Security Directory

L

LUMI consortium

lumi-supercomputer.eu

70

The LUMI website represents a large-scale European supercomputing consortium providing high-performance computing resources and AI services to researchers and industry. The site is well-structured, professionally designed, and targets a technical audience involved in HPC and AI innovation. The technical infrastructure is based on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and privacy page. The absence of terms of service and security policy pages is noted but does not critically impact trust. Overall, the website reflects a credible and mature digital presence aligned with its business goals.

M

Media One s.r.o.

mediaone.cz

45

Media One s.r.o. is a Czech media agency specializing in producing television shows, advertising formats, and event organization, with a strong focus on the Czech TV market. The company collaborates with major broadcasters such as TV Prima, Česká televize, and Canal+ Sport, offering clients integrated media campaigns and branded content solutions. Their website showcases a professional portfolio of current and past projects, client logos, and a detailed team section, reflecting a mature business presence established since 2011. Technically, the website employs modern frontend technologies including jQuery, Bootstrap, Owl Carousel, and Flickity, ensuring a responsive and interactive user experience. While the site is well-structured and mobile-optimized, some security best practices such as implementing security headers and privacy policies are missing. The contact form collects user data via POST but lacks visible anti-CSRF protections. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR requirements. No incident response or security policy information is published, which could be improved to enhance trust. The domain registration data aligns well with the business claims, showing a consistent and legitimate presence in the Czech media sector. Overall, Media One presents a credible and professional media agency with solid business credibility and a good technical foundation. Addressing privacy compliance and enhancing security headers would improve their security posture and regulatory adherence.

B

Brněnská personalistika, spol. s r. o.

bp.cz

57

Brněnská personalistika, spol. s r. o. is a well-established Czech company specializing in human resources services including recruitment, consulting, audits, and education. Operating since 1996, it holds a stable market position with a focus on the Czech labor market and multicultural corporate environments. The website reflects a professional business model targeting companies seeking HR advisory and training services. Technically, the site uses a legacy ASP.NET WebForms platform with several JavaScript libraries including jQuery 1.7.2 and Google Analytics for tracking. While the site is accessible and functional, it shows signs of aging technology and basic mobile optimization. Security posture is moderate with HTTPS enabled but lacking advanced security headers and updated libraries. Privacy compliance is partial, with a cookie consent banner present but no clear privacy policy page. Contact information and certifications are clearly presented, enhancing business credibility. Overall, the site is professional but would benefit from modernization and enhanced security and privacy practices.

M

Moravskoslezské inovační centrum (MSIC)

msic.cz

54

Moravskoslezské inovační centrum (MSIC) is a regional innovation support organization based in the Czech Republic, founded in 2017. It focuses on fostering business development and innovation within the Moravian-Silesian region by providing services such as financing, know-how, matchmaking, and infrastructure support. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and multiple analytics and tracking tools. The organization maintains strong partnerships with regional government bodies and universities, enhancing its market position as a key regional innovation hub. Security posture is solid with HTTPS and reCAPTCHA implemented, though some security headers and explicit policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website and domain registration data indicate a legitimate and trustworthy business with a strong digital presence.

G

Grape Festival

grapefestival.sk

53

Grape Festival is a well-established music and cultural event organizer based in Slovakia, hosting annual festivals with a strong focus on entertainment, ticket sales, and partner engagement. The website reflects a professional and consistent brand image targeting music festival attendees and cultural event audiences primarily in Slovakia. Technically, the site uses a modern technology stack including jQuery, Bootstrap, and various analytics and marketing tools such as Google Tag Manager and TikTok Pixel, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although formal security policies and vulnerability disclosure mechanisms are absent. Overall, the website is trustworthy, compliant with GDPR, and provides a positive user experience with clear navigation and relevant content.

T

tegut... gute Lebensmittel GmbH & Co. KG

basicbio.de

62

tegut... gute Lebensmittel GmbH & Co. KG is a well-established German supermarket chain operating approximately 350 stores across six federal states. The company specializes in offering a wide range of products including regional foods, organic (Bio) products, vegan and vegetarian options, and items adhering to their Reinheitsversprechen (purity promise). Founded in 1947, tegut... emphasizes sustainability, fairness, and transparency as core business values. Their business model focuses on retailing quality food products with a strong commitment to environmental and social responsibility. The website reflects a mature digital presence with comprehensive customer engagement features such as a loyalty program (tebonus), recipe collections, and an online shop.

K

Kulturistika.com

kulturistika.com

65

Kulturistika.com operates as a Czech-based fitness e-commerce platform combined with a magazine offering content on bodybuilding, fitness, strength sports, crossfit, and healthy lifestyle. The site targets fitness enthusiasts and athletes primarily in the Czech and Slovak regions, providing a broad range of sports nutrition products, clothing, equipment, and informative articles. The business model integrates online retail with content publishing to engage and convert its audience. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Google reCAPTCHA Enterprise, Facebook SDK, and OneSignal for push notifications. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be improved. Performance is moderate, with multiple external scripts for analytics and advertising. From a security perspective, the site uses HTTPS and implements bot protection on login forms. However, no explicit security headers were detected, and there is no published privacy policy or terms of service in the provided content. The WHOIS data is missing, which raises concerns about domain registration legitimacy. Cookie consent is implemented with advanced user controls, indicating some GDPR compliance awareness. Overall, the website presents a professional and functional platform with moderate security and privacy posture. The lack of WHOIS transparency and absence of privacy policy are notable gaps. Strategic improvements in security headers, privacy documentation, and domain registration verification are recommended to enhance trust and compliance.

A

Asociace výrobců kabelů a vodičů České republiky a Slovenské republiky

vyrobcikabelu.cz

53

The website represents the official association of cable and wire manufacturers in the Czech Republic and Slovakia, serving as a central information hub for industry members and customers. It provides updates on metal prices, quality standards, and industry news, positioning itself as a trusted regional industry association. The site is professionally designed with consistent branding and clear navigation, targeting both professional and lay audiences interested in cable manufacturing and related sectors. Technically, the site is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Google Tag Manager. It employs multilingual support and cookie consent mechanisms, indicating a moderate level of digital maturity. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS and consent management but lacks some security headers and explicit policies. Security-wise, the site shows good practices in data protection and user consent but lacks visible incident response or vulnerability disclosure information. The absence of WHOIS data is a concern for domain transparency, though the site content and partner affiliations support legitimacy. Overall, the risk is moderate with recommendations to enhance security headers, privacy policies, and domain registration transparency. Strategically, the association should focus on improving compliance documentation and security posture to strengthen trust and regulatory adherence, while continuing to provide valuable industry content and maintain strong partner relationships.

Wohn- und Arbeitsintegration Bernhardsberg is a Swiss non-profit organization focused on providing housing and work integration services for adults with psychological impairments. It operates under the parent organization Jugendsozialwerk Blaues Kreuz BL and offers a range of social services including residential care, supported employment, and a bio-product manufactory. The website is professionally designed, content-rich, and targets a regional audience in Switzerland. It demonstrates strong trust signals such as certifications (ZEWO, SQS, dot.swiss), clear contact information, and a cookie consent mechanism. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Tag Manager with IP anonymization, ensuring a good user experience and moderate performance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though additional security headers and incident response policies could enhance protection. WHOIS data is privacy protected, which is justified for this type of non-profit entity. Overall, the website is trustworthy, compliant with privacy regulations, and well-positioned in its social service niche.

Wohngemeinschaft Falkennest is a Swiss non-profit organization providing protected living spaces and social rehabilitation services for young adults aged 18 to 30 facing social difficulties. It operates under the oversight of the Basel-Landschaft canton government and is part of the Stiftung Jugendsozialwerk Blaues Kreuz BL. The website is professionally designed, content-rich, and targets clients, volunteers, and stakeholders in social services. Technically, the site uses a modern JavaScript stack with frameworks such as webIQ and Bootstrap, ensuring good mobile optimization and user experience. Security posture is moderate with room for improvement in HTTP security headers and explicit security policies. Privacy compliance is well addressed with cookie consent and a privacy policy. Overall, the domain and website present a trustworthy and legitimate entity with strong Swiss social service credentials.

F

Federace nábytkových bank a reuse center

reusefederace.cz

48

Federace nábytkových bank a reuse center is a Czech non-profit federation uniting furniture banks and reuse centers across the Czech Republic. The organization focuses on environmental sustainability by promoting reuse as an alternative to waste disposal. Their services include networking reuse operators, providing expert consultation for new reuse centers, organizing training, and fostering partnerships with public and private sectors. The website is professionally designed, content-rich, and optimized for SEO, targeting reuse operators, NGOs, public administration, and the general public interested in sustainability. Technically, the site runs on WordPress with modern plugins and supports HTTPS with secure form handling. However, the absence of WHOIS data and cookie consent mechanisms slightly reduce trust and privacy compliance scores. Overall, the site demonstrates a strong commitment to its mission with good digital maturity and security posture.

A

A.Vogel AG

avogel.ch

72

A.Vogel AG is a well-established Swiss company specializing in natural and herbal remedies with a history dating back to 1923. The website serves as an official platform to showcase their product range, company philosophy, and educational content related to natural health. The company targets a general audience interested in natural health products and operates internationally with presence in 30 countries. Technically, the website uses modern JavaScript libraries and frameworks such as jQuery, Slick Carousel, and Fancybox, combined with Google Tag Manager and Usercentrics for consent management, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and consent-based loading of third-party scripts, although there is room for improvement in publishing explicit security policies and headers. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and aligns well with the company's business claims.

E

EKT AG

datacenterthurgau.ch

55

EKT AG operates the EKT Datacenter, a regional datacenter service provider located in Eastern Switzerland, offering colocation, rack space, and bundled IT infrastructure solutions primarily targeting SMEs and organizations in the Thurgau and surrounding regions. The company emphasizes security, reliability, and sustainability, supported by certifications such as ISO 27001 and ISO 9001. Their datacenter is carrier-neutral with direct connections to major hyperscalers, positioning them competitively in the regional market. Technically, the website is built on WordPress with a modern but somewhat dated technology stack including Bootstrap and jQuery 1.12.4. The site is mobile-optimized, SEO-friendly, and integrates common marketing and analytics tools such as Google Analytics and social sharing plugins. Performance is moderate with good navigation and content quality. From a security perspective, the site enforces HTTPS and displays trust signals through certifications and biometric access mentions. However, the use of an outdated jQuery version and lack of visible security headers present minor risks. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy, though no incident response or vulnerability disclosure policies are published. Overall, the website and business present a trustworthy and professional image with a solid security posture appropriate for their sector. Strategic improvements in updating libraries, enhancing security headers, and publishing incident response policies would further strengthen their security and compliance stance.

F

FC St.Gallen 1879

fcsg.ch

75

FC St.Gallen 1879 is a historic Swiss football club with a well-established digital presence, including live match tracking, news, video content, and an e-commerce platform for merchandise. The website is built on Shopify, leveraging modern web technologies and third-party analytics tools to engage fans and customers effectively. The technical infrastructure is solid, with good mobile optimization and performance, although some SEO and accessibility aspects could be improved. Security posture is generally strong with HTTPS and no exposed sensitive data, but explicit security policies and headers could be enhanced. Privacy compliance is limited due to the absence of visible privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, the site reflects a professional sports organization with a medium-sized digital footprint and good business credibility.

A

A.Vogel AG

avogel-company.ch

60

A.Vogel AG is a well-established Swiss manufacturer specializing in natural health products such as herbal medicines, nutritional supplements, medical devices, and body care products. The company has a strong emphasis on quality, sustainability, and natural health, serving both consumers and healthcare professionals. Their market presence extends internationally with partnerships and subsidiaries in 30 countries. The website reflects a mature digital infrastructure with modern JavaScript libraries, consent management, and professional login portals for healthcare providers. Security posture is strong with HTTPS enforcement and consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the website is professional, trustworthy, and aligned with the company's brand and business model.

T

TechniFog s.r.o.

hasenivodnimlhou.cz

42

TechniFog s.r.o. operates as the exclusive Czech and Slovak distributor of Automist® water mist fire suppression systems, providing innovative and efficient fire protection solutions primarily targeting small residential units and vulnerable populations. The company emphasizes low water consumption and advanced technology as an alternative to traditional sprinklers. The website is professionally designed with clear navigation and relevant content, supporting the company's market position as a specialized fire safety provider. Technically, the website employs legacy JavaScript libraries such as jQuery 1.7.2 alongside common tools like Google Analytics and Fancybox. While the site is mobile responsive and SEO optimized, some modernization and security improvements are advisable, including updating libraries and implementing security headers. The absence of privacy and cookie policies indicates a compliance gap, especially under GDPR regulations. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the lack of security headers and outdated scripts present potential risks. The missing WHOIS data reduces domain trustworthiness, though the website content and contact details appear legitimate. Overall, the site demonstrates a solid business presence but requires enhancements in privacy compliance and technical security to strengthen trust and regulatory adherence. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, updating JavaScript libraries to current versions, adding security headers, and publishing a security.txt file for vulnerability disclosure. These steps will improve compliance, security posture, and user trust, supporting the company's continued growth in the fire protection market.

T

TechniFog s.r.o.

mlzicitechnika.cz

42

TechniFog s.r.o. operates as a specialized supplier and representative of Italian misting systems manufacturer Idrobase Group Srl in the Czech Republic. The company focuses on providing industrial and commercial solutions for air cooling, humidification, and refreshing using high-pressure misting technology. Their market position is that of a niche provider serving various sectors including hospitality, manufacturing, and entertainment venues. The website content is well-structured and professionally presented, targeting business clients requiring environmental air treatment solutions. From a technical perspective, the website employs legacy technologies such as jQuery 1.7.2 alongside modern tools like Google Analytics and Fancybox. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security posture is moderate with HTTPS presumably enabled but no visible security headers and usage of outdated JavaScript libraries posing potential risks. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, which impacts overall trust. Contact information is clearly provided, enhancing business credibility. No signs of WAF or content blocking were detected, allowing full content analysis. Overall, the website is functional and business-appropriate but requires improvements in security, privacy compliance, and domain registration transparency. Strategic recommendations include updating outdated libraries, implementing comprehensive privacy and cookie policies with consent mechanisms, enhancing security headers, and verifying domain registration details to improve trustworthiness and compliance.

I

iChrono

ichrono.cz

45

iChrono.cz is a Czech Republic-based e-commerce retailer specializing in Swiss watches and related accessories. The company positions itself as an authorized exclusive distributor for multiple prestigious Swiss watch brands, offering a wide selection of mechanical and quartz watches with added value services such as a 5-year warranty on glass and battery replacements. Their professional service center further strengthens their market position by providing authorized servicing and repairs. The website is well-structured, professionally designed, and targets consumers interested in luxury and quality Swiss timepieces. Technically, the site uses a CMS platform (Topinfo CMS) with modern libraries such as Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, though lacks explicit security headers and published security policies. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the overall business presentation and contact information support legitimacy. The site is free from adult or questionable content and complies with GDPR requirements through clear privacy and cookie policies.

R

Remark

withremark.com

68

Remark is a B2B SaaS company specializing in AI-powered product guidance solutions for online stores. Their platform leverages AI-personas trained by real experts to provide personalized shopper experiences, real-time product recommendations, and seamless integration with e-commerce systems. The website demonstrates a mature digital presence with comprehensive content, customer testimonials, and case studies highlighting measurable business impact. Technically, the site is built on modern web technologies including Webflow CMS, uses advanced analytics tools like PostHog and Apollo, and incorporates security features such as SOC II compliance and Cloudflare Turnstile captcha. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting good compliance practices. However, the absence of WHOIS registration data and direct company contact emails slightly reduces trustworthiness. Overall, Remark presents a professional, secure, and user-friendly platform positioned well in the e-commerce AI personalization market.

A

AIJ Magazine

aijmagazine.co.uk

60

AIJ Magazine is a specialized media publication serving the Guild of Architectural Ironmongers and related professionals in the UK construction and manufacturing sectors. The website provides industry news, features, opinions, and digital editions, positioning itself as a niche authoritative source within its market. The business operates under the parent company Atom and has been active since 2020, with consistent branding and good content quality tailored to its professional audience. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WP Rocket, and various JavaScript libraries for enhanced user experience and performance. Hosting is provided by 123-Reg Limited, a reputable registrar and hosting provider. The site demonstrates good mobile optimization, SEO practices, and fast loading times, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and uses some security plugins but lacks explicit security headers and published security policies. No cookie consent mechanism is present, which may impact privacy compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency and readiness. Overall, the website is professional, trustworthy, and well-maintained, with moderate security posture and privacy compliance. Strategic enhancements in security headers, privacy mechanisms, and incident response documentation would strengthen its risk profile and compliance standing.

A

ARMI PERAZZI S.p.A.

perazzi.it

63

Armi Perazzi S.p.A. is a well-established Italian manufacturer specializing in handcrafted shotguns for competition and hunting, boasting over 60 years of artisanal expertise. The company holds a strong market position as a premium brand, supported by its association with the CSG Group and a US subsidiary, Perazzi USA Inc. Their product offerings include high-end firearms, showroom experiences, and after-sales services, targeting shooting sports enthusiasts and professional shooters worldwide. The website reflects this positioning with professional design, multilingual support, and ecommerce capabilities. Technically, the site employs a modern tech stack including Bootstrap and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA integration, though lacks some advanced security headers and explicit security policies. Privacy compliance is well addressed with cookie consent and GDPR-aligned privacy policies. Overall, the site is trustworthy and professional, with clear contact information and strong branding.

R

Ricoh Company, Ltd.

ricoh.com

72

Ricoh Company, Ltd. operates a global corporate website focused on empowering individuals through technology and sustainable business practices. The company is positioned as a global leader in office imaging equipment, IT services, and sustainability solutions, targeting business customers worldwide. The website reflects a mature digital infrastructure using Sitecore CMS and modern JavaScript libraries, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response contacts are missing. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's legitimacy given its professional presentation and comprehensive content. Overall, Ricoh's website demonstrates a strong commitment to corporate governance, sustainability, and information security.

M

Mammut

mammut.tw

45

Mammut Taiwan operates an official brand website offering a comprehensive range of outdoor apparel, footwear, bags, and climbing equipment. The site targets outdoor enthusiasts and mountain sports lovers in Taiwan, providing product information, multimedia content, and links to official e-commerce platforms. The brand leverages its Swiss heritage and global reputation to position itself as a premium outdoor retailer in the local market. Technically, the website uses established JavaScript libraries and Google tracking tools, indicating moderate digital maturity and integration with marketing analytics. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the site is professional, trustworthy, and well-branded, though improvements in privacy and security transparency are recommended.

E

EuroAgentur Hotels & Travel, a.s.

euroagentur.com

51

EuroAgentur Hotels & Travel, a.s. is a well-established Czech hospitality company operating a large hotel chain and providing comprehensive travel, catering, wellness, and event services primarily in the Czech Republic and Slovakia. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. The company targets tourists, business travelers, and event organizers with a broad portfolio of services including accommodation, restaurants, catering, wellness centers, congresses, and weddings. The market position is strong as a leading hotel corporation in the region with multiple awards and partnerships with official tourism bodies. Technically, the website uses a mix of legacy and modern JavaScript libraries, Google Analytics, and a CMS platform (Topinfo CMS). Performance and mobile optimization are good, though accessibility is basic. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and incident response information. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website is trustworthy and professional but would benefit from enhanced security headers and clearer contact information.

C

CCAM

ccam.eu

51

CCAM is a European partnership focused on advancing Connected, Cooperative and Automated Mobility through coordinated research and innovation efforts. The organization acts as a platform for over 200 members from industry, research, and public sectors to collaborate on Horizon Europe projects and other initiatives. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and SEO best practices to communicate its mission and activities effectively. Technically, the site is built on WordPress with a robust tech stack including jQuery, Owl Carousel, and Google Analytics, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to enhance user trust and regulatory adherence. Overall, the domain is privacy protected as per EURid policies, consistent with legitimate EU organizations. The site is safe for general audiences and does not contain any adult or questionable content.

M

Município de Cabeceiras de Basto

cabeceirasdebasto.pt

52

The website cabeceirasdebasto.pt serves as the official online presence of the Município de Cabeceiras de Basto, a local government entity in Portugal. It provides residents, tourists, and local businesses with comprehensive information about municipal services, cultural events, tourism, and administrative contacts. The site features a structured navigation system, regular news updates, and integration with social media platforms to engage its audience effectively. The business model is centered on public service and community engagement, positioning the municipality as a trusted source of local information and services. Technically, the website employs a mix of traditional web technologies including jQuery, LayerSlider for interactive content, Google Fonts for typography, and Piwik/Matomo for analytics. The CMS appears to be a proprietary or specialized platform (Omnisinal) tailored for municipal websites. The site is moderately optimized for performance and mobile responsiveness, with basic accessibility features implemented. SEO practices are present but could be enhanced with richer metadata and structured data. From a security perspective, the site uses HTTPS and includes a cookie consent banner, indicating awareness of privacy regulations. However, there is no visible security policy or incident response contact information, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data aligns well with the municipal identity, reinforcing legitimacy and trustworthiness. Overall, the website is a well-maintained government portal with good content quality and user experience. Security posture is adequate but could benefit from additional policies and technical hardening. Privacy compliance is basic but present. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing security policies, improving accessibility, and enriching SEO metadata to further strengthen the site’s digital maturity and trust.

A

Asociace autoškol ČR, z.s.

asociaceautoskol.cz

47

Asociace autoškol ČR, z.s. is a Czech non-profit association dedicated to improving the quality and standards of driving schools and driver education in the Czech Republic. The organization provides educational seminars, develops innovative testing materials including hazard perception videos, and offers support services such as an ombudsman for driving schools and students. It maintains partnerships with government bodies and safety organizations, positioning itself as a key stakeholder in national driver education and road safety. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Google services such as reCAPTCHA v3 and Google Analytics. The site is mobile-optimized with a good user experience and clear navigation. Cookie consent mechanisms are implemented, reflecting awareness of privacy compliance requirements, although a formal privacy policy page is not found. From a security perspective, the site uses HTTPS and bot protection but lacks visible security headers and formal security policies. No critical vulnerabilities were detected in the content or scripts. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness, but the professional presentation and official contact information mitigate concerns. Overall, the website is a credible and professional platform supporting a non-profit association with a clear mission in driver education. Strategic improvements in privacy documentation, security headers, and WHOIS transparency would enhance trust and compliance.

C

Confederação do Comércio e Serviços de Portugal

ccp.pt

48

Confederação do Comércio e Serviços de Portugal (CCP) is a well-established Portuguese confederation representing the commerce and services sectors. The organization provides economic data, legal information, events, and member support services, positioning itself as a key player in promoting competitiveness and innovation within Portugal's commerce and service industries. The website reflects a professional and consistent brand image, targeting Portuguese businesses and stakeholders in these sectors. Technically, the website is built on WordPress with modern libraries such as jQuery, Owl Carousel, and FancyBox. It employs Google Analytics for tracking and uses a cookie consent mechanism compliant with GDPR. The site is hosted likely on SiteGround, with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

C

Comité Olímpico de Portugal

comiteolimpicoportugal.pt

56

The Comité Olímpico de Portugal is the official Olympic Committee representing Portugal in Olympic sports. The organization focuses on athlete preparation, sports education, marketing, and promoting Olympic values nationally. The website reflects a medium-sized, government-affiliated non-profit entity with a strong national and international presence. Technically, the site is built on WordPress with Elementor and integrates modern web technologies, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and bot protection, though some improvements in security headers and library updates are recommended. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

A

AS Sadales tīkls

e-st.lv

56

AS Sadales tīkls operates a professional and secure customer portal aimed at business clients in Latvia's energy sector. The portal facilitates service applications, electricity consumption monitoring, and meter reading submissions, leveraging multiple secure authentication methods including eID, Smart-ID, and major Latvian banks. The website demonstrates a moderate to high level of digital maturity with modern JavaScript libraries, cookie consent management, and integration with Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and CSRF protections, though some security headers and explicit security policies are absent. Overall, the site is trustworthy and well-aligned with the company's business identity, with no signs of suspicious activity or content.

I

IVT Tepelná čerpadla s.r.o.

cerpadla-ivt.cz

41

IVT Tepelná čerpadla s.r.o. operates a professional website focused on the sale and installation of Swedish quality heat pumps in the Czech Republic. The company positions itself as a market leader with over 20,000 installations and targets homeowners, commercial building managers, and new house builders. The website provides detailed product information, guides, and news updates, reflecting a mature business model centered on energy-efficient heating solutions. Technically, the site uses a combination of legacy and modern web technologies including jQuery, Bootstrap, and various tracking tools, managed via Topinfo CMS. The site is mobile-optimized and SEO-friendly, though some technical debt is evident with outdated libraries and missing security headers. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and explicit incident response information. The absence of WHOIS data reduces domain trustworthiness, though the website content and business information appear legitimate and professional. Overall, the site scores well on content quality and business credibility but has room for improvement in security and privacy compliance.

F

Federace židovských obcí v České republice

10hvezd.cz

40

The website 'Deset hvězd' is a cultural heritage project managed by the Federation of Jewish Communities in the Czech Republic. It focuses on preserving and promoting Jewish cultural heritage through a network of regional cultural and educational centers located in restored synagogues. The project is part of the European Route of Jewish Heritage, certified by the Council of Europe, and offers exhibitions, cultural programs, and concerts. The target audience is the general public interested in cultural history and education. The business model is non-profit, emphasizing cultural preservation and education. Technically, the website uses a traditional tech stack including jQuery, Owl Carousel, Fancybox, and Google Analytics for tracking. It is built on the Nette Framework, a PHP-based CMS. The site shows moderate performance and basic mobile optimization but uses outdated JavaScript libraries that may pose security risks. SEO and accessibility are basic but functional. From a security perspective, the site uses HTTPS and includes Google Analytics scripts but lacks visible security headers and uses outdated libraries. There are no forms collecting sensitive data, reducing immediate risk, but the absence of privacy and cookie policies indicates compliance gaps. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally presented but would benefit from updating its technical stack, implementing security best practices, and adding privacy and cookie policies to improve compliance and user trust.

E

ELMTRADE SE

elmtrade.com

44

ELMTRADE SE is a Czech Republic-based manufacturing company specializing in sheet metal processing, coating, assembly, and logistics services. With over 20 years of experience, it serves B2B clients in industrial sectors, offering comprehensive solutions from design to delivery. The website reflects a professional and consistent brand presence with clear contact information and certifications that enhance trust. Technically, the site uses modern JavaScript libraries and is hosted by a reputable registrar, though it lacks some advanced security headers and cookie consent mechanisms. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but improvements are recommended in DNSSEC and security policies. Overall, the domain registration is consistent with the business claims, and no suspicious patterns were detected.

D

DT - Výhybkárna a strojírna, a.s.

dtvs.cz

48

DT - Výhybkárna a strojírna, a.s. is a traditional Czech manufacturer specializing in the development, construction, production, assembly, and regeneration of railway and tramway switch components. With decades of experience, the company serves both domestic and international markets, including metro systems. Their business model focuses on manufacturing and servicing railway infrastructure components, supported by a subsidiary in Slovakia. The website reflects a professional and consistent brand image targeting transportation infrastructure clients. Technically, the website employs a moderately modern technology stack including Bootstrap, jQuery, and Google services such as Analytics and reCAPTCHA. The site is mobile-optimized and includes a comprehensive cookie consent mechanism ensuring GDPR compliance. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA for form protection. However, it lacks explicit security headers and does not provide visible incident response or security policy information. The WHOIS data is unavailable, likely due to privacy protection, but the website content and contact details support legitimacy. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy and professional digital presence suitable for its industry. Strategic improvements in security headers, updated libraries, and enhanced accessibility would further strengthen its posture.

Z

ZDAR, a.s.

zdar.cz

58

ZDAR, a.s. is a well-established transportation and logistics company based in the Czech Republic, offering a wide range of services including bus and truck servicing, logistics, vehicle maintenance, and public transportation. With over 30 years of experience, the company targets regional transport customers and motorists, positioning itself as a reliable and professional service provider in its sector. The website reflects this maturity with detailed service descriptions and a consistent brand presence. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and user-friendly experience. The presence of Google reCAPTCHA and cookie consent mechanisms indicates attention to security and privacy compliance. However, the absence of visible security headers and missing WHOIS data slightly detract from the overall technical and trust posture. From a security perspective, the site uses HTTPS and implements basic security best practices, but lacks published incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The privacy policy and cookie consent are comprehensive and GDPR compliant, supporting good privacy practices. Overall, the website is professional, secure, and trustworthy, though improvements in transparency (WHOIS data) and security headers would enhance its security posture. The business is credible and well-positioned in its market, with a clear focus on transportation and logistics services.

P

Prozdravi.cz na Vivantis | Vivantis.cz - Od kabelky po parfém

prozdravi.cz

54

The website vivantis.cz, specifically the Prozdravi.cz section, operates as an e-commerce platform primarily targeting consumers in the Czech Republic. It offers health-related products alongside fashion accessories and perfumes under the Vivantis brand umbrella. The site demonstrates a consistent and professional branding approach with a modern design and good user experience. The business model is retail-focused, leveraging online sales channels to reach a broad consumer base. However, the absence of publicly available WHOIS data limits the ability to fully verify domain legitimacy and ownership transparency. From a technical perspective, the site employs contemporary web technologies including Bootstrap 5, JavaScript libraries such as Swiper.js and Fancybox, and Google Fonts, indicating a modern frontend infrastructure. Performance and mobile optimization are adequate, though accessibility features appear basic. SEO practices are reasonably implemented with proper meta tags and Open Graph data. Security posture is moderate but could be improved. There is no evidence of security headers or explicit security policies, and privacy and cookie policies are not found, which raises compliance concerns. The lack of WHOIS data and absence of contact information for security incidents or data protection officers further reduce trustworthiness. No WAF or blocking mechanisms were detected, and the site content is safe for general audiences. Overall, the site is functional and professionally presented but would benefit from enhanced transparency, security best practices, and compliance documentation to improve trust and reduce risk.

O

Obec Kobylnice

kobylnice.cz

38

Obec Kobylnice operates an official municipal website serving the local community in the Czech Republic. The site provides residents and visitors with information about local government services, news, cultural events, and contact details. The business model is focused on public service and community engagement, positioning the municipality as a trusted local authority. Technically, the website uses a combination of Bootstrap 3, jQuery, and Fancybox, with a custom or unknown CMS platform. The site is mobile responsive and moderately optimized for performance and accessibility. Security posture is basic with HTTPS enabled but lacking important security headers and privacy compliance mechanisms such as cookie consent. WHOIS data is unavailable, which slightly reduces trust but the official branding and content support legitimacy. Overall, the website is functional and professional but could improve in security and privacy compliance.

S

Státní fond dopravní infrastruktury (SFDI)

ceskobezbarier.cz

43

The website 'Česko bez bariér' is operated by the Státní fond dopravní infrastruktury (SFDI), a Czech government fund focused on financing projects that remove barriers in public spaces to improve accessibility and safety. The site provides information about funding programs, supported projects, and consultation services for municipalities and other entities. The content is professionally presented, with clear navigation and a focus on public infrastructure improvements. Technically, the site uses a combination of legacy and modern web technologies including jQuery, Bootstrap, and Owl Carousel, with Google Analytics integrated for visitor tracking. Security posture is adequate with HTTPS enforced and a cookie consent mechanism implemented, though some improvements are recommended such as updating libraries and adding security headers. The absence of WHOIS data limits domain registration trust analysis, but the website's consistent government branding and contact details support its legitimacy. Overall, the site is a reliable resource for its target audience, though privacy policy documentation and enhanced security practices would strengthen compliance and trust.

E

eViz s.r.o.

penziony.cz

47

Penziony.cz is an established Czech online platform specializing in affordable accommodation listings including pensions, hotels, apartments, and cottages. Operated by eViz s.r.o., it targets travelers seeking budget-friendly lodging options across the Czech Republic. The website offers extensive listings with direct contact details to properties, facilitating user bookings and searches. Technically, the site is built on WordPress using the WP Rentals theme, integrating modern JavaScript libraries such as jQuery, Bootstrap, Algolia Places, and Mapy.cz APIs for enhanced user experience and search functionality. Security-wise, the site employs HTTPS and nonce tokens for form submissions, indicating a baseline security posture; however, it lacks comprehensive security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism, which may pose GDPR compliance risks. The absence of WHOIS data limits domain trust assessment, but the website content and business information appear professional and trustworthy. Overall, Penziony.cz presents a solid digital presence in the hospitality sector with room for improvement in privacy and security transparency.

OSEL.CZ is a well-established Czech electronic magazine focused on popularizing science and research, operating since 2002. The website offers a broad range of science articles covering topics such as physics, biology, genetics, and general scientific curiosities, targeting a general audience interested in science and society. The business model relies on advertising revenue, primarily through Google Adsense, and community support. The site maintains a consistent brand presence with active content updates and author attributions, enhancing its credibility in the Czech media landscape. Technically, the website uses a mix of older and modern web technologies including jQuery 1.8.2, Google Fonts, Google Analytics, and Facebook SDK. While the site is mobile-optimized and has a good user experience, some outdated libraries present potential security risks. The hosting and domain registration are consistent and long-standing, indicating a stable infrastructure. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers such as Content Security Policy. No explicit security or incident response policies are published. Privacy compliance is basic with a privacy policy and cookie banner present, but no terms of service or vulnerability disclosure. Overall, the site is trustworthy but could improve security and compliance documentation. The overall risk is low to moderate. Strategic recommendations include updating outdated libraries, implementing stronger security headers, publishing security and incident response policies, and enhancing privacy compliance documentation to align with GDPR and best practices.

F

FitRuha.hu

fitruha.hu

48

FitRuha.hu is a specialized e-commerce retailer focused on fitness apparel, offering a curated selection of well-known brands such as NEBBIA, MOTIVATED, ADIDAS, and others. The website targets fitness enthusiasts primarily in Hungary and nearby regions, providing fast delivery and customer-friendly policies including free returns. The business operates since 2015, positioning itself as a niche player in the fitness clothing market with a consistent brand presence and clear contact channels. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, and other marketing and analytics tools. It uses a proprietary or custom CMS platform (Shopion.cz) and demonstrates good mobile optimization and SEO practices. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and includes CSRF tokens in forms, alongside a comprehensive cookie consent mechanism compliant with GDPR. However, security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, suggesting potential areas for enhancement. No vulnerabilities or exposed sensitive data were found. Overall, the website presents a low-risk profile with strong privacy compliance and business credibility. Strategic recommendations include improving security headers, enhancing accessibility, and considering a formal vulnerability disclosure policy to further strengthen security posture.

S

STUDIOELF

studioelf.at

44

STUDIOELF is a small creative agency based in Tirol, Austria, specializing in graphic design, web design, and branding services. The company targets businesses seeking to enhance their visual communication and brand identity, offering handcrafted and original design solutions. Their market position is regional with a strong local client portfolio and a professional online presence. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Bootstrap, and GSAP, providing a good user experience with multimedia content and responsive design. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and incident response information. The absence of WHOIS data is a notable gap, slightly impacting trust but not undermining the overall legitimacy given the professional site content. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website demonstrates a mature digital presence with room for security enhancements.

K

Krematorium zvířat Praha

krematoriumzviratpraha.cz

34

Krematorium zvířat Praha operates as the sole pet crematorium located directly in Prague, offering comprehensive cremation services including office, ceremonial hall, cooling box, and cremation furnace all in one place. The business targets pet owners seeking dignified farewell services for their animals, providing 24/7 availability including weekends and holidays. Their unique guarantee system ensures individual cremation with camera recording for transparency. Technically, the website employs legacy technologies such as jQuery 1.10.2 and uses Google Analytics and Google Maps API for tracking and location services. While the site is accessible and professionally designed, it lacks modern security headers and uses outdated libraries, posing potential risks. The absence of WHOIS data and presence of hidden spammy links to gambling and adult sites reduce trustworthiness. Overall, the security posture is moderate with room for improvement in privacy compliance and technical modernization.

R

Raab Computer s.r.o.

affc-zk.cz

62

The website www.affc-zk.cz represents the Audit Family Friendly Community initiative for the Zlínský kraj region in the Czech Republic. It is a government-supported program aimed at assisting municipalities in improving living conditions for families through systematic audits and implementation of selected measures. The site is professionally designed with clear navigation and content relevant to local government stakeholders and community members. The business model focuses on regional government support and community engagement, with key services including audits, seminars, and certification events. The website is maintained by Raab Computer s.r.o., a small company providing web services. Technically, the site uses a combination of common JavaScript libraries such as jQuery, FontAwesome, bxSlider, Fancybox, Remodal, and Owl Carousel to deliver a responsive and interactive user experience. The site is mobile-optimized and includes basic accessibility features. SEO is adequately addressed through meta tags and structured navigation. However, no CMS or hosting provider details are evident from the HTML content. From a security perspective, the website uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy compliance. However, no explicit security headers were detected in the provided data, and no detailed security policies or incident response information are available. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding appear legitimate and consistent with a government-supported initiative. No vulnerabilities or exposed sensitive data were identified. Overall, the website presents a moderate risk profile with good content quality and technical implementation but could improve security posture by adding security headers, explicit policies, and verified contact information. The lack of WHOIS data is a concern but does not necessarily indicate malicious intent. Strategic recommendations include enhancing security headers, improving accessibility, and providing clearer business contact details to increase trust and compliance.

R

Raab Computer s.r.o.

affc-uk.cz

60

The website www.affc-uk.cz represents a regional government-supported initiative named Audit Family Friendly Community (AFFC) focused on supporting municipalities in the Ústecký kraj region of the Czech Republic. The project aims to improve living conditions for families through systematic audits and implementation of community-chosen measures. The site is professionally designed with good content quality and clear navigation, targeting local government bodies and municipalities. The business model is non-profit/governmental support with key services including audits, workshops, and seminars. Technically, the website uses a variety of JavaScript libraries such as jQuery, FontAwesome, bxSlider, and others to enhance user experience. The site is mobile optimized and has basic accessibility features. However, no CMS or hosting provider information is evident. Performance is moderate with good SEO practices. From a security perspective, the site lacks visible security headers and the SSL configuration status is unknown. Cookie consent mechanisms and GDPR-compliant privacy policies are implemented, indicating awareness of privacy compliance. No exposed sensitive data or vulnerabilities were detected in the HTML content. The absence of WHOIS data reduces domain trustworthiness, but the website content and business presence suggest legitimacy. Overall, the website is a good representation of a regional government project with solid content and privacy compliance but could improve in security hardening and transparency of domain registration. Strategic recommendations include implementing security headers, verifying SSL configuration, and providing explicit contact information.

I

Interspiro

interspiro.de

65

Interspiro is a well-established company specializing in premium respiratory protection and safety equipment for professional sectors including firefighting, diving, military, and rescue services. With nearly a century of history and technological innovation, the company serves a global market with a strong presence in Germany and other regions. The website reflects a mature digital infrastructure built on Dynamicweb CMS and modern JavaScript libraries, offering detailed product information and eLearning services. Security posture is generally good with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit policies could enhance trust. Overall, the site is professional, well-branded, and compliant with GDPR requirements.

I

Interspiro

interspiro.se

62

Interspiro is a Swedish-based manufacturer and global supplier of high-quality breathing protection and diving equipment, serving professional sectors such as military, police, firefighting, rescue services, and heavy industry. The company has a long history dating back to the early 1900s and maintains a strong market position with premium products designed for extreme conditions. The website reflects a mature digital presence with multilingual support and a focus on product systems, training, and service support. Technically, the site uses a modern but somewhat dated tech stack centered on Dynamicweb CMS, Bootstrap 3, and various JavaScript libraries, with integrated analytics and marketing tools. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced DNS security and explicit security headers. No visible terms of service or security policy pages were found, and contact information is limited on the public site. Overall, the site is professional, trustworthy, and well-branded but could improve in security transparency and contact accessibility.

F

E-shop se sportovní výživou - Fitness 13.cz

fitness13.cz

54

Fitness13.cz is a Czech Republic-based small e-commerce business specializing in sports nutrition products. The company operates both an online store and a physical retail location in Brno, offering a range of supplements and fitness-related products. The website targets fitness enthusiasts and customers interested in health supplements, providing member discounts and expert advice. The site integrates marketing and analytics tools such as Google Analytics, Facebook Pixel, and Heureka.cz widgets, indicating a moderate level of digital marketing maturity. Technically, the site uses older JavaScript libraries and lacks some modern security headers, which could be improved to enhance security posture. Privacy policies and terms of service are present, but cookie consent mechanisms are missing, suggesting partial GDPR compliance. Overall, the website presents a professional and trustworthy front for a niche retail business with room for technical and security improvements.

I

INKOSYS s.r.o.

inkosys.cz

37

INKOSYS s.r.o. is a small Czech company specializing in transportation-related project consulting and engineering services. Their website presents a professional image with clear descriptions of their key services including project documentation, BIM technology, engineering activities, and technical supervision of construction. The company targets clients in the transportation infrastructure sector primarily within Prague and the Czech Republic. The website is bilingual (Czech and English) and includes contact details and partner logos, indicating established business relationships. Technically, the website uses a modern but somewhat dated technology stack including jQuery 1.11.3 and Bootstrap. It integrates Google Analytics and Google reCAPTCHA for analytics and security respectively. The site is mobile-optimized and includes a GDPR-compliant cookie consent mechanism. However, some security best practices such as security headers are missing, and the jQuery version is outdated, which could pose vulnerabilities. Security posture is generally good with HTTPS enforced and no visible vulnerabilities in the provided content. Privacy compliance is supported by a cookie consent banner and a cookie policy page, but no explicit privacy policy or terms of service pages were found. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trustworthiness. Overall, the website is professional and trustworthy from a business and user perspective but could improve in security hardening and transparency regarding privacy and incident response. The lack of WHOIS data is a notable gap that should be addressed to enhance domain trust.