Security Directory

T

Templářské sklepy Čejkovice vinařské družstvo

templarske-sklepy.cz

49

Templářské sklepy Čejkovice vinařské družstvo is a Czech winery specializing in traditional grape cultivation and wine production. The company operates an e-commerce platform selling wines and offers winery tours and tastings, positioning itself as a regional leader with historical branding linked to the Templar knights. The website is professionally designed, mobile-optimized, and includes age verification to comply with alcohol sales regulations. The business targets adult wine consumers and tourists interested in winery experiences. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Tag Manager and Facebook Pixel, with moderate performance and good SEO practices. Security posture is adequate with HTTPS and form validation but lacks explicit security headers and detailed security policies. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and business presence appear legitimate. Privacy and cookie policies are present but basic. Overall, the site demonstrates a solid digital presence with room for security and compliance improvements.

I

IMP net s.r.o.

impnet.cz

50

IMP net s.r.o. is a Czech-based internet agency specializing in custom web and e-shop development, online and offline marketing, SEO, PPC, and graphic design services. With over 15 years of experience and a client base exceeding 800, the company positions itself as a reliable partner for businesses seeking to enhance their digital presence. The website reflects a mature digital infrastructure utilizing modern JavaScript libraries and frameworks, including UIkit, jQuery, and various marketing and analytics tools. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit incident response or security policy pages are published. Overall, the site demonstrates professionalism, compliance with GDPR, and strong business credibility, though the absence of WHOIS data slightly reduces transparency. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts.

B

BusinessInfo.cz

businessinfo.cz

58

BusinessInfo.cz is an official Czech Republic government-affiliated portal operated by CzechTrade, providing comprehensive information, news, guides, and tools for entrepreneurs and exporters. The website serves as a central hub for business-related content, targeting Czech business professionals and exporters. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and user experience enhancements. It employs HTTPS and cookie consent mechanisms aligned with GDPR requirements, reflecting a mature digital infrastructure. Security-wise, the site shows good practices such as HTTPS enforcement and privacy controls, though explicit security headers are not evident in the HTML source. The absence of WHOIS data is a notable gap but does not undermine the site's legitimacy given its official backing. Overall, the portal demonstrates a strong security posture, good content quality, and compliance with privacy standards, making it a trustworthy resource for its audience.

A

AGENTURA HELAS, s.r.o.

hnec.cz

39

AGENTURA HELAS, s.r.o. operates a Czech entrepreneurial platform focused on connecting business personalities, supporting business development, and fostering networking among Czech companies. The platform offers membership programs, events, webinars, and verified business contacts, positioning itself as a trusted network for Czech entrepreneurs since 1997. The website is professionally designed, mobile-optimized, and provides comprehensive privacy and cookie policies with user consent mechanisms. Technically, it employs modern web technologies including Bootstrap, jQuery, and Google Analytics, ensuring a moderate performance and good user experience. Security posture is adequate with HTTPS enforced and secure login, though security headers and explicit incident response policies are absent. WHOIS data is unavailable, limiting domain trust verification, but the website content and business information appear legitimate and consistent with a medium-sized Czech business platform.

E

EPRAVO.CZ, a.s.

epravo.cz

51

EPRAVO.CZ, a.s. operates a well-established Czech legal information portal providing comprehensive legal content including laws, court decisions, articles, and educational resources. The platform targets legal professionals and the general public interested in law, offering subscription-based premium services and an e-shop for courses and publications. The website demonstrates a mature digital infrastructure utilizing modern web technologies such as jQuery, Bootstrap, and various analytics and marketing tools. Security posture is solid with HTTPS enforcement, bot protection via Cloudflare Turnstile, and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data reduces domain registration transparency but does not detract from the professional presentation and trust signals evident on the site. Overall, the site is a credible and valuable resource in the Czech legal domain.

D

Direct Fondee a.s.

fondee.sk

51

Fondee is an online investment platform targeting retail investors in Slovakia, offering tailored ETF portfolios including sustainable ESG options, pension accounts, and accounts for children and students. The company positions itself as a modern, accessible investment solution backed by the Direct family, with regulatory oversight by the Czech National Bank. The website is professionally designed, mobile-optimized, and provides clear information about products and services, supported by media coverage and social media presence. Technically, the site uses modern frameworks like React, integrates Google Tag Manager and reCAPTCHA for analytics and security, and is hosted on DigitalOcean with CDN support. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response details are not published. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

D

DER Touristik CZ a.s.

fischergroup.cz

54

DER Touristik CZ a.s. operates as a major travel and tourism company in the Czech Republic, consolidating several well-known brands such as EXIM tours, FISCHER, NEV-DAMA, and eTravel. The company offers a wide range of vacation packages including beach holidays, skiing trips, family vacations, and online travel booking services. As part of the REWE Group, a large German retail and tourism conglomerate, DER Touristik CZ holds a strong market position in the Czech travel industry. The website reflects a professional and consistent brand image targeting Czech consumers seeking diverse travel experiences. Technically, the website employs modern JavaScript libraries, Google reCAPTCHA for bot protection, and Usercentrics for GDPR-compliant consent management, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers and explicit incident response information are missing. Overall, the site is safe, well-structured, and compliant with privacy regulations, but the absence of WHOIS data and contact emails slightly reduces trustworthiness.

D

DER Touristik CZ a.s.

dertouristik.cz

54

DER Touristik CZ a.s. is a major Czech travel company operating multiple well-known brands such as FISCHER, EXIM tours, NEV-DAMA, and eTravel. It is part of the German REWE Group, a leading European retail and tourism conglomerate. The company offers a broad range of travel services including beach vacations, ski holidays, family travel, and online booking options, targeting Czech consumers seeking quality holiday experiences. The website reflects a professional and consistent brand presence with clear contact information and social media engagement. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and a consent management platform to comply with privacy regulations. Security posture is solid with HTTPS and bot protection, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, limiting domain registration trust analysis, but the business affiliation and content support legitimacy.

A

AnChoice CZ, s.r.o.

anchoice.cz

48

AnChoice CZ, s.r.o. operates a modern SaaS platform tailored for travel agencies and tour operators, offering millions of travel packages with real-time price and availability updates. The company has a strong market presence in the Czech Republic with over a decade of operational history and a medium-sized business footprint. Their platform includes marketing tools, business case management, and online booking capabilities, positioning them as a comprehensive solution provider in the travel technology sector. Technically, the website is built on WordPress with modern libraries and plugins, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. Overall, the business appears legitimate and professional with clear contact information and partner affiliations.

D

Darkmay s.r.o.

cestovnisystem.cz

56

Darkmay s.r.o. operates the CeSYS platform, a comprehensive SaaS solution for travel agencies primarily in the Czech Republic and neighboring countries. The platform offers multiple products including search engines, web design, sales management, and marketing tools tailored for travel agencies. With over 16 years of market presence and partnerships with major travel industry players, CeSYS holds a strong position in its niche. The website demonstrates a mature technical infrastructure leveraging modern web technologies and analytics tools with user consent mechanisms. Security posture is generally good with HTTPS and consent-based tracking, though explicit privacy and security policies are lacking. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

4

42 Heilbronn gGmbH

42heilbronn.de

59

42 Heilbronn gGmbH operates a tuition-free, full-time coding school in Heilbronn, Germany, offering an innovative peer-to-peer learning model without traditional teachers. The school targets aspiring coders aged 18 and above, providing a unique educational experience supported by a strong network of partners and scholarships. The website reflects a professional and modern digital presence, built on Contao CMS with Bootstrap and jQuery, and integrates consent management and analytics tools to ensure GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though additional security headers and incident response information could enhance trust. Overall, the site is well-structured, accessible, and trustworthy, supporting the organization's mission to empower future coders.

I

Innovation Academy

42seoul.kr

46

42 Seoul is an innovative software education program based in South Korea, operated by the Innovation Academy. The program offers tuition-free, self-directed learning aimed at cultivating top-tier software developers. The website reflects a medium-sized educational entity with a clear focus on growth, mentorship, and practical experience through collaborations with various companies. The business model emphasizes accessibility and challenge-driven learning without traditional academic constraints. Technically, the website employs a custom CMS with a technology stack including jQuery, Slick Carousel, Google Fonts, and Google Analytics, hosted via Megazone and utilizing Cloudflare DNS. The site is mobile-optimized with good SEO practices, though some accessibility features are basic. Performance is moderate, and the site uses HTTPS with a secure domain registration status. From a security perspective, the site enforces HTTPS and uses Cloudflare nameservers, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a comprehensive privacy policy present but no explicit cookie consent. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy, professional, and well-aligned with its educational mission. Strategic improvements in security headers and privacy compliance would further strengthen its posture and user trust.

A

Association 42

campus19.be

50

Campus 19 is a non-profit educational platform based in Belgium offering free, innovative coding education for adults aged 18 and over. The platform emphasizes peer-to-peer learning and project-based pedagogy without traditional classes or teachers. It operates campuses in Brussels and Antwerp and is part of the global 42 network of coding schools. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content in French with Dutch alternatives. Technically, it is built on WordPress with modern tracking and marketing tools integrated with GDPR-compliant consent mechanisms. Security posture is good with HTTPS and cookie consent but lacks publicly visible security policies or incident response contacts. WHOIS data confirms legitimacy with consistent registration details and domain age matching the business timeline. Overall, Campus 19 presents a credible, well-structured educational service with strong market positioning in Belgium's tech education sector.

egta is an international trade association representing over 180 multiplatform TV and audio businesses across more than 40 markets. The organization focuses on fostering commercial sustainability in the media industry by connecting brands with audiences, facilitating collaboration among members, and engaging with policymakers. Their services include hosting industry events, providing benchmarking and research, and offering a knowledge hub and tech hub for ad tech solutions. The website is professionally designed using WordPress with the Divi theme and integrates modern plugins for SEO and membership management. The content is rich, relevant, and well-structured, targeting media and advertising professionals. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and privacy policies are lacking. WHOIS data is unavailable, which slightly reduces trust but the overall digital presence and business credibility remain strong.

L

Leave No Trace

lnt.org

68

Leave No Trace is a well-established nonprofit organization dedicated to promoting responsible outdoor recreation through education, research, and community programs. Their website reflects a mature digital presence with comprehensive content, multilingual support, and a professional design that effectively communicates their mission and services. The organization leverages modern web technologies including WordPress with Elementor, Bootstrap, and various plugins to deliver a responsive and accessible user experience. Security measures such as HTTPS, Google reCAPTCHA, and Cloudflare DNS are in place, although some security headers could be improved. The domain registration is consistent with the organization's identity and history, enhancing trustworthiness. Overall, the website serves as a credible and authoritative platform for environmental stewardship education.

M

Max Realitní Fond SICAV a.s.

maxrealitni.cz

36

Max Realitní Fond SICAV a.s. operates as a premium real estate investment fund focused on retail and office properties within the Czech Republic. The fund targets qualified investors, offering a business model centered on pooling capital to invest in prime real estate assets with a goal of achieving an annual return of approximately 8.5%. The website presents a professional and consistent brand image, providing detailed information about investment strategies, team members, and performance metrics. Technical infrastructure leverages modern JavaScript libraries such as jQuery, Bootstrap, and Chart.js, alongside Cookiebot for GDPR-compliant cookie management. Analytics are implemented via Google Analytics and Google Tag Manager, supporting moderate user tracking with appropriate consent mechanisms. Security posture is adequate but could be improved by implementing additional HTTP security headers and verifying SSL configurations. The absence of WHOIS data due to privacy protection limits transparency but does not detract significantly from the site's credibility given the professional presentation and clear business information. Overall, the website is well-structured, user-friendly, and compliant with privacy regulations, serving its target audience effectively.

VIRTUAL ZOOM s.r.o. is a Czech Republic-based company specializing in digital solutions for the hospitality sector, including automated mailing systems, loyalty programs, e-commerce platforms, and custom website development. Established since 2003, it positions itself as a leader in smart digital solutions for hotels, restaurants, and related businesses across Europe. The website is professionally designed, content-rich, and targets hospitality businesses seeking to enhance customer engagement and revenue through digital tools. Technically, the site uses modern JavaScript libraries and frameworks, integrates Google Tag Manager and reCAPTCHA for security and analytics, and implements cookie consent mechanisms to comply with privacy regulations. Security posture is good with HTTPS enforced and secure form handling, though some security headers are missing. WHOIS data is unavailable, which slightly impacts trust but the website's professional presentation and client testimonials support its legitimacy. Overall, the site is well-structured, user-friendly, and compliant with GDPR, making it a credible digital presence for its business domain.

N

Nadace Partnerství

sazimebudoucnost.cz

10

Sázíme budoucnost is a Czech non-profit environmental initiative managed by Nadace Partnerství focused on planting 10 million trees to create resilient cities and healthy landscapes. The website is professionally designed, leveraging modern web technologies including Kentico CMS, Bootstrap, AngularJS, and jQuery. It features comprehensive content, institutional partnerships, and active social media engagement. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers are not detected. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the overall legitimacy is supported by the organization's public presence and partnerships. Privacy compliance is strong with a clear GDPR policy and cookie management. Contact information is not explicitly listed on the homepage, and no terms of service or incident response policies are published.

M

Metropolitní kapitula u sv. Víta

katedrala.tv

47

Katedrála TV is an official streaming media platform operated by Metropolitní kapitula u sv. Víta, providing live and archived religious services primarily related to St. Vitus Cathedral in Prague. The website serves a general audience interested in religious content, offering scheduled programming and video archives. The business operates as a small non-profit entity within the media and government/non-profit sectors, with a clear focus on religious broadcasting. Technically, the website employs modern web technologies including Google Fonts, Google Analytics with consent, Cookiebot for cookie management, and Cloudflare for DNS and CDN services. The site is mobile optimized with good navigation and SEO practices, though it lacks a detected CMS and some advanced accessibility features. Performance is moderate, supported by CDN usage. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms. However, it lacks DNSSEC, security headers, and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business identity, enhancing trustworthiness. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it could improve security posture by enabling DNSSEC, adding security headers, and publishing security policies. Contact information is minimal on the site, which could be enhanced for better user support and trust.

L

LaValette

lavaletteclub.com

58

LaValette Club Malta operates as an airport lounge and VIP service provider at Malta International Airport, offering memberships, one-time passes, and VIP terminal services. The website presents a professional and user-friendly interface targeting travelers seeking luxury and comfort during their airport experience. The business model focuses on membership sales and premium services, positioning itself as a key hospitality player within the transportation sector in Malta. Technically, the site is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure with good SEO and mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and incident response policies. The absence of WHOIS registration data is a notable concern, impacting domain legitimacy and trust. Overall, the website is functional, secure, and compliant with privacy regulations, but would benefit from enhanced transparency and security documentation.

I

International Federation of Red Cross and Red Crescent Societies

ifrc.org

76

The International Federation of Red Cross and Red Crescent Societies (IFRC) operates the world’s largest humanitarian network, supporting local Red Cross and Red Crescent Societies in over 191 countries with more than 16 million volunteers. The organization focuses on disaster response, health and care, community resilience, and advocacy. The website is professionally designed using Drupal 10, with modern web technologies and good mobile optimization. It features comprehensive content, clear navigation, and strong branding consistency. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. WHOIS data is unavailable due to malformed output, which limits domain registration trust analysis, but the website’s professional appearance and trusted external links support its legitimacy. Privacy compliance is good with clear policies and consent mechanisms. Overall, the site demonstrates a mature digital presence suitable for a large non-profit humanitarian organization.

The website 1000statecnych.cz represents a Czech non-profit initiative dedicated to funding and supporting optimizing clinical studies in pediatric oncology and hematology. The project aims to improve treatment outcomes for children with tumors and leukemias by raising donations and awareness. The site is professionally designed with clear navigation and good content quality, targeting donors and supporters interested in pediatric cancer research. Technically, the site is built on WordPress, uses common JavaScript libraries like jQuery and Slick Carousel, and is hosted by a Czech hosting provider. HTTPS is enabled, but security headers are missing, and there are no visible privacy or cookie policies, which are compliance gaps. Contact information is clearly provided, enhancing business credibility. Overall, the site is trustworthy and serves its non-profit mission effectively.

M

MEDIA MARKETING SERVICES a.s.

radioblanik.cz

56

Rádio BLANÍK is a well-established Czech media company specializing in radio broadcasting, podcasts, and cultural content. The website offers live streaming of multiple radio channels, a rich podcast library, and engaging articles targeting Czech-speaking audiences interested in music and culture. The business operates under MEDIA MARKETING SERVICES a.s., with a domain registered since 1999, indicating a mature market presence. The company leverages digital channels including social media and an e-commerce platform to enhance listener engagement and revenue streams. Technically, the website employs modern web technologies such as jQuery, Foundation framework, and slick carousel for UI components. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing purposes. The site is mobile-optimized with responsive design and includes accessibility features, although some improvements could be made. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes CSRF tokens, demonstrating good baseline security practices. However, security headers are not explicitly detected, and no public security policy or incident response contacts are available. Cookie consent mechanisms are implemented in compliance with GDPR, reflecting a strong privacy posture. Overall, the website is professional, trustworthy, and compliant with relevant privacy regulations. It presents no signs of malicious activity or content blocking. Strategic recommendations include enhancing security headers, publishing a security policy, and continuous monitoring of third-party scripts to maintain security and compliance.

S

SEDIGAS. Asociación Española del Gas

sedigas.es

48

SEDIGAS is a well-established Spanish non-profit association representing the gas industry, founded in 1970. The organization focuses on promoting the gas sector, ecological transition, renewable gases, training, certification, and communication within Spain. The website reflects a professional and comprehensive digital presence with rich content, including sector data, press releases, and educational resources. The target audience includes industry professionals, companies, and the general public interested in energy and gas topics. Technically, the website uses a modern tech stack including Bootstrap, jQuery, FontAwesome, and Google reCAPTCHA, ensuring a responsive and user-friendly experience. The site is well-optimized for SEO and mobile devices, with good accessibility features. Performance is moderate, with multimedia content such as videos and sliders enhancing engagement. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks visible security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear cookie and privacy policies and consent mechanisms aligned with GDPR requirements. Overall, the website presents a low-risk profile with strong business credibility and digital maturity. The main limitation is the lack of publicly accessible WHOIS data due to registry restrictions, which slightly reduces domain trust analysis completeness. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and security posture.

S

Střední průmyslová škola Třebíč

spst.cz

50

Střední průmyslová škola Třebíč is a well-established regional technical secondary school in the Czech Republic, offering a variety of vocational and technical education programs including energy, IT, mechanical engineering, and artistic metalworking. The school maintains strong industry partnerships and has received multiple certifications and awards, positioning it as a reputable educational institution in its region. The website is built on Drupal 10, leveraging modern web technologies and providing a good user experience with clear navigation and mobile optimization. However, the absence of explicit privacy and cookie policies and missing WHOIS data present compliance and trust challenges. Security posture is moderate with HTTPS implied but lacking visible security headers and incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security transparency.

C

Contipro a.s.

geloren.cz

54

Geloren.cz is the official e-commerce website for Geloren, a brand of joint health supplements produced by Contipro a.s., a Czech biotechnology company established in 1990. The company specializes in the production of hyaluronic acid and related products for both human and veterinary use. The website offers a range of dietary supplements and veterinary products, targeting consumers seeking joint care solutions. The business model is direct-to-consumer e-commerce, leveraging the Shoptet platform for online sales and marketing. Contipro holds a strong market position as a leading Czech manufacturer and a significant global player in hyaluronic acid production. Technically, the website employs a modern e-commerce stack including jQuery, Google Tag Manager, Facebook SDK, and Slick Carousel, hosted on the Shoptet platform. The site is mobile-optimized, accessible, and SEO-friendly with proper metadata and structured data. Performance is moderate with room for improvement. Security posture is good with HTTPS enforced and CSRF protections on forms, though explicit security headers are missing. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The security posture is solid but could be enhanced by adding security headers and explicit incident response contacts. The absence of WHOIS registration data is a notable concern, reducing domain trustworthiness. However, the website content and business information align with a legitimate and established company. Overall, the site is professional, trustworthy, and compliant with relevant regulations, serving its target audience effectively.

S

Spain Tourism Official Website

spain.info

45

The website www.spain.info is the official tourism portal for Spain, operated under government auspices to provide comprehensive travel information, destination guides, and booking resources for tourists. It targets a global audience with multilingual support and extensive content on culture, nature, gastronomy, and practical travel tips. The site employs a modern technical infrastructure including Bootstrap, jQuery, Leaflet maps, and integrates Google Analytics and Facebook SDK for marketing and analytics purposes. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly disclosed. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. WHOIS data is not publicly available, likely due to privacy protection, but the domain's legitimacy is supported by consistent branding and government association. Overall, the site demonstrates a high level of professionalism, trustworthiness, and technical maturity.

S

Středisko společných činností AV ČR, v. v. i.

hotelyspribehem.cz

46

The website hotelyspribehem.cz represents a hospitality business operated under the auspices of the Academy of Sciences of the Czech Republic (Akademie věd ČR). It offers a portfolio of historical and stylistic hotels, conference and event spaces, gastronomic experiences, and wedding services. The business targets tourists, corporate clients, and event organizers seeking unique, historically rich accommodations combined with modern comfort. The domain is relatively new, registered in 2022, consistent with the business launch timeline. Technically, the website is built on the OpenCms platform, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for UI components, and integrates analytics tools including Google Analytics and Plausible Analytics. The site is hosted on servers managed by Gransy, as indicated by the nameservers. The website demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML. However, it lacks important security headers like Content-Security-Policy and X-Frame-Options, and does not provide a cookie consent mechanism, which is a GDPR compliance gap. No explicit security or incident response policies are published. The WHOIS data is transparent and consistent with the business identity, supporting legitimacy. Overall, the website is professional, trustworthy, and well-positioned in its niche market. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

S

Správa železnic, státní organizace

zeleznicenaletiste.cz

57

Správa železnic, státní organizace, operates the official website zeleznicenaletiste.cz to provide information about the modernization and construction of railway infrastructure connecting Prague, Václav Havel Airport, and Kladno. The website serves as a communication platform for residents, commuters, and travelers, offering project updates, news, and detailed descriptions of the railway sections. The organization holds a strong market position as a government entity responsible for transportation infrastructure in the Czech Republic. Technically, the website is built on the Liferay CMS platform, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, and Unite Gallery. It integrates analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized with good navigation and accessibility features, although some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security headers and a public security policy or vulnerability disclosure program are absent. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's profile. Overall, the website demonstrates a solid security posture and good privacy compliance, with room for enhancements in security policy transparency and accessibility. The site is trustworthy, professionally maintained, and serves its public sector mission effectively.

Fantova budova is a culturally significant Secessionist building in Prague, managed by Správa železnic, the Czech state railway organization. The website serves as an informational and promotional platform for the ongoing restoration project and event space rental. The site is well-structured, professionally designed, and provides relevant content primarily in Czech with English alternatives. Technically, it is built on the Liferay CMS platform and uses modern JavaScript libraries and tracking tools. Security posture is good with HTTPS enforced and cookie consent implemented, though it lacks explicit security headers and published security policies. Overall, the site is trustworthy and serves its purpose effectively.

S

Správa železnic, státní organizace

vrtky.cz

59

The website vrtky.cz serves as an official public information portal for the Czech Republic's high-speed rail infrastructure project, managed by Správa železnic, a state organization. It provides comprehensive information about the development, planning, and updates of high-speed rail lines (VRT) aimed at improving transportation efficiency and regional mobility. The site targets Czech residents, transport professionals, and government stakeholders, offering news, maps, and project details. Technically, the site is built on the Liferay CMS platform and employs modern web technologies including jQuery, Slick Carousel, and Google Tag Manager. It integrates analytics and marketing tools such as Google Analytics and Facebook Pixel, and implements cookie consent mechanisms in compliance with GDPR. The site is mobile-optimized and features a professional design with clear navigation. From a security perspective, the website uses HTTPS with good SSL configuration and basic security best practices. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, vrtky.cz is a trustworthy and professionally maintained government-related website with a strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve security posture and transparency.

M

Město Aš

info-as.cz

52

The website www.info-as.cz serves as an official tourism and local information portal for the city of Aš in the Czech Republic. It provides comprehensive details about local activities, events, cultural sites, accommodation, and gastronomy, targeting tourists, families, and local visitors. The site is well-structured with clear navigation and offers multilingual support. It integrates modern JavaScript libraries and tracking tools such as Google Analytics and Tag Manager, with a cookie consent mechanism ensuring GDPR compliance. However, the absence of WHOIS data limits transparency regarding domain ownership, which slightly impacts trustworthiness. Technically, the website employs a modern tech stack including jQuery, Swiper.js, and LightGallery, delivering a moderate performance with good mobile optimization. Security posture is adequate with HTTPS enforced and consent management in place, but lacks explicit security headers and dedicated security or incident response policies. Contact information is available via a GDPR-compliant form, though no direct company emails or phone numbers are explicitly listed. Social media presence on Instagram and Facebook enhances engagement and trust. Overall, the site is professional, content-rich, and user-friendly, suitable for its purpose as a local tourism hub. The main risk lies in the lack of domain registration transparency and missing formal security policies. Strategic improvements in security headers, terms of service, and WHOIS transparency would enhance credibility and security posture.

S

Strom - shop

stromshop.cz

71

Stromshop.cz is an established e-commerce platform specializing in the sale of John Deere branded products in the Czech Republic. Founded in 2013, it serves as the official John Deere online shop offering a wide range of products including garden machinery, clothing, toys, and accessories. The website demonstrates a consistent brand presence and targets consumers interested in John Deere merchandise. Technically, the site uses ASP.NET WebForms with Kentico CMS, integrates Google Tag Manager and reCAPTCHA for tracking and security, and shows moderate performance with good mobile optimization. Security practices include HTTPS and CSRF protection, though some security headers are not explicitly confirmed. Privacy and cookie policies are present, indicating basic GDPR compliance, but no explicit security policy or incident response information is found. Overall, the site is professional, trustworthy, and safe for general audiences.

B

Birdline

birdline.sk

50

Birdline is a Slovak digital marketing agency specializing in comprehensive marketing services including strategic marketing, branding, social media, SEO, web development, e-commerce solutions, innovation, digitalization, and education. The company targets entrepreneurs and businesses seeking to improve their digital presence and marketing effectiveness. The website is professionally designed using Drupal 7 CMS with modern JavaScript libraries and frameworks, providing a good user experience and mobile optimization. Social media integration is strong, supporting brand visibility and engagement. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks advanced security headers and explicit privacy and terms policies. WHOIS data confirms the legitimacy and consistency of the domain registration with the business profile. Overall, the website is trustworthy and well-positioned in its market niche.

K

KOSMAS.cz

kosmas.cz

62

KOSMAS.cz is a well-established Czech online bookstore offering a wide range of products including physical books, e-books, audiobooks, music, and games. The company operates 35 physical stores and maintains a strong online presence with a user-friendly website. Their market position is solid within the Czech retail book sector, supported by customer reviews and recognized certifications such as 'Zelená firma' and 'Ověřeno Heurekou'. The website targets Czech-speaking book buyers and readers, providing comprehensive product information and a smooth shopping experience. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Tag Manager, Google Analytics, Bing Ads, and Typekit fonts. The site is mobile-optimized and demonstrates good SEO practices. However, some security headers are missing, and no explicit security policy or incident response pages are published, which could be improved to enhance security posture. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, indicating compliance with GDPR. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces transparency but does not significantly impact the overall trustworthiness given the website's professional presentation and contact information. Overall, KOSMAS.cz presents a trustworthy and professional e-commerce platform with good content quality and business credibility. Strategic improvements in security headers and transparency policies would further strengthen their security posture and compliance.

C

Cech kachliarov

cechkachliarov.sk

61

Cech kachliarov is a Slovak professional association dedicated to supporting and representing stove and fireplace professionals. The organization provides consumer guidance, educational resources, and a platform to find qualified professionals, ensuring quality and safety in the industry. Their website reflects a well-structured, professional presence with clear branding and relevant content targeted at Slovak residents seeking expert services in this niche. Technically, the site is built on Contao CMS and uses modern web technologies including Google Analytics, Facebook Pixel, and Google Tag Manager for analytics and marketing. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though it lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the website is trustworthy, professional, and functional, serving its target audience effectively.

F

ForPasiv

forpasiv.cz

50

ForPasiv.cz is a professionally maintained website representing the 13th edition of a trade fair focused on low-energy, passive, and zero-energy buildings held in Prague. The event is well-established since 2012 and targets visitors, exhibitors, and media professionals interested in energy-efficient construction technologies and materials. The website provides comprehensive information about the event, including exhibitor registration, visitor tickets, media accreditation, and partner details. Technically, the site is built on WordPress with modern plugins and libraries, ensuring good SEO, mobile responsiveness, and user experience. Security posture is solid with HTTPS, cookie consent management, and no visible vulnerabilities, though some security headers could be improved. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site is trustworthy, well-branded, and serves its audience effectively.

K

Komerční banka, a. s.

nastartujtese.cz

62

Nastartujtese.cz is a Czech entrepreneurship support platform sponsored by Komerční banka, offering a competition and marketplace for starting entrepreneurs. The website provides information about the competition, prizes, partners, and business advice, targeting new business founders in the Czech Republic. The platform is positioned as a reputable grant and support program with a medium-sized presence and a focus on finance and non-profit sectors. Technically, the website uses modern web technologies including React and Google Tag Manager, with good mobile optimization and performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response details are missing. The absence of WHOIS data is a concern for domain legitimacy verification but the website's branding and partner ecosystem support its credibility. Overall, the site is professional, trustworthy, and compliant with GDPR, serving its target audience effectively.

Z

Zemědělský svaz ČR

zscr.cz

36

Zemědělský svaz ČR is a Czech agricultural association representing agricultural companies, cooperatives, farmers, and related entrepreneurs. The organization provides a range of services including legal advice, information services, training seminars, and employment assistance. It holds a significant position within the Czech agricultural sector and maintains partnerships with notable companies and financial institutions. The website is professionally designed, mobile-optimized, and provides comprehensive content relevant to its target audience. Technically, it uses modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, and is powered by the SUITU CMS platform. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit incident response or vulnerability disclosure policies are found. The absence of WHOIS data is a concern for domain legitimacy verification, but the website content and partner ecosystem support its credibility. Overall, the site is a reliable resource for agricultural stakeholders in the Czech Republic.

V

VINO CIBULKA | Rodinné BIO vinařství

vinocibulka.cz

54

VINO CIBULKA is a family-owned BIO winery based in the Czech Republic, operating an e-commerce platform offering organic and low-histamine wines and sparkling wines. The business emphasizes sustainable production and local heritage, managing 16 hectares of vineyards. Their market position is regional with a focus on quality and environmentally conscious products. The website supports online sales, local sales points, and event hosting, targeting mature consumers interested in organic wines. Technically, the site uses the Shoptet e-commerce platform with modern JavaScript libraries and integrates Google Analytics and Facebook SDK for marketing and analytics. Security posture is good with HTTPS and CSRF protections, though some security headers are missing. Privacy compliance is well addressed with cookie consent and privacy policies. WHOIS data is unavailable, limiting domain trust assessment, but the website content and business presence appear legitimate and professional. Overall, the site is well designed, user-friendly, and compliant with GDPR, with moderate user tracking and good marketing transparency.

C

Centrum pasivního domu

pasivnidomy.cz

46

Centrum pasivního domu is a Czech non-profit organization dedicated to promoting passive houses and sustainable building practices. The website serves as a comprehensive resource offering catalogs, educational events, consulting services, and membership opportunities targeting both laypersons and professionals in the energy-efficient building sector. The organization holds a leading position in the Czech Republic's passive house community, providing trusted information and fostering collaboration among industry stakeholders. Technically, the website employs modern web technologies including the Nette framework, jQuery, Bootstrap, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing, all managed with user consent mechanisms. Security posture is solid with HTTPS enforcement and email obfuscation, though explicit security policies and incident response details are absent. The missing WHOIS data is a notable concern but does not detract significantly from the site's legitimacy given its professional presentation and comprehensive privacy compliance. Overall, the site is well-structured, user-friendly, and trustworthy, serving its mission effectively.

F

FlexiSystems s.r.o.

flexiportal.cz

42

FlexiSystems s.r.o. is a Czech-based technology company specializing in modern web solutions with a focus on e-learning platforms. Their product FlexiPortal offers a comprehensive system for selling and managing online and in-person training courses, integrating e-learning management, e-commerce, content editing, and payment processing. The company targets business clients seeking tailored educational solutions and has a professional web presence with a portfolio of clients showcased. Technically, the website uses common JavaScript libraries such as jQuery, Slick Carousel, and Font Awesome, and employs Google Tag Manager for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and well-structured, though accessibility features are basic. Security posture is adequate with HTTPS usage implied, but lacks visible security headers and formal security policies. WHOIS data is unavailable, which slightly reduces domain trust but the website content and contact information appear legitimate. Overall, the site is professional and functional with room for improvement in privacy compliance and security transparency.

B

Baobab

baobab-books.net

50

Baobab Books is a Czech-based publisher specializing in illustrated children's books, offering a curated catalog of books, authors, and literary events. The website targets children, educators, and book enthusiasts within the Czech Republic, operating primarily as an e-commerce platform for book sales and event promotion. The business appears to be a small-sized entity focused on niche publishing and retail within the Czech market. Technically, the website is built on Drupal 8 CMS, leveraging modern frontend libraries such as Slick Carousel and Google Analytics for user insights, with a moderate performance profile and good mobile optimization. Security posture is generally good with HTTPS enforced and privacy-conscious analytics settings; however, the absence of security headers and cookie consent mechanisms are areas for improvement. The lack of WHOIS data for the domain is a notable anomaly that reduces trustworthiness, though the professional presentation and comprehensive privacy and terms policies support legitimacy. Overall, the website is safe, well-structured, and suitable for its target audience, but the domain registration inconsistency warrants further verification.

E

Educatius

educatius.se

74

Educatius Sweden AB operates a professional and well-established website focused on providing high school exchange programs for Swedish gymnasiet students. The company offers a variety of international exchange destinations and programs, supported by a network of related country-specific Educatius domains. The website is built on WordPress with modern technologies such as Bootstrap and jQuery, and integrates marketing and analytics tools including Google Tag Manager and Trustpilot widgets. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. WHOIS data for the exact subdomain queried is missing, which slightly reduces trust but does not negate the overall legitimacy given the professional presentation and broad international presence. Overall, the site demonstrates a mature digital infrastructure suitable for its educational business model.

N

Nobu Restaurants

noburestaurants.com

69

Nobu Restaurants is a globally recognized luxury hospitality brand specializing in Japanese-Peruvian fusion cuisine with an extensive network of restaurants and hotels worldwide. The website reflects a premium brand image with rich multimedia content, clear navigation, and strong social media integration. Technically, the site is built on Silverstripe CMS 5.0 with modern front-end frameworks and tracking tools such as Google Tag Manager and Microsoft Clarity, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain registration consistent with the brand's history, though improvements can be made by implementing DNSSEC and security headers. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the site is professional, trustworthy, and well-positioned in the hospitality market.

F

Feefo Holdings Ltd

feefo.com

73

Feefo Holdings Ltd operates a SaaS-based customer review platform that enables businesses to collect, manage, display, and analyze authentic customer feedback. The company targets a broad range of sectors including retail, B2B, finance, automotive, and education, serving over 6,500 brands. The website demonstrates a mature digital presence with modern technologies such as HubSpot CMS, Google Tag Manager, and Facebook Pixel integrated for marketing and analytics. Security posture is strong with HTTPS, security headers, and secure form handling, although no explicit public security policy or incident response contacts were found. Privacy and cookie policies are present with consent mechanisms, indicating GDPR compliance. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

Lasty webdesign is a Czech Republic-based small business specializing in custom web design, e-commerce solutions, and web applications with over 24 years of experience. The company offers a comprehensive range of internet services including SEO optimization, hosting, and internet marketing, targeting businesses seeking tailored digital solutions. The website is professionally designed with modern technologies such as Bootstrap, GSAP, and jQuery, providing a good user experience and mobile optimization. Security measures include the use of Google reCAPTCHA on forms, but lack visible security headers and cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which limits transparency but is common for businesses of this type. Overall, the website presents a trustworthy and professional digital presence with room for improvement in security and privacy compliance.

M

MediMedi

medimedi.cz

52

MediMedi is a Czech-based e-commerce company specializing in the sale of medical diagnostic equipment, laboratory supplies, protective healthcare products, and supplements. The company targets healthcare professionals, clinics, senior homes, and general households, positioning itself as a niche supplier in the healthcare sector within the Czech Republic. Their website is built on the Shoptet e-commerce platform, featuring a professional design with clear navigation and product categorization. The site supports multiple currencies and includes a cookie consent mechanism, reflecting a moderate level of digital maturity. From a security perspective, the website enforces HTTPS and uses CSRF tokens in forms, which are positive indicators. However, the use of an outdated jQuery version and the absence of some security headers such as Content-Security-Policy and X-Frame-Options present potential vulnerabilities. The lack of a visible privacy policy page and incident response contacts suggests room for improvement in compliance and transparency. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website demonstrates a good balance of business functionality and technical implementation but would benefit from updates to its security posture and privacy compliance to enhance trustworthiness and reduce risk.

V

VIENNA-COMPONENTS-TRADING, s.r.o.

vicomtrade.cz

38

VIENNA-COMPONENTS-TRADING, s.r.o. is a Czech-based distributor specializing in electronic and electromechanical components for industrial automation, energy, telecommunications, medical, and transportation sectors. The company operates a professional WordPress-based website offering product catalogs, support, and contact information, targeting B2B customers in specialized industries. The website is well-structured, multilingual (Czech and English), and integrates an e-shop partner link for sales. Technically, the site uses modern web technologies including WordPress 6.8.3, jQuery, and Google Analytics, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks advanced security headers and public security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data is consistent with the business claims, indicating legitimacy and trustworthiness.