Security Directory

EuroInstytut Polsko-Czesko-Słowacki is a small non-profit organization dedicated to fostering cross-border cooperation between Poland, Czech Republic, and Slovakia. The institute provides specialized training, consultancy, research, and educational services aimed at regional development and partnership building. The website reflects a professional and consistent brand presence with clear contact information and EU funding acknowledgments, positioning it as a credible regional educational entity. Technically, the website uses standard JavaScript libraries such as jQuery and Cycle2 for UI components and integrates a cookie consent management platform to comply with privacy regulations. While the site is accessible and well-structured, there is room for improvement in SEO, accessibility, and security headers implementation. Security posture is moderate with no critical vulnerabilities detected, but the absence of visible security headers and detailed security policies suggests opportunities for enhancement. Overall, the website is trustworthy and compliant with GDPR, with a low risk profile for users and stakeholders.

C

CHAPS spol. s r.o.

chaps.cz

43

CHAPS spol. s r.o. is a Czech IT company specializing in the development, maintenance, and operation of software applications and systems primarily for the personal transportation sector, including rail and road transport. Established in 1997, the company holds a solid market position supported by partnerships with major transportation entities such as České dráhy and regional public transport companies. Their business model focuses on B2B software solutions, including timetable data management and ticketing systems. The website reflects a professional and consistent brand image with clear business information and active social media presence. Technically, the website employs legacy JavaScript libraries like jQuery 1.9.1 and jQuery UI, indicating potential modernization opportunities. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. Hosting and domain registration are consistent with the company's history and location. From a security perspective, the site lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. The use of outdated JavaScript libraries may expose the site to vulnerabilities. No forms or sensitive data exposure were detected on the homepage, reducing immediate risk. The domain's WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the security posture is moderate but could benefit from enhancements in headers, consent management, and library updates. The overall risk assessment is low with no critical issues detected. Strategic recommendations include implementing security headers, updating JavaScript libraries, adding cookie consent banners, and publishing security and incident response policies to enhance trust and compliance. These steps will improve the company's digital maturity and security resilience while maintaining its strong market credibility.

On The Green Move is an environmental advocacy movement focused on promoting Living Green through nature and social responsibility. The website presents a professional and consistent brand image with clear messaging about their mission and partner collaborations. Technically, the site uses modern frontend technologies such as Bootstrap and jQuery, providing a responsive and user-friendly experience. However, there is no evidence of a CMS or advanced backend infrastructure. Security posture is moderate with no visible vulnerabilities but lacks HTTPS confirmation and security headers. Privacy and cookie policies are absent, which impacts compliance and user trust. The WHOIS data is missing, raising concerns about domain legitimacy and longevity. Overall, the site is functional and informative but requires improvements in security, privacy compliance, and domain registration transparency.

Z

Zwiazek Gmin i Powiatow Subregionu Zachodniego Wojewodztwa Slaskeigo z siedziba w Rybniku

krainagornejodry.travel

45

Kraina Górnej Odry is a regional tourism website focused on promoting the Upper Odra region in Poland, managed by the Zwiazek Gmin i Powiatow Subregionu Zachodniego Wojewodztwa Slaskeigo z siedziba w Rybniku. The site offers comprehensive information on thematic trails, cultural heritage, events, accommodation, gastronomy, and multimedia resources to attract tourists and visitors interested in the Silesian region. The website is professionally designed with good navigation and mobile optimization, supporting multiple languages including Polish, English, German, and Czech. Technically, it uses a modern tech stack including jQuery, Bootstrap, Font Awesome, and integrates analytics and user behavior tracking tools such as Google Tag Manager and Hotjar. The site is hosted by OVH SAS and uses HTTPS with domain status protections, though DNSSEC is not enabled.

S

Slaska Organizacja Turystyczna

beskidy.travel

48

The website beskidy.travel serves as a regional tourism portal for the Beskidy and Silesian Cieszyn regions in Poland, operated by the Slaska Organizacja Turystyczna. It provides comprehensive information on cultural heritage, tourist trails, events, accommodations, gastronomy, and multimedia content aimed at tourists and visitors interested in exploring the region. The business model focuses on regional tourism promotion and information dissemination, positioning itself as an important regional authority in hospitality and tourism sectors. Technically, the site employs a modern tech stack including Bootstrap, jQuery, Google Tag Manager, and Hotjar, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is limited due to absence of a visible privacy policy, though cookie consent is implemented. Overall, the site is professional and trustworthy with room for improvement in security and privacy transparency.

D

Domain Protection Services, Inc.

slaskcieszynski.travel

45

The website slaskcieszynski.travel serves as a regional tourism portal focused on the Beskidy and Śląsk Cieszyński areas in Poland. It provides comprehensive travel information including thematic and tourist routes, cultural heritage sites, events, accommodation, gastronomy, and multimedia content such as galleries and virtual tours. The platform targets tourists and travelers interested in exploring these regions, positioning itself as a key regional information provider with a small-scale business model. The domain is relatively new, registered in 2019, and uses privacy protection services typical for such websites. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Font Awesome, Google Tag Manager, Google Analytics, and Hotjar for analytics and user behavior tracking. The site is mobile optimized with good accessibility and SEO practices. It uses the SonataCore CMS framework, indicating a structured content management approach. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options, which are recommended to enhance security posture. No exposed sensitive data or vulnerable libraries were detected. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website is safe, professional, and trustworthy for general audiences interested in regional tourism. Strategic improvements include enabling DNSSEC, adding security headers, publishing comprehensive privacy and security policies, and enhancing incident response transparency to strengthen trust and compliance.

The website mpvnet.cz serves as a public transport monitoring platform providing departure boards and real-time vehicle locations for several integrated transport systems across Czech regions. It is operated by CHAPS, spol. s r.o., a small company specializing in transport monitoring solutions. The site targets public transport users seeking timely information on bus and train schedules and vehicle positions. Technically, the site uses basic web technologies including jQuery and FontAwesome, with no advanced frameworks or CMS detected. The design and content quality are basic but functional, with moderate mobile optimization and accessibility. Security posture is minimal, lacking HTTPS verification details, security headers, and privacy policies, which presents compliance and risk concerns. No contact information or incident response details are provided, limiting user trust and support avenues. Overall, the domain is long-established and legitimate, but the site would benefit from enhanced security, privacy compliance, and richer business information to improve trust and user experience.

D

DAV, a.s.

dav-ova.cz

60

DAV, a.s. is a Czech construction and demolition company with over 30 years of experience, providing comprehensive services including demolition, construction of new buildings, reconstruction, and earthworks. The company employs approximately 100 staff and operates with its own machinery and technical equipment, positioning itself as a reliable general contractor in the Czech market. The website reflects a professional and consistent brand image with clear contact information and references to certifications, enhancing trustworthiness. Technically, the website uses a modern but standard tech stack including jQuery, jQuery UI, Slick Carousel, and Lightbox. It is mobile optimized and provides a good user experience with clear navigation and relevant content. SEO and accessibility are adequately addressed, though some improvements could be made in accessibility features and performance optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, security headers are not explicitly detected in the HTML content, and there is no visible incident response or vulnerability disclosure information. The site does not expose sensitive data and uses common analytics and marketing tools responsibly. Overall, the website is secure, compliant, and professionally maintained, supporting the company's credibility. Recommendations include enhancing security headers, publishing incident response contacts, and considering a security.txt file to improve transparency and security posture.

N

Národní realitní holding a.s.

narodnirealitniholding.cz

49

Národní Realitní Holding is a Czech Republic-based real estate holding company focused on elevating the quality and reputation of the local real estate market. The company provides a portfolio of brands, broker training, unique real estate tools, and advisory services aimed at real estate agencies and brokers. Their market position is supported by strategic partnerships with key industry bodies such as the Realitní komora České republiky and the Realitní Akademie České Republiky. The website content is professionally presented, targeting real estate professionals and property clients within the Czech market. Technically, the website employs a modern JavaScript stack including jQuery, Google Maps API, and Fancybox for media display. The site is mobile optimized with good SEO practices but lacks some advanced accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented; however, no security headers were detected and no published security or privacy policies were found, which are areas for improvement. The absence of WHOIS data for the domain reduces the ability to fully verify domain legitimacy and registration details, which impacts trust assessment. Despite this, the website's professional presentation, clear contact information, and strategic partnerships indicate a legitimate business operation. Overall, the site scores well on content quality and business credibility but should improve privacy compliance and security practices to enhance trust and reduce risk.

P

Pražské reality

praguerealestate.cz

49

Pražské reality operates a specialized real estate portal focused on luxury properties for sale and rent in Prague and the Czech Republic. The website offers a catalog of houses, apartments, lands, commercial properties, and other real estate types, along with agency registration services and a real estate advisory blog. The platform targets individuals and agencies interested in the Czech real estate market, positioning itself as a niche service provider with a professional online presence. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome, Google Tag Manager, and Leaflet.js for interactive maps. The site is built on a custom CMS and demonstrates good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating awareness of privacy compliance. However, no explicit security policies or incident response contacts are published, and security headers are not detected in the provided data. The absence of WHOIS registration details limits domain trust analysis, but the professional presentation and valid contact address support legitimacy. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements in security policy transparency and technical security controls would enhance trust and resilience.

P

Power Yoga Akademie

bmsa.cz

45

Power Yoga Akademie is a Czech Republic-based accredited educational center specializing in yoga instructor training. It offers certified courses recognized by the Ministry of Education, Youth and Sports (MŠMT) and Yoga Alliance, including both in-person and online programs. The website reflects a professional educational service provider targeting individuals seeking formal yoga instructor qualifications. Technically, the site employs modern web technologies such as jQuery, Google Tag Manager, and Facebook Pixel, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the site content and certifications support legitimacy. Overall, the site is well-structured, compliant with GDPR, and provides clear contact and policy information.

P

Power Yoga Akademie

yogaworld.cz

46

Yoga World is an educational platform specializing in advanced yoga instructor training and self-awareness yoga practices, targeting yoga professionals and enthusiasts in the Czech Republic. The website presents a professional and clear structure with relevant content and services, including workshops, seminars, and a voucher system for continuing education. Technically, the site uses modern web technologies such as jQuery, Google Tag Manager, and Facebook Pixel, and enforces HTTPS for secure communication. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy in Czech. However, the absence of WHOIS data and security headers slightly reduces trustworthiness. Overall, the site demonstrates a solid digital presence with room for improvement in security and transparency.

I

iMi Partner a.s.

imi.eu

44

iMi Partner a.s. operates a comprehensive e-commerce platform specializing in promotional products and advertising gifts. The website offers a wide catalog of over 30,000 items including apparel, office supplies, household goods, leisure and outdoor products, and eco-friendly options. The company targets businesses and organizations seeking customized promotional items with online ordering and logo visualization features. The site demonstrates a solid market position as a trusted supplier with a personalized approach and fast shipping services. Technically, the website uses modern JavaScript libraries such as jQuery, Bootstrap, and Slick Carousel, and integrates marketing and tracking tools like Google Tag Manager and Ecomail. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced, but the absence of security headers and explicit privacy and cookie policies indicates room for improvement. No WHOIS registrant data is available due to EURid privacy policies, which is typical for .eu domains, but this limits direct verification of domain ownership. Overall, the website is legitimate, professional, and functional but would benefit from enhanced privacy compliance and security best practices.

P

Pražské reality

prazskereality.cz

49

Pražské reality operates a professional real estate portal primarily focused on property sales and rentals in Prague and across the Czech Republic. The website offers a comprehensive catalog of properties including houses, apartments, commercial spaces, and land, along with tools such as a mortgage calculator and a blog featuring real estate news. The platform targets individuals and businesses interested in luxury and general real estate in the region. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Google Analytics, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though it lacks some advanced security headers and explicit incident response contacts. The absence of WHOIS data for the domain is a notable concern, limiting the ability to fully verify domain legitimacy. Overall, the site is professional and trustworthy from a user perspective but would benefit from enhanced transparency and security practices.

I

iMi Partner, a.s.

imi.cz

41

iMi Partner, a.s. is a Czech Republic based company specializing in the supply and manufacture of promotional and gift items with custom printing. With a claimed 30 years of experience, the company targets B2B customers seeking a wide range of promotional products including textiles, office supplies, household items, and eco-friendly products. The website offers an extensive online catalog and ordering system, supported by modern web technologies and marketing tools. The company demonstrates a solid market position with reputable client references and a professional online presence. Technically, the site uses popular JavaScript libraries and frameworks such as jQuery and Bootstrap, and integrates tracking and live chat services to enhance customer engagement. Security posture is adequate with HTTPS and cookie consent implemented, though improvements are recommended in security headers and explicit privacy and terms documentation. The absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective, warranting further verification. Overall, the website is professional, user-friendly, and well-structured for its business purpose.

Ú

Úschova u advokáta

uschovauadvokata.cz

47

Úschova u advokáta is a Czech legal service specializing in secure escrow (advokátní úschova) for real estate transactions. The company offers an online platform allowing clients to monitor escrow status and manage documents securely. Their services include escrow of purchase prices, legal contract drafting and review, and cooperation with real estate agencies. The website positions the company as a cost-effective and efficient alternative to traditional bank or notary escrow services, emphasizing security and transparency backed by professional legal standards and insurance. Technically, the website employs a modern tech stack including jQuery, Bootstrap, WOW.js for animations, Dropzone.js for file uploads, and Google reCAPTCHA for form security. It uses HTTPS with a strict Content-Security-Policy header, ensuring a secure browsing experience. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Security posture is strong with HTTPS, CSP, and reCAPTCHA integration, but lacks published security policies or incident response information. Privacy compliance is partially met with a privacy policy present and GDPR adherence, but no cookie consent mechanism is implemented. WHOIS data is missing, which reduces domain trustworthiness, though the website content and contact details appear professional and legitimate. Overall, the site is well-constructed for its business purpose but would benefit from enhanced transparency in domain registration, cookie consent, and security documentation to improve trust and compliance.

P

PSN s.r.o.

psn.cz

58

PSN s.r.o. is a well-established real estate company operating primarily in the Czech Republic, focusing on the sale and rental of residential and commercial properties. With a domain age dating back to 1997 and multiple regional offices, PSN demonstrates a strong market presence and a comprehensive portfolio of exclusive properties. Their website reflects a professional and user-friendly design, targeting property buyers, renters, and investors with detailed project information and services including financing and legal support. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA, ensuring a secure and interactive user experience. Security measures include HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, PSN maintains a high level of trustworthiness and compliance, with GDPR adherence and transparent contact information.

N

N/A

cenovamapa.org

67

The website cenovamapa.org provides a price mapping service focused on sales prices, primarily targeting users in the Czech Republic. The site is built on a custom ASP.NET platform, hosted on AWS infrastructure, and employs common web technologies such as jQuery, Bootstrap, and Font Awesome. It integrates Google Tag Manager and Cookiebot for analytics and cookie consent management, respectively. The content is well-structured and professionally presented, with a clear cookie consent mechanism ensuring GDPR compliance. However, explicit contact information and detailed business credentials are not publicly available on the site, which limits business credibility assessment. Security-wise, the site uses HTTPS and domain transfer protections but lacks DNSSEC and explicit security headers, and it uses an outdated jQuery version, which could pose vulnerabilities.

S

server reals s.r.o.

reals.cz

42

Reals.cz operates as a Czech real estate portal offering property listings for sale and rent, alongside free real estate software for agencies. The website targets real estate buyers, renters, and agencies primarily within the Czech Republic. It positions itself as an established local player with a business history dating back to 1997, providing key services such as detailed property catalogs, email alerts, and agency software solutions. Technically, the website employs common web technologies including jQuery, Fancybox, Google Analytics, and Facebook SDK. The site is served over HTTPS, ensuring basic transport security, but lacks advanced security headers and comprehensive privacy or cookie policies. The design and content quality are good with clear navigation, though mobile optimization and accessibility are basic. No CMS or hosting provider details were identified. From a security perspective, the site demonstrates moderate maturity with HTTPS and secure login forms but lacks security headers and formal privacy compliance mechanisms. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data due to privacy protection or domain registration issues reduces trust somewhat but does not negate the site's legitimacy based on content and business presence. Overall, the site presents a moderate risk profile with opportunities to improve privacy compliance, security headers, and transparency. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, improving mobile and accessibility features, and publishing vulnerability disclosure and incident response information.

P

Poski.com s.r.o.

black-reality.cz

56

Black-reality.cz is an established Czech online real estate portal operated by Poski.com s.r.o., offering a comprehensive catalog of real estate listings including apartments, houses, commercial properties, and land across the Czech Republic. The platform targets both private individuals and commercial entities seeking to buy, rent, or advertise real estate. The website features user-friendly navigation, categorized listings, and partner integrations enhancing its market position. Technically, the site employs legacy JavaScript libraries such as jQuery 1.10.2 and UI components like Owl Carousel and SumoSelect, indicating moderate digital maturity with room for modernization. Security posture is moderate; while HTTPS is implied, no explicit security headers were detected, and the use of outdated libraries may pose vulnerabilities. Privacy compliance is addressed with visible cookie consent mechanisms and privacy policies, aligning with GDPR requirements. However, the absence of WHOIS data and explicit contact information slightly diminishes trustworthiness. Overall, the site is functional and professional but would benefit from technical and security enhancements.

M

Mesto Bratislava

esluzbyba.sk

64

The website esluzby.bratislava.sk serves as the official electronic services portal for the city of Bratislava, Slovakia. It provides citizens and businesses with digital access to a variety of municipal services such as tax declarations, waste management notifications, vehicle status reporting, and public lighting fault reporting. The portal is positioned as the primary government interface for electronic communication with city authorities, enhancing convenience and reducing the need for physical office visits. The target audience includes residents and entrepreneurs within Bratislava. Technically, the site leverages a mature ASP.NET framework with common web technologies including jQuery, Google Web Fonts, and Google Analytics for tracking. The site is served over HTTPS with HttpOnly cookies for session management, indicating a baseline of security best practices. The cookie consent mechanism complies with GDPR requirements, and the site includes a privacy policy page. However, there is room for improvement in security headers and incident response transparency. From a security perspective, the portal demonstrates a solid foundation with encrypted communications and controlled cookie usage. No critical vulnerabilities or exposed sensitive data were detected. The absence of explicit security policies, incident response contacts, or vulnerability disclosure mechanisms suggests an opportunity to enhance trust and preparedness. The use of third-party tracking services like Google Analytics and DoubleClick is disclosed via cookie consent, aligning with privacy regulations. Overall, the website is a trustworthy, well-structured government portal with good content quality and user experience. It effectively serves its public service mission with moderate technical sophistication and compliance. Strategic enhancements in security policies, headers, and transparency would further strengthen its posture and user confidence.

R

Reethaus Boltenhagen

reethausboltenhagen.de

64

Reethaus Boltenhagen operates a small vacation rental business offering a romantic and family-friendly holiday home near the Baltic Sea in Germany. The website is built on the Jimdo CMS platform, featuring a well-structured layout with rich content including images, galleries, and detailed accommodation descriptions. Social media integration via Facebook enhances customer engagement. The technical infrastructure is standard for small hospitality businesses, leveraging Jimdo hosting and common web technologies such as jQuery UI and Google Analytics. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements like CSP headers and security.txt files could enhance protection. Privacy compliance is good with accessible privacy and cookie policies. Overall, the site is accessible, safe, and professionally presented, suitable for its target audience of vacationers and families.

I

Inselcamping Werder

inselcamping.com

63

Inselcamping Werder is a small hospitality business offering year-round camping and motorhome parking services on the island Werder in the Plauer See, Germany. The website presents a well-structured and content-rich platform built on the Jimdo CMS, targeting families and nature enthusiasts interested in camping and outdoor leisure. The business has a longstanding local presence dating back to the 1970s, providing rental caravans, annual camping pitches, boat docking, and wellness amenities. Technically, the site uses modern web technologies and includes tracking via Google Analytics and Facebook Pixel, with a cookie consent mechanism in place. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the website content and external references support the business's authenticity. Security posture is moderate with room for improvement in headers and policies. Overall, the site is professional, user-friendly, and trustworthy for its target audience.

D

Deutsches Bernsteinmuseum im Kloster Ribnitz

deutsches-bernsteinmuseum.de

50

The Deutsches Bernsteinmuseum im Kloster Ribnitz is a small regional museum in Germany specializing in the natural and cultural history of Baltic amber. It offers permanent and special exhibitions, educational programs for children and groups, and hosts cultural events such as concerts and readings. The museum is owned by the city of Ribnitz-Damgarten and supported by various cultural foundations and government bodies, positioning it as a trusted cultural institution in the region. Technically, the website is built on the Contao Open Source CMS and uses a range of JavaScript libraries including jQuery 1.11.3 and carouFredSel for carousels. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting is provided by a German hosting provider (rzone.de). The website is fully accessible with no blocking or WAF challenges. From a security perspective, the site uses HTTPS but lacks important security headers and a cookie consent mechanism, which are recommended for GDPR compliance. The use of an outdated jQuery version may pose minor security risks. No incident response or security policies are published, and no analytics or tracking scripts are detected, indicating a privacy-conscious approach. Overall, the website is professional, trustworthy, and serves its audience well, but could improve in privacy compliance and security best practices to enhance user trust and regulatory adherence.

Friedas kleine Scheune is a small local business in Germany specializing in crafts, decoration, creative workshops, and a dollhouse museum experience. The website presents a clear business focus on handmade and nostalgic items, targeting a general audience interested in traditional crafts and cultural heritage. The business operates primarily as a retail and workshop service provider with a physical location and contact details clearly listed. Technically, the website is built on the Jimdo Creator platform, leveraging Jimdo's hosting and content delivery network. The site uses standard web technologies including jQuery and jQuery UI, with moderate performance and good mobile optimization. SEO and accessibility features are basic but functional. Privacy and cookie policies are present but lack comprehensive GDPR compliance details. No forms or direct data collection mechanisms are visible on the homepage. From a security perspective, the site uses HTTPS but lacks advanced security headers and explicit security policies. No vulnerabilities or suspicious content were detected. The WHOIS data shows the domain is hosted on Jimdo name servers, consistent with the platform used, but lacks detailed registrant information. Overall, the security posture is moderate with room for improvement in headers and incident response readiness. The overall risk assessment is low, with no critical issues found. Strategic recommendations include enhancing security headers, adding terms of service and incident response contacts, improving GDPR compliance, and expanding accessibility features to strengthen trust and compliance.

L

Landtag Mecklenburg Vorpommern

landtag-mv.de

69

The website www.landtag-mv.de is the official online presence of the Landtag Mecklenburg Vorpommern, the state parliament of Mecklenburg-Vorpommern, Germany. It serves as a comprehensive information portal for legislative activities, live streaming of parliamentary sessions, petitions, event calendars, and educational resources. The site targets citizens, political stakeholders, media, and visitors interested in the state's legislative processes. The business model is that of a government institution providing transparency and public services related to governance and legislation. Technically, the website is built on TYPO3 CMS with Bootstrap and Uikit frameworks, leveraging modern web technologies such as jQuery UI and JavaScript. The site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with external content loaded via trusted CDNs. Cookie consent mechanisms are implemented with opt-in for statistics and marketing cookies, reflecting GDPR compliance. From a security perspective, the site enforces HTTPS with excellent SSL configuration and employs cookie consent for privacy compliance. However, explicit security headers and a published security policy or incident response contacts are absent. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data aligns well with the website's official government status, indicating high legitimacy. Overall, the website is professional, trustworthy, and well-maintained, with strong content quality and user experience. Strategic recommendations include publishing a dedicated security policy, adding security headers, providing incident response contacts, and implementing a vulnerability disclosure mechanism to enhance security posture and transparency.

M

Modulaire Group

modulairegroup.com

67

Modulaire Group is a leading multinational company specializing in modular services and infrastructure across Europe and Asia Pacific. The company serves over 52,000 customers globally, focusing on sectors such as public administration, construction, energy, natural resources, industry, business services, and infrastructure. Their business model revolves around providing smart modular spaces, equipment, connectivity, and furniture solutions with a strong presence in 23 countries through multiple subsidiaries. Technically, the website is built on Drupal 10, utilizing modern web technologies including jQuery, Flexslider, and Google Analytics for tracking. The site demonstrates good mobile optimization, clear navigation, and consistent branding, reflecting a mature digital presence. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the content. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the website presents a professional and trustworthy front for a large enterprise, with recommendations to enhance security policies, publish incident response details, and verify domain registration to strengthen trust and compliance.

ESKO-MAX s.r.o. is a small Czech real estate agency specializing in sales and rentals of various property types in the Břeclav region. The company has been operating since 2008 with roots dating back to 2002, offering comprehensive real estate services including legal, financial, and valuation support. Their website is professionally designed, mobile optimized, and integrates multiple real estate listing partners to enhance market reach. Technically, the site uses a custom CMS platform by Poski.com and includes common JavaScript libraries and tracking tools such as Google Analytics and Seznam retargeting. However, the use of an outdated jQuery version and lack of explicit security headers present moderate security risks. The website implements GDPR-compliant cookie consent but lacks visible privacy and security policies. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces transparency but is common for small businesses. Overall, the site is trustworthy and functional with room for security and compliance improvements.

R

RK Stejskal s.r.o.

rkstejskal.cz

45

RK Stejskal s.r.o. is a well-established real estate agency operating in South Bohemia, Czech Republic, since 1992. The company specializes in property sales, rentals, valuations, and development projects, targeting individuals and businesses seeking real estate services in the region. Their website reflects a professional and trustworthy business with clear service offerings and client testimonials. Technically, the website employs modern web technologies including Bootstrap, jQuery, and integrates analytics and marketing tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are missing. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not detract significantly from the site's credibility. Overall, the website presents a legitimate and professional real estate business with good digital maturity and compliance with privacy regulations.

F

Förderverein des slawischen Brauchtums Neustrelitz e.V.

slawendorf-neustrelitz.de

45

Slawendorf Neustrelitz is a cultural heritage site and experiential village located at Zierker See in Germany, focusing on the historical period of Slavic settlement from the 6th to 12th centuries. The organization operates as a small non-profit entity under the Förderverein des slawischen Brauchtums Neustrelitz e.V., with ProKultur gGmbH as the parent company. The site offers visitors authentic historical experiences, workshops, and seasonal events, targeting families and cultural tourists. The website reflects a consistent brand and provides relevant information about opening hours, events, and the village's history. Technically, the website uses a traditional tech stack including jQuery and Bootstrap, hosted by webgo.de. The site is moderately optimized for performance and mobile devices, with good SEO practices evident in meta tags and structured navigation. However, the presence of multiple jQuery versions and lack of visible security headers indicate some technical debt and potential security risks. No CMS or advanced frameworks were detected. From a security perspective, the site employs cookie consent mechanisms and does not expose sensitive data in the HTML. The SSL configuration and security headers could not be fully assessed but should be verified and enhanced. No incident response or security policy documentation is present. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the site is safe, family-friendly, and trustworthy but could improve its security posture and technical modernization. The overall risk is low, with recommendations focusing on technical improvements, security hardening, and enhanced compliance documentation to strengthen trust and resilience.

K

Kunstsammlung Neubrandenburg

kunstsammlung-neubrandenburg.de

57

Kunstsammlung Neubrandenburg is a regional cultural institution and art collection based in Neubrandenburg, Germany. The website serves as an information portal for exhibitions, events, and cultural programs, targeting art enthusiasts and the general public. The business model focuses on providing access to art and cultural heritage through exhibitions and educational activities. The website is professionally designed with consistent branding and clear navigation, reflecting a small but established institution.

P

Papoo Software & Media GmbH

primaweb.org

55

The website primaweb.org hosts a login portal for CCM (Cookie Consent Management) software developed by Papoo Software & Media GmbH, a German technology company founded in 2019. The platform targets businesses and organizations requiring cookie consent management solutions, offering multilingual support and user account login capabilities. The business operates in the technology sector with a SaaS model focused on privacy compliance tools. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript with jQuery libraries. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Hosting and domain registration are managed via Mesh Digital Limited with DNS servers at domaincontrol.com. No CMS or major frameworks are detected. From a security perspective, the site uses POST forms for login and includes a password show/hide feature, but lacks visible security headers and DNSSEC is not enabled. The WHOIS data indicates a stable domain registration with clientDelete/Transfer/Update prohibitions, but registrant details are partially redacted, reducing transparency. No privacy, cookie, or terms policies are present on the login page, and no contact or incident response information is provided, indicating gaps in compliance and user trust facilitation. Overall, the website is functional but basic in content and security posture, with moderate trustworthiness. Strategic improvements in privacy disclosures, security headers, HTTPS verification, and contact transparency are recommended to enhance compliance and user confidence.

H & Hotels Group is a Czech hospitality company operating since 1992, offering hotel accommodations, restaurants, event hosting, and wedding services primarily in Prague and surrounding areas. The company targets tourists and travelers seeking quality lodging and hospitality experiences. The website reflects a medium-sized business with a professional online presence and multiple service offerings. Technically, the site employs a modern JavaScript stack including jQuery, Google Analytics, Facebook Pixel, and reCAPTCHA, ensuring functional and interactive user experience. Mobile optimization and SEO practices are adequately implemented, though accessibility could be improved. Security posture is solid with HTTPS and CAPTCHA integration, but lacks explicit security headers and dedicated security policies. WHOIS data is missing, which slightly reduces trust but does not detract significantly from the overall legitimacy. The site includes cookie consent mechanisms and GDPR compliance indications, supporting privacy adherence. Overall, the website is professional, secure, and business-focused with room for enhanced transparency and security documentation.

V

virtual-zoom

vip-tickets.cz

41

virtual-concierge.cz is a small hospitality service provider specializing in luxury event experiences in Prague, offering private lounges, ticket ordering, and catering services for concerts, sports, and cultural events. The website is professionally designed with good content quality and clear navigation, targeting affluent customers seeking exclusive event access. Technically, the site uses a legacy jQuery version alongside modern analytics and marketing tools, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA but lacks modern security headers and uses outdated libraries, posing some risk. Privacy compliance is minimal with no visible privacy or terms policies, though cookie consent is implemented. The absence of WHOIS data limits domain legitimacy verification, but contact details and social media presence support business credibility. Overall, the site is functional and trustworthy but would benefit from technical and compliance improvements.

V

virtual-zoom

virtual-tickets.cz

41

virtual-concierge.cz is a luxury experiential service provider based in Prague offering exclusive event packages including private lounges, catering, and ticket ordering for cultural and sports events. The website presents a professional image targeting affluent customers seeking premium experiences. Technically, the site uses a legacy JavaScript stack with jQuery 2.1.3 and integrates Google Analytics, Tag Manager, and reCAPTCHA for tracking and security. While HTTPS is enforced, the absence of modern security headers and outdated libraries present moderate security risks. The lack of WHOIS data transparency and missing privacy and terms policies reduce trust and compliance posture. Overall, the site is functional and professional but requires updates to improve security and privacy compliance.

S

Student Agency k.s.

kralovna.cz

61

Královna.cz is an online travel agency operated by Student Agency k.s., specializing in offering the cheapest airline tickets worldwide along with complementary travel services such as accommodation, car rental, travel insurance, and visa assistance. The website targets travelers seeking affordable and convenient travel booking options, positioning itself as a competitive player in the transportation sector within the Czech Republic. The platform provides a user-friendly interface with clear navigation and a professional design, supporting multiple airlines and travel options.

Z

Ziviltechnikerkammer für Steiermark und Kärnten

ztkammer.at

57

The Ziviltechnikerkammer für Steiermark und Kärnten is a regional professional chamber representing civil engineers and architects in the Austrian regions of Styria and Carinthia. The website serves as an authoritative platform providing member services, professional regulation, architecture competitions, consulting on procurement, and public information. The site is well-structured and uses modern web technologies such as TYPO3 CMS and Bootstrap, ensuring good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though the absence of a published privacy policy and terms of service pages indicates room for compliance improvement. No contact emails or phone numbers were explicitly found in the provided content, which may affect user trust and accessibility. Overall, the website reflects a professional government-related entity with a good market position in its sector.

A

Amt der Kärntner Landesregierung, Abteilung 14 - Kunst und Kultur

kulturchannel.at

56

Kulturchannel.at is the official cultural portal of the Carinthian regional government in Austria, providing comprehensive information on arts, culture, funding opportunities, events, and cultural news. The platform targets artists, cultural institutions, event organizers, and culture enthusiasts within the Kärnten region. It serves as a government-backed resource to promote and support cultural activities and policies. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as jQuery, Foundation, and Slick Carousel, ensuring a responsive and user-friendly experience. The site integrates Google Analytics and Facebook SDK for analytics and social media engagement. Security posture is solid with HTTPS enforced, though security headers are not explicitly detected and could be improved. Privacy compliance is addressed with a cookie consent banner and a privacy policy in German, aligned with GDPR requirements. Business credibility is high due to official government ownership and clear contact information. Overall, the website is professional, trustworthy, and well-positioned as a regional cultural information hub.

Chata internet marketing s.r.o. operates www.mojeregio.cz, a Czech Republic-based online platform specializing in the presentation and mediation of accommodation such as cottages, chalets, recreational houses, and apartments. The company targets accommodation providers and customers seeking lodging, offering a commission-based business model with free listings and paid commissions on bookings. The platform boasts over 1,000 cooperating providers and attracts approximately 1.4 million unique visitors annually, supported by multiple web portals and marketing channels. Key services include a modern reservation system, client support center, internet marketing, and professional photography services. The website is professionally designed with consistent branding and good content quality, supporting a positive market position in the hospitality sector.

P

proHolz Steiermark

holzmachtschule.at

53

Holz macht Schule is an educational initiative operated by proHolz Steiermark, focusing on promoting awareness and knowledge about wood, forests, sustainability, and climate protection primarily targeting kindergartens, schools, and families in Styria, Austria. The website offers a variety of learning materials, workshops, digital media education, and rental materials to support environmental education. Technically, the site is built on TYPO3 CMS and uses several JavaScript libraries such as jQuery and FlipClock.js, providing a moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and secure cookie settings, but lacks explicit security headers and updated libraries. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is trustworthy, professionally branded, and aligned with its regional educational mission.

K

Kammer der ZiviltechnikerInnen | ArchitektInnen und IngenieurInnen Oberösterreich und Salzburg

arching-zt.at

51

The website represents the official chamber for civil engineers, architects, and engineers in the Austrian regions of Upper Austria and Salzburg. It serves as a comprehensive portal offering news, events, competitions, professional resources, and member services tailored to professionals in these fields. The site targets chamber members, professionals, students, and stakeholders in the architecture and engineering sectors. Technically, the site is built on TYPO3 CMS and employs a range of JavaScript libraries such as jQuery, Bootstrap, and DataTables to provide a functional and interactive user experience. The design is professional and consistent with the chamber's branding, though mobile optimization is basic. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the site is trustworthy and compliant with GDPR, providing a solid digital presence for the chamber.

R

Rīgas satiksme

rigassatiksme.lv

47

Rīgas satiksme is the primary public transportation provider in Riga, Latvia, offering comprehensive services including trams, trolleybuses, buses, and night transport. The website serves as an information hub for route schedules, ticketing, parking, and company news, targeting residents and visitors of Riga. The business operates under municipal partnership, positioning itself as a key player in the city's transportation infrastructure. Technically, the website employs a traditional tech stack with jQuery and related libraries, hosted partially on Cloudfront. The site is moderately optimized for performance and mobile use, with basic accessibility features and good SEO practices. The content is well-structured and professionally presented, supporting a positive user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, but lacks visible advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a cookie policy and GDPR-aligned consent, though a dedicated privacy policy page is basic. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy, functional, and aligned with its public service mission. Strategic improvements in security headers, incident response transparency, and enhanced mobile optimization could further strengthen its posture.

P

proHolz Steiermark

proholz-stmk.at

54

proHolz Steiermark is a regional association serving as the authoritative voice for forestry and wood industry in Styria, Austria. The organization focuses on public relations, education, consulting, and promotion of sustainable wood use. Their website is well-structured, content-rich, and targets professionals, educators, municipalities, and the general public interested in wood and forestry. Technically, the site is built on TYPO3 CMS with a moderate tech stack including jQuery and various UI libraries, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. Overall, the domain registration aligns with the business claims, indicating legitimacy and trustworthiness.

The website www.nikonimgsupport.com serves as a worldwide support network portal for Nikon imaging products, providing regional support links and resources. It is branded consistently with Nikon Corporation, a global leader in imaging technology. The site targets Nikon product users globally, offering customer support and product information through localized portals. Technically, the site uses common JavaScript libraries such as jQuery and jQuery UI, with moderate performance and basic mobile optimization. Security posture is moderate with no visible security headers and unknown SSL configuration, and privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. The WHOIS data for the domain is unavailable, which raises some concerns about domain registration legitimacy, but the website content and branding strongly suggest it is an official Nikon support site. Overall, the site is professional and trustworthy but could improve in security and privacy compliance.

netzwerker Computernetze GmbH is a German IT service provider specializing in network infrastructure, cybersecurity, cloud, and internet services primarily serving the Stuttgart and Hamburg metropolitan regions. The company positions itself as a trusted IT partner with over 20 years of experience, focusing on comprehensive IT solutions and system support. The website reflects a professional and business-oriented approach with clear service offerings and regional targeting. Technically, the website is built on the Contao Open Source CMS platform, utilizing jQuery and jQuery UI libraries. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation. However, there is room for improvement in SEO and accessibility features. No advanced frameworks or platforms beyond the CMS and JavaScript libraries were detected. From a security perspective, the site uses HTTPS (implied by base href https://), but no explicit security headers were detected in the provided data. There is no visible cookie consent mechanism or detailed security policy, which may impact GDPR compliance. No forms or data collection points were found on the homepage, reducing immediate risk exposure. The WHOIS data is minimal but consistent with the domain's purpose, though domain age and registrant details are limited. Overall, the website is safe, professional, and trustworthy but could benefit from enhanced security practices, privacy compliance improvements, and more transparent contact information to strengthen business credibility and user trust.

M

Magyar Suzuki Corporation Ltd. branch office Czech Republic, organizační složka

suzuki.cz

57

Magyar Suzuki Corporation Ltd. branch office Czech Republic operates as the official regional representation of Suzuki Motor Corporation, focusing on the sale and servicing of Suzuki automobiles and motorcycles within the Czech market. The website serves as an information portal for current vehicle offerings, dealer networks, after-sales services, and owner events, targeting consumers and Suzuki enthusiasts in the region. The business model centers on automotive retail and customer support, leveraging the global Suzuki brand to maintain a strong market presence in transportation. Technically, the website is built on legacy ASP.NET WebForms technology, enhanced with modern JavaScript libraries and tracking tools. It is mobile-optimized and provides a good user experience with clear navigation and professional design. However, the absence of WHOIS data and lack of explicit privacy and terms of service pages present compliance and trust challenges. Security posture is moderate, with cookie consent implemented but missing security headers and no visible incident response contacts. Overall, the site is functional and trustworthy from a branding perspective but would benefit from improved transparency and security hardening.

The website represents a health questionnaire service for blood donors operated by Veripalvelu, the Finnish Blood Service. It facilitates donor suitability assessment to ensure safety for both donors and recipients. The site is targeted at blood donors in Finland and provides multilingual support with Swedish as the default language. The business operates in the healthcare sector as a public health service provider with a medium organizational size and a national market position. Technically, the website uses a custom form system built on jQuery, jQuery UI, Bootstrap, and other JavaScript libraries. It is mobile-optimized and accessible, with moderate performance. The site enforces HTTPS and uses anti-CSRF tokens in forms, but lacks explicit security headers. No cookies or tracking scripts are present, indicating a privacy-conscious design. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, input validation, and no visible sensitive data exposure. However, it lacks published security policies, incident response contacts, and vulnerability disclosure information. The WHOIS data aligns well with the website's identity, supporting legitimacy and trustworthiness. Overall, the website is professional, secure, and privacy-aware, serving a critical public health function. Recommendations include adding security headers, publishing security and incident response policies, and implementing cookie consent if cookies are introduced in the future.

P

Paul Bauder Sverige AB

bauder-tak.se

38

Paul Bauder Sverige AB operates as a leading European manufacturer of roofing systems, specializing in low-slope roofs, green roofs, steep roofs, roof planting, and solar technology integration. The company emphasizes sustainable production and offers comprehensive roofing solutions including sealing, insulation, and energy production. Their market position is strong in Sweden and Europe, supported by a legacy of over 160 years and a parent company based in Germany. The website is professionally designed, content-rich, and targets professionals in construction, architecture, and private builders. Technically, the site runs on TYPO3 CMS with modern JavaScript libraries and integrates GDPR-compliant consent management. Security posture is solid with HTTPS and form validation, though security headers could be improved. WHOIS data for the exact domain queried is missing, which slightly reduces trust but the overall business credibility remains high due to consistent branding and external references.

P

Paul Bauder GmbH & Co. KG

bauder.rs

41

Bauder d.o.o. Serbia is a subsidiary of Paul Bauder GmbH & Co. KG, a leading European manufacturer specializing in roofing systems including flat, green, and pitched roofs. The company targets construction professionals and building owners in Serbia and the broader European market, offering comprehensive roofing solutions and technical support. The website reflects a professional business presence with detailed product information and local contact points, supporting its market position as a regional leader. Technically, the website is built on TYPO3 CMS with legacy jQuery and modern consent management via Usercentrics. While the site performs moderately well and is mobile optimized, some technical modernization opportunities exist, particularly updating JavaScript libraries and enhancing accessibility features. SEO and content quality are good, supporting effective user engagement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website presents a trustworthy and professional digital presence with moderate technical maturity and good privacy compliance. Strategic improvements in security headers and technical updates would enhance its posture further.