High-risk security reports

M

Maltézská pomoc

osobni-asistence.cz

47

The website osobni-asistence.cz is a Czech-language informational platform dedicated to personal assistance and care for seniors, operated under the Maltézská pomoc non-profit organization. It provides caregivers and family members with guides, service directories, and video tutorials to support home care for elderly individuals. The site leverages modern web technologies including jQuery, Google Fonts, and dotLottie animations, and integrates Google Analytics with user consent mechanisms. The domain has been registered since 2011, aligning with the organization's claim of over 15 years of experience in senior care assistance. While the site is professionally designed and offers good user experience and navigation, it lacks explicit privacy policy and terms of service pages, and no direct contact information is visible. Security posture is moderate with no detected security headers and unknown SSL configuration, but no critical vulnerabilities were found in the content.

A

Atelier Zidlicky

atelierzidlicky.eu

40

Atelier Zidlicky is a small creative agency based in the Czech Republic specializing in corporate identity creation, publishing, and photography. Established in 1996, the company has a niche market position serving both public and private institutions primarily in Brno and Prague. The website reflects a professional and consistent brand image with a focus on publishing projects and creative services. Technically, the site is built on WordPress using WooCommerce and Foundation frameworks, with Google Analytics and Yoast SEO for analytics and SEO optimization. The site is mobile-optimized and moderately performant. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, which are important for compliance and trust. No forms or direct contact information are present on the analyzed page, limiting direct user engagement. Overall, the website is safe, professional, and trustworthy but could improve privacy compliance and security best practices.

E

EUROTOPIA.CZ, o.p.s.

eurotopiacz.cz

41

EUROTOPIA.CZ, o.p.s. is a Czech non-profit organization dedicated to providing social services, support for foster families, and community programs targeting children, youth, adults, and families. The organization operates multiple social programs including counseling, educational initiatives, and cultural events, positioning itself as a key regional player in social welfare and community support. The website reflects a medium-sized organization with a clear mission and active engagement through social media channels. Technically, the website is built on WordPress using modern plugins such as Elementor and Modern Events Calendar Lite, with integration of Google reCAPTCHA and Google Analytics. The site is mobile-optimized, uses HTTPS, and implements a comprehensive cookie consent mechanism, indicating a good level of digital maturity and privacy compliance. From a security perspective, the site uses HTTPS and reCAPTCHA to protect forms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration is consistent with the organization's profile and location, supporting legitimacy. Overall, the website presents a professional and trustworthy digital presence for a non-profit social service organization. Strategic improvements in security headers, incident response transparency, and terms of service publication would enhance the security posture and compliance further.

Bprog is a Polish technology company specializing in creating custom internet solutions including websites, web portals, e-commerce stores, IT systems, and mobile applications. Founded in 2010, it serves businesses and organizations primarily in Poland, focusing on bespoke software development using modern frameworks such as Laravel. The company positions itself as a partner for digital transformation and IT optimization. Technically, the website employs common web technologies including jQuery, Bootstrap, Google Analytics, Google Tag Manager, and Google reCAPTCHA for form security. The site is mobile-optimized and includes GDPR-compliant cookie consent and privacy policy documentation. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but lacks advanced security headers and explicit security policies. No incident response or vulnerability disclosure information is provided. Overall, the website is professional, trustworthy, and well-structured, with room for security enhancements and more transparent business information.

B

beetools.de

beetools.de

38

The website beetools.de currently serves only a 404 error page indicating that the requested content is not available or has been removed. There is no visible business information, branding, or services described on the site. The domain is hosted on name servers associated with Kasserver, but no further technical or business details are available. The lack of content and metadata severely limits the ability to assess the company's market position or offerings. Technically, the site lacks any detectable technologies, scripts, or frameworks, and no security headers or policies are present. The security posture is minimal with no HTTPS or security best practices observable from the provided data. Overall, the site appears inactive or under maintenance, resulting in a low trust and credibility rating.

S

Střední škola, Základní škola a Mateřská škola Rakovník, příspěvková organizace

zsrako.cz

46

Střední škola, Základní škola a Mateřská škola Rakovník is a public educational institution based in the Czech Republic, providing preschool, elementary, special, and secondary education with a focus on special pedagogical care. The website serves students, parents, and educators with relevant information, news, and resources. It holds a stable market position as a regional educational provider with a domain registered since 2007, reflecting its established presence. The institution offers key services including various school levels, school club activities, and meal ordering facilities.

C

CB Computers v.o.s.

cbcnet.cz

46

CB Computers v.o.s. operates the CBCNET.CZ website, providing high-speed internet, next-generation cable TV (IP TV), and VoIP telephony services primarily in the Rakovník region of the Czech Republic. The company has a long-standing presence since 1997 and owns the largest metropolitan optical network in Rakovník, complemented by a dense wireless network for broader coverage. Their target audience includes both residential and business customers seeking reliable telecommunications services. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website is built on WordPress using the Avada theme and incorporates modern plugins such as Revolution Slider and Contact Form 7 with Google reCAPTCHA for spam protection. The site is mobile-optimized, SEO-friendly, and includes cookie consent mechanisms aligned with GDPR requirements. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS, integrates Google reCAPTCHA, and provides cookie consent controls, demonstrating good privacy practices. However, it lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, CBCNET.CZ presents a trustworthy and professional telecommunications service website with solid technical and privacy foundations. Strategic enhancements in security headers, incident response transparency, and accessibility would further strengthen its security posture and user trust.

O

Oblastní Muzeum v Lounech

muzeumlouny.cz

41

Oblastní Muzeum v Lounech is a regional cultural institution in the Czech Republic focused on preserving and presenting local history and heritage through exhibitions, educational programs, and events. The website provides detailed information about current and upcoming exhibitions, museum services, and contact details, targeting local residents, tourists, and researchers. Technically, the site uses older JavaScript libraries and lacks modern security headers, which may expose it to vulnerabilities. The absence of WHOIS data reduces domain trust, but the website content and contact information appear legitimate and consistent with a public museum. Privacy and cookie policies are missing, indicating room for compliance improvement.

Rakovnické cyklování is a local Czech event focused on cycling races and related cultural activities such as concerts. The website serves as an information portal for event schedules, online registration, photo galleries, and partner information. The business appears to be organized by local institutions including the Municipal Library of Rakovník and local clubs, positioning it as a community-driven event rather than a commercial enterprise. The target audience includes cycling enthusiasts and local residents interested in participating or attending the event. Technically, the website uses a traditional web stack with jQuery and Highslide for image galleries, along with a cookie consent script indicating some awareness of privacy requirements. The site is moderately optimized for performance and accessibility but lacks advanced features such as modern frameworks or CMS identification. The design is consistent and user-friendly, though mobile optimization and SEO could be improved. From a security perspective, the site uses HTTPS and has a cookie consent mechanism but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS data and registrant information reduces trust and transparency, which is a concern for legitimacy. No critical vulnerabilities or adult content were detected, and the site appears safe for general audiences. Overall, the site is functional and serves its purpose as an event information portal but would benefit from improved transparency, security hardening, and privacy compliance enhancements to increase trustworthiness and user confidence.

C

CBS Nakladatelství s. r. o.

malovane-mapy.cz

49

CBS Nakladatelství s. r. o. operates the website malovanemapy.cz, specializing in the creation and sale of hand-painted maps that combine artistic craftsmanship with cartographic accuracy. Their offerings include various map types such as city maps, area maps, cycling maps, panoramic maps, thematic maps, and orientation plans, targeting tourists, municipalities, schools, and cycling enthusiasts. The company positions itself as a niche provider of unique, custom-made maps that serve both decorative and practical purposes. Technically, the website is built on WordPress with Bootstrap framework, incorporating modern web technologies and Google Analytics for visitor tracking. The site is mobile-optimized with good navigation and content quality, although some accessibility features could be improved. Performance is moderate, and the site uses HTTPS with a valid SSL certificate, ensuring secure communication. From a security perspective, the site lacks several important security headers and does not display a privacy or cookie policy, which are compliance gaps especially under GDPR. No visible vulnerabilities or exposed sensitive data were detected, and the use of Google Analytics indicates moderate user tracking. The WHOIS data is unavailable or privacy protected, which is common for small businesses but limits domain registration transparency. Overall, the website is professional and trustworthy with clear business information and contact details. However, improvements in privacy compliance and security best practices are recommended to enhance user trust and regulatory adherence.

M

Muzeum T.G.M. Rakovník

muzeumtgm.cz

48

Muzeum T.G.M. Rakovník is a regional museum organization operating multiple branches and cultural programs in the Central Bohemian Region of the Czech Republic. The institution focuses on preserving and presenting historical and cultural heritage through exhibitions, educational programs, and events targeted at the general public, schools, and tourists. The website reflects a government-affiliated public cultural entity with a clear mission and regional presence. Technically, the website employs a traditional tech stack including jQuery 1.7.2, Google Fonts, FontAwesome, Google Maps API, and a proprietary CMS (nnx CMS). It features a cookie consent mechanism and integrates Google Analytics for user tracking. The site is moderately optimized for mobile devices and has a good design and navigation structure, though some technologies like jQuery are outdated, which may pose security risks. From a security perspective, the site lacks visible security headers and published security policies. The cookie consent banner indicates some privacy awareness, but no dedicated privacy policy or terms of service pages were found. WHOIS data is missing, which reduces trust in domain legitimacy, although the website content and government affiliation suggest a legitimate operation. No adult or questionable content is present, and no WAF or blocking mechanisms were detected. Overall, the website is functional, professional, and trustworthy for its intended audience but would benefit from improved security practices, updated technologies, and clearer privacy documentation to enhance compliance and user trust.

D

DO HNÍZDA z.s.

pestouni-dohnizda.cz

42

DO HNÍZDA z.s. is a Czech Republic-based non-profit organization dedicated to foster care awareness, education, and support. The organization facilitates foster care agreements and works closely with social authorities to provide stable foster family environments for children. Their website serves as an informational and engagement platform targeting prospective foster parents, children in need, and social workers. The organization is relatively young, founded in 2021, and maintains a clear and consistent brand presence online. Technically, the website is built on WordPress using modern web technologies such as Bootstrap, jQuery, and WPBakery Page Builder. It demonstrates good mobile optimization and a moderate performance profile. However, there is room for improvement in accessibility and SEO optimization. The site uses HTTPS with a strong SSL configuration but lacks important security headers and formal security policies. From a security perspective, the site benefits from HTTPS but misses critical security headers and does not provide a vulnerability disclosure or incident response contact. No privacy or cookie policies were found, indicating compliance gaps with GDPR and related regulations. Contact information is clearly presented, enhancing business credibility. No suspicious or malicious content was detected, and the site is safe for general audiences. Overall, the website is professionally designed and trustworthy but would benefit from enhanced privacy compliance, security hardening, and formalized policies to improve its security posture and regulatory adherence.

C

Czech Print Center, a.s.

cpcenter.cz

38

Czech Print Center, a.s. is a medium-sized printing company based in the Czech Republic, operating rotary and sheet-fed printing presses in Prague and Ostrava. The company offers a range of printing services including prepress preparation, rotary printing, sheet-fed printing, and finishing processes. It is a subsidiary of CZECH NEWS CENTER a.s., indicating a strong media industry connection. The website is built on WordPress with a modern tech stack including Foundation CSS and Yoast SEO, providing a good user experience and SEO optimization. Contact information and certifications such as ISO 12647-2:2013 are clearly presented, enhancing business credibility. However, the absence of WHOIS data and some security headers slightly reduce trustworthiness.

D

Dřevomonta, s.r.o.

tenisvn.cz

37

The website www.tenisvn.cz represents a small local business operated by Dřevomonta, s.r.o., offering tennis court rental and related tennis services in Velké Němčice, Czech Republic. The business provides three clay tennis courts with facilities such as changing rooms, showers, and parking. They also organize tennis schools, summer camps, and tournaments targeting local tennis players including children and youth. The website is built on WordPress using the GeneratePress theme and includes SEO optimizations via Yoast plugin. It uses Google Fonts and implements Google reCAPTCHA for form security. The site is mobile responsive and provides a good user experience with clear navigation and relevant content.

The website represents a small local school cafeteria service in Velké Němčice, Czech Republic, providing meals primarily to children attending local schools and kindergartens, as well as employees and external diners. The business has a long history dating back to 1957, emphasizing nutritious and varied meals. The website content is basic but informative, focusing on history, current operations, pricing, and contact links. Technical infrastructure is simple, relying on basic HTML, CSS, and JavaScript without modern CMS or advanced frameworks. Security posture is weak due to lack of visible HTTPS enforcement and security headers, and no explicit contact information or incident response details are provided. Privacy compliance is partially addressed with a privacy policy and terms of service pages, but cookie consent mechanisms are absent. Overall, the site is safe and appropriate for general audiences but would benefit from technical and security improvements.

The website 'Orel jednota Velké Němčice' serves as an online presence for a local sports and community organization based in Velké Němčice, Czech Republic. It primarily focuses on promoting sports activities, community events, and cultural engagement for local residents and sports enthusiasts. The site content is basic and primarily informational, with limited interactive features or advanced technical implementations. The business model is non-profit and community-oriented, targeting local audiences. From a technical perspective, the website uses standard HTML, CSS, and JavaScript, including Google Analytics for visitor tracking. There is no evidence of a modern CMS or advanced frameworks. The site lacks visible HTTPS enforcement and security headers, which impacts its security posture negatively. Mobile optimization and accessibility are basic, and SEO practices are minimal. Security-wise, the site shows several weaknesses: absence of HTTPS, no privacy or cookie policies, no contact information for security or incident response, and no visible security best practices. The WHOIS data is missing, which raises concerns about domain legitimacy and registration status. Overall, the security posture is weak, with critical recommendations needed to improve trust and compliance. The overall risk assessment indicates a low to moderate risk primarily due to missing security controls and lack of transparency in domain registration. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding contact information, and improving security headers and compliance measures.

B

brain at work GmbH

brain-at-work.de

48

brain at work GmbH is a well-established German web agency specializing in website creation, online shops, SEO, and tailored online marketing solutions. With over 25 years of experience and a strong regional focus in Germany, the company demonstrates a solid market position supported by long-term client relationships and high customer satisfaction. Their service portfolio includes website and webshop development, SEO services, employee recruitment support, and accessibility solutions, reflecting a comprehensive digital marketing approach. Technically, the website is built on a proprietary CMS (bee.tools®), employs modern web technologies, and is hosted on reliable German infrastructure. The site is mobile-optimized and SEO-friendly, with good performance and accessibility standards. Security-wise, the site enforces HTTPS and includes standard security headers, but lacks visible cookie consent mechanisms and published security policies, which are areas for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

K

Klub přátel fotografie Tišnov

fotoklubtisnov.cz

45

Klub přátel fotografie Tišnov is a small, local photography club based in Tišnov, Czech Republic, with a history dating back to 2010. The website serves as a community hub for photography enthusiasts, providing photo galleries, contest information, member details, and historical context about photography in the region. The club operates primarily as a non-profit organization focused on fostering local photographic culture and events. Technically, the website is built on WordPress 6.8.2, utilizing common web technologies such as jQuery, Google Analytics, and Google Web Fonts. Hosting and domain registration are managed by a Czech provider, WEDOS, consistent with the club's local presence. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. Security-wise, HTTPS is properly implemented, but the absence of security headers and privacy policies indicates areas for enhancement. User tracking is moderate via Google Analytics and Tag Manager, but no explicit cookie consent or privacy disclosures are present, which is a compliance gap. Overall, the website is professional and trustworthy for its intended audience but would benefit from improved privacy and security practices to align with modern standards.

P

Proměny Tišnova

promenytisnova.cz

42

The website 'Proměny Tišnova' serves as an official municipal portal for the city of Tišnov, Czech Republic, focusing on investment projects, urban development, and public news. It provides residents and stakeholders with updates on ongoing and planned city projects, including detailed news articles and interactive maps. The site leverages modern front-end technologies such as Bootstrap, Google Maps API, and various JavaScript libraries to deliver a responsive and informative user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the content and branding strongly indicate a legitimate government entity. Security posture is moderate, with no advanced security headers detected and limited privacy compliance indicators. The site uses Google Analytics and Tag Manager for user tracking but lacks visible privacy and cookie policies, which could be improved for GDPR compliance. Overall, the site is functional and informative but would benefit from enhanced security and privacy practices to strengthen trust and compliance.

T

Tišnovská televize

tisnovskatelevize.cz

31

Tišnovská televize is a regional media outlet serving the Tišnov area in the Czech Republic, providing local news, cultural event coverage, and video content. The website targets residents and visitors interested in regional happenings and operates primarily as a content publishing platform with advertising as a revenue stream. The site is built on WordPress, leveraging common web technologies such as jQuery and Font Awesome, and demonstrates moderate digital maturity with a responsive design and basic SEO features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvements. Overall, the site is legitimate and consistent with its regional media role but would benefit from enhanced privacy compliance and security best practices.

M

Město Tišnov

tisnovskenoviny.cz

38

Tišnovské noviny is the official municipal news portal for the city of Tišnov, Czech Republic, providing residents and interested parties with access to local news, archives, and PDF versions of the printed newspaper. The website is managed by the city and offers a comprehensive archive dating back several years, serving as a key information resource for the local community. The business model is primarily informational and publicly funded, focusing on community engagement and transparency.

O

Místa | Okolonás

okolonas.eu

45

The website 'Okolonás' serves as an informational platform showcasing various cultural, historical, and natural places of interest primarily in the Nový Jičín region of the Czech Republic. It targets general audiences interested in local tourism and cultural heritage. The site employs modern web technologies including Vue.js for frontend rendering and Leaflet.js for interactive map features, indicating a moderate level of digital maturity. Google Tag Manager is integrated for analytics and tracking purposes. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, which are critical for GDPR compliance. Contact and incident response information are absent, limiting user trust and compliance readiness. Overall, the site is professionally designed with good user experience but requires enhancements in privacy, security policies, and contact transparency to improve trust and compliance.

P

ProSenior | Nový Jičín

psnj.cz

44

ProSenior | Nový Jičín is a Czech non-profit organization focused on providing senior care and social support services including home care, day care, and respite care. The organization serves the local community of Nový Jičín, targeting seniors and their caregivers with personalized and community-oriented services. The website reflects a well-established entity with a domain age since 2010, consistent with its operational history. Technically, the site is built on WordPress, leveraging modern web technologies and third-party integrations such as Google Analytics and social media platforms, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with clear GDPR policies and cookie declarations. Overall, the site is professional, trustworthy, and well-aligned with its business mission.

K

Kulturní centrum Rakovník

kulturnicentrum.cz

47

Kulturní centrum Rakovník is a local cultural institution in the Czech Republic focused on organizing and hosting cultural events including theater performances, cinema screenings, and concerts. The website serves as an official portal providing event calendars, ticket sales links, and contact information for the community and visitors. The site is well-structured with good mobile optimization and accessibility features, reflecting a moderate level of digital maturity. The technical stack includes common libraries such as jQuery, Bootstrap, and Swiper.js, indicating a standard but effective implementation. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and a privacy policy page are notable gaps. The WHOIS data is missing, which reduces domain trustworthiness, but the presence of official contact details and social media presence supports legitimacy. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.

M

Městské informační centrum Rakovník

infocentrum-rakovnik.cz

49

Městské informační centrum Rakovník operates as the official municipal information center for the city of Rakovník, Czech Republic. The website serves residents and tourists by providing comprehensive information about local events, cultural heritage, services, and tourism opportunities. The site is well-structured with clear navigation and multilingual support, reflecting a focus on accessibility and user experience. The business model is public service-oriented, emphasizing community engagement and tourism promotion.

O

Organizace pro pomoc uprchlíkům

opu.cz

44

Organizace pro pomoc uprchlíkům (OPU) is a Czech non-profit organization dedicated to assisting refugees and migrants who have lost their homeland. The organization provides social, legal, and psychological support to clients, operates educational programs and awareness campaigns, and engages volunteers to support its mission. The website reflects a well-established entity with a clear focus on humanitarian aid and community education within the Czech Republic. The presence of partner logos and active social media channels further supports its credibility and outreach. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, indicating a modern and maintainable infrastructure. The site is mobile-optimized, uses HTTPS with good SSL configuration, and integrates Google Analytics for visitor insights. However, some security headers are missing, and there is no visible cookie consent mechanism, which could be improved for better GDPR compliance. From a security perspective, the site shows good practices such as HTTPS enforcement and no visible sensitive data exposure. The absence of WHOIS data for the domain is a concern and reduces trustworthiness, though the website content and social presence suggest legitimacy. There is no published security policy or incident response information, which could be added to enhance transparency and readiness. Overall, OPU.cz is a professional and trustworthy non-profit website with strong content and community focus. Strategic improvements in privacy compliance, security headers, and domain registration transparency would further strengthen its security posture and trustworthiness.

M

Medicinas sabiedriba "ARS", SIA

arsmed.lv

39

Medicinas sabiedriba "ARS", SIA operates the website arsmed.lv, a Latvian healthcare center providing medical services. The website targets a general audience seeking healthcare in Latvia and is presented in Latvian with language options for English and Russian. The business appears to be a small local healthcare provider founded around 2016, with consistent branding and a professional online presence. Technically, the site uses WordPress with the Divi theme and common plugins such as Contact Form 7 and Yoast SEO, indicating a moderate level of digital maturity. The website is mobile-optimized and SEO-friendly but lacks explicit privacy and terms of service pages, which are important for compliance and trust.

J

Jiří Prskavec

jiriprskavec.cz

41

The website www.jiriprskavec.cz is a professionally designed personal site dedicated to Jiří Prskavec, an Olympic gold medalist in canoe slalom. It serves as a platform to showcase his biography, career achievements, photo and video galleries, and partnerships with various sponsors. The site targets fans, media, and sponsors, focusing on personal branding and promotion. Technically, the site uses modern web technologies including JavaScript libraries, Google Analytics, and social media SDKs, with a responsive design optimized for mobile devices. However, the site lacks explicit privacy and cookie policies, and no WHOIS data is available for the domain, which limits trust verification. Security headers are not detected, indicating room for improvement in security posture. Overall, the site is content-rich, trustworthy, and professionally maintained but would benefit from enhanced compliance and security measures.

Koszalin360.pl is a regional interactive multimedia portal focused on providing spherical tours, 360° videos, and multimedia content showcasing the beautiful areas of the Pomorze Zachodnie region in Poland. The website is operated by PERSKIMEDIA Szymon Perski, a small media company established in 2016. The business targets a general audience interested in immersive regional content and tourism-related multimedia experiences. The site uses a technology stack centered around HTML5, JavaScript, jQuery, and WebGL to deliver interactive content, although some libraries are outdated. From a technical perspective, the website demonstrates basic mobile optimization and accessibility features but lacks advanced SEO and performance optimizations. The absence of modern security headers and DNSSEC indicates room for improvement in security hardening. No forms or data collection mechanisms are present, reducing exposure to input-based vulnerabilities but also limiting user engagement and contact opportunities. Security posture is moderate with no visible critical vulnerabilities, but the lack of privacy and cookie policies, security headers, and contact information for incident response reduces compliance and trustworthiness. The WHOIS data aligns well with the website content, showing consistent registration details and domain age appropriate for the business history. Overall, the site is functional for its purpose but would benefit from enhanced security practices, privacy compliance, and richer business contact information to improve trust and user confidence.

K

Kocham Koszalin - Program Karta Mieszkańca Koszalina

kochamkoszalin.pl

49

Kocham Koszalin is a community social program focused on strengthening the sense of community among residents of Koszalin, Poland, and encouraging settlement in the city. The program offers an electronic resident card system providing benefits, discounts, and access to local events, targeting both residents and local business partners. The website reflects a well-structured digital presence with clear navigation, accessibility features, and active social media engagement. Technically, the site uses modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and a Content Security Policy, though additional headers and DNSSEC could enhance security further. Privacy compliance is well addressed with comprehensive cookie consent mechanisms and a detailed privacy policy. Overall, the site demonstrates a professional and trustworthy digital platform for a government/community initiative.

P

PROMEDIO Sp. z o.o.

qcloud.pl

37

PROMEDIO Sp. z o.o., operating under the brand Qcloud, specializes in innovative queue management systems designed to optimize customer flow in various service environments such as banks, hospitals, government offices, and retail points. The company offers a range of solutions including physical and virtual ticketing systems, appointment scheduling calendars, informational displays, and API licenses. Established in 2017 and based in Poland, Qcloud has completed over 350 projects and installed thousands of devices, positioning itself as a trusted niche provider in the queue management technology sector. Technically, the website is built on WordPress with common plugins like Yoast SEO and Contact Form 7, enhanced by Google Tag Manager and Google reCAPTCHA for analytics and security. The site is mobile-optimized and uses modern web fonts and scripts, although hosting details are not explicitly disclosed. Cookie consent is managed via CookieYes, indicating a basic level of privacy compliance. From a security perspective, the site enforces HTTPS and DNSSEC, integrates reCAPTCHA on forms, and implements cookie consent mechanisms. However, it lacks explicit security headers such as CSP or HSTS and does not publish a security policy or incident response contacts. No vulnerabilities or malicious content were detected, but improvements in security headers and transparency are recommended. Overall, the website presents a professional and trustworthy image with good content quality and business credibility. The absence of a privacy policy and security disclosures slightly lowers privacy compliance scores. The domain registration is consistent and legitimate, supporting the business claims. Strategic enhancements in security posture and privacy transparency would further strengthen the company's digital trustworthiness.

ept GmbH is a well-established manufacturer specializing in precision electronic connectors with over 50 years of experience. The company operates internationally with subsidiaries and partner sites in the USA, China, Czech Republic, and Italy, serving primarily the automotive and electronics manufacturing sectors. Their website reflects a professional and comprehensive product catalog, emphasizing quality and customization capabilities backed by multiple ISO certifications. Technically, the website is built on a modern CMS with responsive design and interactive elements such as product finders and multimedia content, indicating a mature digital presence. Security-wise, the site uses HTTPS but lacks advanced security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the company's apparent legitimacy based on content and certifications. Overall, the website is a reliable resource for industry professionals seeking high-quality connector solutions.

ept GmbH is a German-based manufacturer specializing in a wide range of industrial connectors including highspeed, miniaturized, rugged, EMC/shielding, power, and automotive connectors. The company offers both standard and customized connector solutions, targeting industrial clients and electronics manufacturers globally. Their website is professionally designed, multilingual, and provides clear contact information, reflecting a mature B2B business model with a medium-sized market presence. Technically, the website is built on the bee.tools® CMS platform, uses modern web standards (HTML5, CSS3, JavaScript), and is secured with HTTPS. The site is mobile-optimized and offers a good user experience with clear navigation. However, there is room for improvement in accessibility and SEO optimization. No analytics or tracking scripts were detected, indicating a minimal user tracking approach. From a security perspective, the site benefits from HTTPS and lacks exposed sensitive data. However, it lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration consistency, which should be addressed to enhance trust. Overall, the website presents a professional and trustworthy business front but requires improvements in privacy compliance, security headers, and domain registration transparency to strengthen its security posture and regulatory adherence.

The website ept-connettore.it currently serves only a 404 error page indicating that the requested content is not available. There is no substantive business information, metadata, or interactive elements present. The domain is registered since 2019 with a valid expiry in 2026 and is consistent with the Italian locale. The lack of content and absence of privacy, cookie, or contact policies significantly limit the ability to assess the business or security posture. Technically, the site shows minimal infrastructure with no advanced technologies or security headers detected. The security posture is basic with HTTPS likely enabled but no additional protections. Overall, the site is low trust and low maturity with critical gaps in content and compliance.

N

Nový Jičín - Město Klobouků

novyjicin.cz

46

Nový Jičín's official municipal website serves as a comprehensive digital portal for residents and visitors, offering city news, public service information, event calendars, and administrative contacts. The site is well-branded and positioned as the authoritative source for city-related information in the Czech Republic. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and various plugins enhancing user experience and content management. The site is mobile-optimized and accessible, with good SEO practices and structured data implemented. Security posture is strong with HTTPS enforced and appropriate security headers, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies, including user consent mechanisms. Overall, the website presents a trustworthy and professional digital presence for the city government, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing transparency around security policies and incident response, and considering a vulnerability disclosure program to further strengthen security culture.

M

Město Rakovník

mesto-rakovnik.cz

46

Město Rakovník operates an official municipal website serving the residents and visitors of the city of Rakovník in the Czech Republic. The site provides comprehensive information about city administration, urban planning, social services, cultural events, and citizen resources. It functions as a key communication channel for the local government, offering access to official documents, news updates, and contact information. The website targets local citizens, government employees, and visitors seeking municipal services or information. Technically, the website employs a modern technology stack including jQuery, Bootstrap 4, and jQuery.mmenu for responsive navigation. The site is mobile-optimized and uses HTTPS to secure communications. Cookie consent mechanisms are implemented, reflecting awareness of privacy regulations. However, no advanced analytics or tracking services are detected, indicating minimal user tracking. From a security perspective, the site enforces HTTPS but lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration legitimacy. No signs of WAF or content blocking were found, and no vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for the city government, with good content quality and user experience. The main risk lies in the missing WHOIS data and lack of some security best practices. Strategic improvements in security headers and domain registration transparency are recommended to strengthen trust and compliance.

M

Městys Velké Němčice

velkenemcice.cz

45

The website www.velkenemcice.cz serves as the official online portal for the municipal government of Velké Němčice, a small town in the Czech Republic. It provides residents and visitors with comprehensive information including official announcements, event calendars, public notices, and contact details for municipal offices. The site is well-structured and targets local citizens and stakeholders interested in community affairs. The business model is informational and service-oriented, typical for local government entities. Technically, the site employs a modern technology stack including Bootstrap, jQuery, and various UI libraries to deliver a responsive and user-friendly experience. The CMS appears to be a custom municipal platform (Progres). While the site is mobile-optimized and SEO-friendly, performance is moderate and accessibility features are basic. No advanced hosting or cloud infrastructure details are evident. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit incident response or security policy documentation. Forms are present and appear secure, but cookie consent mechanisms are missing despite a cookie policy page. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain is a concern and reduces trustworthiness, though the official nature of the content mitigates this somewhat. Overall, the website is a trustworthy and professional municipal portal with good content quality and usability. Strategic improvements in security headers, privacy consent, and domain registration transparency are recommended to enhance trust and compliance.

M

MAS Brána Vysočiny, z.s.

masbranavysociny.cz

48

MAS Brána Vysočiny, z.s. is a Czech non-profit local action group dedicated to regional development and community support in the Vysočina region. The organization facilitates local projects, energy initiatives, and educational workshops, targeting local communities, SMEs, and non-profits. The website reflects a professional and consistent brand presence with clear contact information and active social media channels. Technically, the site is built on Drupal 10 with Bootstrap 5, providing a responsive and accessible user experience. Security posture is adequate with HTTPS enabled, but lacks visible security headers and cookie consent mechanisms, which are recommended for GDPR compliance. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and contact details appear authentic and consistent with a registered non-profit entity. Overall, the site is trustworthy and functional but would benefit from enhanced security and privacy features.

M

MAS Český sever – Varnsdorf

masceskysever.cz

49

MAS Český sever is a regional organization focused on community and regional development in the Český sever area of the Czech Republic. The website presents information about local initiatives, regional products, and community support activities, targeting local residents, stakeholders, and possibly tourists. The business model appears to be non-profit or community-oriented, with a focus on regional promotion and development. Technically, the website is built on WordPress, utilizing common plugins such as Contact Form 7 and RevSlider, and integrates Google Analytics for visitor tracking. The site shows moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The absence of detailed WHOIS data and registrant information is a notable gap. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies. No vulnerability disclosures or incident response contacts are provided. Cookie consent mechanisms are implemented, indicating some level of privacy compliance, though no privacy policy page was found. Overall, the website is functional and professional but has gaps in transparency and security best practices. The missing WHOIS data and lack of privacy and security policies reduce trustworthiness. Strategic improvements in these areas would enhance the site's credibility and security posture.

MAS Podbrněnsko, spolek is a regional non-profit organization focused on supporting the development of the Pohořelicko and Židlochovicko regions in the Czech Republic. The organization provides services such as grant and subsidy information, project support, promotion of local producers, and shared office facilities. Their target audience includes local communities, small and medium enterprises, and non-profit organizations. The website reflects a professional and community-oriented business model with a clear regional focus. Technically, the website uses a modern tech stack including jQuery, Foundation framework, bxSlider, and Google Analytics. It is built on the Nette Framework CMS and shows good mobile optimization and basic accessibility. The site includes cookie consent mechanisms and privacy policies, indicating awareness of GDPR compliance. However, some security best practices such as security headers are not visibly implemented. From a security perspective, the website uses HTTPS and has implemented cookie consent banners, but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits the ability to fully verify domain legitimacy, which introduces moderate risk. Overall, the site is functional, professional, and safe for general audiences. Strategically, MAS Podbrněnsko should enhance its security posture by adding security headers, publishing incident response and vulnerability disclosure policies, and ensuring regular updates of third-party libraries. Improving accessibility and SEO would also benefit user experience and reach.

M

Město Králův Dvůr

kraluv-dvur.cz

47

The website kraluv-dvur.cz serves as the official digital presence for the town of Králův Dvůr in the Czech Republic. It provides residents and visitors with municipal information, including news updates, event calendars, public notices, and contact details for city offices. The site is positioned as a local government portal, focusing on transparency and community engagement. The business model is typical for a municipal government, offering public services and information without commercial intent. Technically, the website is built on the vismo CMS platform and incorporates standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google Analytics and Google Tag Manager for visitor tracking, with a cookie consent mechanism that respects user privacy by default denying analytics and marketing cookies. The site is mobile-optimized and accessible, with good SEO practices and a clear navigation structure. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration is consistent with the municipal nature of the site, having been established in 2001, indicating a mature and legitimate online presence. Overall, kraluv-dvur.cz is a trustworthy and professionally maintained municipal website with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security headers would further strengthen its security posture.

A

Asociace malých a středních podniků a živnostníků České republiky (AMSP ČR)

svou-cestou.cz

47

AMSP ČR is a well-established non-profit association dedicated to supporting small and medium-sized enterprises and entrepreneurs in the Czech Republic. The organization focuses on promoting young entrepreneurship through educational workshops, networking events, and media partnerships. Their projects target various business segments including craftsmen, family businesses, women entrepreneurs, and digitalization initiatives. The website reflects a professional and consistent brand image with clear contact information and legal disclosures. Technically, the site uses modern web technologies such as Google Tag Manager, jQuery, and Bootstrap, and implements cookie consent mechanisms to comply with privacy regulations. Security posture is adequate with HTTPS enforced, though additional security headers could enhance protection. The absence of WHOIS data limits transparency but does not detract significantly from the site's legitimacy given the comprehensive business information provided.

M

Městský úřad Krnov

krnov.cz

45

The website krnov.cz serves as the official digital presence of the city of Krnov, Czech Republic. It provides comprehensive municipal information, including news, event calendars, public notices, and online services for residents and visitors. The site is well-positioned as a trusted government portal, offering clear contact details and multiple communication channels including social media. The target audience includes local citizens, tourists, and businesses seeking city-related information and services. Technically, the site uses a modern CMS (vismo), integrates Google Analytics with privacy-conscious consent defaults, and employs Google reCAPTCHA for form security. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is solid with HTTPS and spam protection, though some advanced security headers and policies are absent. Overall, the site demonstrates a mature digital infrastructure suitable for a municipal government entity.

M

Městský úřad Tišnov

tisnov.cz

49

The website www.tisnov.cz serves as the official municipal portal for the town of Tišnov in the Czech Republic. It provides residents and visitors with comprehensive information including news updates, official public notices, job vacancies, event calendars, and contact details for municipal offices. The site targets local citizens and stakeholders seeking government services and community information. The business model is that of a government service portal, focusing on transparency and public communication. Technically, the website employs a modern CMS platform (vismo), uses HTTPS for secure communication, and integrates Google services such as Analytics, reCAPTCHA, and Translate. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Cookie consent mechanisms are implemented in compliance with GDPR, allowing users to manage their preferences. From a security perspective, the site benefits from HTTPS and bot protection via reCAPTCHA. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a concern, reducing trust slightly, but the official nature and content quality support legitimacy. Overall, the website is well-structured, professional, and trustworthy for its intended audience. Strategic improvements include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to strengthen trust and compliance.

M

Marter | Rodičovská není brzda

marter.cz

44

Marter.cz is a Czech Republic based community and educational platform focused on supporting women, particularly mothers, in returning to work after parental leave and starting their own businesses. The website offers community engagement and educational resources tailored to this niche audience. Technically, the site is built on WordPress using the Divi theme, with integrations such as WooCommerce, bbPress for forums, and LearnDash for learning management. It employs Google Adsense for advertising and Google Tag Manager for analytics and tracking. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with no visible privacy or terms of service pages. Overall, the site is professionally designed and functional, targeting a small but specific market segment.

C

Czech Founders

czechfounders.org

47

Czech Founders is a Czech non-profit organization and community dedicated to empowering startup founders and innovators in Czechia. The organization provides networking opportunities, advocacy with policymakers, research, and events to support the growth and scaling of startups. It has a strong presence in the Czech startup ecosystem with over 1000 members and partnerships with key organizations. The website is professionally designed, content-rich, and well-structured, targeting founders, investors, and ecosystem supporters. Technically, it is built on WordPress with modern UI libraries and is mobile optimized. Security posture is good with HTTPS and domain transfer protection, though DNSSEC is not enabled and security policies are not explicitly published. Privacy compliance is mostly met with a GDPR policy but lacks a cookie consent mechanism. Overall, the website is trustworthy and credible with transparent WHOIS data matching the business leadership.

M

MAVERICKS advokáti s.r.o.

mavericks.legal

46

MAVERICKS advokáti s.r.o. is a boutique law firm based in Prague specializing in legal services for the digital and technology sectors, including startups, venture capital, M&A, IP, and IT law. The firm positions itself as a premium provider with a strong reputation in the Czech and Slovak markets, serving tech companies, investors, and public sector clients. Their business model includes hourly rates, fixed prices, and subscription packages, emphasizing fast and technologically advanced service delivery. Technically, the website is built on WordPress with modern frameworks like Bootstrap and Elementor, featuring good mobile optimization and professional design. Security posture is solid with HTTPS and some security best practices, though explicit security headers and vulnerability disclosure mechanisms are absent. The WHOIS data is unavailable or malformed, limiting domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site is safe, well-structured, and trustworthy, though improvements in privacy compliance and security headers are recommended.

D

DEPO VENTURES s.r.o.

depoventures.com

49

DEPO Ventures is a Czech-based investment group specializing in connecting technology startups with angel investors, primarily in Central and Eastern Europe. Founded in 2017, the company manages angel funds and an international network of investors, supporting a portfolio of over 50 companies with significant invested capital. Their website reflects a professional and modern digital presence, featuring portfolio showcases, investor testimonials, and clear navigation for startups and investors alike. The business model centers on early-stage investment and community building within the tech startup ecosystem. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI elements, integrates Google Analytics and HubSpot for marketing and analytics, and uses Amazon S3 for hosting media assets. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. However, some accessibility features could be improved, and no CMS or major frameworks were detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and a published security policy or incident response contacts. DNSSEC is not enabled, which is a recommended improvement. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy compliance is partial, with cookie consent present but no explicit privacy policy found on the homepage or footer. Overall, DEPO Ventures presents a trustworthy and credible online presence with a solid business foundation. Strategic improvements in security policies, privacy disclosures, and DNS security would enhance their posture. The site is safe for general audiences and free from adult or questionable content.