Security Directory

W

WWW.KOTVA.CZ, a.s.

mincer.cz

10

Mincer.cz is a specialized e-commerce retailer and contractual partner of the Czech National Bank (ČNB), offering a curated selection of gold and silver commemorative coins and numismatic accessories. The website targets numismatists, collectors, and organized numismatic societies, providing both retail sales and cooperative opportunities. The business operates primarily in the Czech Republic with a small company profile and a focused niche market position. Technically, the website is built on the Upgates e-commerce platform, leveraging modern analytics and marketing tools such as Google Analytics 4, Facebook Pixel, and Matomo, alongside live chat support. The site is well-optimized for mobile devices and demonstrates excellent design quality and user experience. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are not publicly disclosed. WHOIS data is unavailable, which slightly impacts trust and business credibility scores. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable platform for numismatic product sales.

Edlonta.lt is a Lithuanian-based provider of accounting software solutions, primarily offering the "Centas" accounting program used by over 5500 companies. The business is well-established with a domain registered since 2003, indicating a mature market presence. Their website is built on WordPress with Elementor and includes modern SEO and cookie consent mechanisms, reflecting a reasonable level of digital maturity. The company targets businesses in Lithuania seeking secure, flexible accounting software. Technically, the site uses standard web technologies and integrates Google Tag Manager and reCAPTCHA for analytics and bot protection. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the website presents a professional and trustworthy front for their software services.

SEB bankas is a leading Lithuanian financial institution offering a wide range of banking and financial services to private individuals, businesses, and large enterprises. The website demonstrates a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. The technical infrastructure is modern, leveraging Drupal 10 CMS and standard web technologies, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Overall, the website reflects a professional and trustworthy financial services provider with room for improvement in transparency around security and domain registration details.

E

E-hojení | Přihlášení

ehojeni.cz

47

The website e-hojeni.cz provides a login portal for a healthcare-related service, likely focused on healing or medical care, as suggested by the domain name and login context. The site targets users who have accounts with the service, presumably patients or clients. The business appears to be a small-scale platform founded in 2018, operating primarily in the Czech Republic. The website's content is minimal on this page, focusing on user authentication without additional business descriptions or contact information. Technically, the site employs a modern front-end stack including jQuery, Bootstrap, DataTables, FontAwesome, and other popular libraries, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS with Google reCAPTCHA integration for bot protection. However, no explicit security headers were detected in the provided data, and there is no visible cookie consent or privacy policy, which are important for GDPR compliance. From a security perspective, the site shows basic best practices such as secure form inputs and HTTPS usage. The WHOIS data is transparent and consistent with the website's Czech origin, with a domain age appropriate for the business. No critical vulnerabilities or suspicious patterns were found. However, the absence of privacy and cookie policies, security headers, and contact information reduces the overall security posture and compliance level. Overall, the website is functional and professionally designed for its purpose but lacks comprehensive privacy and security disclosures. Strategic improvements in privacy compliance, security header implementation, and transparency would enhance trust and regulatory adherence.

T

TWIPLA

session-replays.io

72

TWIPLA is a technology company specializing in website analytics solutions, focusing on session recordings and visitor behavior analysis to help businesses optimize user experience and conversion rates. Positioned as a privacy-conscious alternative to mainstream analytics platforms, TWIPLA offers a comprehensive suite of tools including event tracking, heatmaps, and visitor communication features. The company targets businesses and website owners seeking detailed insights into user interactions with their websites. The website is built on the TYPO3 CMS platform, utilizing modern web technologies such as Bootstrap, jQuery, and various carousel libraries to deliver a responsive and user-friendly experience. The site demonstrates good SEO practices, accessibility, and mobile optimization, reflecting a mature digital infrastructure. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Security posture is solid with HTTPS enforced and privacy best practices observed; however, the absence of published security policies and vulnerability disclosure mechanisms suggests room for improvement. The missing WHOIS domain registration data raises concerns about domain legitimacy, although the professional presentation and structured data indicate a credible business presence. Overall, TWIPLA presents a trustworthy and professional analytics service with strong privacy focus. Strategic recommendations include enhancing transparency around security policies and verifying domain registration details to strengthen trust and compliance.

T

Turistická oblast Opavské Slezsko, z.s.

opavske-slezsko.cz

54

Turistická oblast Opavské Slezsko, z.s. operates a regional tourism website focused on promoting travel tips, events, gastronomy, and accommodation in the Opavské Slezsko region of the Czech Republic. The website serves as an information hub for tourists and visitors, providing multilingual content in Czech, English, German, and Polish. The organization appears to be a small non-profit entity dedicated to regional tourism promotion, supported by partnerships with local and national tourism bodies. Technically, the website is built on WordPress 5.8.1 with a modern tech stack including Bootstrap, jQuery, Google Analytics, and Google reCAPTCHA. The site is hosted by a Czech registrar (REG-WEDOS) and uses HTTPS with good SSL configuration. SEO is well implemented via Yoast SEO, and the site is mobile optimized with good navigation and content structure. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks security headers and explicit security or incident response policies. Privacy compliance is basic, with a cookie policy PDF available but no active consent mechanism or detailed privacy policy page. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is a trustworthy and professional regional tourism portal with good content quality and technical implementation. Improvements are recommended in privacy compliance, security headers, and transparency regarding terms and incident response to enhance trust and security posture.

S

Slezská univerzita v Opavě

slu.cz

62

Slezská univerzita v Opavě is a regional public university in the Czech Republic offering higher education, research, and community services. The website serves as the official portal providing information about faculties, study programs, research activities, events, and student support. It targets prospective and current students, academic staff, and the general public interested in university affairs. The site demonstrates a consistent brand identity with official logos and certifications such as HR Excelence in Research, supported by EU and government partnerships. Technically, the website uses a modern technology stack including jQuery, Bootstrap, FontAwesome, and analytics tools like Matomo and Google Analytics. The site is mobile-optimized, accessible, and features good SEO practices. Some minor HTML issues were detected, such as malformed preconnect and dns-prefetch tags, which should be corrected to improve performance and security. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks visible security headers in the provided data. No sensitive data exposure or vulnerable libraries were detected. The absence of WHOIS data limits domain registration trust analysis, but the official nature of the site and consistent branding strongly indicate legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations, providing a safe and informative experience for its users. Strategic improvements include fixing minor HTML errors, adding security headers, and publishing explicit security and incident response policies.

C

Czech Health Technology Institute, z. s.

czechhealth.cz

45

Czech Health Technology Institute (CHTI) is a Czech non-profit organization founded in 2023, focused on identifying and supporting innovative healthcare technology solutions to improve healthcare delivery and quality. The organization collaborates with government ministries, academic institutions, and private sector partners to implement humanitarian programs, complex healthcare solutions, centers of excellence, and educational initiatives, particularly supporting healthcare development in Ukraine. The website reflects a professional and consistent brand presence with clear communication of its mission, team, partners, and contact information. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI libraries, ensuring good mobile optimization and user experience. The site includes a comprehensive cookie consent mechanism aligned with GDPR requirements, though it lacks a dedicated privacy policy and terms of service pages, which are important for full compliance. Analytics and marketing tools such as Google Analytics, Google Tag Manager, Incomaker, and Facebook Pixel are used with user consent. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and published security policies or incident response information. No vulnerabilities or suspicious content were detected. WHOIS data is consistent with the organization's claims, indicating legitimacy. Overall, the site scores well on professionalism and business credibility but should improve privacy and security documentation. Strategic recommendations include publishing a privacy policy and terms of service, enhancing security headers, and providing incident response and vulnerability disclosure information to strengthen trust and compliance.

M

Ministerstvo obrany České republiky

army.cz

65

The website www.mo.gov.cz is the official online presence of the Ministry of Defense of the Czech Republic, serving as a government portal for defense-related information, military news, and public services. It targets a broad audience including citizens, military personnel, veterans, and stakeholders interested in national defense. The site provides comprehensive content about military operations, recruitment, veteran affairs, and official announcements, positioning itself as a key authoritative source in the government sector. Technically, the website employs a mature technology stack including jQuery, Bootstrap, Owl Carousel, and JWPlayer, built on the WebToDate CMS platform by Macron Software. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a modern responsive design and clear navigation. Cookie consent is implemented with an opt-in mechanism, reflecting compliance with GDPR and privacy best practices. From a security perspective, while HTTPS usage is implied, explicit security headers are not detected in the provided data, and no dedicated security policy or incident response contacts are published. The site does not expose sensitive data or vulnerable libraries visibly, but could improve by publishing security policies and adopting security.txt standards. The WHOIS data is unavailable due to registry restrictions, but the official .gov.cz domain and consistent branding strongly support legitimacy. Overall, the website is professionally maintained, trustworthy, and compliant with privacy regulations. Strategic improvements in security transparency and header implementation would enhance its security posture and trustworthiness further.

M

Mezcla Cubana

mezclacubana.cz

56

Mezcla Cubana is a Latin American Cuban music band active since 2008, performing in the Czech Republic and abroad. The band specializes in traditional and modern Latin dance genres such as salsa, son, bachata, merengue, and cha-cha, led by charismatic Cuban vocalist Tanda Corróns. They hold a strong market position as one of the top Cuban music bands in the Czech Republic, offering live performances and concerts primarily targeting Latin music enthusiasts and event organizers. The website presents the band professionally with detailed member profiles and multimedia content.

N

Národný inštitút vzdelávania a mládeže

mpc-edu.sk

59

The Národný inštitút vzdelávania a mládeže (National Institute of Education and Youth) operates as a Slovak governmental educational body providing a broad range of educational services including training catalogs, certification processes, and educational projects. The website serves educators, the public, and government stakeholders with resources and information relevant to education and youth development in Slovakia. The site is well-branded with consistent use of official logos and links to related government entities, reinforcing its authoritative position in the national education sector. Technically, the website employs modern web technologies such as Laravel backend framework, Vue.js frontend components, and FontAwesome for icons. It uses HTTPS with a valid SSL configuration and includes a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, some improvements in accessibility and SEO could enhance its digital maturity. From a security perspective, the site demonstrates good practices including HTTPS enforcement, CSRF token usage, and cookie consent with opt-in/out options. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It poses low risk from a security and content safety standpoint. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility and SEO features to further strengthen the site's posture and user trust.

V

Všeobecná zdravotní pojišťovna ČR (VZP ČR)

vzpoura-urazum.cz

43

The website 'VZPoura úrazům' is a project operated by the Všeobecná zdravotní pojišťovna ČR (VZP ČR), focusing on injury prevention among children and youth through educational meetings and awareness campaigns. It holds a reputable position as a long-standing initiative within the Czech healthcare and education sectors, targeting schools and young audiences. The project leverages official branding and maintains active social media channels to engage its audience effectively. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various UI libraries, ensuring a responsive and user-friendly experience. The site is secured with HTTPS and integrates Google reCAPTCHA and cookie consent mechanisms, reflecting a good level of digital maturity. However, some security headers are missing, and there is no visible CMS or hosting provider information. From a security perspective, the site demonstrates solid practices such as encrypted connections and bot protection, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain reduces trustworthiness, although the website content and official contact details strongly indicate legitimacy. Overall, the website is professional, content-rich, and well-targeted, with moderate technical and security maturity. Strategic improvements in security headers, transparency policies, and domain registration data would enhance trust and compliance.

S

SQAS

sqas.org

49

SQAS is a business focused on Safety & Quality Assessment for Sustainability, primarily serving sectors related to energy and transportation. The company appears to have a stable market presence with a domain registered since 2000, indicating long-term operation. The website provides basic information about its services but lacks detailed contact or policy pages. Technically, the site is built on WordPress with standard SEO and tracking tools like Google Analytics and Tag Manager, showing moderate digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Overall, the site is professional but could improve in privacy compliance and transparency.

C

cefic dev

cefic.org

62

Cefic.org is the official website of Cefic, the leading forum and representative body for the European chemical industry. The organization supports the transition to a sustainable, competitive, and resilient chemical sector in Europe by providing industry data, policy guidance, scientific research, and events. The website is well-structured, professionally designed, and optimized for SEO, targeting industry stakeholders, policymakers, and members. Technically, the site runs on WordPress with modern plugins and frameworks, including Usercentrics for consent management and Matomo for analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is partially addressed with cookie consent but lacks explicit privacy policy and terms of service pages in the analyzed content. Overall, the domain is legitimate, longstanding, and consistent with the organization's profile, making the site trustworthy and authoritative in its sector.

S

Stallergenes Greer UK

stallergenesgreer.co.uk

56

Stallergenes Greer UK is a specialized healthcare company focused on allergen immunotherapy and allergy treatment products. The company operates as part of the Stallergenes Greer Group, providing a comprehensive range of diagnostic and therapeutic solutions for allergic diseases. Their website reflects a professional and consistent brand presence targeting healthcare professionals and patients in the UK. Technically, the site is built on Drupal 10 with modern frontend technologies including Bootstrap 5 and Google Maps integration, offering good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, compliant with GDPR, and provides clear contact information, supporting a medium-sized healthcare business profile.

O

OPAGROUP s.r.o.

nasaleze.eu

9

Nasaleze.eu is a Czech healthcare-focused website offering clinically proven natural nasal sprays designed to protect against airborne viruses, bacteria, and allergens. The business operates primarily through partnerships with pharmacies and online shops, targeting consumers seeking natural preventive nasal care products. The website is built on WordPress using the Divi theme, hosted by a reputable Czech provider, and demonstrates good technical implementation with moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security best practices.

O

OPA Group s.r.o.

obchodproalergiky.cz

54

ObchodProAlergiky.cz is a specialized Czech e-commerce platform operated by OPA Group s.r.o., focusing on allergy-related healthcare products such as nasal rinses, anti-allergics, and eye drops. The company holds exclusive distribution rights for notable brands like Nasaleze, NeilMed, and Oculocin in the Czech and Slovak markets, positioning itself as a trusted niche retailer with a history dating back to 1993. The website offers a professional user experience with clear navigation, product categorization, and customer support features. Technically, the site leverages modern web technologies including Google Analytics 4, Google Ads, and the Upgates e-commerce platform, ensuring a responsive and moderately performant infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness slightly, but the overall business credibility remains high due to transparent contact information and exclusive partnerships.

T

Trade Association Forum

taforum.org

58

Trade Association Forum (TAF) is a well-established UK non-profit organization serving as an association of trade associations. Founded in 2001, it supports over 180 UK trade associations by promoting best practices and advocating their role to government, industry, and the public. The website reflects a mature business model focused on membership services, events, training, and resources tailored to trade associations. The organization holds a strong market position as a central hub for trade associations in the UK.

N

National Bingo Week

nationalbingoweek.co.uk

43

National Bingo Week is a UK-based initiative dedicated to celebrating the game of bingo through a week-long series of events involving both physical bingo clubs and online bingo platforms. The website serves as a central hub for information, event promotion, and community engagement, targeting bingo enthusiasts across the UK. The business model focuses on event promotion and fostering a community around bingo, leveraging partnerships with bingo associations and clubs. The site is positioned as a unifying campaign with growing momentum since its launch in 2021.

C

CPI Print UK

cpi-print.co.uk

65

CPI Print UK operates as a leading book printing company in the United Kingdom, specializing in printing books in monochrome, two-color, and four-color formats across various channels including trade, STMA, catalogues, and self-publishing. The company positions itself as a key player in the UK printing industry with a medium-sized business model focused on B2B services. The website reflects a professional digital presence built on WordPress, utilizing modern plugins and SEO tools to enhance visibility and user experience. Technical infrastructure includes common WordPress plugins for SEO, analytics, and user interface enhancements, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, though there is room for improvement in security headers and incident response transparency. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service policies. Overall, the website is safe, professional, and well-structured, but the domain registration inconsistency noted in WHOIS data warrants caution and further verification. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and clarifying domain registration details to improve trust and compliance.

A

Aliance žen s rakovinou prsu, o.p.s.

breastcancer.cz

57

Aliance žen s rakovinou prsu, o.p.s. is a Czech non-profit organization dedicated to breast cancer awareness, education, and support for patients and the public. The organization provides methodological assistance to patient groups and runs projects and campaigns focused on prevention and treatment of breast cancer. The website is professionally designed, content-rich, and well-structured, targeting a general audience interested in health and cancer prevention. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies could enhance protection. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for non-profits. Overall, the site demonstrates a trustworthy and professional presence in its sector.

Z

Zakra

zakrademos.com

69

Zakra is a WordPress theme provider specializing in offering over 100 starter sites that enable users to quickly build responsive and SEO-friendly websites. The company appears to be established since 2019 and targets website developers, freelancers, and small to medium businesses seeking ready-made website templates. The website demonstrates a moderate level of digital maturity with integration of modern web technologies such as Google Analytics, Google Tag Manager, Crisp Chat, and uses WordPress with Elementor and WooCommerce plugins. The site is hosted on a CDN (Cloudfront) ensuring reasonable performance and global availability. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is professional and trustworthy but could improve transparency and security documentation.

I

Inovis d.o.o.

inovis.si

55

Inovis d.o.o. is a Slovenian IT services company established in 2007, offering a broad range of IT solutions including external IT services, IT support, cloud computing, cybersecurity, IT infrastructure development, and consulting. The company targets businesses seeking reliable and advanced IT solutions to support growth and operational efficiency. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Analytics and Facebook Pixel, alongside consent management for GDPR compliance. Security posture is solid with HTTPS and reCAPTCHA, though lacking published security policies or incident response details. Overall, the website is professional, well-structured, and trustworthy, supporting the company's market position as a reliable IT partner in Slovenia.

I

International Committee Road Transport (ICRT)

icrt-idtf.com

58

The International Database Transport (for) Feed (IDTF) website is a specialized platform created by the International Committee Road Transport (ICRT) to provide a comprehensive database for bulk transport of animal feed products, primarily by road and inland waterways. The site is supported by several recognized partner organizations, indicating a collaborative industry effort. The business model centers on providing classification and procedural information to stakeholders in the animal feed transport sector. The website demonstrates a good level of professionalism, with clear navigation, multilingual support, and regularly updated news content. However, the absence of visible privacy and cookie policies and the lack of direct contact information reduce transparency and user trust to some extent. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses common libraries such as jQuery and Select2. It employs Google Analytics for visitor tracking but lacks advanced security headers and explicit GDPR compliance indicators. The security posture is generally good with HTTPS enabled and no obvious vulnerabilities, but improvements are recommended in security header implementation and incident response transparency. The WHOIS data for the domain is missing or unavailable, which is inconsistent with the active and professional nature of the website and lowers the domain legitimacy score. Overall, the site is functional and trustworthy for its niche audience but would benefit from enhanced privacy, security, and transparency measures.

T

Tatry Super Ski

tatrysuperski.pl

54

Tatry Super Ski is a prominent Polish platform specializing in the sale of ski and snowboard skipasses, integrating major ski resorts across the Podhale, Spisz, Beskid, and Pieniny regions. Positioned as the largest project in Poland's ski industry, it targets winter sports enthusiasts seeking convenient access to multiple ski areas. The website demonstrates a solid digital infrastructure, leveraging modern analytics and tracking technologies such as Google Analytics, Google Tag Manager, and Facebook Pixel, all integrated with a GDPR-compliant cookie consent mechanism. The technical implementation is robust with good SSL configuration and security headers, ensuring secure user interactions. However, the absence of a dedicated security policy and incident response information indicates room for improvement in transparency and security governance. Overall, the site maintains a professional and trustworthy online presence with clear contact information and comprehensive privacy practices.

T

The Bingo Association Ltd

bingo-association.co.uk

50

The Bingo Association Ltd is a UK-based trade association representing all land-based licensed bingo operators in Great Britain. Established in 1998, it focuses on promoting professional excellence, ethical gaming, and responsible gambling practices within the bingo sector. Key services include membership management, a self-exclusion scheme, events, governance support, and publication of the official magazine, Bingo Connect. The association serves licensed operators and customers seeking safe bingo environments. Technically, the website is built on WordPress with Bootstrap 4 and uses modern web technologies such as Google Fonts, FontAwesome, and Google Maps API. The site is hosted by Fasthosts Internet Ltd, a reputable UK hosting provider. The website demonstrates good mobile optimization, clear navigation, and solid SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and implements GDPR-compliant cookie consent mechanisms. However, explicit HTTP security headers are not detected in the HTML content, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found. The domain is long-established and consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional and trustworthy digital presence for the Bingo Association, with good content quality and compliance. Strategic improvements include enhancing security headers, publishing security policies, and expanding accessibility features to further strengthen the security posture and user trust.

I

Independent Publishers Guild

independentpublishersguild.com

67

The Independent Publishers Guild (IPG) is a UK-based membership organization dedicated to supporting the independent publishing community. The website serves as a comprehensive portal offering membership benefits, events such as the Independent Publishing Awards, a jobs board, training resources, and industry news. The IPG positions itself as the UK's largest publishing community for independent publishers, emphasizing support, diversity, and sustainability within the sector. The organization is registered in the UK with a clear company registration number and charity status, reinforcing its legitimacy and non-profit nature. Technically, the website is built on a mature ASP.NET Web Forms platform utilizing Telerik UI controls, jQuery, and modern web fonts. It integrates analytics and user behavior tracking tools such as Google Tag Manager and Hotjar, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and accessibility features, although some improvements could be made in accessibility and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration and secure form handling practices including anti-forgery tokens. However, DNSSEC is not enabled, and security headers are absent, which are areas for improvement. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. No incident response or security policy pages were found, suggesting an opportunity to enhance transparency and preparedness. Overall, the IPG website presents a professional, trustworthy, and content-rich platform for its target audience. The security posture is solid but could benefit from additional hardening measures. The business credibility is high, supported by clear registration details and consistent branding. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing a security policy to further strengthen trust and compliance.

H

Holiday Extras Ltd

holidayextras.de

63

Holiday Extras Ltd operates a leading online platform specializing in travel extras such as airport parking, hotels, and transfers, primarily targeting German-speaking European markets. The company positions itself as a market leader with over 40 years of experience, offering convenience and enhanced travel experiences to its customers. The website is professionally designed, localized in German, and integrates multiple social media channels to engage its audience. Technically, the website employs modern web technologies including React, extensive use of JavaScript, and third-party optimization and analytics tools such as Visual Website Optimizer and Google Analytics. Hosting and content delivery leverage Amazon Cloudfront CDN, ensuring reliable performance. The site is mobile-optimized and includes SEO best practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS, employs standard security headers, and integrates cookie consent mechanisms compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the website demonstrates a strong digital presence with good content quality and security posture. The absence of WHOIS data limits domain trust assessment, but the business credibility is supported by consistent branding and market claims. Strategic recommendations include enhancing security transparency, improving accessibility, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

C

COOP Mobil

coopmobil.cz

61

COOP Mobil is a Czech telecommunications provider focused on mobile services including prepaid SIM cards, tariffs, and loyalty programs integrated with retail chains such as COOP and KONZUM. The website is professionally designed using WordPress and Elementor, featuring promotional campaigns and customer self-service portals. The technical infrastructure is modern with standard plugins and Google Analytics for visitor tracking. Security posture is good with HTTPS and cookie consent mechanisms, though security headers and formal policies are lacking. WHOIS data is unavailable, which raises concerns about domain legitimacy but the website content and contact information suggest a legitimate business. Overall, the site is functional and targets retail customers in the Czech Republic with a medium-sized business profile.

E

Prodej potravin E-COOP – Online eshop s prodejem potravin a dalšího zboží E-coop nabízí pohodlné a bezpečné nakupování

e-coop.cz

60

The website e-coop.cz operates as an online grocery store for the COOP group in the Czech Republic, offering a wide range of food products with convenient home ordering and multiple pickup locations. The business targets general consumers seeking online grocery shopping solutions and positions itself as a regional player in the retail sector. Technically, the site is built on WordPress CMS, utilizing common web technologies such as jQuery, Leaflet.js for mapping, FontAwesome for icons, and Cookiebot for cookie consent management. The site integrates Google Analytics and Adform for tracking and advertising purposes, indicating a moderate level of digital maturity. Security-wise, the website employs HTTPS and cookie consent mechanisms but lacks visible security headers and explicit privacy or terms of service policies, which are areas for improvement. No critical vulnerabilities or WAF blocks were detected, suggesting a stable security posture. Overall, the site presents a professional and functional e-commerce platform with moderate risk, primarily due to incomplete privacy and security policy disclosures.

E

Elias IT Solutions s.r.o.

minigolfzdiar.sk

60

Strachan Resort Ždiar is a hospitality business located in Slovakia, offering accommodation, dining, and leisure activities such as adventure minigolf and ski services. The company operates a modern, well-structured website built on WordPress, featuring multilingual support and integrated marketing and analytics tools. The site demonstrates good digital maturity with responsive design and SEO optimization. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms, though some security headers and formal policies are missing. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy business presence.

E

Elias IT Solutions s.r.o.

strednica.sk

58

Strednica.sk is a hospitality and tourism website promoting accommodation, ski center, restaurant, and related services in Ždiar, Slovakia. The business is well-established since 2005 and targets tourists interested in the Belianske Tatry region. The website uses WordPress CMS with modern plugins and technologies such as Google Tag Manager and MailerLite for marketing and analytics. It demonstrates good digital maturity with multilingual support and social media integration. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit security policies are absent. No critical vulnerabilities or exposed sensitive data were found. Overall, the site is professional, trustworthy, and compliant with GDPR cookie consent requirements. Strategic improvements include adding security headers, publishing privacy and security policies, and enhancing accessibility. The domain WHOIS data aligns well with the business claims, indicating high legitimacy and trustworthiness.

E

Elias IT Solutions s.r.o.

skicentrumstrachan.sk

60

Ski centrum Strachan Ždiar is a well-established ski resort located in the Belianske Tatry region of Slovakia, operating since 2013. The business offers a comprehensive range of winter sports and hospitality services including ski slopes, ski school, equipment rental, dining, and accommodation. The website reflects a regional hospitality business with a focus on tourism and family-friendly winter activities. The company maintains a strong online presence with multiple partner sites and active social media channels, supporting its market position as a local ski resort destination. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and MailerLite for marketing automation. The site is multilingual, leveraging WPML, and hosted on Websupport.sk. Performance and mobile optimization are good, though accessibility could be improved. The site uses HTTPS and has a cookie consent mechanism aligned with GDPR requirements, though lacks a formal privacy policy and terms of service pages. From a security perspective, the site employs HTTPS and basic security best practices but lacks advanced HTTP security headers and a published security policy or incident response contacts. No critical vulnerabilities or WAF blocking were detected. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Overall, Ski centrum Strachan presents a professional and trustworthy online presence with room for improvement in privacy documentation and security hardening. Strategic enhancements in these areas would strengthen compliance and user trust while maintaining a solid business and technical foundation.

E

Elias IT Solutions s.r.o.

ebikestrachan.sk

56

E-bike Strachan is a specialized e-bike rental service operating in Ždiar, Slovakia, targeting tourists and cycling enthusiasts exploring the Belianske Tatry region. The company offers e-bike rentals, cycling route guidance, and an online reservation system. The business is positioned as a local provider with a strong focus on outdoor tourism and leisure activities. The website reflects a consistent brand identity and leverages social media channels to engage its audience. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and MailerLite for marketing automation. The site is hosted on Websupport and uses DNSSEC for domain security. Performance and mobile optimization are good, with a clear navigation structure and SEO-friendly metadata. Cookie consent mechanisms are implemented to comply with privacy regulations. From a security perspective, the site uses HTTPS with a good SSL configuration and DNSSEC enabled. However, it lacks explicit security policies, incident response contacts, and a security.txt file. The site does not expose sensitive data and uses standard security best practices but could improve HTTP security headers and publish privacy and terms of service documents to enhance compliance and trust. Overall, the website is professional, secure, and compliant with basic privacy requirements, scoring 78/100 in AI evaluation. Strategic improvements in security policy transparency and privacy documentation are recommended to further strengthen the site's trustworthiness and regulatory compliance.

E

Elias IT Solutions s.r.o.

strachankovo.sk

60

Strachankovo is a family-oriented leisure park located in Ždiar, Slovakia, operating under the broader Strachan Resort brand which encompasses multiple hospitality and recreational services including hotels, wellness pensions, chalets, restaurants, e-bike rentals, ski centers, and adventure minigolf. The business targets families and tourists seeking regional leisure and accommodation experiences. The website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Google Analytics, and MailerLite for marketing automation. It is hosted on Websupport and uses DNSSEC and HTTPS for secure domain and transport layers. The site implements a cookie consent mechanism compliant with GDPR requirements but lacks explicit privacy policy and terms of service pages. Security posture is good with HTTPS and DNSSEC enabled, but could be improved by adding security headers and incident response information. Overall, the site is professional, well-branded, and trustworthy with a high user rating and active social media presence.

E

Elias IT Solutions s.r.o.

medvedibrloh.sk

60

Medvedibrloh.sk is the official website for Reštaurácia Medvedí brloh Strachan, a hospitality business located in Ždiar, Slovakia. The business operates as part of the larger Strachan Resort ecosystem, offering restaurant services, accommodation, ski center access, event hosting, and family recreational activities. The website targets tourists, local visitors, families, and corporate clients, positioning itself as a regional hospitality provider with a strong local presence and positive customer reviews. The business was founded in 2017 and is operated by Elias IT Solutions s.r.o. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, MailerLite for marketing, and various UI libraries like Owl Carousel and Magnific Popup. It uses WPML for multilingual support and is hosted on Websupport, a Slovak hosting provider. The site shows good mobile optimization, SEO practices, and moderate performance. Structured data is implemented for local business schema, enhancing search engine visibility. From a security perspective, the site uses HTTPS with DNSSEC enabled, indicating strong domain and transport security. Cookie consent mechanisms are implemented with granular user consent options for analytics and marketing cookies. However, explicit security headers like Content-Security-Policy and incident response contact information are missing. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website demonstrates a solid digital presence with good business credibility and privacy compliance. Recommendations include adding a dedicated privacy policy and terms of service pages, publishing a security policy, and enhancing security headers to further improve the security posture. The domain registration data is consistent with the business claims, supporting legitimacy and trustworthiness.

E

Elias IT Solutions s.r.o.

chaletstrachan.sk

55

Chalet Strachan is a hospitality business based in Ždiar, Slovakia, offering accommodation, wellness, and leisure activities as part of the larger Strachan Resort group. The website is professionally designed using WordPress and integrates multiple modern technologies including Google Analytics, Tag Manager, and MailerLite for marketing automation. The business targets tourists and visitors seeking lodging and recreational experiences in the region. The domain is well maintained with DNSSEC enabled and a registration date consistent with the business's founding year. Contact information and social media presence are clearly provided, enhancing business credibility. Technically, the website employs a modern tech stack with responsive design and good SEO practices. Cookie consent mechanisms are implemented with multilingual support, reflecting attention to privacy compliance. Security posture is solid with HTTPS enforced and DNSSEC enabled, though the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or WAF blocking were detected, and the content is safe for general audiences. Overall, the website demonstrates a good balance of business professionalism, technical implementation, and basic privacy compliance. Strategic improvements include publishing comprehensive privacy and terms policies, adding security and incident response information, and enhancing accessibility features to further strengthen trust and compliance.

E

Elias IT Solutions s.r.o.

penzionstrachan.sk

55

Wellness Penzión Strachan is a well-established hospitality business based in Ždiar, Slovakia, offering accommodation, wellness services, gastronomy, and leisure activities. The website reflects a professional and consistent brand presence, supported by a strong social media footprint and positive customer ratings. The business operates within the hospitality sector, targeting tourists seeking wellness and leisure experiences in the region. Technically, the website is built on WordPress with modern integrations such as Google Analytics, Google Tag Manager, and MailerLite for marketing automation. The site is mobile-optimized and provides a good user experience with clear navigation and structured data for SEO. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, there is room for improvement in security headers and explicit privacy and terms of service documentation. Overall, the website is trustworthy and credible, with a moderate to good technical and security maturity level.

E

Elias IT Solutions s.r.o.

strachanresort.sk

60

Strachan Resort Ždiar is a hospitality business located in Ždiar, Slovakia, offering accommodation, dining, and leisure activities in the Belianske Tatry region. The company operates multiple lodging options including a Grand Hotel, Wellness Penzión, and Chalet, alongside several restaurants and ski-related services. The business targets tourists and visitors seeking a nature and wellness experience in the mountains. The website reflects a small-sized, regionally focused hospitality provider with a strong emphasis on customer experience and local tourism.

T

Ticksy

ticksy.com

64

Ticksy is a customer support SaaS platform focused on providing simple and effective help desk solutions primarily targeting Envato authors, freelancers, and small to medium businesses. The company offers a range of features including private and public ticketing, integrations with popular marketplaces, knowledgebase management, and customizable branding. The website reflects a professional and user-friendly approach with clear calls to action and customer testimonials, positioning Ticksy as a niche player in the customer support software market. Technically, the website is built on WordPress with modern integrations such as Google Analytics, Mixpanel, and Intercom for analytics and customer engagement. The site is hosted with Cloudflare as registrar and DNS provider, uses HTTPS, and implements GDPR-compliant cookie consent mechanisms. Performance and mobile optimization are good, though some accessibility features are basic. The technical stack is modern and well-maintained, supporting a positive user experience. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and advanced HTTP security headers. There is no publicly available security policy or incident response contact, which could be improved. GDPR compliance is well addressed with clear privacy and cookie policies. No critical vulnerabilities or suspicious patterns were detected, indicating a generally secure posture. Overall, Ticksy presents a trustworthy and professional online presence with solid technical and privacy practices. Strategic improvements in security headers, DNSSEC, and published security policies would enhance trust and compliance further.

K

KohleWelt - Museum Steinkohlenbergbau Sachsen

kohlewelt.de

46

KohleWelt is a regional museum dedicated to the history and culture of Saxon hard coal mining. It offers interactive exhibitions, guided tours, and educational programs targeting families, school groups, and mining enthusiasts. The museum positions itself as a cultural and educational institution with strong regional partnerships and a focus on preserving mining heritage. Technically, the website is built on the Contao CMS platform, using modern web technologies and fonts, with good mobile optimization and accessibility. The site employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach, although it lacks a cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but could be improved by adding security headers and explicit security policies. Overall, the website is professional, trustworthy, and well-structured, serving its audience effectively while maintaining compliance with GDPR privacy requirements.

P

Penzion Rossini

rossini.cz

47

Penzion Rossini is a small hospitality business located in Františkovy Lázně, Czech Republic, offering accommodation and wellness services including massages and cosmetics. The website is professionally designed with good content quality and clear navigation, targeting tourists and visitors seeking comfortable lodging near the spa colonnade. The business holds a Hotel.cz quality certificate and has positive customer reviews, indicating a strong local market position. Technically, the site uses modern web technologies such as Bootstrap, Google Analytics, and Smartlook for analytics and user experience enhancement. The cookie consent mechanism is implemented with granular user controls, reflecting basic privacy compliance. Security posture is moderate with no visible security headers and unknown SSL configuration, suggesting room for improvement. Overall, the website is trustworthy and safe with no adult or questionable content detected.

S

Svaz chemického průmyslu ČR (SCHP ČR)

responsiblecare.cz

49

The website responsiblecare.cz represents the Czech Chemical Industry Association's (SCHP ČR) initiative to promote Responsible Care, a voluntary global chemical industry program focused on health, safety, and environmental performance. The site provides information about the initiative's history, participating companies, and downloadable materials supporting sustainable development in the chemical sector. The target audience includes chemical companies and industry stakeholders in the Czech Republic. The business model is that of an industry association promoting ethical standards and continuous improvement among its members. Technically, the website uses modern frontend technologies including Foundation framework, FontAwesome icons, and Google Fonts. The site is mobile responsive and has a clear navigation structure, though it lacks advanced SEO and accessibility features. No analytics or tracking scripts were detected, indicating minimal user tracking. The site is accessible without any WAF or security blocking. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for compliance and user trust. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and reduces trustworthiness. No contact emails or phone numbers are provided on the homepage, limiting direct communication channels. Overall, the security posture is moderate but could be improved by implementing HTTPS verification, security headers, and privacy compliance documentation. The overall risk is moderate with no critical vulnerabilities detected in the content or technical setup. Strategic recommendations include improving domain registration transparency, adding privacy and cookie policies, enhancing security headers, and providing clear contact information for incident response and data protection. These steps will strengthen trust and compliance for the association's digital presence.

S

Stats Perform

statsperform.com

63

Stats Perform is a leading enterprise in the sports data and AI industry, providing trusted Opta sports data, analytics, and fan engagement solutions to professional sports teams, media companies, broadcasters, and betting providers worldwide. The company leverages advanced technology and AI to deliver detailed sports insights and content that enhance fan experiences and support business decision-making. The website reflects a mature digital presence with comprehensive content, multi-language support, and a professional design consistent with its market position. Technically, the site is built on WordPress with modern frameworks and performance optimizations, hosted likely on WP Engine, and integrates Google Tag Manager and Weglot for analytics and localization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS registration data introduces some uncertainty about domain registration legitimacy, but the overall business credibility and website quality mitigate this concern. Strategic recommendations include publishing a dedicated security policy, incident response information, and vulnerability disclosure details to enhance trust and compliance.

M

Mars, Incorporated

marspromo.cz

51

Mars Czech promotional website serves as a regional marketing platform for Mars, Incorporated, focusing on brand promotions, initiatives, and consumer engagement within the Czech Republic. The site features official Mars branding and links to global Mars social media channels, reinforcing its legitimacy and corporate alignment. The business model centers on consumer goods promotion and marketing campaigns tailored to the local market. Technically, the site employs modern JavaScript modules and the Vue.js framework, with Bootstrap and FontAwesome for styling and icons, indicating a contemporary front-end approach. However, no CMS or hosting provider details are evident, and performance is moderate with basic SEO and accessibility features. Security posture is moderate; HTTPS is assumed but no security headers or incident response information are present. Privacy compliance is strong with clear links to comprehensive privacy, cookie, and legal policies hosted on mars.com, though no cookie consent mechanism is implemented. Overall, the site is professional, trustworthy, and safe for general audiences, with room for improvement in security and contact transparency.

E

Elias IT Solutions s.r.o.

hotelbachledka.sk

57

Grand Hotel**** Bachledka Strachan is a well-established hospitality business located in Ždiar, Slovakia, offering luxury accommodation, wellness, gastronomy, and seasonal activities. The website reflects a mature digital presence with multilingual support and a strong focus on customer experience. The business is positioned as a premier grand hotel with high customer satisfaction and a comprehensive range of services targeting tourists and travelers seeking premium lodging and relaxation experiences. Technically, the site is built on WordPress with modern libraries and integrations such as Google Tag Manager and MailerLite, supporting marketing and analytics needs effectively. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and formal security policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable digital asset for the business.

P

pelicantravel.com s.r.o.

pelipecky.sk

51

Pelipecky.sk is a Slovak travel media website operated by pelicantravel.com s.r.o., specializing in providing travel stories, tips, and affordable flight and holiday deals. The site targets travelers seeking budget-friendly travel options and leverages affiliate marketing partnerships, notably with Pelikan.sk. The website is built on WordPress with a modern tech stack including Slider Revolution, Google Analytics, and Crisp Chat, indicating a mature digital infrastructure. Security posture is solid with HTTPS and DNSSEC enabled, though improvements can be made by adding explicit security headers and publishing privacy and terms policies. Overall, the site presents professional content with good user experience and trustworthy branding, though lacks explicit privacy and terms documentation in the analyzed content.

V

Vladimír Večeřa

ardumet.cz

42

Ardumet.cz is a small Czech technology company specializing in the manufacture of wifi-enabled meteorological stations based on a powerful 32-bit microprocessor. Their product supports multiple sensor modules and offers a responsive web administration interface for device management, firmware updates, and data monitoring. The company targets technical users and businesses requiring precise weather data collection solutions. The website is professionally designed with clear navigation and detailed product descriptions, reflecting a focused niche market position. Technically, the website uses a modern but straightforward tech stack including Bootstrap, jQuery, and various UI libraries. Hosting is provided by WEDOS, consistent with WHOIS data. The site is mobile-optimized and performs moderately well, though accessibility and SEO optimizations are basic. No CMS or advanced analytics tools are detected, indicating a lightweight infrastructure. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are compliance gaps. No forms or user input fields reduce attack surface, but SSL configuration details are unknown and should be verified. WHOIS data is consistent and supports legitimacy, with no privacy protection or suspicious patterns. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk is low given the nature of the business and content, but strategic improvements in privacy compliance, security headers, and SSL configuration are recommended to enhance trust and regulatory adherence.

D

Datalogic SpA

datalogic.com

65

Datalogic SpA operates a comprehensive website showcasing its leadership in automatic data capture and industrial automation technologies. The company offers a broad portfolio including barcode readers, mobile computers, sensors, vision systems, and laser marking solutions, targeting industrial, retail, manufacturing, and logistics sectors. The website reflects a mature digital presence with extensive product catalogs, media content, and investor relations information, positioning Datalogic as a large, established technology enterprise. Technically, the site employs modern web technologies such as Google Tag Manager, Cookiebot for consent management, and analytics tools including Google Analytics, Yandex Metrica, and Hotjar. The site is well-optimized for mobile and SEO, with good navigation and professional design. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers are not explicitly detected and no public security policy or incident response contacts are found. Privacy compliance is strong, with clear cookie consent mechanisms and a comprehensive privacy policy. WHOIS data is unavailable, likely due to privacy or registry restrictions, but the website content and external references strongly support legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility, making it a trustworthy and professional corporate website.