Security Directory

P

Příprava Envisio

jene.cz

10

The website https://jene.cz/ represents an authorized Škoda car dealership and service center based in the Czech Republic. It offers a wide range of Škoda vehicles including new, used, and demo cars, along with authorized servicing, original spare parts, warranty services, and flexible financing options such as operational leasing. The business is well-established with a domain age dating back to 2000, indicating a mature presence in the automotive market. The site targets Škoda vehicle buyers and owners, providing professional and comprehensive services aligned with the brand's standards. Technically, the website is built on WordPress using Elementor and JetEngine plugins, integrating Google Tag Manager and reCAPTCHA for analytics and security. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features. Performance is moderate, with room for improvement in hosting and speed optimization. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Cookie consent and privacy policies are implemented, reflecting GDPR compliance. However, the site lacks explicit security policies and incident response contact information, which are recommended for enhanced transparency and readiness. No critical vulnerabilities or suspicious activities were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its business purpose effectively.

V

Veba, textilní závody a.s.

veba.cz

10

Veba, textilní závody a.s. is a well-established Czech manufacturer specializing in high-quality cotton Jacquard textiles, including home and hotel textiles, African brocades, and technical textiles. The company leverages a century of tradition combined with modern technology to serve a diverse clientele including retail customers and the hospitality sector. Their market position is strong within the Czech Republic, supported by certifications such as ISO 9001 and ISO 14001. The website reflects a professional business model with clear product segmentation and multiple sales channels including an online shop and physical stores. Technically, the website employs modern web technologies such as Bootstrap 4.4.1, jQuery, Google Analytics, and Google reCAPTCHA, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO practices and a cookie consent mechanism that aligns with GDPR requirements. However, some accessibility features could be improved, and no CMS or hosting provider details were identified. From a security perspective, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional appearance and business presence. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is functional, professional, and compliant with privacy norms, but the missing WHOIS information and lack of some security best practices suggest areas for improvement. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to bolster trust and compliance.

Schools United, operated by Uniteds s.r.o., is a well-established Czech company founded in 2012 that specializes in providing customized e-commerce solutions for schools, graduates, sports teams, and corporate clients. Their offerings include school e-shops, exclusive clothing, school supplies, and corporate gifts, supported by the Hrdá škola project to foster school pride. The company serves over 1,500 schools in the Czech Republic and Slovakia, positioning itself as a leading provider in the education merchandise sector. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Google Tag Manager and reCAPTCHA to enhance user experience and security. Contact information and legal documents are clearly presented, supporting business credibility and compliance.

L

LinkedIn

kindred.cz

80

LinkedIn is a leading global professional networking platform that enables users to connect, share ideas, and advance their careers. The website analyzed is the official LinkedIn login page, featuring a secure and modern authentication infrastructure including support for Google, Microsoft, and Apple sign-ins, as well as passkey authentication. The platform demonstrates a high level of digital maturity with comprehensive privacy and cookie policies, GDPR compliance, and strong branding consistency. Security measures such as HTTPS, CSRF tokens, and reCAPTCHA are implemented to protect user data and prevent abuse. Overall, the site presents a low risk profile with no detected vulnerabilities or suspicious content, reflecting LinkedIn's enterprise-grade security posture.

AutoPalace Group operates a comprehensive automotive business in the Czech Republic, offering new and used vehicle sales, operative leasing, servicing, and electric mobility solutions. The company has a strong market presence with multiple branches and partnerships with major automotive brands such as Ford, Škoda, Hyundai, and others. The website reflects a professional and well-structured digital presence, supporting customer engagement through detailed vehicle listings and service information. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Analytics, with GDPR-compliant cookie consent mechanisms in place. Security posture is good with HTTPS enforced and use of reCAPTCHA, though some security headers are not detected and no explicit security policy or incident response information is published. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high based on website content and branding.

Reno Design s.r.o. is a Czech Republic-based small business specializing in the restoration and upholstery of antique furniture using traditional technologies. The company also manufactures antique and modern furniture and operates an associated e-shop for related products. The website presents a professional and well-structured digital presence targeting customers interested in antique furniture restoration. Technically, the site uses modern JavaScript libraries such as jQuery, Slick Carousel, and Fancybox, along with Google services for analytics and tag management. Hosting is provided by Wedos, a known hosting provider. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, indicating compliance gaps. The domain is registered since 2015, consistent with the business age, and shows no suspicious patterns. Overall, the website is functional and trustworthy but would benefit from improved privacy compliance and enhanced security measures.

B

BS TEXTIL

bstextil.cz

45

BS TEXTIL is a Czech Republic-based textile retailer specializing in upholstery fabrics, curtains, and related textile collections. The company operates an e-commerce platform built on WordPress and WooCommerce, offering a variety of textile products targeted at retail customers and businesses in hospitality and interior design sectors. The website demonstrates a professional design with good navigation and mobile responsiveness, supported by SEO tools such as Yoast SEO. The technical infrastructure includes modern web technologies and security features like HTTPS and Google reCAPTCHA to protect user interactions. However, the absence of a visible privacy policy and limited WHOIS data reduces transparency and trust signals. Security posture is generally good but could be improved by implementing additional security headers and conducting regular audits. Overall, the website presents a legitimate and functional online presence for a small textile business.

I

Informa Markets

informamarkets.com

69

Informa Markets is a division of Informa PLC, operating as a global market-making company specializing in creating platforms for industries and specialist markets to trade, innovate, and grow. The website presents a professional and comprehensive overview of their services, including large-scale exhibitions, virtual events, and online marketplaces, targeting B2B buyers and sellers across multiple specialist sectors. The digital infrastructure is built on Adobe Experience Manager with integrations of modern analytics and consent management tools, reflecting a mature digital presence. Security posture is solid with HTTPS, bot protection, and consent mechanisms, though some security headers could be improved. The absence of WHOIS data introduces some uncertainty, but the website's branding and content strongly align with a legitimate enterprise entity. Overall, the site is well-structured, privacy-conscious, and business-focused, supporting Informa Markets' market position as a leading specialist market facilitator.

J

J&T ARCH INVESTMENTS

jtarchinvestments.sk

57

J&T ARCH INVESTMENTS is a leading qualified investor fund operating primarily in Slovakia and the Czech Republic, managing a diversified portfolio including private equity, real estate, and strategic investments. The fund is positioned as the largest in its region by asset volume, backed by a strong parent company, J&T Finance Group SE. The website reflects a mature digital presence with comprehensive investor communications, regular updates, and transparent financial disclosures. Technically, the site employs modern web technologies including Google Analytics, Tag Manager, reCAPTCHA, and OneSignal for push notifications, hosted on a DNSSEC-enabled domain with secure HTTPS. Security posture is solid with good SSL configuration and privacy compliance, including cookie consent mechanisms aligned with GDPR. However, explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility, serving a qualified investor audience effectively.

G

Gold Interactive

goldinteractive.ch

44

Gold Interactive is a Zurich-based digital agency specializing in brand experience and business impact through innovative digital solutions. The company offers a comprehensive suite of services including strategy, design, and technology development, targeting businesses seeking digital transformation and enhanced user experiences. Their market position is supported by a professional website showcasing client projects and a clear service offering. Technically, the website employs modern web standards, integrates Google reCAPTCHA for form security, and uses tracking tools like FuseDeck and Calendly for marketing and scheduling. Security posture is strong with HTTPS enforced and secure form handling, though improvements can be made by adding explicit security headers and a cookie consent mechanism. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and no suspicious content.

F

Fyzio Beskyd s.r.o.

fyziobeskyd.cz

10

Fyzio Beskyd s.r.o. is a Czech-based therapeutic and educational center specializing in physiotherapy services and professional training. Established in 2010, the company offers a range of services including consultations, regular and intensive therapies, home treatments, and specialized courses for healthcare professionals and laypersons. The website reflects a well-structured business with a clear focus on healthcare and education, targeting a broad audience from newborns to active adults and sports enthusiasts. Technically, the site is built on WordPress with modern plugins ensuring GDPR compliance and user experience enhancements. Security measures include HTTPS, Google reCAPTCHA, and cookie consent mechanisms, although some security headers and incident response details are absent. Overall, the site demonstrates a solid security posture and professional digital presence, supporting the company's credibility and trustworthiness.

D

Dobrý web

dobryweb.cz

58

Dobrý web is a Czech-based educational platform specializing in digital marketing and UX training, offering a variety of online and bespoke courses. The company has a strong market presence with over 14 years of experience and a high satisfaction rate among participants. Their business model focuses on e-learning and tailored corporate training, supported by a parent company Sherpas, s.r.o., a digital agency. The website is professionally designed with clear navigation and rich content, targeting individuals and companies seeking to improve their digital marketing skills. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and reCAPTCHA for security. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security posture is good with HTTPS and form protections, though some security headers and policies could be improved. Privacy compliance is basic with cookie consent but lacks a clear privacy policy page. WHOIS data is missing, which reduces domain trustworthiness, but the overall business credibility and content quality are high. Recommendations include publishing a privacy policy, security policy, and improving security headers to enhance trust and compliance.

D

DER Touristik CZ a.s.

etravel.cz

55

eTravel.cz is an established online travel agency operating under the DER Touristik CZ a.s. umbrella, a major player in Central European travel markets. The website offers a broad range of holiday packages including last minute deals, exotic vacations, ski trips, wellness and spa offers, and tours by bus or own transport. The target audience is primarily Czech-speaking travelers seeking convenient and diverse travel options. The business benefits from strong brand recognition and integration within the DER Touristik group, enhancing its market position and trustworthiness. Technically, the website employs modern web technologies including Vue.js, jQuery, Google Tag Manager, and Usercentrics for consent management, reflecting a mature digital infrastructure. The site is mobile optimized with good performance and basic accessibility features. Analytics and marketing tools are used responsibly with consent mechanisms in place, supporting GDPR compliance. From a security perspective, the site uses HTTPS, reCAPTCHA for form protection, and a consent management platform, indicating a solid security posture. However, the absence of visible security headers and incomplete WHOIS data are areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a professional, trustworthy, and user-friendly platform for travel services. The main risk factor is the lack of WHOIS transparency, which slightly reduces domain trustworthiness but does not undermine the evident legitimacy of the business. Strategic recommendations include enhancing security headers, improving accessibility, and ensuring WHOIS data availability for full trust assurance.

O

Obec Stehlovice

stehlovice.cz

46

The website stehlovice.cz serves as the official online presence for the municipality of Stehlovice in the Czech Republic. It provides residents and visitors with essential information about local government activities, official documents, contact details, and community news. The site is clearly targeted at local citizens and stakeholders interested in municipal affairs. The business model is that of a governmental public service portal, focusing on transparency and communication rather than commercial activities. The domain is well-established since 2009, reinforcing its legitimacy and trustworthiness. Technically, the website employs a custom JavaScript menu system and is built on the vismo CMS platform. It integrates Google services such as reCAPTCHA for form protection and Google Translate for multilingual support. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured navigation. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with excellent SSL configuration and employs Google reCAPTCHA to mitigate spam on contact forms. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were found. Privacy compliance is basic but present, with a privacy policy and cookie information available, though no explicit cookie consent mechanism is implemented. Overall, the website is a trustworthy and professional municipal portal with good content quality and technical implementation. Strategic recommendations include enhancing security headers, formalizing security policies, and implementing cookie consent to improve GDPR compliance and user trust.

O

Obecní úřad Přeborov

preborov.cz

46

The website preborov.cz serves as the official online presence for the municipality of Přeborov in the Czech Republic. It provides residents and visitors with essential information such as local news, public notices, waste collection schedules, and contact details for municipal offices. The site is positioned as a small government entity's communication platform, targeting local citizens and stakeholders. The business model is purely governmental, focusing on public service and community engagement. The website content is primarily in Czech, with Google Translate integration to support other languages. Technically, the site uses a CMS platform called Vismo, standard web technologies (HTML5, CSS, JavaScript), and integrates Google reCAPTCHA for form security. The site is served over HTTPS, ensuring encrypted communications. Security posture is adequate but could be improved by adding security headers and explicit incident response policies. Privacy compliance is basic, with a privacy and cookie policy present but lacking a consent mechanism. Overall, the site is trustworthy, professionally maintained, and fulfills its role as a municipal information portal.

O

Obecní úřad Jickovice

jickovice.cz

46

The website jickovice.cz serves as the official online presence of the municipality of Jickovice in the Czech Republic. It provides residents and visitors with timely local news, event information, public notices, and access to municipal services. The site is well-structured, primarily targeting local citizens and stakeholders interested in community affairs. The business model is governmental, focusing on public service rather than commercial activities. The domain age and WHOIS data confirm a stable and legitimate municipal presence since 2010. Technically, the website employs a CMS platform (vismo), uses JavaScript and Google reCAPTCHA for form security, and integrates external services such as OpenWeatherMap for weather updates. The site is served over HTTPS, ensuring encrypted communication. While the site shows basic mobile optimization and accessibility features, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CAPTCHA protection on forms. However, it lacks explicit security policies, incident response contacts, and advanced security headers. No vulnerabilities or suspicious content were detected. Privacy compliance is basic but present, with clear privacy and cookie policy pages. Overall, jickovice.cz is a trustworthy, well-maintained municipal website with a solid business credibility score. Strategic recommendations include enhancing security headers, implementing cookie consent mechanisms, and publishing incident response information to further strengthen trust and compliance.

Obec Hrejkovice operates a municipal government website serving the local community in the Czech Republic. The site provides residents and visitors with information about the municipality, including news, official notices, cultural events, and contact details. The website is designed to support local governance transparency and community engagement. The target audience is primarily local residents and stakeholders interested in municipal affairs. Technically, the website uses a combination of jQuery, jQuery UI, and plugins such as Cycle2 for carousel functionality. It is built on the IPO CMS platform and integrates Matomo analytics with cookies disabled, reflecting a moderate level of digital maturity and privacy awareness. The site is mobile responsive and includes accessibility features such as font resizing. From a security perspective, the website enforces HTTPS and uses Google reCAPTCHA to protect forms. However, it lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. The absence of WHOIS data limits domain registration transparency, but the website content and contact information strongly indicate legitimacy. Overall, the security posture is good but could be enhanced with additional headers and compliance features. The overall risk is low given the nature of the site as a local government portal with no sensitive transactions or personal data collection beyond basic contact forms. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, publishing clear privacy and terms documents, and maintaining up-to-date software components.

J

Junák – český skaut, z. s.

skaut.cz

39

Junák – český skaut, z. s. is a prominent Czech non-profit organization dedicated to youth development through scouting activities. The organization serves a large community of over 78,000 scouts across 2,360 local groups, offering programs tailored to various age groups from children to adults. Their mission emphasizes friendship, adventure, self-confidence, and fairness, engaging both youth and adult volunteers. The website reflects a well-established entity with strong community ties and active fundraising efforts.

L

LUIGI LAVAZZA SPA

lavazza.cz

61

LUIGI LAVAZZA SPA operates the www.lavazza.cz website, providing premium Italian espresso coffee products and business coffee solutions in the Czech Republic. The website is professionally designed, leveraging Adobe Experience Manager CMS and modern web technologies, offering a good user experience with clear navigation and mobile optimization. The company emphasizes its long heritage since 1895 and targets both consumers and business clients with a broad product range including coffee blends, capsules, and equipment. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. The absence of WHOIS data limits domain trust analysis but the website's professional presentation and official contact details support its legitimacy.

CaravanOnTheRun.cz is a Czech Republic based small business specializing in the rental and sale of caravans and motorhomes, targeting customers primarily in the Pardubice and Hradec Králové regions. The website presents a professional and well-structured platform offering modern 2025/2026 model vehicles, with clear contact information and a focus on customer convenience including online reservations. The business model revolves around vehicle rental complemented by sales of caravans and accessories, positioning itself as a regional leader in this niche market. Technically, the website employs a custom or niche CMS (Fibich), integrates modern analytics and tracking tools such as Google Analytics and Facebook SDK, and uses Google reCAPTCHA for form security. The site is mobile responsive and SEO optimized, though some accessibility features could be improved. Performance is moderate, with no blocking or WAF challenges detected, indicating good availability. From a security perspective, the site uses HTTPS with good SSL configuration and employs reCAPTCHA to protect forms. However, it lacks visible security headers and does not provide a privacy or cookie policy, which are important for GDPR compliance. No incident response or security policy information is available, and WHOIS data is not publicly accessible, likely due to privacy protection. These factors reduce transparency but do not indicate malicious intent. Overall, the website is safe, professional, and trustworthy for its business purpose, but improvements in privacy compliance, security headers, and transparency would enhance its security posture and user trust.

Karavan centrum FIBICH CampingCars is a Czech Republic based small business specializing in the retail and servicing of caravan and motorhome accessories and parts. The company offers a range of services including caravan repairs, installation of accessories, and sales of original spare parts for multiple caravan brands. Their website reflects a professional retail e-commerce platform with product listings, pricing, and contact information. Technically, the site uses modern web technologies including HTTPS, Google reCAPTCHA, and responsive design, but lacks some security headers and privacy compliance documentation. The absence of WHOIS data limits domain legitimacy verification, though the business appears credible based on content and contact details. Overall, the site is functional and trustworthy but would benefit from enhanced privacy policies and security practices.

A

Alpress - knižní distribuce s.r.o.

alpress.cz

56

Alpress - knižní distribuce s.r.o. operates as a Czech book publishing and online retail company specializing in a wide range of literary genres including novels, thrillers, children's books, and popular science literature. The company holds a leading market position in the Czech book publishing sector, offering direct sales through its online platform. The website presents a professional and content-rich interface targeting a broad audience of book readers and enthusiasts. Technically, the site employs modern web technologies such as jQuery, Google reCAPTCHA, and integrates analytics and customer review widgets, indicating a moderate level of digital maturity. Security measures include HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and privacy policy transparency. Overall, the website is trustworthy and functional, but the absence of WHOIS data and a dedicated privacy policy page slightly reduce its credibility from a compliance perspective.

R

Recombee

recombee.com

67

Recombee is a technology company specializing in AI-powered recommendation and personalized search services delivered as a SaaS platform. Their offerings include real-time personalized recommendations, advanced search capabilities, and analytics tools tailored for diverse industries such as video streaming, e-commerce, media, real estate, and more. The company targets product managers and technical teams seeking to enhance user engagement and conversion rates through AI-driven personalization. With a strong market presence evidenced by partnerships with major brands and numerous client testimonials, Recombee positions itself as a leading provider in the AI recommendation space. Technically, Recombee employs a modern web stack including React and Next.js, with extensive use of RESTful APIs and SDKs for multiple programming languages. The website demonstrates excellent performance, mobile responsiveness, and SEO optimization. Integration of Google Tag Manager, Hotjar, and Usercentrics indicates a mature approach to analytics and privacy compliance. However, explicit security headers are not detected, and no dedicated security policy or incident response page is published. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, along with consent management for cookies, reflecting good baseline security and privacy practices. The absence of WHOIS data is likely due to privacy protection, which is justified for this business type. No critical vulnerabilities or suspicious indicators are found in the content or technical setup. Overall, Recombee presents a professional, trustworthy, and technically sound platform with strong business credibility. Strategic recommendations include enhancing security header implementation, publishing a formal security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

H

HB Reavis

hbreavis.com

11

HB Reavis is a well-established international real estate and workspace provider founded in 2003. The company focuses on delivering personalized experiences through real estate and wellbeing solutions, positioning itself as a fully integrated property developer with a strong market presence in Europe. Their website reflects a professional and modern digital infrastructure built on WordPress, leveraging technologies such as Gravity Forms, Google Tag Manager, and OneTrust for cookie consent management. The site is well-optimized for SEO, mobile-friendly, and provides clear navigation and relevant content for its target audience of businesses seeking workspace solutions. Security posture is strong with HTTPS enforced, security headers present, and use of reCAPTCHA to protect forms. Privacy compliance is robust with GDPR-aligned policies and explicit cookie consent mechanisms. No critical vulnerabilities or suspicious patterns were detected. Overall, HB Reavis demonstrates a mature digital presence with high trustworthiness and professionalism.

M

Medirex

medirex.sk

63

Medirex is a Slovak healthcare company specializing in comprehensive laboratory diagnostics, offering fast and precise laboratory tests to patients and healthcare professionals. The website reflects a mature digital presence with a focus on user experience, clear navigation, and mobile optimization. The technical infrastructure leverages modern JavaScript frameworks, CDN hosting, and integrates privacy and security features such as cookie consent and reCAPTCHA. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not published. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, supporting Medirex's position as a reputable healthcare diagnostics provider in Slovakia.

N

Nolato

nolato.com

65

Nolato is a global advanced high-tech solutions provider specializing in polymer-based product development and manufacturing. Their services span from concept development and product design to high-volume production, assembly, and logistics, targeting industries such as medical devices, pharma, automotive, and consumer electronics. The company positions itself as a strategic partner working closely with customers to deliver cost-effective and manufacturable polymer solutions. Technically, the website employs modern frontend technologies including Bootstrap, Google Tag Manager, Cookiebot for cookie consent management, and Google reCAPTCHA for form security. The site is well-optimized for mobile devices and includes comprehensive cookie consent mechanisms aligned with GDPR requirements. Analytics and marketing tools such as Google Analytics and Facebook pixels are used with transparency. From a security perspective, the site enforces HTTPS with excellent SSL configuration and uses reCAPTCHA to protect forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no public security policy or incident response information is available. The absence of WHOIS data for the domain is a concern and warrants further investigation to confirm domain registration legitimacy. Overall, the website presents a professional and trustworthy front with good privacy compliance and technical implementation. The main risk lies in the missing WHOIS data and lack of explicit security policies, which should be addressed to enhance trust and security posture.

G

GS1

gs1cz.org

60

GS1 Czech Republic operates as the sole licensed authority for assigning GTIN and barcode identification numbers within the Czech Republic, serving businesses that require standardized product identification for retail, healthcare, and e-commerce sectors. The website presents a professional and comprehensive digital presence, offering services such as training, data synchronization, and product management tools like GS1 Activate. The organization maintains strong branding consistency and trust indicators, including accredited partners and official GS1 affiliations. Technically, the website is built on WordPress with modern technologies including jQuery, Google Tag Manager, and CookieHub for cookie consent management. The site is optimized for performance, mobile responsiveness, and SEO, with structured data enhancing search engine understanding. Security measures include HTTPS, Google reCAPTCHA, and secure AJAX interactions, though explicit security headers and incident response policies are not publicly documented. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. WHOIS data is unavailable, likely due to privacy protection, but the website content and affiliations strongly support legitimacy. Overall, the site demonstrates a mature digital infrastructure and trustworthy business model, with recommendations to enhance security headers, publish incident response information, and consider a security.txt file for vulnerability disclosures.

B

Blue Events, s.r.o.

blueevents.cz

62

Blue Events, s.r.o. is a well-established Czech company specializing in organizing professional conferences, summits, and congresses primarily focused on the retail and business sectors. With over 30 years of experience, it holds a strong market position as a leading event organizer in the Czech Republic, catering to business professionals and industry leaders. The website reflects a professional and consistent brand image, showcasing upcoming conferences and partnerships with reputable companies. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, reCAPTCHA, and Bootstrap, ensuring a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management in place. Contact information is clearly provided, enhancing business credibility. WHOIS data is privacy protected, limiting domain age and registrant verification, but the website content and business presence support legitimacy. Overall, the site is professional, secure, and compliant, suitable for its target audience and business model.

F

Foodiesfeed

foodiesfeed.com

57

Foodiesfeed is a niche online platform offering free downloadable food photography images under a CC0 license, including AI-generated food images. The website targets a general audience interested in high-quality food pictures for commercial and personal use. The business model revolves around providing free content with affiliate marketing partnerships, such as with iStockphoto. The site is built on WordPress with modern web technologies and integrates Google Tag Manager and reCAPTCHA for analytics and security. The website demonstrates good design quality, mobile responsiveness, and SEO optimization, contributing to a positive user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is moderate with HTTPS enforced but lacks important security headers and explicit privacy and cookie policies. Overall, the site appears trustworthy and professional but would benefit from enhanced compliance and security disclosures.

V

Vitální senior

vitalnisenior.cz

59

Vitální senior is a Czech-language online media platform focused on providing lifestyle content tailored for seniors, covering health, finance, housing, travel, and legal advice. The website operates on WordPress CMS and leverages common plugins for SEO, forms, and cookie consent. It monetizes primarily through advertising networks such as Google AdSense and Seznam SSP, and engages users via newsletter subscriptions. The content is well-structured, relevant, and updated regularly, targeting older adults in the Czech Republic. Technically, the site uses modern web technologies including HTTPS, Google Analytics, Facebook Pixel, and reCAPTCHA for form security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and some best practices, but lacks explicit security headers and incident response contacts. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service. Overall, the domain registration data is consistent and supports legitimacy. No WAF or blocking mechanisms interfere with access, and content is safe for general audiences.

D

dobrá TISKÁRNA s.r.o.

dobratiskarna.com

52

dobrá TISKÁRNA s.r.o. is a Czech Republic based printing company specializing in comprehensive printing solutions including promotional, packaging, advertising, and gift materials. Established in 2012 and part of the Euronova Group, the company serves a B2B market with a professional production team handling orders from small to large volumes. Their website reflects a mature digital presence built on WordPress with Elementor, offering multilingual support and clear contact channels. The company emphasizes sustainability and social responsibility in its operations. Technically, the website is well-structured with modern technologies, though some security headers and DNSSEC are missing. Security posture is good with HTTPS and GDPR compliance, including cookie consent mechanisms and reCAPTCHA on forms. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and accessible online presence.

M

Marcela Hrubošová

financeproradost.cz

58

Finance pro radost, operated by Marcela Hrubošová, is a Czech Republic-based financial education and consulting website established in 2012. The site aims to simplify complex financial topics for a general audience, providing guidance and insights into personal finance. The business operates as a small entity with a focused niche in financial advisory and education. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Fonts, Font Awesome, and Google Analytics for tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security measures include HTTPS and Google reCAPTCHA for form protection, alongside a GDPR-compliant cookie consent mechanism. However, explicit privacy and terms of service pages are missing, which could be improved to enhance compliance and user trust. Overall, the website demonstrates a moderate to good security posture with room for improvement in formal security policies and incident response readiness.

A

Agentura Helas, s.r.o.

helas.org

51

Agentura Helas is a Czech-based event management and business networking agency established in 1997. The company specializes in organizing unique social business meetings, connecting prominent Czech business personalities, and providing services such as online expert advice, marketing, media visibility, event organization, and venue rental. The website reflects a professional and consistent brand image targeting Czech entrepreneurs and business owners. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS and CAPTCHA protections, though it lacks some security headers and explicit security policies. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. The absence of WHOIS data transparency slightly reduces trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility.

W

Webaz s.r.o.

webaz.cz

43

Webaz s.r.o. is a Czech digital agency specializing in the creation of modern websites, e-commerce platforms, and online marketing services. With over 10 years of experience, they serve B2B and B2C clients, offering custom web solutions built on their proprietary NetPublisher CMS. The website demonstrates a professional design with clear navigation and relevant content showcasing client references and testimonials. Technically, the site uses common JavaScript libraries and Google services for analytics and marketing, with a cookie consent mechanism ensuring user privacy choices. Security posture is solid with HTTPS and reCAPTCHA integration, though additional security headers and explicit privacy policies are lacking. The absence of WHOIS data reduces domain trustworthiness, but the website content and client references support legitimacy. Overall, the site is well-positioned as a reliable digital agency in the Czech market.

D

DER Touristik CZ a.s.

fischergroup.cz

54

DER Touristik CZ a.s. operates as a major travel and tourism company in the Czech Republic, consolidating several well-known brands such as EXIM tours, FISCHER, NEV-DAMA, and eTravel. The company offers a wide range of vacation packages including beach holidays, skiing trips, family vacations, and online travel booking services. As part of the REWE Group, a large German retail and tourism conglomerate, DER Touristik CZ holds a strong market position in the Czech travel industry. The website reflects a professional and consistent brand image targeting Czech consumers seeking diverse travel experiences. Technically, the website employs modern JavaScript libraries, Google reCAPTCHA for bot protection, and Usercentrics for GDPR-compliant consent management, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers and explicit incident response information are missing. Overall, the site is safe, well-structured, and compliant with privacy regulations, but the absence of WHOIS data and contact emails slightly reduces trustworthiness.

D

DER Touristik CZ a.s.

dertouristik.cz

54

DER Touristik CZ a.s. is a major Czech travel company operating multiple well-known brands such as FISCHER, EXIM tours, NEV-DAMA, and eTravel. It is part of the German REWE Group, a leading European retail and tourism conglomerate. The company offers a broad range of travel services including beach vacations, ski holidays, family travel, and online booking options, targeting Czech consumers seeking quality holiday experiences. The website reflects a professional and consistent brand presence with clear contact information and social media engagement. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and a consent management platform to comply with privacy regulations. Security posture is solid with HTTPS and bot protection, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, limiting domain registration trust analysis, but the business affiliation and content support legitimacy.

L

LogiNet

loginet.hu

60

LogiNet is a Hungarian technology company specializing in e-commerce systems, webshop development, mobile application creation, and custom software development. Positioned as a professional service provider, LogiNet targets businesses requiring tailored e-commerce and digital solutions. The website reflects a mature digital presence with good SEO practices, mobile optimization, and integration of modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Cookiebot for consent management. Security-wise, the site enforces HTTPS and employs reCAPTCHA to mitigate bot traffic, though explicit security headers and policies are not prominently published. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site demonstrates a solid technical and business foundation with room for enhanced security transparency and contact information clarity.

The WST Group is a Hungarian technology company specializing in custom software and web development services, including business integration and EDI solutions. Established with a business history dating back to 1997, the company positions itself as a reliable partner for businesses seeking tailored digital solutions to grow and engage their customers. Their website reflects a professional and consistent brand image with clear service offerings and contact channels. Technically, the site employs modern web technologies such as Google Fonts, Google Analytics, reCAPTCHA, and Hotjar for analytics and security. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. Security posture is solid with HTTPS and form protections, but lacks explicit security headers and published security policies. Privacy compliance is evident through a comprehensive privacy policy, though cookie consent mechanisms are missing. Overall, the website is trustworthy and professionally maintained, with room for enhancements in security transparency and privacy controls.

F

FT Sun s.r.o.

chciwwwstranky.cz

36

FT Sun s.r.o. is a Czech-based digital agency specializing in data-driven digital marketing, application development, and creative services such as photo and video production. The company positions itself as a pragmatic and experienced partner for businesses seeking to leverage internet technologies effectively. Their website reflects a professional and modern digital presence with clear service offerings and a focus on client engagement through contact forms and marketing tools. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA for security and marketing purposes. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, the absence of certain security headers and lack of visible hosting or CMS details suggest room for technical improvements. From a security perspective, the site demonstrates good practices such as GDPR-compliant privacy and cookie policies and spam protection on forms. The lack of WHOIS data is a notable concern, as it impairs domain legitimacy verification. No critical vulnerabilities or exposed sensitive data were detected, but the site would benefit from enhanced security headers and published incident response information. Overall, FT Sun's website is a solid representation of a small technology service provider with good digital maturity and compliance posture. The main risk lies in the missing WHOIS information, which should be addressed to improve trust and transparency.

K

KRASIM TOUR, spol. s.r.o.

krasimtour.cz

48

KRASIM TOUR, spol. s.r.o. is a Czech travel agency specializing in holiday packages to popular destinations such as Bulgaria, Greece, Turkey, and exotic locations worldwide. Established in 2006, the company offers a comprehensive range of services including accommodation bookings, various transport options, travel insurance, and parking services at departure points. The website is well-structured, professionally designed, and targets Czech-speaking customers seeking vacation travel solutions. The company maintains a solid market position with over 30 years of experience and trust indicators such as insurance certification and a guarantee fund. Technically, the website employs modern web technologies including jQuery, Lightbox2, Google reCAPTCHA, and a chat widget for customer support. It uses a Content Security Policy and enforces HTTPS, reflecting a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. SEO and accessibility are adequately addressed, though accessibility could be further improved. From a security perspective, the site demonstrates good practices with HTTPS, CSP headers, and anti-bot measures. Cookie consent and privacy policies are implemented in compliance with GDPR. However, explicit security policies and incident response contacts are not found, representing an area for enhancement. No vulnerabilities or suspicious activities were detected. Overall, the website presents a low-risk profile with strong business credibility and a good security posture. Strategic recommendations include adding a dedicated security policy page, incident response contact information, and a vulnerability disclosure mechanism to further enhance trust and compliance.

E

Exim

eximtours.cz

54

EXIM tours is a well-established Czech travel agency specializing in worldwide package tours, last minute deals, and specialized travel services for families, couples, and seniors. The company operates under the DER Touristik group, positioning itself as a leading player in the Czech travel market. The website reflects a mature digital presence with modern technologies such as Vue.js, Google Tag Manager, and Usercentrics for privacy compliance. Security measures include HTTPS enforcement and bot protection via Google reCAPTCHA, although explicit security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. The absence of WHOIS data due to privacy protection is typical for such businesses and does not detract from the site's legitimacy. Overall, EXIM tours demonstrates a professional and trustworthy online presence suitable for its market segment.

P

PANKREA s.r.o.

pankrea.cz

54

PANKREA s.r.o. is a small creative PR agency based in the Czech Republic specializing in public relations, corporate identity, web design, marketing, and custom programming services. The company targets businesses seeking to build and promote their brand identities through professional web presence and marketing communication. The website presents a professional image with clear service offerings and client references, positioning PANKREA as a creative and expert partner in the media and marketing sector. Technically, the website uses modern tools such as Google Analytics, Google Tag Manager, and Google reCAPTCHA, and is built on the Estofan CMS platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site employs reCAPTCHA and cookie consent mechanisms but lacks visible security headers and publicly disclosed security policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site scores well on content quality and technical implementation but has room for improvement in security posture and privacy transparency.

P

Práce na horách. najděte si brigádu a zažijte zimu snů - Práce na horách

pracenahorach.cz

43

The website pracenahorach.cz is a niche job listing platform focused on seasonal winter employment opportunities in Czech mountain resorts, primarily targeting students and seasonal workers interested in ski instruction and related hospitality roles. The site offers curated job offers, course information, and location details, supported by partner ski schools and mountain activity providers. Technically, the site uses modern web technologies including HTML5, CSS, JavaScript, Google Analytics, Google Tag Manager, reCAPTCHA, and Smartsupp live chat, delivering a responsive and user-friendly experience. Security posture is generally good with HTTPS enforced and anti-bot measures on contact forms, though it lacks some security headers and formal privacy/cookie policies, which are compliance gaps. The absence of WHOIS data limits domain transparency but does not detract from the site's apparent legitimacy. Overall, the site is professionally designed, content-rich, and safe for general audiences.

4

42 | Lisboa

42lisboa.com

65

42 | Lisboa is an educational website offering free coding education based on a peer-to-peer learning methodology. It is part of the global 42 network, targeting individuals seeking to develop coding skills for modern job markets. The website is built on WordPress using Astra theme and Elementor, with integrations for donations and email marketing. The technical infrastructure is modern and supports mobile optimization and SEO best practices. Security posture is good with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent banner, but no clear privacy policy or terms of service pages are found. WHOIS data is missing or indicates the domain may not be registered, which raises concerns about domain legitimacy despite professional website content.

T

TradingView

tradingview.com

75

TradingView is a leading global financial technology platform that provides advanced charting tools, market data, and a social network for traders and investors. It serves a large user base with a freemium business model offering both free and subscription-based premium services. The platform integrates real-time market data, news, and trading capabilities, positioning itself as a comprehensive hub for market analysis and trading collaboration. Technically, TradingView employs modern web technologies including React, WebSocket communications, and advanced analytics tools, ensuring a fast, responsive, and mobile-optimized user experience. Security-wise, the site enforces HTTPS, uses multiple security headers, and integrates CAPTCHA protections, reflecting a mature security posture. However, the absence of publicly available WHOIS registration data and explicit security policies suggests areas for transparency improvement. Overall, TradingView presents a professional, trustworthy, and technically robust platform with minor gaps in public security disclosures.

F

Fundlift

fundlift.cz

59

Fundlift is a Czech investment crowdfunding platform that connects growing companies with investors, positioning itself as the largest crowdfunding community in the Czech Republic. The platform offers services including project listing, investment opportunities, campaign preparation, promotion, and securities issuance. The website is professionally designed with consistent branding and clear navigation, targeting investors and companies seeking crowdfunding solutions. Technical infrastructure leverages AngularJS, Vimeo API, Google reCAPTCHA, and MailChimp for newsletter management, indicating a modern but moderately performing digital presence. Security posture is solid with HTTPS enforcement and use of CAPTCHA, though lacks explicit security headers and incident response contacts. Privacy and cookie policies are present and indicate GDPR compliance. The absence of WHOIS data reduces domain trustworthiness, but licensing claims and professional content support legitimacy. Overall, the site is safe, accessible, and trustworthy for general audiences.

U

UNAR

unar-prohotel.cz

46

UNAR is a Czech company specializing in manufacturing hotel furniture, including mattresses, beds, folding sofas, and accessories, with a tradition dating back to 1991. The company targets hotels, pensions, and spa houses primarily in the Czech Republic and possibly neighboring regions. Their market position is that of an established medium-sized manufacturer with over 300 completed projects, emphasizing quality and custom solutions. Technically, the website employs modern web technologies such as jQuery, Foundation framework, Owl Carousel, and integrates Google Analytics and Tag Manager for tracking, alongside reCAPTCHA for form security. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though it lacks some security headers and a security.txt file. Privacy compliance is well addressed with a cookie consent banner and a privacy policy in Czech, indicating GDPR awareness. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified to ensure trustworthiness. Overall, the website is professional and trustworthy from a content and technical perspective but would benefit from improved transparency in domain registration and enhanced security headers.

C

CEN-CENELEC

cen.eu

62

CEN-CENELEC is a prominent European standardization organization focused on developing and coordinating standards to support European industry, consumers, and sustainability goals. The website reflects a mature and professional entity with a clear market position as a leading standards body in Europe. Their key services include European standardization, technical work, governance, and stakeholder engagement. The target audience includes European industry partners, SMEs, societal stakeholders, and research sectors. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Owl Carousel, and integrates Google services like Fonts and reCAPTCHA. The site is responsive and well-structured, providing good user experience and accessibility. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and has a cookie consent mechanism aligned with GDPR. However, explicit security headers are not evident in the HTML source, and no public security or incident response policies are found. WHOIS data is privacy protected, which is typical for European organizations, and no suspicious indicators are present. Overall, the website is trustworthy, professional, and compliant with privacy regulations, though it could improve security posture by publishing explicit policies and enhancing technical security controls.

W

William H. Coleman, Inc.

travelmartlatinamerica.com

45

TravelMart LatinAmerica is a well-established event organizer specializing in the Latin America tourism industry, facilitating business development through pre-scheduled appointments between global tour operators and suppliers from Central and South America. The company has a strong market position as a premier event since 1978, targeting professional buyers and suppliers in the hospitality and transportation sectors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site is built on WordPress with Elementor and uses modern SEO and security tools such as Yoast SEO and Google reCAPTCHA, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and domain locking but lacks advanced security headers and DNSSEC, representing areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and functional but would benefit from enhanced security and compliance measures.