency could further enhance trust and resilience.

D

Das WeltAuto®

dasweltauto.cz

51

Das WeltAuto® is a well-established brand specializing in the sale of certified pre-owned vehicles, primarily targeting consumers in the Czech Republic. The website reflects a professional automotive business model under the Volkswagen Group umbrella, offering quality assurance and dealer network support for used car buyers. The digital infrastructure leverages modern frontend technologies such as Angular and Swiper.js, complemented by cookie consent mechanisms to address privacy requirements. While the website is accessible and well-structured, the absence of WHOIS data and explicit privacy and terms of service policies indicates areas for improvement in transparency and compliance. Security posture is adequate with HTTPS enforced, but could benefit from enhanced security headers and published security policies. Overall, the site presents a trustworthy and professional image consistent with a large automotive brand.

P

Porsche Česká republika s.r.o.

cupraofficial.cz

59

CUPRA Česká republika operates as a premium automotive brand website focused on high-performance sports and electric vehicles. The site is professionally designed, featuring rich multimedia content, detailed product offerings including plug-in hybrids and electric models, and integrated configurator and stock vehicle listings. The brand is affiliated with Porsche Česká republika s.r.o., indicating strong market positioning in the Czech automotive sector. Technically, the website leverages modern frameworks such as Next.js and React, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the site presents a trustworthy and professional digital presence with minor areas for improvement in security transparency.

H

HZ Vinařství s.r.o.

valtickepodzemi.cz

49

Valtické Podzemí is a hospitality and wine tourism business based in the Czech Republic, specializing in historic wine cellar tours, wine tastings, and cultural events. The company operates a unique project connecting 13 historic wine cellars dating back to the 13th century, offering individual visits, group programs, and private events. The business holds a prestigious award, CHAMPION TOP VINAŘSKÝ CÍL ČR, underscoring its quality and reputation in the local market. The website is professionally designed, mobile-optimized, and rich in relevant content targeting wine enthusiasts, tourists, and corporate clients. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and AOS for animations. It employs performance optimization tools like WP Rocket and SEO enhancements via Yoast SEO. The site uses Google Tag Manager and Microsoft Clarity for analytics and tracking, with a GDPR-compliant cookie consent mechanism in place. Social media integration and partner links further enhance its digital presence. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security policy and incident response information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the presence of clear contact information and business details supports legitimacy. Overall, the site demonstrates a strong security posture with room for improvement in transparency and formal security documentation. Strategically, the business should focus on publishing a security policy, establishing incident response contacts, and enhancing domain registration transparency to improve trust. Continued monitoring of third-party scripts and regular security audits will help maintain a robust security posture. The website's excellent content quality and user experience position it well for growth in the wine tourism sector.

S

Svatební centrum Caxa Brno

caxabrno.cz

49

Svatební centrum Caxa Brno is a well-established wedding and formal wear rental and sales business located in Brno, Czech Republic. The company offers a wide range of wedding dresses, formal dresses, men's suits, and accessories, complemented by wedding coordination services. The website reflects a professional and comprehensive digital presence with rich content, customer testimonials, and active social media engagement. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern plugins and tracking tools such as Google Analytics and Facebook Pixel. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the overall business credibility is supported by consistent branding and detailed service offerings. Privacy compliance is strong with clear policies and consent management. Strategic recommendations include enhancing security headers, adding incident response information, and maintaining up-to-date software to mitigate vulnerabilities.

Frac Nouvelle-Aquitaine MÉCA is a regional public art fund based in France, managing a public collection of approximately 1200 artworks. The institution focuses on exhibitions, cultural events, educational collaborations, and publishing editions related to contemporary art. The website serves as an information portal for visitors, collaborators, and the general public interested in the cultural offerings of the Nouvelle-Aquitaine region. Technically, the site is built on WordPress with modern front-end technologies such as Swiper.js and jQuery, and it employs SEO best practices via the Yoast SEO plugin. The site is hosted by IONOS SE and secured with HTTPS, providing a safe browsing experience. However, some security headers are not visibly present, and Google Analytics is installed but not configured, indicating room for improvement in analytics and security monitoring. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though no explicit GDPR compliance statements or data protection officer contacts are found. Overall, the site is professional, trustworthy, and well-maintained, serving its cultural mission effectively.

BeSignal is a specialized software provider offering whistleblowing reporting platforms tailored to meet the requirements of the European Whistleblowing Directive and data protection standards. Founded in 2021 and based in France, the company targets organizations in both the corporate and public sectors, including schools, to streamline whistleblowing report management and resolution. Their business model is primarily SaaS, delivering compliance-focused solutions with multi-language support and a professional online presence. Technically, the website leverages modern JavaScript frameworks such as Vue.js, integrates HubSpot for marketing and analytics, and employs Cookiebot for cookie consent management. The hosting is provided by OVH sas, a reputable European hosting provider. Security-wise, the site enforces HTTPS and has domain protections against unauthorized transfers or deletions, but lacks DNSSEC and some security headers. No explicit privacy policy or terms of service were found, which is a compliance gap. Overall, the website is professional and functional with moderate security posture and good business credibility.

S

Svět notebooků

svetnotebooku.cz

39

Svět notebooků is a Czech language media website specializing in news, reviews, and insights about notebooks and related technology. The site targets technology enthusiasts and notebook users primarily in the Czech Republic. It operates on a WordPress CMS platform with modern web technologies and integrates Google Analytics for visitor tracking. The website presents professional content with good design and navigation, optimized for mobile devices. However, it lacks published privacy and cookie policies, which are critical for GDPR compliance and user trust. Security practices are basic, with HTTPS enabled but missing important security headers and incident response information. Overall, the site is legitimate and functional but would benefit from enhanced privacy and security measures.

Bluesight is a healthcare technology company specializing in hospital and pharmacy operations intelligence. Their website showcases a suite of products designed to optimize inventory management, drug diversion surveillance, purchasing, compliance, drug shortage management, and patient privacy monitoring. Positioned as a market leader with multiple industry awards, Bluesight targets hospitals and health systems seeking to improve operational efficiency and compliance. The company has a well-established digital presence with a professional, user-friendly website that integrates modern web technologies and analytics tools. The site is optimized for SEO, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, domain locking, and good security practices, though DNSSEC is not enabled. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR and related regulations. Overall, Bluesight presents a trustworthy and credible business with clear contact channels and transparent information.

R

re:cap global investors ag

re-cap.ch

51

re:cap global investors ag is an established Swiss investment advisory and asset management firm specializing in renewable energy investments. With over 15 years of experience and a presence in seven European countries, the company offers services including investment advisory, asset management, transaction consulting, project development, and project sales. Their market position is strong, supported by a significant asset portfolio and investment volume. The website reflects a professional and modern digital presence built on WordPress with Elementor and Astra theme, optimized for SEO and mobile devices. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR.

C

C & K člen skupiny AUTO UH a.s.

motouh.cz

42

The website www.motouh.cz represents a medium-sized Czech retail and service business specializing in CFMOTO motorcycles and ATVs. It operates under the parent company AUTO UH a.s., offering sales, service, and rental of motor vehicles primarily targeting customers in the Czech Republic. The site is professionally designed with good content quality, clear navigation, and mobile optimization. Technically, it employs modern JavaScript libraries and Google Fonts, with HTTPS enforced and a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with no evident vulnerabilities, though some security headers and policies could be improved. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the visible business information and social media presence support legitimacy. Overall, the site is a reliable digital presence for a local transportation retailer.

N

naviti GmbH

naviti.ch

10

naviti GmbH is a Swiss-based small technology company specializing in web design, webshop development, and custom software solutions primarily targeting private clients, SMEs, industries, foundations, and associations within the region of Kanton Aargau. Their business model focuses on affordable, customized digital solutions using their proprietary CMS platform navitiCms, complemented by training, support, and hosting coordination services. The company positions itself as a regional web agency emphasizing transparency, customer involvement, and modern technology.

G

Home Page - Stanford Cardinal - Official Athletics Website

gostanford.com

61

The website gostanford.com serves as the official athletics platform for Stanford Cardinal, providing sports news, schedules, and multimedia content targeted at sports fans and the Stanford University community. The site demonstrates a consistent branding approach with a professional design and good user experience, optimized for mobile devices. Technically, it employs modern CSS frameworks such as Tailwind CSS and uses Google Fonts, hosted under Google Domains DNS services. However, the site lacks visible security headers, privacy and cookie policies, and explicit contact information, which are critical for compliance and trust. The domain is well-established, created in 1997, and registered with a reputable registrar, indicating high legitimacy. Overall, the site is functional and professional but requires improvements in security posture and privacy compliance to enhance trust and regulatory adherence.

The website metz.fr serves as the official digital portal for the Ville de Metz, providing residents and visitors with comprehensive information about city services, events, public policies, and cultural activities. It holds a strong market position as the authoritative source for municipal information in Metz, France. The site targets a broad audience including local citizens, tourists, and stakeholders interested in city governance and community engagement. Key services include news updates, event calendars, administrative procedures, and social support information. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI components, Matomo for privacy-conscious analytics, and Google Custom Search for site search functionality. The cookie consent mechanism is implemented using tarteaucitron.js with high privacy settings, reflecting good compliance with GDPR. The site is mobile-optimized and presents a professional design with clear navigation, although accessibility features are basic. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics without setting cookies by default. However, no explicit security headers were detected in the HTML content, and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found. Overall, the security posture is good but could be improved by adding security headers and formalizing security policies. The overall risk assessment is low, with the site demonstrating strong legitimacy, consistent branding, and compliance with privacy regulations. Strategic recommendations include enhancing security transparency, improving accessibility, and publishing incident response and vulnerability disclosure information to further strengthen trust and security culture.

F

Ferrero

ferrerocareers.com

73

Ferrero Careers website presents a professional and comprehensive platform for job seekers interested in joining the global Ferrero family of companies. The site highlights Ferrero's strong global presence, diverse teams, and extensive brand portfolio, positioning itself as a leading confectionery manufacturer with a focus on employee development and inclusion. Technically, the site is built on Drupal 10, uses modern JavaScript libraries, and is hosted likely on AWS infrastructure, delivering a mobile-optimized and accessible user experience. Security posture is adequate with HTTPS and consent mechanisms in place, but lacks explicit security headers and published security policies, which could be improved. The absence of WHOIS registration data raises questions about domain registration legitimacy, though the website content and branding are consistent with Ferrero's corporate identity. Overall, the site is trustworthy and professional but would benefit from enhanced transparency in privacy and security disclosures.

B

Bcovery

bcovery.com

53

Bcovery is a French-based AdTech company specializing in sustainable and responsible media buying solutions for brands and agencies. Founded in 2019, it offers a unique technological suite including Ghost Recycling, Direct Green Path, Audience Sources, and Carbon Optimizer to improve campaign performance and reduce carbon footprint. The company is recognized with multiple industry awards and partners with major media publishers. Technically, the website is built on WordPress with Elementor and integrates Google Analytics and Tag Manager for tracking. Security posture is good with HTTPS and domain locking, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich but should improve privacy and security disclosures.

D

DOMOPLAN a.s.

ardea.hr

52

The website www.ardea.hr represents a new residential real estate development project named Ardea Samobor, operated by DOMOPLAN a.s., a Czech-based company expanding into the Croatian market. The project offers 74 apartments with modern, energy-efficient western European architectural standards, targeting home buyers and investors near Zagreb. The site is professionally designed, mobile-optimized, and includes multimedia content and interactive elements to enhance user engagement. Technically, the site uses a modern JavaScript stack with analytics and marketing integrations such as Google Analytics, Facebook Pixel, and cookie consent management via Orejime. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security policies and incident response information are absent. Privacy compliance is partially addressed through cookie consent but lacks a dedicated privacy policy page. Overall, the domain registration aligns well with the business timeline and origin, indicating legitimacy. The site is safe for general audiences and does not contain adult or questionable content.

D

DOMOPLAN a.s.

b80.cz

54

The website www.b80.cz represents a real estate development project named B80, managed by DOMOPLAN a.s., a medium-sized real estate developer based in Brno, Czech Republic. The project focuses on modern residential apartments blending industrial and contemporary architectural styles, targeting buyers interested in urban living with access to exclusive amenities and proximity to the city center. The site provides comprehensive information about the project, including services, location, interiors, architecture, and news updates, supported by multimedia content and a professional design. Technically, the website employs a modern JavaScript stack including jQuery, Swiper.js, GSAP, and Foundation framework, ensuring a smooth user experience with responsive design and interactive elements. Cookie consent and privacy mechanisms are implemented via Orejime, indicating GDPR compliance. Analytics are handled through Google Analytics and Google Tag Manager, with moderate user tracking. From a security perspective, the site uses HTTPS and has implemented cookie consent but lacks explicit security headers and detailed security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain trust assessment, but the professional presentation and contact transparency support legitimacy. Overall, the website is well-designed, content-rich, and professionally maintained, with good privacy compliance and moderate security posture. Recommendations include enhancing security headers, publishing explicit security and incident response policies, and continuous monitoring of third-party scripts to maintain security and compliance.

F

FullAtelier.cz

fullatelier.cz

38

FullAtelier.cz is a professional Czech-based photography and videography service specializing in social events such as graduation balls, corporate events, weddings, and festivals. The company offers a comprehensive range of services including drone aerial filming by licensed pilots, video shooting and editing, and mobile photo studios. The website reflects a focused business model targeting event organizers and individuals seeking high-quality media coverage of their events. The domain age and registrar information align well with the business profile, indicating a legitimate and established presence since 2013. Technically, the website is built on WordPress with Elementor and Yoast SEO plugins, leveraging modern web technologies and Google Fonts. It employs HTTPS with a valid SSL certificate and integrates Google reCAPTCHA v3 for form security. Performance and mobile optimization are good, though accessibility features are basic. SEO is well addressed through meta tags and structured data. Security posture is solid with HTTPS and form protection, but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Contact information is clearly presented, enhancing business credibility. No suspicious or malicious content was detected, and the site is fully accessible without WAF interference. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

H

HZ Hotel s.r.o.

hranicnizamecek.cz

48

Chateau de Frontiere is a luxury hospitality business located in South Moravia, Czech Republic, offering a 4-star hotel resort, fine dining restaurants, wellness and spa services, and event hosting in a UNESCO heritage area. The website is professionally designed with rich multimedia content and integrates a third-party booking system. The technical infrastructure includes modern libraries and marketing tools, though some outdated components like jQuery 1.11.1 pose security risks. Security posture is generally good with HTTPS and cookie consent mechanisms, but lacks some security headers and uses older libraries. WHOIS data is unavailable, which reduces domain trust transparency. Overall, the site is suitable for its target audience of tourists seeking luxury experiences, with good privacy compliance and business credibility.

V

Visit Plzeň

visitpilsen.eu

67

Visit Plzeň operates as the official tourism guide for the Plzeň region in the Czech Republic, providing comprehensive information on local attractions, events, gastronomy, and visitor tips. The website serves tourists and visitors with a well-structured, content-rich platform supported by local government funding, positioning itself as a trusted regional tourism resource. The business model focuses on tourism promotion and engagement through digital content and an e-shop for branded merchandise. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Mailchimp integration, ensuring good SEO and marketing capabilities. The site is mobile-optimized, accessible, and uses HTTPS with a valid SSL certificate. Performance is moderate, with a clean and professional design that enhances user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating GDPR compliance. However, it lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection, but the website's professional appearance and government association support its legitimacy. Overall, Visit Plzeň presents a secure, trustworthy, and user-friendly platform for regional tourism promotion. Strategic improvements in security headers, incident response documentation, and vulnerability disclosure could further enhance its security posture and compliance.

3

3F Vision s.r.o.

3fvision.sk

41

3F Vision s.r.o. is a specialized manufacturer and retailer of advanced sports eyewear, including photochromatic and polarized glasses with proprietary HD lens technology. Founded in 2006 and operating primarily in Slovakia and the Czech Republic, the company holds a strong market position as an innovator in optical sports products, distributing across multiple European countries. Their website reflects a professional and consistent brand image with clear product offerings and customer engagement channels. Technically, the site employs modern JavaScript libraries and analytics tools, is mobile-optimized, and implements a cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS and no evident vulnerabilities, though security headers and explicit policies could be improved. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website is trustworthy, well-maintained, and suitable for its target audience of sports enthusiasts seeking quality eyewear.

N

Nippon Sigmax Co, Ltd.

zamst.cz

55

Zamst.cz is an e-commerce website specializing in orthopedic supports and bandages for athletes, operated by RaketSport s.r.o. The brand Zamst is owned by Nippon Sigmax Co, Ltd., a company with a long history in orthopedic medical devices since 1993. The website targets sports enthusiasts and customers seeking high-quality orthopedic products, offering a range of braces for various body parts and sports. The site includes product catalogs, a blog with rehabilitation tips, and customer support contact information. Technically, the site is built on the Czech e-commerce platform Eshop-rychle.cz, uses Matomo for analytics, and integrates Elfsight widgets for enhanced user engagement. The website is well-structured, mobile-optimized, and provides cookie consent mechanisms aligned with GDPR requirements. Security posture is good with HTTPS enforced and secure forms, though it lacks some advanced security headers and explicit security policies. WHOIS data is unavailable, which limits domain trust verification, but the overall business presentation is professional and credible.

R

RaketSport s.r.o.

orthomovement.cz

59

Orthomovement.cz is a Czech Republic-based e-commerce retailer specializing in orthopedic and sport insoles designed for various activities such as running, football, golf, and outdoor sports. The company operates as an exclusive importer for the Czech and Slovak markets, offering a range of products including shoe care and rehabilitation accessories. Their website is built on the Eshop-rychle.cz platform, integrating modern web technologies and analytics tools like Matomo and Google Tag Manager, reflecting a moderate to good level of digital maturity. The site features clear navigation, product categorization, and a blog providing health and product advice, enhancing customer engagement. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of security headers and a dedicated security policy page suggests room for improvement. The WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is justified for this business type. Overall, the website presents a professional and trustworthy front with good compliance to privacy regulations.

S

Slinger.cz

slinger.cz

46

Slinger.cz operates as a specialized retailer offering a unique multi-functional tennis bag that doubles as a ball launcher, targeting tennis players of all skill levels from beginners to professionals. The website presents a clear market position emphasizing product uniqueness, affordability, and portability. The business model centers on direct sales supported by informational resources such as FAQs, test centers, and maintenance guides. The company appears to be a small-sized entity founded in 2020, operating primarily within the Czech Republic retail sector. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and Nette Framework components, ensuring responsive design and moderate performance. The site integrates Google Analytics and Tag Manager for user tracking and marketing insights but lacks a visible cookie consent mechanism. Hosting is managed by a Czech registrar and hosting provider, consistent with the domain's WHOIS data. From a security perspective, the site uses HTTPS but lacks explicit security headers in the provided data, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a privacy policy and terms of service present, though cookie consent and incident response information are missing. Contact information is limited to an email address, with no phone or physical address provided. Overall, the website is professional, content-rich, and trustworthy with moderate security posture. Strategic improvements in security headers, cookie consent, and incident response disclosures would enhance compliance and user trust.

V

Visit Plzeň

visitplzen.eu

67

Visit Plzeň operates as the official tourism guide for the Plzeň region in the Czech Republic, providing comprehensive information on local attractions, events, gastronomy, and travel tips. The website serves tourists and visitors with multilingual content and an integrated e-shop for merchandise. Supported by local government and the Ministry for Regional Development, it holds a strong market position as a trusted regional tourism portal. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Mailchimp integration, ensuring good SEO and marketing capabilities. The site is mobile-optimized and offers a smooth user experience with clear navigation and rich content. Security-wise, the website enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and publicly available security policies. The domain WHOIS data is privacy protected, which is common for European domains, but the website's official nature and government backing support its legitimacy. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

C

COSMO

cosmo-info.de

51

COSMO is a German company specializing in heating and ventilation products and services, targeting both end consumers and professional markets. Their website showcases a range of products including solar technology, radiators, underfloor heating, and air ventilation systems, supported by tools like energy saving calculators and floor planners. The company positions itself as a provider of high-quality, innovative heating and ventilation solutions with a focus on comfort and energy efficiency. Technically, the website is built on Drupal 10, leveraging modern front-end libraries such as Swiper.js for interactive elements, and integrates third-party services like Google Maps API and Adobe Launch for analytics and marketing. Usercentrics CMP is implemented for cookie consent, reflecting GDPR compliance efforts. Hosting is provided by Adacor, a reputable German hosting provider. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the website is professional, well-structured, and trustworthy, with good content quality and technical implementation. Strategic improvements include publishing comprehensive privacy and security policies, adding security headers, and providing vulnerability disclosure information to enhance trust and compliance.

I

Identity Online

identityonline.cz

50

Identity Online is a Czech Republic-based SaaS platform focused on providing cloud-based brand management and marketing content collaboration tools. The platform targets marketers, PR professionals, sales teams, and partners who require centralized, consistent, and secure access to brand assets and marketing materials. The website presents a professional image with detailed case studies and client references, indicating a niche market position with a focus on brand consistency and operational efficiency. Technically, the site uses modern JavaScript libraries such as jQuery, Video.js, and Swiper.js, along with Google Analytics and Tag Manager for tracking. The site is mobile optimized and offers a good user experience, though accessibility and SEO could be improved. Security posture is moderate, with HTTPS presumably enabled but lacking visible security headers and formal privacy or terms documentation. The absence of WHOIS data is a concern for domain legitimacy but does not directly contradict the business presence. Overall, the site is trustworthy and professional but would benefit from enhanced security and compliance transparency.

N

NETSTR s.r.o.

netstr.cz

44

NETSTR s.r.o. is a Czech Republic based small IT services company specializing in IT outsourcing, data network design and implementation, and security camera systems. The company targets businesses seeking comprehensive IT infrastructure management and security solutions. Their website is professionally designed using WordPress with modern plugins and libraries, providing clear service descriptions and contact information. The technical infrastructure is modern and performant, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, but lacks some security headers and formal security policies. Privacy compliance is incomplete due to missing privacy and cookie policies. Overall, the website presents a trustworthy and professional image suitable for its market segment.

É

éditions B42

editions-b42.com

58

éditions B42 is a specialized French publishing company focusing on books and journals related to design, typography, and contemporary cultural studies. The company operates a professional e-commerce website built on WordPress and WooCommerce, offering a wide catalog of publications and related objects. The website targets readers, designers, academics, and students interested in these niche fields. The domain is well-established since 2008, registered with a reputable registrar, and the website content aligns with the business profile, indicating a legitimate and credible operation. Technically, the site uses modern web technologies and supports multilingual content via WPML, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

S

Snídaňuj tour

snidanujtour.cz

45

Snídaňuj tour is a small Czech travel agency specializing in organized tours to destinations such as Slovenia, Poland, and other locations. Their offerings include thermal spa trips, skiing holidays, cycling tours, and hiking excursions. The website is professionally designed using WordPress and Elementor, featuring clear navigation and good mobile optimization. Contact details including phone and email are prominently displayed, alongside active social media profiles on Facebook, Instagram, and YouTube. Technically, the site uses modern web technologies and enforces HTTPS, but lacks security headers and privacy-related policies. No forms or tracking scripts were detected on the main page, indicating minimal data collection. The domain registration is recent but consistent with the business launch timeline, with transparent WHOIS data. Overall, the site presents a trustworthy and professional image but would benefit from enhanced privacy and security practices.

NMO Brasil is a Brazilian non-profit organization dedicated to supporting patients with Neuromyelitis Optica (NMO) and raising public awareness about this serious neurological condition. The website serves as a hub for patient stories, educational content, and advocacy efforts, positioning the organization as a key player in the Brazilian healthcare advocacy space for NMO. The site is built on WordPress using the Elementor page builder, hosted by Locaweb, and integrates multimedia content such as YouTube videos and augmented reality experiences to engage visitors. While the technical infrastructure is modern and the site is mobile-optimized, there are gaps in privacy and security compliance, including the absence of privacy and cookie policies and missing security headers. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security measures.

Z

Zlatá koloběžka – města Plzni

zlatakolobezka.cz

44

Zlatá koloběžka is a well-established traditional scooter racing event based in Plzeň, Czech Republic, with roots dating back to 1996. The website serves as an informational portal for the event, providing schedules, partner information, and contact details. The event targets scooter enthusiasts and the local community, positioning itself as a niche but reputable sports event with a consistent brand presence. Technically, the site is built on WordPress using modern themes and plugins, hosted by a Czech hosting provider, and optimized for mobile devices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the site is professional, trustworthy, and safe for general audiences, though it would benefit from enhanced privacy and security practices to align with GDPR and modern web standards.

M

MIDPOINT Institute

midpoint-institute.eu

56

MIDPOINT Institute is a well-established talent incubator focused on advancing European film and series professionals, especially from Central and Eastern Europe. The organization offers a variety of project development programs, skills training, and networking platforms to support emerging audiovisual talents. The website reflects a professional and consistent brand presence, with clear contact information and comprehensive program details. Technically, the site uses modern JavaScript libraries and tracking tools with a strong emphasis on privacy compliance, including cookie consent management. Security posture is good with HTTPS enforced, though there is room for improvement in HTTP security headers and published security policies. Overall, the website and organization appear legitimate and trustworthy, with strong alignment between business claims and digital presence.

H

Hotel a Pension SEEBERG

seeberg.cz

56

Hotel a Pension SEEBERG is a family-run hospitality business located in Františkovy Lázně, Czech Republic, offering accommodation, wellness, dining, and leisure services. The website reflects a well-established small business with a focus on comfort, wellness, and eco-friendly experiences. The company targets tourists, families, and wellness seekers, positioning itself as a romantic and relaxing destination with a 30-year history. Technically, the website uses modern JavaScript libraries and frameworks such as jQuery, OwlCarousel, and Foundation, and integrates Google Analytics, Facebook Pixel, and Google Tag Manager for marketing and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and rich multimedia content. Security-wise, the site enforces HTTPS and has cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. WHOIS data is not publicly available, indicating privacy protection, which is common for small businesses but slightly reduces trust. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations, but could improve security posture and transparency.

M

MINIB, a.s.

minib.cz

54

MINIB, a.s. is a Czech-based manufacturer specializing in heating, cooling, and ventilation units such as convectors, fan-coils, induction units, and chilled beams. Established in 1999, the company holds a strong position in the European HVAC market, offering energy-efficient and innovative solutions supported by independent certifications and patents. Their business model includes manufacturing, project consultation, and custom HVAC solutions targeting architects, contractors, and building owners. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern JavaScript libraries including jQuery and Swiper.js, integrates Google Tag Manager for analytics, and implements a robust cookie consent mechanism. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and published vulnerability disclosure information. WHOIS data is unavailable, which impacts transparency and trust but does not detract significantly from the overall legitimacy given the professional web presence and business information. Overall, the website is well-structured, secure, and compliant with privacy regulations, supporting the company’s credibility and market presence.

EBRA Events is a French event agency specializing in organizing impactful physical events that foster engagement and positive societal or environmental impact. The company serves businesses, public entities, and associations, offering tailored event solutions across corporate, editorial, engagement, sport, and culture sectors. It operates multiple agencies across France and is part of the larger EBRA Group, a major French media conglomerate. The website is professionally designed, well-structured, and compliant with GDPR and cookie regulations, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and analytics tools, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and incident response information are lacking. The domain WHOIS data is missing, which raises some legitimacy concerns, but the overall business credibility and trust signals are strong.

O

Obec Břasy

obecbrasy.cz

49

Obec Břasy operates an official municipal website serving the local community of Břasy in the Czech Republic. The site provides comprehensive information about local government services, community events, tourist attractions, and public notices. It targets residents, visitors, and local organizations, offering a centralized platform for municipal communication and engagement. The website integrates a mobile app and social media presence to enhance accessibility and outreach. Technically, the website employs a modern JavaScript stack including jQuery, Bootstrap, and Swiper.js, ensuring responsive design and good user experience across devices. The content is well-structured with clear navigation and accessibility features. However, the site lacks visible HTTP security headers and detailed WHOIS registration data, which impacts the overall security posture and trustworthiness. Security-wise, the site uses HTTPS and a cookie consent mechanism compliant with GDPR, but it does not provide explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data is a concern and should be investigated to confirm domain legitimacy. Overall, Obec Břasy's website is a well-maintained municipal portal with good content quality and user experience but requires improvements in security headers and domain registration transparency to enhance trust and compliance.

3

3F Vision s.r.o.

3fvision.cz

43

3F Vision s.r.o. is a Czech-based company specializing in the design, manufacture, and sale of advanced sport eyewear, including photochromatic and polarized glasses with proprietary HD lens technology. Established in 2006, the company has positioned itself as a leading manufacturer in the Czech Republic and expanded distribution to neighboring European countries. Their product portfolio targets active sports enthusiasts requiring high-quality optical solutions. The website reflects a professional e-commerce platform with clear product categorization and multilingual support. Technically, the site employs modern JavaScript libraries such as jQuery and Swiper.js, integrates Google Analytics and Facebook Pixel for marketing and analytics, and uses ComGate as a payment gateway. The site is hosted under REG-ZONER, a reputable Czech hosting provider. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some HTTP security headers are missing and no explicit security policy or incident response information is published. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

V

Vítovec corp. a.s.

vitovec.cz

47

Vítovec corp. a.s. is a Czech insurance brokerage company specializing exclusively in insurance and related financial products and services. The company targets both businesses and individual citizens, offering a wide range of insurance products including property, liability, cyber risk, and personal insurance. The website reflects a professional and established market position with partnerships such as being a gold partner of HC Škoda Plzeň and providing detailed insurance information and guidance. Technically, the website is built on WordPress with Elementor, leveraging modern JavaScript libraries and Google Analytics for tracking. It is well-optimized for mobile and SEO, with a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site presents a trustworthy and user-friendly platform for insurance services in the Czech Republic.

I

iRaiser Group

iraiser.eu

54

iRaiser Group is a digital fundraising solutions provider specializing in tools for charities and non-profits to enhance donor engagement and increase donations. With a global client base of over 900 charities, iRaiser offers services such as donation forms, peer-to-peer fundraising, crowdfunding, event fundraising, and ticketing. The company positions itself as a leader in digital fundraising innovation since 2012. Technically, the website is built on HubSpot CMS and integrates multiple modern analytics and marketing technologies including Google Analytics, Piwik PRO, and Facebook Pixel. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be improved. The absence of WHOIS data for the domain reduces transparency but does not negate the legitimacy indicated by the website content and client references. Overall, iRaiser demonstrates a mature digital presence with strong business credibility in the non-profit fundraising sector.

A

ATEX

atexsport.cz

59

ATEX is a Czech-based manufacturer specializing in high-quality sportswear for professional and hobby athletes. With over 30 years of experience, the company produces custom and standard sports clothing including jerseys, vests, pants, and suits, primarily serving the Czech and Slovak markets with growing presence in other European countries. The website reflects a mature business with professional branding and a clear focus on quality and customer engagement through an e-shop and custom design services. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Microsoft Clarity, indicating a data-driven approach to user experience and marketing. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking, representing areas for improvement. Overall, the site is well-designed, mobile-optimized, and trustworthy, but the absence of WHOIS data and privacy documentation slightly reduces compliance confidence.

T

TY Concept store s.r.o.

tyidentity.cz

56

TY IDENTITY operates as a niche retail and e-commerce platform specializing in Czech and Slovak design products. The company supports local designers by offering their creations in physical stores located in Ostrava and Brno, as well as through an online shop. The website is professionally designed using WordPress with a modern theme and plugins, providing a good user experience and mobile optimization. Contact information and social media presence are clearly provided, enhancing business credibility. However, the absence of WHOIS data and lack of cookie consent mechanisms indicate areas for improvement in trust and compliance. Security posture is adequate with HTTPS enabled but could benefit from additional security headers and published policies.

S

Snídaňuj

snidanuj.cz

43

Snídaňuj is a Czech Republic based hospitality business specializing in breakfast delivery services across Ostrava, operating a network of cafés offering luxury coffee and daily menus, and marketing a brand of homemade pasta. Founded in 2020, the company has expanded its offerings to include catering and tourism-related services, positioning itself as a diversified local food and lifestyle brand. The website reflects a professional and consistent brand image with clear business focus and active customer engagement channels including social media and live chat support. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices, though there is room for improvement in privacy compliance and security headers. The security posture is solid with HTTPS and no visible vulnerabilities, but lacks explicit privacy and cookie policies. Overall, the business appears credible and well-positioned in its regional market with a good digital presence.

G

Galileo Corporation s.r.o.

infocentrumostravice.cz

9

Infocentrum Ostravice operates as a local municipal information center serving the Beskydy recreational area in the Czech Republic. It provides comprehensive tourism-related services including accommodation listings, event calendars, weather forecasts, and local news. The website is professionally designed with consistent branding and targets tourists, families, seniors, and cyclists visiting the region. The business is supported by Galileo Corporation s.r.o., which operates the website infrastructure. Technically, the site uses modern JavaScript libraries such as jQuery, Bootstrap, and Swiper.js, ensuring good mobile responsiveness and accessibility. Security posture is moderate with HTTPS usage and cookie consent implemented, but lacks advanced security headers and published privacy policies. The absence of WHOIS data limits full domain legitimacy verification, though the site content and external links suggest a trustworthy municipal service. Overall, the website is functional, informative, and serves its local tourism audience effectively.

C

City Digital Media s.r.o

citydigital.cz

53

City Digital Media s.r.o operates a network of digital out-of-home (DOOH) advertising panels across shopping centers, fitness centers, healthcare facilities, and gas stations throughout the Czech Republic. The company offers integrated hardware and software solutions, including an intuitive online content management system and device monitoring, aimed at maximizing brand visibility and customer reach. Their website reflects a professional and consistent brand image, showcasing a broad client base and emphasizing GDPR compliance through privacy policies and consent mechanisms. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy.

B

BESIP

besip.cz

60

BESIP is the primary governmental entity responsible for coordinating road safety efforts in the Czech Republic. It operates as an expert body under the Ministry of Transport, focusing on education, awareness campaigns, and safety strategies for various road users including pedestrians, cyclists, drivers, and motorcyclists. The website serves as a comprehensive resource for road safety information, educational materials, and campaign updates, targeting a broad audience from the general public to professionals in the field. Technically, the website is built on ASP.NET WebForms with integration of modern JavaScript libraries such as jQuery, Bootstrap, and Swiper.js. It employs Kentico CMS for content management and includes features like Google Maps integration and social sharing tools. The site is mobile-optimized and demonstrates good SEO practices, although some legacy technology components remain. From a security perspective, the site enforces HTTPS and includes CSRF protection tokens in forms. It implements a cookie consent mechanism aligned with GDPR requirements. However, no explicit security headers were detected, and no public security or incident response policies are available. The absence of WHOIS data limits domain registration transparency, but the official government domain and consistent branding support legitimacy. Overall, BESIP's website is a well-structured, authoritative platform for road safety in the Czech Republic, with a solid technical foundation and good privacy compliance. Enhancements in security headers and public security policies would further strengthen its posture.

F

František Serbus alias DJ Kolečko

djkolecko.cz

59

DJ Kolečko is a small Czech Republic-based business operated by the Serbus couple, specializing in DJ services for events and custom textile printing including promotional items. Established in 2016, the company has built a niche in event entertainment and personalized merchandise. The website is built on WordPress with WooCommerce and Elementor, integrating modern marketing and tracking tools such as Facebook Pixel and MailerLite. The site is well-designed, mobile-optimized, and provides clear contact information and customer testimonials, enhancing trust and credibility. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is good with HTTPS and no visible vulnerabilities, but security headers and vulnerability disclosure mechanisms are absent.