Security Directory

S

Svět neziskovek, z.ú.

grantovydiar.cz

46

Grantový diář is a Czech Republic-based subscription service focused on providing non-profit organizations with a comprehensive and up-to-date listing of grant opportunities. The website serves as a centralized platform for fundraisers and non-profit managers to find relevant funding calls, with over 1000 grants tracked annually. The business operates under the parent foundation Nadace Neziskovky.cz and has been active since 2014, establishing a credible presence in the Czech non-profit sector. The service offers personalized notifications, advertising options, and a user-friendly online tool to simplify grant searching and management. Technically, the website employs modern JavaScript frameworks, likely Vue.js, and integrates analytics and marketing tools such as Google Analytics and Facebook Pixel. Hosting is provided by a reputable Czech registrar and hosting provider, Active24. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses secure forms with validation. However, it lacks explicit security headers and does not publicly disclose a security policy or incident response contacts. Privacy compliance is partial, with a cookie consent banner present but no dedicated privacy policy or terms of service pages found. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a trustworthy and professional service for its target audience, with room for improvement in privacy and security transparency. Strategic recommendations include publishing privacy and terms documents, enhancing security headers, and formalizing incident response communications to strengthen compliance and trust.

B

Biograf Kotva

biografkotva.cz

43

Biograf Kotva operates as a local cinema in the Czech Republic, providing a comprehensive film program, online ticket sales, and additional services such as a cafe and venue rental. The website is professionally designed with clear navigation and a focus on cultural and family-friendly content. Technically, the site uses modern JavaScript libraries and asynchronous loading to enhance performance and user experience. However, the absence of privacy and cookie policies indicates potential compliance gaps with GDPR and related regulations. Security posture is generally good with HTTPS and some security best practices, but could be improved by adding security headers and formal policies. The lack of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which impacts overall trustworthiness. Strategic improvements in privacy compliance and domain registration transparency are recommended to enhance business credibility and user trust.

T

Thailand Convention & Exhibition Bureau (TCEB)

businesseventsthailand.com

59

The Thailand Convention and Exhibition Bureau (TCEB) operates as the premier government agency responsible for organizing and promoting MICE (Meetings, Incentives, Conventions, and Exhibitions) activities in Thailand. The website showcases a comprehensive event calendar, detailed service offerings, and extensive information about the bureau's governance and operational structure. It targets event organizers, corporate clients, and government entities seeking MICE solutions in Thailand. The bureau positions itself as a key player in the regional MICE industry with a strong government affiliation and multiple regional offices. Technically, the website employs modern web technologies including Bootstrap, jQuery UI, Slick Carousel, and Select2 for enhanced user experience and interactivity. It integrates multiple analytics platforms such as Google Analytics and Matomo, and uses Facebook SDK for social engagement. The site is mobile-optimized and features a cookie consent mechanism, indicating awareness of privacy compliance requirements. However, explicit security headers are not detected, and no terms of service or incident response policies are publicly available. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks visible advanced security headers and explicit incident response information. The absence of WHOIS data for the domain reduces trust signals, although the website content and branding strongly suggest legitimacy as a government entity. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the site demonstrates a mature digital presence with room for improvement in security transparency and WHOIS data availability. The overall risk assessment is moderate to low, with recommendations to enhance security headers, publish incident response and security policies, and verify domain registration details to improve trustworthiness and compliance posture.

D

DeliBarry Inc.

delibarry.com

40

DeliBarry Inc. operates a parcel delivery service focused on fast, reliable shipping within the U.S., Europe, and worldwide. The company targets both general consumers and businesses requiring efficient courier services. Their business model leverages online ordering, courier partnerships, and package tracking to provide a seamless shipping experience. The website presents a professional and user-friendly interface with good mobile optimization and clear service descriptions. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Technically, the site uses modern web technologies and tracking tools but lacks visible privacy and cookie policies, which impacts compliance. Security posture is generally good with HTTPS and secure forms, but missing security headers and incident response information are gaps. Overall, the business appears operational and credible but would benefit from improved transparency and compliance documentation.

V

VIDIA-DESIGN s.r.o.

zijushandicapem.cz

43

Žiju s handicapem is a Czech Republic-based non-profit portal dedicated to supporting people with disabilities (OZP) by providing informational articles, job offers, community blogs, and sponsorship opportunities. The website is operated by VIDIA-DESIGN s.r.o., which appears as the author and creator of the site. The portal targets disabled individuals and their families, aiming to improve quality of life and social inclusion through content and community engagement. Technically, the website uses a modern JavaScript stack including jQuery, Modernizr, and NetteForms, with integration of Google Tag Manager and Facebook SDK for analytics and social media. The site is served over HTTPS and includes a cookie consent mechanism compliant with GDPR principles, offering granular cookie control in multiple languages. However, the site lacks advanced security headers such as CSP and HSTS, which could improve security posture. Security-wise, the site shows basic good practices like HTTPS and secure login forms but misses important headers and explicit privacy and terms of service pages. The WHOIS data for the domain is missing, which reduces transparency and trustworthiness from a domain registration perspective. Despite this, the site links to reputable partners and sponsors, and no suspicious or adult content is present. Overall, the site is a well-structured, content-rich portal serving a niche community with moderate technical maturity and security posture. Strategic improvements in security headers, privacy policy publication, and domain registration transparency would enhance trust and compliance.

1

Galerie 100 dřevostaveb, které se vám líbí

100drevostaveb.cz

43

The website www.100drevostaveb.cz serves as an interactive catalog showcasing wooden houses favored by Czech users. It allows visitors to view various wooden house projects, vote on them, and engage with the content via social media plugins. The business model revolves around community engagement and providing inspiration for wooden house construction enthusiasts in the Czech Republic. The site targets a general audience interested in architecture and wooden homes. Technically, the site employs a range of JavaScript libraries including jQuery, Facebook SDK, Google Analytics, and advertising scripts from Google Adsense and Gemius. The site is served over HTTPS with no visible SSL issues, but lacks advanced security headers and formal privacy or cookie policies. No WHOIS data is available, which reduces trustworthiness from a domain registration perspective. Overall, the site is functional, moderately optimized for mobile, and provides a good user experience, but would benefit from improved privacy compliance and security transparency.

H

Hithit s.r.o.

hithit.com

59

Hithit s.r.o. operates a Czech crowdfunding platform that connects creative individuals such as artists, designers, developers, and sportspeople with their supporters. The platform facilitates reward-based crowdfunding campaigns, enabling project creators to raise funds and offer exclusive rewards to backers. Established since 2012, Hithit holds a solid position in the Czech market with a medium-sized business footprint and a consistent brand presence. Technically, the website leverages modern JavaScript libraries and integrates multiple third-party services including Google Analytics, Facebook SDK, and Twitter widgets. Hosting is supported by Amazon CloudFront CDN, ensuring moderate performance and good mobile optimization. The site implements cookie consent mechanisms and uses HTTPS, but lacks some advanced security headers and explicit security policies. From a security perspective, the platform enforces HTTPS and cookie consent but does not publish a dedicated security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data reduces trust slightly, but the overall business credibility remains high based on website content and contact transparency. Overall, Hithit presents a professional and trustworthy crowdfunding service with room for improvement in security policy transparency and WHOIS data availability. Strategic enhancements in security headers and incident response disclosures would strengthen its security posture and user trust.

O

Opel

opel.cz

63

The website www.opel.cz serves as the official Czech Republic portal for Opel, a well-known automotive brand under the Stellantis group. It provides comprehensive information about Opel's passenger and commercial vehicles, including models like Insignia, Astra, and Corsa. The site offers tools such as vehicle configurators, test drive bookings, and service appointment scheduling, targeting Czech consumers interested in purchasing or servicing Opel vehicles. The website is professionally designed, mobile-optimized, and uses modern web technologies including Adobe Experience Manager and advanced analytics platforms.

I

Informační centrum ČKAIT, s. r. o.

ic-ckait.cz

47

Informační centrum ČKAIT, s. r. o. operates as an information and educational service provider primarily serving professionals in the construction and engineering sectors within the Czech Republic. The website offers event information, seminars, conferences, and publishes professional materials, positioning itself as a regional knowledge hub affiliated with ČKAIT. The business model revolves around educational services, information dissemination, and e-commerce for professional publications. Technically, the website is built on the Joomla CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and Facebook SDK for social media integration. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO optimizations are basic. The presence of secure HTTPS indicates a baseline security posture, but the absence of security headers and privacy policies suggests room for improvement in security and compliance. From a security perspective, the site shows no signs of blocking or WAF interference, and no critical vulnerabilities were detected in the provided data. However, the lack of WHOIS information reduces domain registration transparency and trustworthiness. The site does not provide explicit privacy or cookie policies, which is a compliance gap under GDPR. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional and trustworthy in content and presentation but would benefit from enhanced security headers, privacy compliance documentation, and improved domain registration transparency to strengthen its security posture and user trust.

A

ALKODRINK-CB, s.r.o.

alkodrink.cz

45

AlkoDrink is a small Czech Republic-based beverage wholesaler and retailer specializing in alcoholic and non-alcoholic drinks, including draft beer, rum, whisky, and other spirits. The company also provides technical services related to beverage dispensing and produces dispensing gases under the DrinkGas brand. The website targets local Czech customers, including gastro businesses and private event organizers. The business maintains a moderate market position with a focus on quality product selection and service. Technically, the website uses a modern JavaScript stack with libraries such as jQuery, Slick Carousel, and Google Analytics for tracking. The site is mobile-optimized and includes a cookie consent mechanism, indicating basic privacy compliance. Security posture is adequate with HTTPS and reCAPTCHA on forms, but lacks advanced security headers and formal security policies. WHOIS data is missing, which reduces domain trustworthiness, but the website content and contact information appear legitimate. Overall, the site is functional, professional, and serves its business purpose well.

S

Sdružení české filmové kritiky, z.s.

filmovakritika.cz

44

The website filmovakritika.cz represents the Sdružení české filmové kritiky, a Czech non-profit organization dedicated to film criticism, awards, and cultural promotion within the Czech film industry. It serves a niche audience of film critics, cinephiles, and industry professionals by providing reviews, award information, premieres, and critic profiles. The site is well-structured, primarily in Czech, and demonstrates consistent branding and good content quality. The domain is well-established since 2010, supporting the organization's credibility. Technically, the site is built on WordPress using the Elementor page builder, with modern JavaScript libraries such as Swiper.js and jQuery. It integrates Google Analytics and Facebook SDK for user tracking and marketing purposes. The site is mobile-optimized and has good SEO practices but lacks some accessibility features. Performance is moderate, with no critical errors detected. From a security perspective, the site uses HTTPS but lacks visible security headers and formal security policies. No forms collect sensitive user data except a basic search form. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. External links include many gambling-related domains embedded in hidden elements, which may be unrelated or potentially spammy, warranting further review. Overall, the website is a legitimate cultural media platform with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and vulnerability disclosure would enhance trust and regulatory adherence.

P

Peugeot Česká republika

peugeot.cz

64

Peugeot Česká republika operates an official website offering a full range of Peugeot vehicles, including electric and hybrid models, with services such as vehicle configuration, test drives, financing, and after-sales support. The site targets B2C customers in the Czech Republic and reflects a strong market position as part of the Stellantis group. Technically, the website uses Adobe Experience Manager CMS, integrates modern analytics and marketing tools, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though explicit security policy and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and compliant with GDPR, though WHOIS data is unavailable likely due to registry policies rather than privacy protection.

A

Agglomération de Cergy-Pontoise

cergypontoise.fr

49

The Agglomération de Cergy-Pontoise website serves as the official digital presence for the local government authority managing 13 communes in the Cergy-Pontoise region of France. It provides comprehensive information on urban planning, public services, cultural activities, waste management, transportation, and social programs. The site targets residents, local businesses, and visitors, offering accessible resources and contact points for community engagement. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager and Facebook SDK for analytics and social integration. The site is mobile-optimized, accessible, and structured with clear navigation, reflecting a mature digital infrastructure suitable for a public sector entity. From a security perspective, the site enforces HTTPS and uses trusted third-party scripts. While explicit security headers are not fully confirmed, no vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are implemented with GDPR compliance, though no dedicated security policy or incident response contacts were found. Overall, the domain and website present a legitimate, trustworthy public sector resource with good content quality and technical implementation. The lack of WHOIS data is consistent with AFNIC privacy norms and does not detract from the site's credibility. Strategic improvements could include enhanced security headers and explicit incident response information.

Č

Český svaz kanoistů, z.s.

kanoe.cz

51

Kanoe.cz is the official Czech canoeing sports portal operated by Český svaz kanoistů, z.s., providing comprehensive news, event information, and resources for canoeing disciplines such as slalom, rafting, and paddleboarding. The website serves a targeted audience of athletes, coaches, and enthusiasts within the Czech Republic, positioning itself as a leading source of information in the national canoeing sports community. Technically, the site is built on Joomla CMS with a modern tech stack including jQuery, Mootools, Bootstrap, and UIkit, supported by Google Tag Manager and Facebook SDK for analytics and marketing. The site is hosted by Czechia.com and employs HTTPS with reCAPTCHA for form security. Privacy compliance is strong with a detailed GDPR policy and cookie consent mechanism. However, WHOIS data is unavailable due to CZ domain registry policies, which is common and does not detract from the site's legitimacy. Security posture is good but could be improved by adding security headers and publishing incident response policies. Overall, Kanoe.cz is a professional, trustworthy, and well-maintained portal serving the Czech canoeing community effectively.

R

Raft.cz

raft.cz

48

Raft.cz is a specialized Czech water sports guide website providing comprehensive information about rivers, current water conditions, rental services, and community-driven content such as articles and forums. It targets water sports enthusiasts including canoeists, kayakers, and rafters primarily in the Czech Republic and neighboring European countries. The website operates as an informational portal with advertising and community features, maintaining a consistent brand presence and active user engagement. Technically, the site is built on ASP.NET Web Forms with integration of common analytics and advertising technologies such as Google Analytics, Facebook SDK, and DoubleClick. Mobile optimization and accessibility are basic but functional. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and explicit privacy policies are lacking. WHOIS data is unavailable, which limits domain trust assessment, but the website content and external references suggest legitimacy. Overall, the site scores well in content quality and business credibility but could improve in privacy compliance and technical modernization.

The website rekasazava.cz represents Posázaví o.p.s., a small non-profit organization based in the Czech Republic focused on environmental protection and recreational activities related to the Sázava river. The site provides navigation information, weather updates, project news, and multimedia content supporting community engagement and volunteerism. The organization appears to be well-established since 2017 with a clear mission and target audience of water sports enthusiasts and local communities. Technically, the website uses an older CMS (Apollo 8G) and relies on legacy JavaScript libraries such as jQuery 2.1.4 and Flash content, which pose security and compatibility risks. The hosting is provided by cesky-hosting.eu, and the site integrates Google Analytics and Facebook SDK for tracking, but lacks visible privacy or cookie policies and consent mechanisms, indicating compliance gaps with GDPR and modern privacy standards. From a security perspective, the site uses HTTPS for external resources but lacks visible security headers and uses outdated libraries, increasing vulnerability exposure. No sensitive data leakage was detected, but the absence of security policies and incident response contacts limits the security maturity. The domain WHOIS data is consistent and legitimate, supporting trust in the organization. Overall, the website is functional and informative but requires modernization of its technical stack, implementation of privacy and security policies, and improved compliance to enhance trust and security posture.

Čistá řeka Sázava is a Czech non-profit organization dedicated to environmental volunteerism, specifically focused on cleaning and preserving the Sázava river. The website serves as a community hub for volunteers and supporters, providing news, event information, and multimedia content such as videos and social media integration. The organization has an established presence with over 20 years of activity, supported by a registered legal entity Posázaví o.p.s. The site targets local communities and environmental activists, promoting engagement and awareness through events and media campaigns. Technically, the website uses legacy JavaScript libraries and includes deprecated Flash content, indicating a need for modernization. The site integrates Google Analytics and Facebook SDK for tracking but lacks explicit privacy and cookie policies, which is a compliance concern. Security posture is moderate with no visible advanced security headers and outdated libraries that may pose vulnerabilities. Overall, the website is functional and moderately professional but requires updates to improve security, privacy compliance, and technical modernization.

D

Design ATAK s.r.o.

designatak.cz

52

Design ATAK s.r.o. is a Czech-based design studio specializing in interior, product, and graphic design services. They cater to both private and commercial clients across the Czech Republic and the EU, offering creative and functional design solutions including 3D visualizations. The company presents a professional and well-structured website with comprehensive service descriptions, client testimonials, and clear contact information, positioning itself as a trusted regional design provider. Technically, the website is built on ASP.NET WebForms with Kentico CMS, leveraging modern analytics and marketing tools such as Google Tag Manager, Facebook SDK, and Microsoft Clarity. Security posture is solid with HTTPS, CSRF protection, and no visible vulnerabilities, though some security headers and explicit policies could be improved. The absence of WHOIS data is a transparency concern but does not detract significantly from the overall legitimacy given the professional web presence. Privacy compliance is good with a clear privacy policy and cookie consent mechanism. Overall, the website scores well in content quality, technical implementation, security, privacy, and business credibility.

P

protea.cz

protea.cz

59

Protea.cz operates as a specialized reseller and support provider for BricsCAD software, a competitive alternative to mainstream 2D and 3D CAD programs. The company targets professionals such as architects, engineers, and designers primarily in the Czech Republic, offering various BricsCAD licenses and related services. Their market position is that of a leading local distributor with a focus on quality service and localized support. Technically, the website is built on the Shoptet e-commerce platform, leveraging modern web technologies including Bootstrap and jQuery, and integrates standard analytics and marketing tools with user consent mechanisms. Security posture is solid with HTTPS enforcement and CSRF protections, though additional security headers could enhance defenses. The absence of WHOIS data is a notable concern but is offset by the professional presentation and clear contact information. Overall, the site demonstrates a mature digital presence suitable for its business model.

L

Lamael

lamael.cz

46

Lamael.cz is a business-focused website representing Lamael, a company founded in 2017 that offers a mobile application for business management. The website targets business users seeking efficient management tools, positioning itself as a niche player in the technology sector within the Czech Republic. The site is built on WordPress using the Thrive Theme and incorporates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity, indicating a mature digital marketing strategy. Security measures include HTTPS and reCAPTCHA, but lack explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the website is professional and well-branded, though it could improve transparency and security posture.

Bohemiasoft s.r.o. operates a Czech-language website offering a suite of integrated online business tools tailored for small and medium entrepreneurs. Their services include online invoicing, email hosting on custom domains, e-commerce solutions, website creation, and digital office integration, positioning them as a comprehensive SaaS provider in the Czech market. The website is professionally designed with clear navigation and good content relevance, targeting entrepreneurs seeking centralized business management solutions. Technically, the site is built on WordPress with modern JavaScript libraries and includes analytics and social media integrations, reflecting a moderate level of digital maturity. Security posture is adequate but could be improved by implementing additional security headers and anti-spam measures on forms. Privacy and terms of service documents are provided, indicating a commitment to compliance, though cookie consent mechanisms are lacking. Overall, the domain registration is consistent with the business claims, showing a long-standing presence since 2008. Strategic recommendations include enhancing security headers, adding bot protection, and improving privacy compliance mechanisms to strengthen trust and security.

C

Coweo Technologies s.r.o.

tvpisek.cz

72

Coweo Technologies s.r.o. operates JenPráce.cz, the second largest job and gig advertisement portal in the Czech Republic, serving job seekers and employers with a comprehensive platform for job listings, HR advertising services, and career advice. The company has a solid market position with experience dating back to 2007 and maintains a professional online presence with consistent branding and quality content. The website is well-structured, mobile-optimized, and integrates modern tracking and analytics technologies such as Google Tag Manager, Facebook SDK, and Sentry for error monitoring. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms in place. Security posture is strong with HTTPS enforced and use of security best practices, although explicit security headers could be improved. The absence of WHOIS data reduces domain transparency and trust slightly, but overall business credibility remains high based on available information and certifications like ISO 27001.

N

Netpromotion

muzeum-st.cz

45

Muzeum středního Pootaví Strakonice is a regional cultural institution operating under the South Bohemian Region of the Czech Republic. It manages historical exhibitions primarily located in the Strakonice castle complex and the unique water mill in Hoslovice. The museum offers a variety of cultural and educational services including exhibitions, lectures, virtual tours, and special events. The institution benefits from EU funding and government support, positioning it as a key cultural heritage site in the region. The website reflects a professional and consistent brand image with clear navigation and relevant content for tourists, educators, and the general public. Technically, the website is built on WordPress using Elementor and several Jet plugins, integrating modern web technologies such as Google Tag Manager, Facebook SDK, and YouTube API. The site is mobile optimized and includes SEO best practices. Security measures include HTTPS, reCAPTCHA, and cookie consent mechanisms, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The security posture is solid with good privacy compliance, including a comprehensive GDPR policy and cookie consent. However, the site lacks explicit security policies and incident response contacts. Analytics and tracking are moderate, using Google Analytics and Facebook Pixel, with appropriate privacy notices. Overall, the website is trustworthy, well-maintained, and suitable for its audience. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and compliance.

G

G-Notes / Tiskárna GRASPO

gnotes.cz

55

G-Notes, operated by Tiskárna GRASPO, is a Czech-based manufacturer and retailer specializing in diaries, notebooks, and calendars with a strong emphasis on eco-friendly materials and custom printing services. The company targets both corporate clients and individual consumers, offering bespoke branding options and a wide product range accessible via their e-commerce platform. Their market position is that of a niche, quality-focused stationery provider with a commitment to sustainability. Technically, the website is built on the Shoptet e-commerce platform, utilizing common web technologies such as jQuery, Bootstrap, and Google Analytics, ensuring a modern and responsive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site presents a professional and trustworthy front, though the lack of WHOIS transparency slightly reduces domain trust. Strategic recommendations include enhancing security headers, updating legacy libraries, and publishing explicit security policies to further strengthen trust and compliance.

I

IKAR

kniznykompas.sk

44

The website podcast.kniznykompas.sk is a media platform dedicated to podcasts about books and reading, operated by IKAR, the largest Slovak publishing and book distribution company. It offers literary content including book tips, interviews, bestseller rankings, and contests, targeting book readers and podcast listeners. The site integrates with multiple popular podcast platforms, enhancing accessibility and reach. Technically, the site uses a modern tech stack including Google Analytics, Facebook SDK, Adform tracking, and the Yii PHP framework, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and CSRF tokens but lacks important security headers and a published security policy. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

Z

Knižnica | ziveknihy.sk

ziveknihy.sk

47

The website ziveknihy.sk serves as a Slovak digital literary platform offering book excerpts, audiobooks, author readings, and related multimedia content. It targets Slovak-speaking readers interested in literary content and provides free access to a broad range of books and audiobooks. The business model appears to rely on advertising and partnerships, with a niche market position in Slovakia. Technically, the site is built on Drupal 7 with Bootstrap 3 for responsive design, integrating common web technologies such as jQuery and Google Analytics for tracking. The site demonstrates moderate digital maturity with good mobile optimization and basic SEO. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks advanced security headers and cookie consent mechanisms. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy and professionally presented but could improve privacy compliance and security hardening.

K

Knihomola

knihomola.sk

44

Knihomola.sk is a Slovak-based online platform dedicated to aggregating quality book reviews from Slovak and Czech bloggers, readers, and reviewers. Established in 2017, it serves a niche audience passionate about literature, offering book discovery, blog hosting, and a widget for embedding book reviews. The website maintains a consistent brand presence and targets readers seeking curated literary content. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Owl Carousel, Google Analytics, and Facebook SDK, hosted on Webglobe servers. The site is mobile-optimized with good SEO practices and moderate performance. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks advanced security headers and published security policies. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms domain legitimacy and consistency. Overall, the site is professional, trustworthy, and well-positioned within its niche.

B

Bohemiasoft s.r.o.

mepodnikani.cz

51

MéPodnikání.cz is an established Czech online magazine operated by Bohemiasoft s.r.o., providing valuable business information, software recommendations, and marketing insights primarily for entrepreneurs and e-commerce operators. The website leverages WordPress CMS with a modern theme and integrates popular analytics and social media SDKs, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and formal privacy/cookie policies, indicating room for compliance improvement. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, the site serves as a trusted resource within its niche but should enhance privacy and security practices to align with best standards.

Noem Arch is a small hospitality business based in Brno, Czech Republic, offering hotel accommodation, restaurant dining, and conference facilities. The website is built on TYPO3 CMS and integrates common marketing and analytics tools such as Google Tag Manager and Facebook SDK. The site includes cookie consent and privacy policies, indicating awareness of GDPR compliance. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. The website is professionally designed with good navigation and content quality, targeting general audiences interested in hospitality services. Security posture is moderate with room for improvement, particularly in implementing security headers and publishing explicit security policies.

L

Lamael

lamael.com

49

Lamael is a small technology company offering a simple and visually appealing CRM platform designed to help businesses manage projects, tasks, and contacts efficiently. The website is professionally designed using WordPress and integrates multiple marketing and analytics tools, indicating a moderate level of digital maturity. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and external linked domains suggest an active and legitimate business. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal vulnerability disclosure mechanisms. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website presents a functional and user-friendly CRM service but would benefit from improved security and compliance practices.

H

HCA Czechia

hcaczechia.cz

58

HCA Czechia is a business education provider specializing in seminars, courses, and consulting services focused on sales, management, marketing, and communication. The company targets business owners and managers seeking practical know-how to grow and improve their businesses. The website is professionally designed using WordPress with modern plugins and integrates multiple analytics and marketing tools. Security posture is adequate with HTTPS enabled, but lacks some security headers and privacy compliance mechanisms. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and functional, serving a niche education market in the Czech Republic.

S

Slavia pojišťovna a.s.

2coffee.cz

49

2coffee is a modern insurance product offered by Slavia pojišťovna a.s., a well-established Czech insurance company. The website promotes affordable insurance coverage for personal belongings and liability, with additional optional coverage and assistance services. The business model is subscription-based with monthly payments, targeting individuals seeking simple and accessible insurance solutions. The site is professionally designed, mobile optimized, and provides clear contact information and links to official insurance terms.

S

Svaz českých knihkupců a nakladatelů

nejlepsiknihydetem.cz

43

The website nejlepsiknihydetem.cz is operated by the Svaz českých knihkupců a nakladatelů, a Czech non-profit association focused on recommending contemporary Czech literature for children and youth. It serves as a catalog and resource for booksellers, libraries, schools, parents, and the general public interested in children's literature. The platform is well-positioned in the Czech educational and literary market as an authoritative source for children's books. Technically, the site uses common web technologies including Google Analytics and Facebook SDK for tracking, Google Fonts for typography, and a carousel library for product display. The site is mobile responsive and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks explicit security headers and a visible privacy policy page, which are areas for improvement. The absence of WHOIS data limits domain trust assessment, but the presence of official contact details and consistent branding supports legitimacy. Overall, the site is safe, professional, and focused on educational content for a general audience.

D

DigitalAd s.r.o.

digitalad.cz

58

DigitalAd s.r.o. is a Czech-based digital marketing agency specializing in programmatic advertising, RTB, and multi-channel marketing including TV and radio. Founded in 2017, the company offers a full-service approach to digital marketing targeting businesses seeking modern advertising solutions. Their website reflects a professional and consistent brand presence with clear service offerings and client references. Technically, the site is built on WordPress using the Astra theme, enhanced with common marketing and analytics tools such as Google Tag Manager and Facebook SDK. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website demonstrates a mature digital presence aligned with its business goals.

Úhlava o.p.s. is a Czech non-profit organization focused on lifelong education and regional development in the Plzeňský kraj region. The website serves as a portal for educational offerings, community events, and regional initiatives targeting a broad audience from children to seniors. The organization has a long-standing presence since 2001, reflected in the domain age and active content updates. Technically, the website uses standard web technologies including JavaScript libraries, Google Fonts, and social media SDKs, but lacks modern CMS or advanced frameworks. Security posture is moderate with no visible HTTPS or security headers in the provided data, and privacy compliance is weak due to missing privacy and cookie policies. The site integrates Google Analytics and DoubleClick for tracking and advertising, indicating moderate user tracking. Overall, the website is functional and professionally presented but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

M

Město Sušice

mestosusice.cz

49

Město Sušice operates as the official municipal government authority for the town of Sušice in the Czech Republic, providing a wide range of public services including urban planning, social services, public safety, and administrative support for citizens and local businesses. The website serves as a comprehensive portal for municipal information, official announcements, contact details, and access to various public resources. The site targets local residents and entrepreneurs, positioning itself as a trusted source of governmental information and services within the region. Technically, the website employs a traditional web stack with jQuery, Flexslider for image sliders, Font Awesome for icons, and integrates Google Analytics and Facebook SDK for analytics and social media engagement. The site includes cookie consent mechanisms that deny ad and analytics storage by default, reflecting a basic level of privacy compliance. The website is moderately optimized for mobile devices and accessibility, with clear navigation and structured content. From a security perspective, the site uses HTTPS and implements form validation and cookie consent, but lacks visible HTTP security headers and a published privacy policy or terms of service, which are important for compliance and trust. The absence of WHOIS data limits the ability to fully verify domain registration legitimacy, though the website content and external references strongly indicate a legitimate government entity. Overall, the site is functional, professional, and trustworthy for its intended audience, but could improve its security posture and privacy transparency to align with best practices and regulatory requirements.

H

HPI

hpi.cz

55

HPI-CZ is a leading Czech company specializing in the distribution and sale of building accessories, particularly for roofing and insulation systems. The company targets B2B customers in the construction sector, offering a wide range of products supported by technical advice and customer support. Their market position is strong within the Czech Republic, supported by a professional online presence including an online catalog and ordering system. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses standard web technologies such as jQuery and Font Awesome. The site is mobile optimized and includes SEO best practices. Security posture is good with HTTPS enforced and a Content-Security-Policy header, though additional headers could improve security further. Privacy compliance is well addressed with clear GDPR and cookie policies and consent mechanisms. The absence of WHOIS data is a concern for domain legitimacy verification, but the overall professional presentation and business information support the company's credibility. Recommendations include enhancing security headers and adding a vulnerability disclosure policy to improve trust and security culture.

N

N/A

videacesky.cz

48

Videacesky.cz is a Czech media platform specializing in curating and presenting YouTube videos with Czech subtitles, including talk shows, web series, documentaries, and educational content. The site targets Czech-speaking audiences interested in accessible video content with subtitles. Founded in 2010, it operates as a niche content aggregator monetized primarily through advertising. Technically, the website employs a traditional web stack with jQuery, Bootstrap, and integrates multiple advertising and analytics services such as Google AdSense, Facebook Pixel, and Gemius Analytics. The site is mobile-optimized and uses HTTPS, but relies on an outdated jQuery version and lacks visible security headers, indicating areas for improvement in security posture. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are publicly available. Overall, the website is functional, professionally designed, and trustworthy, but could enhance security and compliance transparency.

E

Novinky, zajímavosti a tipy ze světa seriálů a filmů | Edna.cz

edna.cz

48

Edna.cz is a Czech media website specializing in news, reviews, and information about TV series and films. It targets Czech-speaking fans of entertainment content, providing rich multimedia articles, user ratings, and interactive quizzes. The site leverages multiple advertising networks to monetize its content. Technically, the site uses modern frameworks like Bootstrap and JWPlayer, integrates analytics and tracking tools such as Google Analytics, Facebook Pixel, and Gemius, and serves content over HTTPS with good performance and mobile optimization. However, the absence of explicit privacy and terms of service pages, as well as missing WHOIS registration data, limits the transparency and trustworthiness assessment. Security posture is decent but could be improved by adding more security headers and clearer compliance documentation. Overall, the site is professionally designed, content-rich, and safe for general audiences.

P

Portugalské Centrum Instituto Camões v Praze

institutocamoes-praga.cz

55

Portugalské Centrum Instituto Camões v Praze is an educational and cultural institution established through collaboration between Charles University and Instituto Camões. It promotes Portuguese language and Lusophone culture in the Czech Republic, offering language courses, cultural events, and library services. The website is hosted on WordPress.com and uses modern web technologies including Jetpack and Facebook SDK. The site is well-branded and targets language learners and cultural enthusiasts. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and formal privacy/cookie policies. Overall, the site is trustworthy and professionally maintained but could improve compliance and security practices.

S

Svět knihy, s.r.o.

rostik.cz

45

Rostik.cz is an educational and cultural platform dedicated to promoting reading among children, youth, and adults in the Czech Republic. It operates as part of the 'Rosteme s knihou' campaign and offers book recommendations, author information, and a community for readers. The website is managed by Svět knihy, s.r.o., a recognized entity in the Czech book industry. The platform leverages modern web technologies including jQuery, Bootstrap, and Facebook SDK for social login and engagement. The site is well-structured, mobile-optimized, and provides a positive user experience with clear navigation and relevant content. Privacy and cookie policies are present and indicate GDPR compliance, although explicit contact information is not prominently displayed. The absence of WHOIS data limits transparency regarding domain registration details, but the presence of official partner logos and consistent branding supports legitimacy. Security posture is good with HTTPS enforced and secure login forms, though additional security headers and a vulnerability disclosure policy would enhance trust. Overall, Rostik.cz is a credible and well-maintained platform serving its educational mission effectively.

M

MERKURIA - ARTES a.s.

branocentrum.cz

44

MERKURIA - ARTES a.s. operates the website branocentrum.cz as an authorized dealer and service provider for BRANO brand lifting and door closing technology. The company offers a broad range of industrial lifting equipment and related products, targeting industrial and commercial customers primarily in the Czech Republic. The website features an e-commerce platform with product listings, pricing, and purchase options, supported by a physical showroom and service center. Technically, the site uses legacy JavaScript libraries and a CMS platform called Webareal, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks modern security headers and uses outdated libraries, posing potential risks. WHOIS data is unavailable, reducing domain trust from a registration perspective, but business information and contact details are clearly presented, supporting legitimacy. Privacy compliance is basic with cookie consent but no explicit privacy policy page found. Overall, the site is professional and trustworthy for its business domain but would benefit from technical and security improvements.

M

MERKURIA-ARTES a. s.

nilfiskcentrum.cz

42

Nilfiskcentrum.cz is a Czech Republic-based specialized retailer and service provider focused on professional cleaning equipment, primarily the Nilfisk and Nilfisk Alto brands. The company MERKURIA-ARTES a. s. operates the site, offering a broad range of cleaning machines, accessories, and related services including machine rental and ecological disposal. The website targets professional cleaning service providers and end customers within the Czech market. The business model is primarily e-commerce combined with service offerings, positioning itself as a regional leader in cleaning technology retail and support. Technically, the website runs on the BohemiaSoft e-commerce platform, utilizing a mix of legacy and modern JavaScript libraries such as jQuery 1.8.3, jQuery UI, Select2, and Owl Carousel. Google Analytics and Facebook SDK are integrated for analytics and marketing purposes. The site is mobile optimized with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in updating legacy libraries. From a security perspective, the site enforces HTTPS and uses standard security cookies including CSRF tokens and session management. However, the use of outdated jQuery versions introduces potential vulnerabilities. Security headers are minimal, and no explicit security policies or incident response information are published. Cookie consent mechanisms are implemented, indicating GDPR awareness. Overall, the website is professional and trustworthy in appearance, with clear contact information and social media presence. The absence of WHOIS data for the domain reduces domain trust and raises questions about registration transparency. There are no indications of adult or questionable content, and the site is fully accessible without WAF or blocking mechanisms. Strategic recommendations include updating JavaScript libraries to mitigate vulnerabilities, enhancing security headers, publishing clear security and incident response policies, and verifying domain registration details to improve trustworthiness.

O

Oranžová zahrada

oranzovazahrada.cz

56

Oranžová zahrada is a Czech Republic-based small retail business specializing in the sale and servicing of garden machinery and accessories, particularly focusing on the STIHL brand. The company has a longstanding market presence since 1991, offering both e-commerce and physical store services, including spare parts and expert customer support. The website is professionally designed, mobile-optimized, and provides comprehensive product information and customer engagement features. Technically, it leverages the Shoptet e-commerce platform with integrations such as Google Analytics and Facebook SDK, ensuring a modern and functional user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent management. Overall, the site is trustworthy and well-positioned in its niche, though the lack of WHOIS data slightly reduces domain trustworthiness.

M

MERKURIA - ARTES a.s.

vodacentrum.cz

44

Vodacentrum.cz is an established Czech e-commerce retailer specializing in kitchen sinks, faucets, valves, and range hoods, primarily offering products from reputable European brands such as Franke, Silfra, and Paffoni. The company, MERKURIA - ARTES a.s., targets consumers and businesses in the Czech Republic seeking quality sanitary and kitchen installation products. The website demonstrates a professional and consistent brand presence with clear navigation and relevant product offerings. Technically, the website employs a variety of JavaScript libraries including jQuery, jQuery UI, and several UI components like MasterSlider and Owl Carousel. It integrates Google Analytics, Google Tag Manager, and Facebook SDK for marketing and analytics purposes. The site is built on the Webareal CMS platform and uses HTTPS to secure communications. However, the use of an outdated jQuery version poses potential security risks, and there is no evidence of advanced security headers such as CSP. From a security perspective, the site follows basic best practices including HTTPS enforcement and cookie consent mechanisms. There is no visible security policy or incident response contact information, and no vulnerability disclosure or security.txt file is present. The absence of WHOIS data reduces domain trustworthiness, although the website content and contact details appear legitimate and professional. Overall, Vodacentrum.cz presents a trustworthy and functional e-commerce platform with room for improvement in security practices and domain transparency. Strategic enhancements in updating libraries, implementing security headers, and publishing vulnerability disclosure policies would strengthen its security posture and trustworthiness.

T

Triker a.s.

triker.cz

57

Triker a.s. operates an e-commerce website primarily targeting the Czech Republic market. The site serves as an online retail store, offering products through the Shoptet platform. The business model focuses on direct online sales with a basic digital presence. The website content is minimal and primarily serves as a storefront with limited business details and no visible contact or legal policy pages. Technically, the site uses common web technologies including Google Analytics, Google Tag Manager, Facebook SDK, and SearchReady for search enhancements. The hosting and CMS are provided by Shoptet, a known e-commerce platform. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and visible privacy or terms policies. The absence of WHOIS data reduces domain trustworthiness and transparency. Overall, the site is functional but would benefit from enhanced compliance and security measures.

The website www.chudenice.eu is a local community informational portal focused on the town of Chudenice and its surroundings in the Czech Republic. It provides historical, cultural, tourism, and event information relevant to residents and visitors. The site is modest in scale, targeting a general audience interested in local heritage and tourism. The business model appears to be informational and community service oriented, with no direct commercial transactions evident. Technically, the site uses legacy web technologies including HTML with windows-1250 charset and IE8 compatibility, along with JavaScript libraries such as jQuery and integrations with Facebook SDK and Google Analytics for social and tracking purposes. However, the site lacks modern security practices such as HTTPS enforcement and security headers, and does not provide privacy or cookie policies, which impacts its privacy compliance and security posture. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The domain WHOIS data is not publicly available due to EURid privacy protection, which is common for .eu domains and does not raise immediate legitimacy concerns. Overall, the site is functional for its purpose but requires improvements in security, privacy compliance, and technical modernization.

O

Obecní úřad Rybník

obec-rybnik.cz

46

The website represents the official municipal portal for Obec Rybník, a small local government entity in the Czech Republic. It provides essential information for residents and tourists, including municipal office details, local history, tourism spots, event calendars, and contact information. The site is positioned as a trusted local government resource with a clear focus on community engagement and regional promotion. Technically, the website employs standard web technologies such as jQuery, Flexslider for image sliders, Font Awesome for icons, and integrates Google Analytics and Facebook SDK for analytics and social media presence. The site is moderately optimized for performance and mobile devices, with basic accessibility features and SEO metadata. However, it lacks modern security headers and explicit privacy or terms of service pages. From a security perspective, the site uses HTTPS (assumed from external scripts loaded via HTTPS), includes a cookie consent mechanism, and avoids exposing sensitive data in the HTML. The absence of WHOIS data and domain registration details is a concern, reducing trustworthiness from a domain legitimacy standpoint. No forms or data collection points are present on the main page, minimizing attack surface. Overall, the security posture is moderate but could be improved with enhanced headers, documented policies, and vulnerability disclosure mechanisms. The overall risk is low given the nature of the site as a local government informational portal, but the missing WHOIS data and lack of explicit privacy policies suggest areas for improvement. Strategic recommendations include verifying domain registration status, implementing security headers, publishing privacy and security policies, and maintaining regular security audits.

O

Obec Podmokly

podmokly.cz

54

Obec Podmokly is a small municipal government entity serving the village of Podmokly in the Šumava foothills near Sušice, Czech Republic. The website functions as an official portal providing local administrative information, public notices, historical and tourist information, and community services. It targets local citizens and visitors, offering clear contact channels and municipal resources. The site integrates social media and complies with cookie consent regulations, reflecting a moderate level of digital maturity. Technically, the website uses common web technologies including jQuery, Flexslider, Font Awesome, and Google Fonts. It employs Google Analytics and Facebook SDK for tracking and marketing purposes, with a cookie consent mechanism in place. The site is moderately optimized for mobile and accessibility, with a clear navigation structure and professional design. From a security perspective, HTTPS is used, but no explicit security headers were detected in the provided data. The contact form includes basic validation, and no vulnerabilities or exposed sensitive data were found. However, the absence of WHOIS data and lack of explicit privacy and security policies represent gaps in transparency and compliance. Overall, the website is trustworthy and professional for its municipal purpose but would benefit from enhanced security practices, explicit privacy documentation, and domain registration transparency to improve its risk profile and compliance posture.

J

Jan Král

janovapec.cz

55

Janova pec is a small Czech e-commerce business specializing in artisanal gluten-free müsli and related natural food products. The company emphasizes quality ingredients such as oats, honey, and olive oil, targeting health-conscious consumers in the Czech and Slovak markets. The website is professionally designed with good navigation, mobile optimization, and clear product presentation. Technically, it employs modern web technologies including Google Tag Manager, Microsoft Clarity, and Alpine.js, with a cookie consent mechanism ensuring some level of privacy compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. However, the absence of visible privacy policy, terms of service, and contact information reduces transparency and trust. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses but limits domain trust signals.