Security Directory

C

CMM – Associação Portuguesa de Construção Metálica e Mista

digitalsteel.pt

0

Digital Steel is a project promoted by the Portuguese Association of Metal and Mixed Construction (CMM) aimed at promoting the digitalization of processes in SMEs within the metal and mixed construction sector in Portugal. The website serves as an informational and promotional platform offering details about workshops, events, and digital transformation initiatives such as BIM, 3D printing, and robot welding. The target audience primarily consists of small and medium enterprises in the construction industry seeking to adopt Industry 4.0 technologies. Technically, the website is built on WordPress using the Divi theme, leveraging modern web fonts and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in compliance and security transparency.

G

GoDaddy Operating Company, LLC

fratellimantova.com

0

The website is a professionally designed domain sales landing page hosted on the Afternic platform, a well-known domain marketplace owned by GoDaddy Operating Company, LLC. It offers the domain fratellimantova.com for sale with clear pricing options including buy now and lease to own. The site targets German-speaking domain buyers and businesses looking for premium domain names. The presence of GoDaddy branding and a high Trustpilot rating enhances its credibility. Technically, the site uses modern web technologies such as React and Next.js, served via Akamai CDN, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced, security headers present, and reCAPTCHA protecting forms. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. However, WHOIS data for the domain www.afternic.com is unavailable, likely due to querying a subdomain rather than the registered domain, which slightly impacts trust analysis. Overall, the site demonstrates a strong business and technical posture with minor gaps in WHOIS transparency.

S

Synergy Technologies, LLC

basilur.com

0

Synergy Technologies, LLC operates a domain marketplace platform specializing in the sale, lease, and lease-to-own options for premium domain names. The company targets individuals and businesses looking to secure valuable domain assets with flexible payment plans. The website presents a professional and consistent brand image, supported by a domain registration dating back to 1996, indicating a mature presence in the domain services market. The business operates primarily from the Cook Islands and Nevis, with clear contact information and a focus on domain-related services. Technically, the website leverages modern JavaScript frameworks including Laravel Livewire and Alpine.js, integrates Google Tag Manager and reCAPTCHA for analytics and security, and uses DigitalOcean for hosting assets. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in security headers and DNS security. From a security perspective, the site enforces HTTPS, includes CSRF tokens and honeypot fields in forms, and integrates Google reCAPTCHA to mitigate spam. However, DNSSEC is not enabled, and HTTP security headers are absent, representing areas for enhancement. No explicit security policies or incident response contacts are published, which could be improved to increase trust and compliance. Overall, the website is safe, professional, and credible with moderate tracking and privacy compliance. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security and incident response policies, and enhancing privacy compliance to align with GDPR standards. These steps will strengthen the security posture and business credibility of Synergy Technologies, LLC.

I

Infosteel

scorewithsteel.com

0

The website 'Score With Steel' operated by Infosteel serves as an information and promotional platform for steel construction projects primarily in Belgium and Luxembourg. It targets professionals in the steel construction industry, architects, and project owners by providing project showcases, testimonials, and educational content. The site is built on Joomla CMS with modern UIkit framework and includes interactive elements such as sliders and a project submission form protected by CAPTCHA. While the site is well-structured and professionally designed, the absence of WHOIS data raises concerns about domain registration legitimacy. Security posture is adequate with HTTPS and CAPTCHA usage, but lacks advanced security headers and explicit privacy and cookie policies. Overall, the site is a credible industry resource but would benefit from improved transparency and security practices.

S

Stanley/Stella

stanleystella.com

0

Stanley/Stella is a premium European e-commerce retailer specializing in sustainable blank apparel designed for customization. Founded in 2011, the company positions itself as a leader in eco-conscious clothing, targeting businesses and individuals seeking quality sustainable garments. The website supports multiple languages and countries, enhancing its accessibility and market reach. Technically, the site is built on Magento with integrations of modern JavaScript frameworks and analytics tools such as Piwik PRO and New Relic, indicating a mature digital infrastructure. Security practices include HTTPS enforcement, secure cookie handling, and domain transfer protection, although DNSSEC is not enabled. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates a solid security posture and professional business credibility.

P

PROHELP SERVICES, s.r.o.

komunikacni-systemy.cz

0

PROHELP SERVICES, s.r.o. operates the website komunikacni-systemy.cz, providing wireless full-duplex communication systems tailored for retail, hospitality, manufacturing, and service industries. Their key products, Quail Digital Pro9 and Pro10, target businesses requiring efficient team communication solutions such as quick service restaurants, drive-thru operations, warehouses, and hotels. The company positions itself as a specialist in communication technology within the Czech Republic and surrounding regions, leveraging a B2B business model. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, FontAwesome, and various plugins for GDPR compliance, customer support, and media embedding. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. HTTPS is enforced, and cookie consent mechanisms are implemented, reflecting a mature digital infrastructure. From a security perspective, the site benefits from HTTPS and cookie consent compliance but lacks visible HTTP security headers and explicit incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, impacting overall trustworthiness. Overall, the website presents a professional and trustworthy front for PROHELP SERVICES, s.r.o., but the missing WHOIS information and lack of some security best practices suggest areas for improvement to enhance credibility and security posture.

PROHELP SERVICES, s.r.o. is a Czech-based company specializing in communication solutions across various sectors including office environments, retail, industrial settings, security forces, and marine applications. The company offers a range of products such as telephones, radios, headsets, voice communicators, intercoms, and safety equipment, complemented by services like web design, marketing, and support. Their market position is that of a niche specialist providing tailored communication solutions to business clients. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the website is built on WordPress, leveraging modern plugins for SEO, GDPR compliance, and customer support. It uses common web technologies such as jQuery and Google Maps API, and implements HTTPS with good SSL configuration. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms aligned with GDPR. However, explicit security policies, incident response plans, and vulnerability disclosure information are not present. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate. Overall, the website presents a solid digital presence with good privacy compliance and business credibility. Strategic improvements in security transparency and WHOIS data verification are recommended to enhance trust and compliance.

DYNEX is a Czech Republic-based company specializing in the development and production of laboratory devices and diagnostics, serving a global market through exports. The website presents a professional image with clear navigation and relevant content targeting laboratories and healthcare professionals. The business model focuses on manufacturing and distribution of specialized laboratory instruments, supported by cooperation and project services. The company maintains a medium-sized presence with consistent branding and trust indicators such as company certificates and detailed contact information. Technically, the website uses a custom CMS hosted by Český hosting (THINline s.r.o.) and integrates modern tracking tools like Google Analytics and Google Tag Manager. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Security evaluation shows a good baseline but identifies gaps in published security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance. No adult or questionable content is present, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website is trustworthy and professional with room for improvement in privacy compliance and security transparency. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to strengthen the security posture and regulatory compliance.

M

MyWebdesign.cz s.r.o.

mywebdesign.cz

0

MyWebdesign.cz s.r.o. is a Czech-based technology company specializing in custom development of extensive e-commerce platforms and mobile applications. With over 20 years of experience, the company serves businesses aiming to scale their online sales, offering tailored solutions including B2B and B2C functionalities, integration with accounting and inventory systems, and 24/7 support. The website reflects a professional and trustworthy brand with strong client testimonials from notable companies such as ZOOT and Plzeňský Prazdroj. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with Google Fonts and Google reCAPTCHA v3 integrated for spam protection. Hosting is managed by REG-ZONER, consistent with WHOIS data. The site is mobile-optimized, fast-loading, and SEO-friendly, though it lacks some advanced security headers and publicly available privacy and cookie policies. From a security perspective, the site uses HTTPS and reCAPTCHA, but the absence of explicit security headers and privacy documentation indicates room for improvement. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, supporting legitimacy and trustworthiness. Overall, the website presents a high-quality, professional digital presence with minor compliance gaps. Strategic enhancements in privacy compliance and security headers would further strengthen the security posture and regulatory adherence.

S

Střední odborná škola požární ochrany a Vyšší odborná škola požární ochrany

hasici-vzdelavani.cz

0

The website hasici-vzdelavani.cz serves as an educational portal dedicated to fire protection units in the Czech Republic. It is a collaborative project between the Ministry of the Interior's Fire Rescue Service and a specialized vocational school for fire protection. The portal provides a variety of training materials including texts, images, videos, and e-learning modules aimed at supporting professional development in fire safety and emergency response. The site targets fire protection professionals and volunteers, offering structured content relevant to their training needs. Technically, the site is built on Drupal 7 with jQuery and standard web technologies. While functional, the use of an older CMS version and lack of modern security headers indicate potential technical debt and security risks. The site shows moderate performance and basic mobile optimization. No advanced analytics or tracking tools are detected, suggesting minimal user tracking. From a security perspective, the site uses HTTPS and includes CSRF tokens in forms, which is positive. However, the absence of security headers such as Content-Security-Policy and HSTS reduces its security posture. There are no visible privacy or cookie policies, which is a compliance gap under GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is a legitimate, government-affiliated educational resource with moderate technical maturity and some security and compliance shortcomings. Strategic improvements in security headers, privacy compliance, and CMS modernization are recommended to enhance trust and resilience.

S

Sdružení hasičů Čech, Moravy a Slezska (SH ČMS)

vzdelavani-dh.cz

0

The website www.vzdelavani-dh.cz serves as an e-learning platform dedicated to the education of voluntary firefighters affiliated with the Sdružení hasičů Čech, Moravy a Slezska (SH ČMS) in the Czech Republic. It offers multimedia courses, interactive tests, and performance tracking to facilitate knowledge acquisition and verification. The platform targets members of SH ČMS and aims to provide an accessible and intuitive online learning experience. The website branding and content align well with the stated mission, although no detailed company founding or registration data is provided. From a technical perspective, the site employs common web technologies including Bootstrap, jQuery, Font Awesome, and Google Analytics for tracking user interactions. The design is responsive and user-friendly, with clear navigation and relevant content. However, the absence of detected security headers and privacy policies indicates room for improvement in security and compliance maturity. The WHOIS data is unavailable, which limits the ability to verify domain legitimacy and age, impacting trustworthiness assessments. Security posture is moderate; HTTPS is assumed but not explicitly confirmed in the data. No critical vulnerabilities or exposed sensitive data were found in the HTML content. The site lacks privacy and cookie policies, which is a compliance gap under GDPR. No contact information for security incidents or data protection officers is provided. Overall, the site appears safe and professional but would benefit from enhanced security controls and transparency. The overall risk is moderate with no immediate red flags, but the lack of WHOIS data and privacy compliance measures suggest the need for strategic improvements to bolster trust and regulatory adherence.

Č

Česká hasičská jednota

hasicskajednota.cz

0

Česká hasičská jednota is a Czech firefighting association providing community services, fire safety education, and support to firefighters. The website serves as an information hub for firefighting activities and public safety in the Czech Republic. The organization appears to be a medium-sized non-profit entity with a focus on government and community sectors. The website is built on a custom CMS platform with integration of Google Analytics, Google Tag Manager, and Google Maps API, reflecting a moderate level of digital maturity. The site is mobile optimized and uses modern web technologies, although some accessibility features could be improved. Security posture is good with HTTPS enforced and standard security headers present, but could benefit from additional headers like CSP and SRI for external scripts. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. However, contact information and incident response details are not explicitly provided, which could be enhanced to improve trust and transparency. Overall, the website is professional, trustworthy, and serves its target audience effectively.

D

DevaGroup

devagroup.pl

0

DevaGroup is a well-established Polish digital marketing agency specializing in SEO, SEM, Google Ads, social media campaigns, marketplace advertising, and professional training. With a history dating back to 2005 and certifications such as Google Premier Partner and Allegro Ads Partner, they hold a strong market position in Poland. The website demonstrates a mature technical infrastructure based on WordPress with modern analytics and tracking tools integrated. Security posture is solid with HTTPS and anti-spam measures, though some security headers could be improved. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, the site projects professionalism and trustworthiness, supporting their business credibility.

S

Soudal Quick-Step Pro Cycling Team

soudal-quickstepteam.com

0

Soudal Quick-Step Pro Cycling Team operates as a professional cycling team with a strong digital presence showcasing team members, news, multimedia content, and merchandise sales. The website targets cycling enthusiasts and fans, providing comprehensive media and partner information. The technical infrastructure leverages modern JavaScript libraries and tracking tools, ensuring a responsive and engaging user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. The WHOIS data anomaly presents a minor legitimacy concern but is mitigated by the professional site and active social media presence. Overall, the site is well-positioned in its niche with room for security and transparency improvements.

A

APASON

apason.eu

0

APASON is a medium-sized group of companies based in the Czech Republic specializing in construction, real estate management, property development, office space rental, and design & marketing services. The company emphasizes quality construction with over 30 years of experience and manages a closed real estate fund alongside property investment activities. Their diversified business model targets investors, businesses, and clients seeking professional real estate and design services in the region. Technically, the website uses modern JavaScript libraries such as Splide.js for UI components and Umami for privacy-focused analytics, indicating a moderate level of digital maturity. However, the absence of privacy and cookie policies and lack of visible security headers suggest room for improvement in compliance and security posture. The WHOIS data is unavailable due to EURid privacy restrictions, which slightly reduces transparency but is common for European domains. Overall, the website is professional, safe, and business-focused with moderate trustworthiness.

F

Flexigate, s.r.o.

flexigate.cz

0

Flexigate, s.r.o. operates an electronic platform named FLEXIGATE, targeting providers of performance balancing services (SVR) in the Czech and Slovak energy markets. The platform facilitates secondary market transactions of SVR contracts through auctions, enabling providers to find counterparties for contract transfers. The company is relatively new, founded in 2022, and positions itself as a niche player in the energy sector's secondary contract market. The website is professionally designed using Webflow CMS, with good mobile optimization and clear navigation, though it lacks some standard compliance documents such as privacy policy and terms of service. Technically, the site uses modern web technologies including jQuery and Google Fonts, and integrates a cookie consent mechanism via CookieScript. Security posture is moderate, with HTTPS implied but no explicit security headers detected. No contact emails or phone numbers are provided, but company registration and address details are clearly displayed, enhancing business credibility.

P

Získejte svobodu nad energií | parc4u

parc4u.cz

0

The website parc4u.cz is a Czech energy service platform focused on simplifying the process of switching energy suppliers for electricity and gas. Founded around 2019, it targets general consumers in the Czech Republic seeking fair energy prices without hidden fees. The site offers services that reduce paperwork and physical visits to offices, positioning itself as a convenient digital solution in the energy sector. Technically, the website employs modern JavaScript frameworks, likely Angular, and integrates analytics tools such as Google Tag Manager and a proprietary SAnalytics system. The site is mobile-optimized and presents a professional design with clear navigation, although accessibility features are basic. Security posture is moderate; HTTPS is implied but no explicit security headers or policies are detected, and no privacy or cookie policies are found, indicating gaps in compliance. The domain registration is consistent with the business age and sector, supporting legitimacy. Overall, the site is functional and professional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

F

Financial Planning Standards Board Ltd.

fpsb.org

0

Financial Planning Standards Board Ltd. (FPSB) is a globally recognized standards-setting organization dedicated to advancing the financial planning profession. The website highlights FPSB's role in promoting CFP certification as the global mark of excellence, supporting a worldwide network of affiliate organizations, and providing research, advocacy, and professional development resources. The site is well-structured, professionally designed, and targets financial planning professionals and consumers seeking trusted financial advice. Technically, the site is built on WordPress, leveraging modern web technologies and analytics tools such as Google Analytics and Microsoft Clarity, with Cloudflare providing DNS and CDN services. Security posture is strong with HTTPS enforced, clientTransferProhibited domain status, and cookie consent managed via OneTrust. However, DNSSEC is not enabled, and no explicit security or incident response policies are published. Overall, the website demonstrates a mature digital presence with good privacy compliance and trust indicators.

T

The World Federation of Exchanges

world-exchanges.org

0

The World Federation of Exchanges (WFE) operates as a global industry association representing market infrastructure providers such as exchanges and clearing houses. The organization provides a broad range of services including membership management, educational programs, research, statistics, and regulatory affairs support. Positioned as a key industry player, WFE serves over 136 market infrastructure providers and thousands of listed companies worldwide, emphasizing its significant market presence and influence in the finance sector. The website reflects a professional and authoritative image consistent with its role as an industry association headquartered in the United Kingdom. Technically, the website is built on a modern stack including the UIkit framework, jQuery, and October CMS, hosted on DigitalOcean infrastructure. It demonstrates good mobile optimization, accessibility, and SEO practices. Analytics are implemented via Google Analytics and Cloudflare Insights, with a cookie consent mechanism in place, indicating attention to privacy compliance. The site is fully accessible with no blocking or WAF challenges detected. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data due to privacy protection is typical for such organizations and does not detract from the site's legitimacy. Overall, the security posture is solid but could be improved by adding security headers and formal incident response information. The overall risk assessment is low, with the site demonstrating strong business credibility, technical maturity, and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen trust and security culture.

S

Sustainable Stock Exchanges Initiative

sseinitiative.org

0

The Sustainable Stock Exchanges Initiative is a globally recognized, United Nations-supported platform that promotes sustainable investment and ESG transparency among stock exchanges, investors, regulators, and companies. It offers extensive resources including databases, training programs, publications, and events aligned with the UN Sustainable Development Goals. The website is professionally designed, well-structured, and targets sustainability professionals and capital market stakeholders worldwide. Technically, the site is built on Drupal CMS with modern libraries such as Highcharts and Google Tag Manager, hosted behind Cloudflare for DNS and CDN services. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled. Privacy compliance is lacking as no explicit privacy or cookie policies are found, representing a compliance gap. Overall, the site is trustworthy, authoritative, and serves as a key resource in sustainable finance.

G

Global Financial Literacy Excellence Center (GFLEC)

gflec.org

0

The Global Financial Literacy Excellence Center (GFLEC) is a leading nonprofit research and educational organization affiliated with George Washington University, focused on advancing financial literacy worldwide. The website positions GFLEC as a global authority in financial literacy research, policy analysis, and educational initiatives, targeting academics, policymakers, nonprofits, and corporations. It offers extensive resources including research papers, data sets, educational courses, and events. Technically, the site is built on WordPress with modern plugins and integrations such as Gravity Forms, Google Analytics, and reCAPTCHA, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and domain protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with clear privacy and cookie policies linked to the parent university's official pages. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

G

G20 South Africa

g20.org

0

G20 South Africa is the official website representing the G20 international forum during South Africa's 2025 Presidency. The site provides information about the G20's role as a global economic forum, its member countries, and upcoming events related to the 2025 summit. The website targets governments, policymakers, and the general public interested in global economic governance. It is positioned as a key authoritative source for G20 South Africa activities and related information. Technically, the website is built on WordPress with Elementor and several plugins for events and multimedia content. It uses modern web technologies and is hosted with a reputable registrar. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, indicating potential compliance gaps. Social media integration is strong, linking to official G20 South Africa accounts. Overall, the website is trustworthy and professional but would benefit from improved privacy compliance and enhanced security configurations to align with best practices and regulatory requirements.

S

Sdružení pěstounských rodin, z. s.

konferencepestouni.cz

0

The website www.konferencepestouni.cz represents a professional and well-structured platform for the 'Hranice péče' conference organized by Sdružení pěstounských rodin, a Czech non-profit focused on foster care and social-legal protection of vulnerable children. The site provides comprehensive information about the conference program, speakers, registration options, payment details, and contact information. It is supported by notable patronages including the wife of the Czech president and the government commissioner for human rights, enhancing its credibility. Technically, the site is built on WordPress 6.8.3 with modern plugins such as Yoast SEO and W3 Total Cache, and uses HTTPS with a good SSL configuration. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, some broken lazy loading images and the absence of explicit privacy and cookie policies indicate areas for improvement. From a security perspective, the site employs HTTPS and some security headers but lacks advanced headers like CSP or HSTS. No security.txt or incident response information is publicly available. The WHOIS data for the domain is missing or not publicly accessible, which reduces trust in domain legitimacy despite the professional appearance and official endorsements. Overall, the site is a credible and professional resource for its target audience but should address privacy compliance and domain registration transparency to strengthen trust and security posture.

S

Sdružení pěstounských rodin

pestouni.eu

0

The website pestouni.eu serves as an information system for the Sdružení pěstounských rodin (Association of Foster Families) in the Czech Republic. It provides detailed listings of seminars, webinars, support groups, and family events aimed at foster families and professionals involved in foster care. The site targets a niche non-profit audience and offers educational and community-building services. The market position is specialized within the foster care support sector in the Czech Republic. Technically, the website is built with basic HTML and CSS, hosted by WEDOS Internet, a reputable Czech hosting provider. The site lacks modern CMS or frameworks and shows basic mobile optimization and accessibility. Performance is moderate, with clear navigation and structured content but limited advanced technical features. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No contact information for security incidents or data protection officers is present. The site uses HTTPS (assumed from domain and hosting) but does not demonstrate advanced security best practices. There are no signs of vulnerabilities or exposed sensitive data in the provided content. Overall, the website is safe and appropriate for its audience, with no adult or questionable content. However, it requires improvements in privacy compliance, security posture, and contact transparency to enhance trust and regulatory adherence.

Budoucipestouni.cz is a professionally maintained website operated by Sdružení pěstounských rodin z.s., a Czech non-profit organization dedicated to supporting foster families and promoting foster care and adoption. The site offers a variety of services including online and email counseling, educational quizzes, webinars, and informational infographics, targeting prospective foster parents and stakeholders in child welfare. The organization has a credible market position with a history dating back to 1995 and receives support from the Czech Ministry of Labour and Social Affairs. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and Complianz GDPR for cookie consent management. It uses HTTPS with good SSL configuration and integrates Google Analytics for user tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some security best practices like security headers and a published privacy policy are missing. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR principles, but lacks explicit privacy and terms of service documents and security headers that could enhance protection against common web threats. No vulnerabilities or suspicious content were detected. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profits but reduces transparency. Overall, Budoucipestouni.cz presents a trustworthy and professional online presence for a non-profit organization focused on foster care support. Strategic improvements in privacy documentation and security headers would further strengthen its security posture and compliance.

S

SOS dětské vesničky

kdyzboliduse.cz

0

The website 'Když bolí duše, jednej rychle' is a mental health awareness campaign operated by SOS dětské vesničky, a recognized non-profit organization in the Czech Republic. It targets children, adolescents, and their families, providing support, crisis plans, and access to helpline contacts. The site is well-branded and professionally designed, reflecting a strong commitment to youth mental health. Technically, it leverages modern web technologies such as React and Next.js, with embedded multimedia content and integration of Google Analytics under a cookie consent framework. Security posture is solid with HTTPS and consent management, though explicit security headers and privacy policies are missing, which are recommended for compliance and trust. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profit campaigns. Overall, the site is trustworthy, safe, and professionally maintained, serving an important social cause.

M

MONTI SYSTEM, s.r.o.

monti.cz

0

MONTI SYSTEM, s.r.o. is a Czech company specializing in the development and manufacturing of advanced technology solutions for fuel stations. With over 20 years of experience, they provide hardware and software systems that automate fuel station management, optimize logistics, and ensure compliance with legislative requirements. Their market position is strong within the Czech Republic, serving major clients and fuel station networks. Technically, the website employs modern JavaScript libraries, analytics tools like Google Analytics and Microsoft Clarity, and a comprehensive cookie consent mechanism, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and cookie consent but lacks visible security headers and formal security policies, indicating room for improvement. The absence of WHOIS data is a concern for domain legitimacy, though the business content and client references support authenticity. Overall, the company demonstrates a professional online presence with good privacy compliance but should enhance security transparency and domain registration clarity.

L

Lékarna Vltavínská

lekarna-vltavinska.cz

0

Lékarna Vltavínská is a local pharmacy based in Třebíč, Czech Republic, offering pharmaceutical products and services including an e-shop for convenient product reservations and purchases. The website provides clear information about opening hours, contact details, and related nearby pharmacies, targeting local customers seeking healthcare and pharmaceutical services. The business operates primarily as a retail pharmacy with a focus on community service. Technically, the website employs common web technologies such as Google Analytics, Google Tag Manager, and the Slick Carousel for UI elements. The site is mobile-optimized with a responsive design and uses standard fonts and icons. However, there is no detected CMS or advanced frameworks, indicating a relatively simple technical infrastructure. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance and user trust. No forms are present on the main page, reducing immediate data collection risks, but tracking scripts are active without explicit consent mechanisms. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness, although the website content and contact information appear professional and consistent with a legitimate local business. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance improvements, and domain registration transparency to strengthen trust and regulatory adherence.

N

Nuvia Group

nuvia.com

0

Nuvia Group is an international company specializing in nuclear technology, offering a comprehensive range of services including engineering, EPC, services and works, and products. The company operates under the parent company Vinci Construction Group, positioning itself as a key player in heavily regulated environments such as nuclear, healthcare, defense, and industrial sectors. The website reflects a professional and consistent brand image targeting business clients and professionals in these industries. Technically, the website is built on WordPress with modern libraries such as jQuery, Owl Carousel, and Leaflet, and integrates privacy-conscious analytics via Matomo. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers are not detected and no explicit security policy or incident response information is published. The absence of WHOIS data for the domain is a notable gap, reducing transparency and trust slightly. Overall, the website is well-designed, compliant with privacy regulations, and safe for general audiences.

DC Zlin's website is currently undergoing maintenance, presenting minimal content limited to a maintenance notice in Czech and English. The company appears to be a small entity based in the Czech Republic with a domain registered since 2004, indicating a longstanding presence. The website is built on WordPress and hosted by Wedos, utilizing standard web technologies such as jQuery and Open Sans fonts. However, the site lacks substantive business information, contact details, and policy documents, which limits its digital maturity and user engagement capabilities. From a security perspective, the website benefits from HTTPS encryption, ensuring secure data transmission. Nonetheless, it lacks critical security headers such as Content-Security-Policy and HSTS, which are recommended to enhance protection against common web attacks. The presence of a login form suggests some user authentication functionality, but no advanced security measures or incident response contacts are evident. No analytics or advertising scripts were detected, indicating minimal tracking or marketing activities. Overall, the website's risk profile is moderate due to the absence of privacy and cookie policies, limited content, and missing security best practices. The domain's WHOIS data is consistent and trustworthy, supporting the legitimacy of the entity. Strategic improvements in security headers, policy transparency, and content enrichment are advised to elevate the site's professionalism and compliance posture.

P

Poradenské a krizové centrum, p. o.

pkcentrum.cz

0

Poradenské a krizové centrum, p. o. is a Czech non-profit organization founded in 2022, providing accessible help and support to individuals and families facing difficult life situations, including children at risk and victims of domestic violence. The organization operates primarily in the Zlín region and offers a range of social and psychological services such as crisis intervention, counseling, mediation, and substitute family care. The website reflects a professional and consistent brand image with strong regional partnerships and sponsors. Technically, the site is built on WordPress with modern web technologies, includes accessibility features, and enforces HTTPS with cookie consent mechanisms, indicating a good level of digital maturity. Security posture is adequate but could be improved by adding explicit security headers and incident response information. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

Marché Adonis is a well-established Canadian retail grocery chain specializing in Mediterranean, Middle Eastern, and Lebanese food products, primarily serving the Quebec market. Founded in 2011, it operates both physical supermarkets and online services including grocery delivery and catering. The website reflects a mature digital presence with consistent branding and a focus on user experience in French, with English language support. The business model centers on retail grocery sales complemented by online ordering and catering services, positioning it as a leading Mediterranean grocery provider in Quebec. Technically, the site employs common marketing and analytics technologies such as Google Tag Manager, Facebook Pixel, and OneTrust for cookie consent, indicating a moderate level of digital maturity. Performance and mobile optimization are good, though accessibility could be improved. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks advanced security headers and explicit security policies. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

K

Kimberly-Clark Professional

kcprofessional.com

0

Kimberly-Clark Professional is a global enterprise specializing in workplace hygiene, safety, and cleaning solutions, offering trusted brands such as Scott®, Kleenex®, and Kimtech®. The website targets business customers and authorized distributors, providing product information and a secure partner portal. The technical infrastructure employs modern web technologies including Bootstrap, jQuery, and Google Tag Manager, with strong accessibility and privacy compliance features. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response details are absent. The domain WHOIS data is unavailable, which slightly impacts trust but the overall digital presence and branding strongly support legitimacy. Strategic recommendations include publishing security policies and improving transparency around domain registration.

D

Diakonie ČCE

krabiceodbot.cz

0

Krabice od Bot is a prominent Czech non-profit initiative organized by Diakonie ČCE, focused on collecting and distributing Christmas gifts to children in need. The project enjoys strong market positioning as the largest charity gift collection in the Czech Republic, supported by reputable endorsements including the patronage of the president's wife. The website provides comprehensive information for donors, volunteers, and beneficiaries, facilitating engagement through clear navigation and calls to action. Technically, the site is built on Drupal 11 with integrations of modern JavaScript libraries and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are absent, representing areas for improvement. Overall, the site is trustworthy and professionally maintained, though the absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy.

T

TTP GROUP s.r.o.

materasso-eshop.cz

0

Materasso-eshop.cz is an established Czech e-commerce retailer specializing in high-quality mattresses, beds, bed frames, and bedding accessories. The company, operating under TTP GROUP s.r.o., emphasizes detailed craftsmanship and advanced technology in mattress production, targeting consumers seeking comfort and personalized sleep solutions. The website offers a broad product catalog with clear pricing, variants, and availability, supported by customer service and a physical store pickup option. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and uses the Jednicky e-shop system CMS. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. Performance is moderate with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and secure form handling, though the absence of explicit security policies and incident response contacts suggests areas for enhancement. The lack of WHOIS data limits domain trust verification, but the professional presentation and business transparency mitigate concerns. Overall, the website presents a trustworthy and user-friendly platform for mattress retail, with recommendations to improve security headers, publish security policies, and verify domain registration details to strengthen trust and compliance.

M

MyStay

gomystay.com

0

MyStay operates as a global relationship platform focused on enhancing the hotel guest experience through contactless technology solutions. The company targets hoteliers and travelers, offering services such as personalized upselling, check-in/check-out management, in-room tablets, and QR code solutions. The platform is positioned as a modern SaaS solution within the hospitality industry, with recognition from reputable organizations like the UNWTO and WHO, indicating a strong market presence. Technically, the website is built on WordPress with Elementor, integrating multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and Intercom, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS enforced and reCAPTCHA implemented; however, the absence of explicit security headers and the presence of hidden spam links indicate areas for improvement. The lack of WHOIS registration data raises concerns about domain legitimacy, which impacts overall trust. Strategic recommendations include enhancing security headers, removing hidden spam content, and publishing clear security policies to improve trust and compliance.

I

InstaGYM

instagym.cz

0

InstaGYM is a Czech-based fitness company specializing in organizing fitness camps primarily in Slovakia and abroad, as well as providing online personal training and nutrition consulting services. The company positions itself as a market leader in its niche, targeting fitness enthusiasts seeking professional training and wellness solutions. The website is professionally designed using modern web technologies such as Nuxt.js and integrates popular analytics and marketing tools including Google Tag Manager, Facebook Pixel, and Exponea. The technical infrastructure supports a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities detected, though security headers could be improved. Privacy compliance is limited due to the absence of a clear privacy policy and terms of service, although a cookie consent mechanism is implemented. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trustworthiness but is not uncommon for small businesses. Overall, InstaGYM presents a credible and professional online presence with room for improvement in privacy and security transparency.

The Global Federation of Insurance Associations (GFIA) is a reputable non-profit organization established in 2012 that represents a large portion of the global insurance market through its member associations. The website serves as an information hub for industry news, publications, events, and advocacy efforts. Technically, the site uses modern JavaScript libraries such as jQuery and Snap.svg, with resources loaded from reputable CDNs and hosted by OVH sas. The site is accessible without any WAF or security challenges, indicating good availability. Security posture is moderate with HTTPS enabled and domain registration protections in place, but lacks advanced security headers and explicit privacy or cookie policies. Business credibility is high given the organization's global representation and domain age consistent with its founding. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

S

Společenství firem Lanškrounska

spolecenstvifirem.eu

0

Společenství firem Lanškrounska is a regional community organization focused on supporting education in kindergartens, primary, and secondary schools in Lanškroun and its surroundings. The organization collaborates with local manufacturing and industrial companies to foster educational initiatives and community development. The website reflects a small-sized, locally focused non-profit entity with a clear mission to enhance educational support through business partnerships. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including JavaScript, Typekit fonts, and Weglot for multilingual support. The site is well-structured, mobile-optimized, and uses HTTPS with HSTS for secure communications. However, it lacks explicit privacy and cookie policies, which are important for compliance with GDPR and other privacy regulations. From a security perspective, the site demonstrates good baseline security practices such as enforced HTTPS and HSTS. There are no visible vulnerabilities or exposed sensitive data. The absence of detailed security policies, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security maturity. Overall, the website presents a trustworthy and professional image consistent with a legitimate community business association. The lack of WHOIS data due to privacy protection is common for small organizations and does not raise immediate concerns. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and providing clear contact information for security and compliance inquiries.

J

JSON Viewer and Formatter - JSON.pub

json.pub

0

JSON.pub is a specialized online tool designed to convert and visualize JSON strings and other data formats into a readable, user-friendly format. It targets developers, data analysts, and users who need to parse and analyze JSON, XML, CSV, YAML, and other data types. The service emphasizes privacy by processing all data locally in the user's browser, ensuring no data is sent to the server. The website offers features such as syntax highlighting, tree views, and shareable URLs with compressed data, positioning itself as a niche utility in the developer tools market. Technically, the website is built with modern web technologies including HTML5, CSS3, JavaScript, and libraries such as jQuery, LZ-String for compression, and DOMPurify for sanitization. It employs a service worker for offline support and uses Simple Analytics for privacy-first user tracking. The site is mobile-optimized with responsive design and good accessibility features, providing a fast and smooth user experience. From a security perspective, JSON.pub follows best practices by ensuring all processing is local, minimizing data exposure risks. The use of DOMPurify to sanitize SVG inputs and the absence of data transmission to servers are strong security measures. However, the site lacks explicit security headers and does not provide privacy or cookie policies, nor contact information for security incidents, which are areas for improvement. Overall, JSON.pub presents a trustworthy and professional service with a strong privacy focus. The absence of WHOIS registrant data is typical for small utility sites and does not detract from its legitimacy. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and providing clear contact channels for incident response to enhance trust and compliance.

E

eu/acc

euacc.com

0

eu/acc is a European advocacy movement and platform focused on deregulation and accelerationism to foster innovation and competitiveness in Europe. The website serves as a hub for crowdsourcing ideas, sharing policy recommendations, and engaging with the community via social media. It has gained recognition through contributions to European Commission reports and ongoing dialogue with policymakers. Technically, the website is simple but effective, using standard web technologies and Cloudflare hosting, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and published policies. The absence of privacy and cookie policies, as well as contact information, represents compliance and trust gaps. Overall, the site is professional and trustworthy within its niche but could improve transparency and security practices.

I

Interior AI

interiorai.com

0

Interior AI is a technology company founded in 2020 that offers an AI-powered interior design and virtual staging application targeted at homeowners, real estate professionals, and interior designers. The platform enables users to upload photos of interiors and receive instant AI-generated redesigns, photorealistic renders, and 3D flythrough videos. The company positions itself as a niche player in the AI interior design space with positive user feedback and a modern SaaS business model. Technically, the website employs a modern web stack including jQuery, service workers for push notifications, and Cloudflare for DNS and hosting. The site is moderately optimized for mobile and SEO, with good content quality and branding consistency. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. No WAF or blocking mechanisms are detected, and the domain registration is consistent and legitimate. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Nomad Cafe is a small hospitality business focused on providing artisanal coffee and a nomadic lifestyle experience, targeting travelers and remote workers. The website presents a modern, well-designed interface with good mobile optimization and clear branding. The business plans to open a location in Portugal in 2025, indicating growth or expansion. Technically, the site uses standard web technologies and is hosted via Cloudflare, ensuring good performance and availability. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy and compliance policies are absent, which is a notable gap. Overall, the site is professional but could improve in privacy, security, and contact transparency.

C

Coworkations

coworkations.com

0

Coworkations is a specialized online platform founded in 2015 that aggregates and ranks digital nomad retreats worldwide, targeting remote workers and travelers seeking community-based coworking experiences. The website offers a comprehensive search and discovery service, user account features, and an advertising platform for retreat providers. It holds a niche market position supported by strong social media presence and mentions in reputable media outlets. Technically, the site is built with modern JavaScript frameworks (Vue.js), uses Cloudflare for DNS and CDN, and integrates analytics and payment processing services. The website is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Security-wise, the site enforces HTTPS, uses security headers, and protects domain transfer, though it lacks DNSSEC and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, Coworkations demonstrates a mature digital presence with good security posture and business credibility, suitable for its audience and business model.

P

Windows 3.11 Emulator - retro computer with dial-up internet by Pieter™

pieter.com

0

The website pieter.com offers a niche service: a browser-based Windows 3.11 emulator with a simulated dial-up internet experience. It targets retro computing enthusiasts and users interested in vintage software experiences. The site is technically mature, leveraging modern JavaScript libraries such as jQuery and Tesseract.js, and uses Emscripten to run DOSBox in the browser. Hosting and DNS are managed by Cloudflare, providing a reliable infrastructure. However, the site lacks formal privacy, cookie, and terms of service policies, and does not provide contact or incident response information, which limits its compliance posture. Security practices are basic, with no DNSSEC enabled and no visible security headers, though the domain is long-standing and registered consistently.

Hoodmaps is a niche technology website founded in 2016 that provides user-generated neighborhood maps and urban insights to help users understand different city areas. The site targets a general audience interested in local neighborhood data and urban exploration. The business model revolves around crowdsourced data and location-based services, positioning Hoodmaps as a specialized urban mapping platform. The website is relatively small in scale with basic content and moderate branding consistency. Technically, the site uses JavaScript and jQuery with Cloudflare hosting and DNS services. The site is served over HTTPS with a moderate performance profile and basic mobile optimization. Accessibility and SEO features are minimal but functional. The site lacks a CMS or major frameworks and uses custom scripts for geolocation-based redirection. From a security perspective, the domain registration is consistent and legitimate with no privacy protection but clientTransferProhibited status for domain transfer security. HTTPS is enabled, but no security headers were detected in the provided data. The site lacks privacy, cookie, and terms of service policies, which impacts compliance and trust. No contact or incident response information is available, limiting transparency. No vulnerabilities or exposed sensitive data were found, but improvements are recommended. Overall, Hoodmaps presents a moderate risk profile with a basic security posture and limited privacy compliance. The site is safe for general audiences with no adult or explicit content. Strategic recommendations include adding privacy and cookie policies, implementing security headers, improving mobile and accessibility features, and providing clear contact and incident response information to enhance trust and compliance.

N

Nomads.com

airlinelist.com

0

Airline List is an informational platform launched in 2013 that provides comprehensive rankings and data on airlines, airplanes, and airports worldwide, focusing on service quality, safety, and lost luggage statistics. The site targets travelers and aviation enthusiasts seeking detailed and comparative airline information. It integrates affiliate marketing through Travelpayouts and uses flight data APIs from Skypicker to offer flight search capabilities with advanced filtering options. The platform is hosted with Cloudflare and employs HTTPS for secure connections. Technically, it uses jQuery and lightweight analytics services, with a custom-built front-end optimized for mobile devices. However, the site lacks formal privacy, cookie, and terms of service policies, and does not provide direct contact or incident response information, which are areas for improvement. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Overall, the website is professional, content-rich, and safe for general audiences but could enhance compliance and security transparency.

Hotel List is an AI-driven hotel booking platform focused on providing honest and unbiased hotel ratings without pay-to-play rankings or manipulative selling. It is part of Nomads.com and targets travelers seeking transparent hotel booking experiences. The website uses modern technologies such as Mapbox GL JS for interactive maps and Simple Analytics for privacy-focused analytics. The technical infrastructure is solid with HTTPS enabled and Cloudflare as the hosting provider, but lacks DNSSEC and security headers which could enhance security posture. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. No direct contact or security incident response information is provided, which limits trust and compliance. Overall, the website is professional and functional but would benefit from improved privacy and security practices.

S

Správa PPC | Profesionální správa PPC

spravappc.cz

0

Spravappc.cz is a Czech-based small business specializing in professional PPC campaign management and online marketing services. The website offers detailed information about their PPC services including search engine positioning, remarketing campaigns, branding, and sales improvement strategies. The company targets businesses and individuals seeking to optimize their online advertising efforts. The site is well-structured, mobile-optimized, and uses modern web technologies such as Bootstrap and jQuery, along with marketing tools like Google Tag Manager and Google Analytics. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is basic with a GDPR policy page but no cookie consent mechanism. Contact information is clearly provided via email, phone, and a contact form with GDPR consent. The domain is well-established since 2009, indicating a stable online presence.

5

Přední český portál pro recenze a srovnání online služeb

5nej.cz

0

The website www.5nej.cz is a leading Czech portal specializing in reviews and comparisons of online services, particularly in finance, e-commerce, lifestyle, and online tools. It targets Czech-speaking consumers seeking objective and comprehensive information to make informed decisions about financial products, online shopping, and digital services. The business model revolves around content creation, likely monetized through affiliate links and advertising. Technically, the site is built on WordPress CMS with a modern tech stack including jQuery, Yoast SEO Premium, WP Rocket for performance optimization, and analytics tools such as Microsoft Clarity and Google Tag Manager. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and explicit privacy disclosures. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML. However, it lacks visible security headers and explicit privacy and cookie policies, which are important for GDPR compliance and user trust. No vulnerabilities or malware indicators were detected. The absence of WHOIS data suggests domain privacy protection, which is common and acceptable for this business type. Overall, the website presents a professional and trustworthy front for its target audience but would benefit from enhanced privacy disclosures, security headers, and clearer contact information to improve compliance and user confidence.