Security Directory

The website www.nekdeneco.cz is currently inaccessible due to an AWS WAF CAPTCHA challenge page that blocks access to any actual content. This prevents any meaningful extraction of business, contact, or policy information. The WHOIS lookup also failed to return any domain registration data, indicating either a non-existent domain registration or privacy protection that is not disclosed. The technical infrastructure shows use of AWS WAF and Amazon Ember fonts, but no CMS or other frameworks are detectable. Security posture cannot be fully assessed due to lack of accessible content and headers. Overall, the site appears to be either under protection or misconfigured, resulting in a very low trust and credibility score.

D

Digital Media Publishing s.r.o.

ifarnost.cz

44

The website ifarnost.cz is operated by Digital Media Publishing s.r.o., a small Czech company specializing in creating customized websites for parishes. Their service offers easy-to-use content editing, hosting, domain management, and mobile-optimized designs tailored to church communities. The site is professionally designed with good navigation and content relevance, targeting parish administrators and church organizations. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Analytics, hosted on Microsoft Azure Blob Storage. Security posture is solid with HTTPS and SSL certificates, but lacks some security headers and explicit privacy policies. WHOIS data is unavailable, which impacts domain trustworthiness. Overall, the site is functional, professional, and trustworthy for its niche audience.

A

AJdG Solutions

ajdg.net

60

AJdG Solutions is a small technology company specializing in the development and sale of WordPress and ClassicPress plugins, with a strong focus on advertising management and WooCommerce enhancements. Their flagship product, AdRotate Banner Manager, is trusted by over 50,000 users, positioning the company as a niche leader in the WordPress plugin market. The business model centers on software license sales and support services, targeting website owners and developers seeking to optimize advertising revenue and e-commerce functionality. Technically, the website is built on WordPress using the Storefront theme and WooCommerce platform, hosted by InMotion Hosting. The site employs modern web technologies including jQuery and JavaScript, and demonstrates good mobile optimization and SEO practices. Analytics are handled via Matomo, reflecting a privacy-conscious approach. Performance is moderate, with opportunities for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks DNSSEC and security headers such as CSP or HSTS. No explicit security policy or incident response information is provided, and there is no cookie consent mechanism despite cookie usage. The domain registration is privacy protected but consistent with the business location and history, supporting legitimacy. Overall, the security posture is solid but could be enhanced with additional best practices. The overall risk assessment is low, with no critical vulnerabilities detected. Strategic recommendations include enabling DNSSEC, implementing security headers, adding a cookie consent banner, and publishing a security policy with incident response contacts. These improvements would strengthen compliance, user trust, and resilience against potential threats.

F

Flownative GmbH

flownative.com

66

Flownative GmbH is a specialized technology company focused on providing expert support, coaching, training, and cloud hosting services around the Neos CMS and Flow PHP framework. The company positions itself as a niche expert in the Neos ecosystem, catering primarily to developers and businesses using Neos and Flow. Their offerings include professional support, upgrade assistance, and a cloud hosting platform called Flownative Beach, emphasizing scalability and GDPR compliance. The website content is professional and well-structured, reflecting a small but focused business entity based in Germany. Technically, the website is built on the Neos CMS platform and leverages the Flow PHP framework. It uses modern web technologies including PHP and JavaScript, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site follows good practices such as HTTPS enforcement and privacy-respecting analytics. However, it lacks some security headers and does not provide explicit security policies or incident response contacts. The absence of a cookie consent mechanism is a minor compliance gap. The WHOIS data is notably missing or unavailable, which raises some concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, Flownative GmbH presents a trustworthy and professional online presence with a strong focus on Neos CMS services. The main risk lies in the incomplete WHOIS data, which should be investigated further. Strategic improvements in security headers, cookie consent, and published security policies would enhance their security posture and compliance standing.

S

Spreadshirt

spreadshirt.pl

61

Spreadshirt.pl is a professional e-commerce platform specializing in custom apparel and merchandise, positioning itself as the largest T-shirt printing company in Europe. The website offers users the ability to purchase ready-made designs or create their own, with a focus on fast shipping and a broad product range. The platform targets a general audience interested in personalized clothing and accessories. Technically, the site employs modern JavaScript frameworks, including Lit and Glide.js, and integrates a comprehensive cookie consent mechanism via OneTrust, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and standard security headers likely in place, though explicit security policies and incident response contacts are not published. The absence of WHOIS data from the Polish registry limits domain trust verification, but the website's professional presentation and privacy compliance mitigate concerns. Overall, the site demonstrates a solid balance of business credibility, technical sophistication, and privacy adherence.

S

Spreadshirt

spreadshirt.fi

63

Spreadshirt.fi is a prominent European e-commerce platform specializing in custom apparel and print-on-demand services. The website offers users the ability to design and sell personalized t-shirts and other clothing items, positioning itself as one of the largest t-shirt services in Europe. The business model focuses on empowering individual designers and customers to create unique products, supported by a marketplace and extensive product catalog. The target audience is broad, encompassing general consumers interested in custom clothing. Technically, the site employs modern JavaScript frameworks such as LitElement and Glide.js for UI components and sliders, alongside robust cookie consent management via OneTrust. The platform integrates Adobe Analytics and Trustpilot widgets to enhance marketing and customer feedback capabilities. Security-wise, the site enforces HTTPS with strong SSL configurations and implements standard security headers, reflecting a mature security posture. However, explicit security policies and incident response contacts are not prominently published, indicating room for improvement in transparency. Overall, the website is professionally designed, mobile-optimized, and compliant with GDPR regulations, making it a trustworthy and user-friendly platform for custom apparel e-commerce.

S

Spreadshirt

spreadshirt.no

64

Spreadshirt.no is a well-established e-commerce platform specializing in custom printed apparel and products, positioning itself as Europe's largest T-shirt printing company. The website offers a user-friendly interface with clear navigation, modern design, and comprehensive content focused on custom design and shopping experiences. Technically, the site employs modern JavaScript frameworks and libraries, including Lit and Glide.js, and integrates robust cookie consent management via OneTrust, ensuring GDPR compliance. Security posture is strong with HTTPS enforced and multiple security headers present, although public security policies and incident response contacts are not disclosed. The absence of WHOIS data for the .no domain is a notable gap, limiting full domain legitimacy verification. Overall, the site demonstrates a mature digital presence with good privacy and security practices, suitable for its large-scale e-commerce operations.

S

Spreadshirt

spreadshirt.dk

59

Spreadshirt.dk is a professional e-commerce platform specializing in custom apparel, primarily T-shirts, targeting consumers and designers across Europe. It positions itself as the largest T-shirt printing company in Europe, offering services including custom design, an online marketplace for buying designs, and a selling platform for designers. The website is well-branded, with consistent messaging and a clear value proposition emphasizing discounts and customization. Technically, the site employs modern JavaScript libraries such as Glide.js for UI components, OneTrust for cookie consent, and integrates Adobe Analytics and Trustpilot for tracking and reviews. The site is mobile-optimized and accessible, with good SEO practices. Security-wise, HTTPS is enforced with appropriate headers, and cookie consent mechanisms are in place, though explicit security policies and incident response contacts are not publicly available. The absence of WHOIS data from the DK registry slightly reduces trust but does not outweigh the professional presentation and operational maturity of the site. Overall, the site is safe, trustworthy, and compliant with GDPR requirements.

S

Spreadshirt

spreadshirt.es

62

Spreadshirt is a well-established European e-commerce platform specializing in custom apparel and merchandise printing. The website targets a broad audience interested in personalized clothing, offering services such as bulk discounts and a marketplace for designs. The company operates under Spread Group GmbH, with a strong presence in Spain and other European countries. Technically, the site employs modern JavaScript frameworks, cookie consent management, and integrates third-party services like Adobe Analytics and Trustpilot for marketing and customer feedback. Security posture is solid with HTTPS enforcement and cookie consent, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, accessible, and trustworthy, with no signs of blocking or malicious content.

S

Spreadshirt

spreadshirt.it

62

Spreadshirt is a leading European e-commerce platform specializing in custom apparel printing, particularly t-shirts. The website targets a broad audience interested in personalized clothing and accessories, offering both pre-designed and user-created products. The company operates multiple regional sites, indicating a strong market presence across Europe. Technically, the site employs modern JavaScript frameworks and libraries, including Glide.js for sliders and OneTrust for cookie consent management, ensuring compliance with GDPR and providing a good user experience across devices. Security posture is solid with HTTPS enforced and standard security headers present, although no dedicated security policy or incident response information is publicly available. Overall, the site is professional, trustworthy, and well-optimized for SEO and accessibility, with room for improvement in accessibility features and explicit security disclosures.

S

Spreadshirt

spreadshirt.nl

62

Spreadshirt.nl is a leading European e-commerce platform specializing in personalized t-shirts and custom apparel printing. The website serves consumers and designers across Europe, offering a marketplace for designs and a platform to create custom products. The company is part of the Spread Group, a recognized entity in the custom apparel industry. The site demonstrates a mature digital presence with modern JavaScript frameworks, responsive design, and integrated marketing and analytics tools. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and a comprehensive privacy policy. Security posture is strong with HTTPS enforcement and standard security headers, though a dedicated security policy and incident response information are not publicly available. Overall, the website is professional, trustworthy, and well-positioned in its market segment.

S

Spreadshirt

spreadshirt.be

63

Spreadshirt is a well-established e-commerce platform specializing in personalized apparel and gifts, targeting a broad European consumer base. The website offers custom printing services on various clothing items and operates multiple localized domains, indicating a strong regional presence. The business model focuses on online customization and marketplace services for designers and consumers alike. Technically, the site uses modern JavaScript frameworks and libraries, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and headers. The WHOIS data is restricted due to domain registry policies, but the professional website and trust signals like Trustpilot reviews support legitimacy. Overall, the site presents a trustworthy and user-friendly experience with moderate to good technical and security maturity.

S

Spreadshirt

spreadshirt.ie

62

Spreadshirt.ie is an established e-commerce platform specializing in custom t-shirt printing and personalized apparel. The website serves both consumers looking to create custom products and designers wishing to sell their designs on a marketplace. It operates as part of the larger Spread Group with multiple country-specific domains, indicating a broad international presence. The platform offers key services including on-demand printing, a marketplace for designs, and a start-selling program for designers. The website is professionally designed with good content quality and clear navigation, targeting a general audience interested in personalized clothing products. From a technical perspective, the site uses modern JavaScript frameworks and libraries such as Glide.js for sliders, OneTrust for cookie consent, and Adobe Launch for analytics and tag management. The site is mobile optimized and accessible, with good SEO practices evident from meta tags and structured data. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place. However, explicit security headers and policies are not clearly disclosed, and no incident response or vulnerability disclosure information is found. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a comprehensive privacy policy and GDPR compliance indicators. Overall, the website presents a low risk profile with a professional business model and good technical implementation. Recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure channels to enhance trust and compliance.

S

Spreadshirt

spreadshirt.ch

67

Spreadshirt.ch is a leading European e-commerce platform specializing in custom T-shirt printing and personalized apparel. The website offers a comprehensive range of services including design-your-own products, marketplace shopping, and B2B corporate clothing solutions. Positioned as Europe's largest T-shirt printing company, Spreadshirt targets a broad audience seeking personalized merchandise. The platform is supported by a mature technical infrastructure utilizing modern JavaScript frameworks, cookie consent management via OneTrust, and analytics through Adobe Analytics, reflecting a high level of digital maturity. Security posture is strong with HTTPS enforcement, multiple security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates good privacy compliance and business credibility, supported by consistent WHOIS data and clear contact channels.

S

Spreadshirt

spreadshirt.at

63

Spreadshirt.at is a professional e-commerce platform specializing in custom T-shirt printing and apparel design, serving primarily the Austrian and broader European market. It operates as part of the larger Spread Group, which is a leading player in the European custom apparel printing industry. The website offers a marketplace for designs, a custom design tool, and B2B corporate clothing solutions, positioning itself as a comprehensive service provider in this niche. Technically, the site employs modern JavaScript libraries, SVG icons, and cookie consent frameworks, ensuring a good user experience and compliance with GDPR regulations. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are not evident. Overall, the site is well-designed, mobile-optimized, and trustworthy, with clear navigation and professional branding. The lack of WHOIS data limits domain registration trust analysis but does not detract from the site's apparent legitimacy. Recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

S

Spreadshirt

spreadshirt.fr

61

Spreadshirt.fr is a well-established e-commerce platform specializing in personalized apparel and gifts, targeting a broad general audience primarily in France and Europe. The website offers a variety of customizable products including T-shirts, sweatshirts, and aprons, catering to both individual consumers and B2B clients. The platform is part of the Spread Group, a recognized entity in the personalized merchandise market. Technically, the website employs modern JavaScript libraries and frameworks, integrates cookie consent mechanisms compliant with GDPR, and uses trusted third-party services such as Trustpilot for reputation management. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced and cookie consent is managed, but explicit security headers are not clearly visible in the HTML source, suggesting room for improvement. The absence of WHOIS data limits domain trust verification, but the website content and branding strongly indicate legitimacy. Overall, the site demonstrates a mature digital presence with moderate to good security posture and privacy compliance.

S

Spreadshirt

spreadshirt.co.uk

65

Spreadshirt is a well-established e-commerce platform specializing in personalized apparel such as custom t-shirts and hoodies. The website targets a broad audience interested in custom clothing and also offers B2B corporate clothing solutions. The platform is part of the Spread Group, indicating a large-scale operation with multiple country-specific domains. Technically, the website employs modern JavaScript frameworks and libraries, including Glide.js for sliders and OneTrust for cookie consent management, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices in place. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. The WHOIS data for the domain is unavailable due to a domain naming rules error, but the website's professional presentation and contact information support its legitimacy. Overall, the site demonstrates a strong business and technical foundation with room for improvement in security transparency.

S

Spreadshirt

spreadshirt.com.au

65

Spreadshirt.com.au is a well-established e-commerce platform specializing in custom t-shirt printing and personalized apparel. The website offers users the ability to create custom designs or shop from a marketplace of designs, targeting a broad general audience interested in personalized clothing. The business operates in the Australian market with multiple international domain variants, indicating a large-scale operation. Technically, the site employs modern JavaScript libraries, lazy loading, and cookie consent mechanisms, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured data. Security-wise, the site enforces HTTPS and uses cookie consent tools but lacks explicit security policies or vulnerability disclosure information. The WHOIS data is privacy-protected, which is typical for commercial entities, and no suspicious patterns were detected. Overall, the website demonstrates a strong security posture and business credibility with room for improvement in publishing security policies and headers.

S

Spreadshirt

spreadshirt.ca

65

Spreadshirt is a well-established e-commerce platform specializing in custom t-shirts and personalized apparel. The website targets a broad audience interested in creating and purchasing customized clothing and merchandise. It operates internationally with multiple country-specific domains, indicating a strong global market presence. The business model centers on providing an online marketplace for custom designs and print-on-demand services. Technically, the site employs modern JavaScript frameworks and integrates third-party tools for analytics and cookie consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed through comprehensive privacy and cookie policies, including GDPR considerations. Overall, the website is professional, trustworthy, and safe for general audiences, but the lack of WHOIS data for the Canadian domain introduces some uncertainty in domain legitimacy verification.

I

IONOS Group SE

ionos-group.com

76

IONOS Group SE is a leading European digitalization partner specializing in SMB and enterprise cloud and web presence solutions. The company operates multiple well-known brands and serves approximately 6.4 million customers across 18 markets in Europe and North America. Their business model focuses on providing comprehensive hosting, cloud, and domain registration services supported by strong customer care and infrastructure. The website reflects a mature digital presence with investor relations, corporate governance, and press information, indicating a publicly listed and transparent organization. Technically, the website is built on TYPO3 CMS, uses modern web technologies, and integrates Adobe Analytics for user tracking. The site is mobile optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be improved. Hosting appears to be managed internally or via a dedicated CDN. Performance is moderate with room for optimization. Security posture is strong with HTTPS enforced and a robust cookie consent mechanism supporting GDPR compliance. However, explicit security headers are missing, and no public security policy or incident response contacts are published. The WHOIS data is incomplete or privacy protected, which is common for large enterprises but reduces transparency. No vulnerabilities or suspicious content were detected. Overall, the website and business present a low risk profile with strong credibility and compliance. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.

S

Schlund Technologies GmbH

schlundtech.com

70

SchlundTech is a medium-sized European technology provider specializing in domain registration, encryption products, and cloud server hosting. The company, founded in 1995 and part of the 1&1 group, offers a comprehensive Control Center platform for managing domains, encryption certificates, and cloud infrastructure. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant business content targeting entrepreneurs and professional users. Technically, the site uses TYPO3 CMS, integrates Google Tag Manager and Usercentrics for consent management, and employs HTTPS with good security practices. However, the WHOIS data for the domain is missing or not publicly available, which raises concerns about domain registration legitimacy despite the strong business presence and branding. Privacy policies and cookie consent mechanisms are well implemented, indicating GDPR compliance. Overall, the website demonstrates a mature digital presence with a strong security posture but requires verification of domain registration details to fully confirm legitimacy.

Madcat.beer a.s. operates www.drinkcraftbeer.cz, an e-commerce platform specializing in the sale of craft beers, including bottles, cans, and KEG kegs, alongside merchandise and delivery services. The website targets adult craft beer consumers primarily in the Czech Republic, offering fresh and limited edition products. The business model is retail-focused with a niche market position emphasizing quality and exclusivity. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

P

Povodí Ohře, státní podnik

poh.cz

61

Povodí Ohře is a Czech state enterprise responsible for managing water resources, hydrological data, and infrastructure in the Ohře river basin. The organization provides essential services including reservoir management, water planning, and public information dissemination. The website serves as an official portal offering updates, employment opportunities, and contact information to the public and stakeholders. The company holds a stable market position as a government entity with a medium-sized operational scale, founded in 1999. Technically, the website is built on the Vismo CMS platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and integrates Google services like Analytics and reCAPTCHA for security and user tracking. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with a clear navigation structure and consistent branding. From a security perspective, the site enforces HTTPS, employs Google reCAPTCHA on forms, and provides a cookie consent mechanism compliant with GDPR. However, explicit security headers and a published security policy or incident response contact are absent, representing areas for improvement. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business, supporting high legitimacy. Overall, the website demonstrates a strong security posture and good privacy compliance, with professional content and trustworthy business information. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure mechanism to further strengthen trust and compliance.

S

Spolek Most – České Budějovice

spolekmost.cz

43

Spolek Most – České Budějovice is a Czech non-profit organization dedicated to the spiritual, moral, and cultural development of individuals across various demographics. Established originally in 1993, it operates educational programs, spiritual seminars, social services, and community activities supported by local government entities. The organization maintains a clear structure with named officials and publishes annual reports for transparency. Their digital presence is built on WordPress using the Salient theme and WPBakery Page Builder, with a focus on accessibility and mobile responsiveness. However, the website lacks formal privacy and cookie policies, which are important for compliance with data protection regulations. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and a vulnerability disclosure policy.

The website entercamp.cz is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. Due to this, no actual business content, contact information, or policies are visible for analysis. The domain is registered since 2008 with a Czech registrar and uses Cloudflare for DNS and security services. The lack of accessible content prevents a full assessment of the business model, services, or compliance posture. Technically, the site uses modern security mechanisms but does not expose any business or compliance information publicly. Security posture is difficult to evaluate fully due to the blocking mechanism, but the use of Cloudflare indicates a baseline security practice. Overall, the site appears legitimate based on domain age and registration data, but the lack of accessible content and policies limits trust and compliance evaluation.

The website danubegeotour.eu is a geo-tourism platform providing information about geoparks, points of interest, trails, and geo-products in the Danube region. It targets tourists, families, groups, schools, and experts interested in geo-tourism activities. The platform allows users to explore geo-related content and submit ideas for new geo-products, positioning itself as a niche informational resource in the geo-tourism sector. Technically, the website leverages Google Maps API for interactive mapping, uses modern fonts and icons, and appears to be built with a SPA framework such as Vue.js. Hosting is provided by WebSupport s.r.o. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. From a security perspective, the site uses HTTPS and includes a CSRF token, but lacks visible security headers and published privacy or cookie policies. There is no contact information for incident response or data protection officers, which limits transparency and compliance. No analytics or tracking beyond Google Maps is detected, indicating minimal user tracking. Overall, the website is functional and serves its informational purpose but requires improvements in privacy compliance, security headers, and contact transparency to enhance trust and security posture. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and providing clear contact channels for security incidents.

L

Leaders Group

leadersgroup.com

61

Leaders Group is a well-established global intelligence platform specializing in delivering market intelligence, analytics, networking, events, and media services to sports and gaming business professionals. The company operates recognized brands such as Sports Business Journal, Leaders in Sport, and Newzoo, positioning itself as a key player in the sports and gaming media industry. The website reflects a professional and consistent brand image, targeting industry professionals seeking data-driven insights and networking opportunities. Technically, the website is built on the Squarespace platform, leveraging modern web technologies and delivering a good user experience with mobile optimization and moderate performance. However, the site lacks advanced security headers and does not implement DNSSEC, which could enhance its security posture. Privacy and cookie policies are absent, indicating a gap in compliance with data protection regulations. From a security perspective, the site uses HTTPS with a valid SSL configuration and has domain transfer protections in place. No WAF or blocking mechanisms are detected, and no vulnerabilities or exposed sensitive data were found. The WHOIS data confirms the domain's legitimacy and long-term registration, consistent with the company's history. Overall, the website is credible and professional but would benefit from improved privacy compliance, enhanced security headers, and clearer contact information to strengthen trust and regulatory adherence.

D

dmpagency.cz s.r.o.

dmpagency.cz

57

dmpagency.cz s.r.o. is a Czech digital agency specializing in the development of large B2B and B2C e-commerce platforms, websites, and mobile applications. The company offers comprehensive services including initial analysis, development, and internet marketing, positioning itself as a strategic partner for online business solutions. The website reflects a mature digital presence with recognized certifications such as Google Partner and Microsoft Partner, indicating strong market credibility. Technically, the site uses modern web technologies including Bootstrap, JavaScript libraries, and integrates analytics and tracking tools with user consent mechanisms. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of security headers and a public privacy policy page suggests room for improvement. The lack of WHOIS data limits domain trust assessment but does not detract from the professional presentation and business legitimacy. Overall, the site is well-structured, user-friendly, and targets Czech-speaking business clients seeking digital transformation services.

Collata.site is a specialized website builder and content management system tailored specifically for public libraries. The platform offers a comprehensive suite of tools including event and space reservation systems, book lists, blogs, accessibility features, and digital signage. The business targets small to medium-sized public libraries, providing both a hosted SaaS edition and an open-source community edition, positioning itself as a niche player in the education technology sector. The website content is professionally designed, consistent in branding, and rich in relevant information, supported by client logos from various public libraries, which enhances trust and credibility. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, Google Fonts, and Font Awesome. It integrates Google Translate for multilingual support and uses legacy Google Analytics for tracking. The site appears mobile-optimized and accessible, with features supporting WCAG compliance. However, there is no evidence of advanced security headers or DNSSEC, and the domain uses privacy protection services, which is common for small tech companies. From a security perspective, the site uses HTTPS and has a clientTransferProhibited domain status, but lacks visible security headers like CSP or HSTS. The use of legacy analytics scripts and absence of privacy and cookie policies indicate gaps in privacy compliance. No incident response or vulnerability disclosure information is present. Overall, the security posture is moderate but could be improved with better headers, updated analytics, and explicit privacy documentation. The overall risk assessment suggests a legitimate, niche-focused business with good technical and content quality but with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, updating analytics tools, and providing clear incident response contacts to enhance trust and compliance.

H

Headline Group

headlinestudiogroup.com

57

Headline Group is a large media and marketing company operating under Advance Local, a subsidiary of the private company Advance. The company specializes in content marketing, entertainment production, affiliate marketing, and sports content, leveraging a strong portfolio of media assets and trusted journalism. The website is professionally designed using the Squarespace platform, featuring clear navigation and mobile optimization. Security posture is strong with HTTPS and HSTS enabled, but the absence of privacy and cookie policies indicates compliance gaps. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy supported by the business affiliation and website content.

The website www.legacy.com is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. Due to this, no substantive content about the business, services, or company information is available for analysis. The WHOIS lookup for the domain returned no registration data, indicating either a privacy-protected registration or an unregistered domain, which raises concerns about legitimacy. The technical infrastructure includes Cloudflare's security platform, but no further technology stack or CMS details are visible. Security posture is limited to the presence of Cloudflare's WAF and captcha challenge, which provides some protection but also blocks content access. Overall, the site cannot be fully assessed for business credibility, privacy compliance, or security beyond the WAF presence.

T

The Buffalo News Store

buffalonewsstore.com

62

The Buffalo News Store is a small retail e-commerce business specializing in Buffalo-themed posters, books, and sports memorabilia. The website is built on the Shopify platform, leveraging its robust e-commerce infrastructure and third-party marketing and analytics tools. The business targets local Buffalo residents and fans interested in regional culture and sports collectibles. The site features a professional design with good navigation and mobile optimization, providing a positive user experience. Technically, the site uses modern web technologies and integrates multiple tracking and advertising services, although there is room for improvement in security headers and privacy compliance mechanisms. Security posture is solid with HTTPS and secure payment processing, but lacks explicit security policies and incident response contacts. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

The website 'An IndieWeb Webring' is a small community-driven project aimed at connecting personal websites that implement IndieWeb building blocks. It provides a directory, random site navigation, and membership sign-in via IndieAuth or RelMeAuth, targeting IndieWeb enthusiasts. The project is open source with active maintenance and blog updates, positioning itself as a niche community resource within the IndieWeb ecosystem. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and PHP, with no detected CMS. The site is moderately performant and mobile-optimized, though accessibility and SEO are basic. Security practices include CSRF protection on forms but lack advanced HTTP security headers. The domain is privacy protected but consistent with the project's age and scope. Security posture is moderate with no critical vulnerabilities detected, but improvements are recommended in HTTPS enforcement, security headers, and explicit privacy and cookie policies. No advertising or tracking is present, supporting user privacy. Overall, the site is trustworthy and safe for general audiences. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing a privacy policy with GDPR compliance, and improving contact transparency to strengthen trust and compliance.

Ú

ÚRS CZ

pro-rozpocty.cz

59

ÚRS CZ is a Czech company specializing in providing comprehensive construction cost estimation tools, software, and training services. Their offerings include the KROS software suite, online applications, BIM valuation tools, and carbon footprint calculation applications. The company targets construction professionals such as estimators, project managers, and investors, positioning itself as a key player in the Czech construction software market. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site uses modern web technologies including Vue.js, UIkit, and integrates Google reCAPTCHA and analytics tools, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and anti-bot measures in place, though explicit security headers and detailed privacy policies are lacking. Overall, the site is trustworthy and well-maintained, but the absence of WHOIS data and privacy policy documentation suggests areas for improvement in transparency and compliance.

N

Nebezpečné jezy v ČR

nebezpecnejezy.cz

34

The website 'Nebezpecnejezy.cz' is a specialized informational platform focused on providing a comprehensive database and safety information about dangerous river weirs in the Czech Republic. It serves primarily water sports enthusiasts, local authorities, and the general public interested in water safety. The site is well-established, with a domain age of over 13 years, and collaborates with recognized partners in the water sports and water management sectors. Technically, the site is built on ASP.NET Web Forms and integrates common tracking tools such as Google Analytics and Google Tag Manager. While the site offers good content quality and user experience, it lacks formal privacy and cookie policies, which is a compliance gap. Security-wise, HTTPS is used, but security headers and advanced protections are missing, indicating room for improvement. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening.

S

Suché jezy v ČR

suchejezy.cz

38

The website suchejezy.cz is an informational and environmental project focused on documenting and raising awareness about dry weirs in Czech rivers that negatively impact ecology and recreational use. It serves a niche audience including water sports enthusiasts, environmentalists, and local communities. The site provides a searchable database, map integration, news articles, and partner collaborations to support its mission. Technically, the site is built on ASP.NET Web Forms with integration of Google Maps API and Google Analytics for tracking. While functional, the site shows some legacy technology usage and basic mobile and accessibility features. Security posture is moderate with HTTPS usage but lacks security headers and exposes a Google Maps API key without restrictions. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is legitimate and stable with a domain age consistent with its history. Strategic improvements in security and privacy compliance would enhance trust and user protection.

R

Raft.cz

raft.cz

48

Raft.cz is a specialized Czech water sports guide website providing comprehensive information about rivers, current water conditions, rental services, and community-driven content such as articles and forums. It targets water sports enthusiasts including canoeists, kayakers, and rafters primarily in the Czech Republic and neighboring European countries. The website operates as an informational portal with advertising and community features, maintaining a consistent brand presence and active user engagement. Technically, the site is built on ASP.NET Web Forms with integration of common analytics and advertising technologies such as Google Analytics, Facebook SDK, and DoubleClick. Mobile optimization and accessibility are basic but functional. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers and explicit privacy policies are lacking. WHOIS data is unavailable, which limits domain trust assessment, but the website content and external references suggest legitimacy. Overall, the site scores well in content quality and business credibility but could improve in privacy compliance and technical modernization.

P

Private by Design, LLC

splitbee.io

65

Splitbee was a technology company providing an all-in-one analytics and conversion tool aimed at website owners and digital marketers. The company was founded in 2020 and has since sunset its service, with the team joining Vercel to continue analytics development. The website serves primarily as a sunset notice and redirection to Vercel Analytics. Technically, the site is built on modern frameworks such as Next.js and React, hosted on Vercel, and uses Cloudflare DNS. The site is performant, mobile-optimized, and accessible. Security posture is moderate with HTTPS enforced and domain transfer protections in place, but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to absence of privacy and cookie policies. No contact or incident response information is provided, limiting user trust and compliance transparency.

M

MAS Chrudimsko, z.s.

maschrudimsko.cz

59

MAS Chrudimsko, z.s. is a non-profit local action group established in 2013 focused on promoting sustainable development in the Chrudimsko region of the Czech Republic. The organization operates through community-led local development strategies and supports projects aligned with regional growth and sustainability goals. Their website reflects a well-structured and professional digital presence, leveraging OctoberCMS and hosted by a regional provider. The site offers comprehensive information about their activities, partnerships, and funding programs, targeting local municipalities and stakeholders. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit incident response policies. Overall, the website is trustworthy, compliant with GDPR, and serves its community-oriented mission effectively.

Č

Českobudějovicko - Hlubocko, z.s.

cb-hl.cz

37

Českobudějovicko - Hlubocko, z.s. is a regional non-profit organization focused on promoting tourism and coordinating activities in the South Bohemian region of the Czech Republic. The website serves as a hub for tourism information, event calendars, educational resources, and partner collaboration. It targets tourists, local businesses, and regional stakeholders. The organization appears well-integrated with regional government and tourism bodies, as evidenced by partner logos and references. Technically, the website uses a modern tech stack including HTML5, CSS3, JavaScript with jQuery, and several third-party libraries for galleries and lazy loading. It integrates Google Analytics, Google Tag Manager, Facebook Pixel, and SmartEmailing for tracking and marketing purposes. The site is mobile-optimized and has good navigation and content structure, though accessibility features are basic. Security-wise, the site uses HTTPS and asynchronous script loading but lacks visible security headers and explicit privacy or cookie policies, which are compliance gaps. No WHOIS data is available, limiting domain trust assessment, but the site content and partner affiliations suggest legitimacy. Overall, the site has a moderate security posture with room for improvement in privacy compliance and security best practices. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy policy publication, security headers, and WHOIS transparency would enhance trust and compliance.

Mechanics' Institute is a well-established non-profit cultural and educational organization based in San Francisco, offering a wide range of services including library access, cultural programming, chess education, and community events. The website reflects the organization's mission to serve as a vibrant arts and cultural hub, providing resources and programs for community engagement. The business model focuses on membership, events, and educational services, targeting community members interested in culture, education, and chess. Technically, the website uses modern web technologies such as HTML5, CSS3, JavaScript libraries including Swiper.js and FontAwesome, and is hosted behind Cloudflare DNS services. The site is mobile-optimized and includes accessibility features, though no explicit CMS or framework is detected. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, it lacks DNSSEC and security headers, and does not publish privacy, cookie, or security policies, indicating gaps in compliance and security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, security header implementation, and explicit security and incident response policies to improve its security posture and regulatory adherence.

P

PAPRIKA

my-paprika.com

52

PAPRIKA is a hospitality business specializing in Mediterranean street food, particularly hummus, with multiple locations in Prague and Brno, Czechia. The website presents a professional and user-friendly interface offering menus, table reservations, catering services, and a kitchen market. The business targets general consumers seeking quality Mediterranean cuisine and related catering services. Technically, the site is built on the Site123 CMS platform, utilizing modern web technologies and includes analytics and marketing tracking tools. Security posture is moderate with HTTPS implied but lacks explicit security headers and privacy policies. The absence of WHOIS data for the domain raises some legitimacy concerns, though the website content and business presence appear genuine. Privacy compliance is weak due to missing policies and cookie consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

P

PROSTĚ NA KOLECH - pojízdný bar

prostenakolech.cz

39

Prostě na kolech is a small hospitality business based in the Czech Republic offering a unique mobile bar rental service. They have transformed a horse trailer into a portable bar suitable for events such as weddings, celebrations, and corporate parties. Their service includes bar rental, optional bar staff, decorations, and delivery within a specified radius. The website is professionally designed with clear navigation and good content quality, targeting event organizers and individuals seeking a stylish bar solution for their events. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, and various JavaScript libraries for UI effects and analytics. The site is mobile optimized and includes Google Analytics for visitor tracking. However, it lacks privacy and cookie policies and does not implement a cookie consent mechanism, which is a compliance gap. No forms are present, reducing data collection risks. From a security perspective, the site uses HTTPS but lacks visible security headers and vulnerability disclosures. The absence of WHOIS data for the domain is a significant concern, impacting trust and legitimacy assessments. No critical vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website presents a professional and functional online presence for a niche hospitality service but requires improvements in privacy compliance, security headers, and domain transparency to enhance trust and regulatory adherence.

U

U Dřeváka Beer&Grill

udrevaka.cz

66

U Dřeváka Beer&Grill is a small hospitality business operating a restaurant and bar located in Brno, Czechia. The company offers food delivery, takeaway, and reservation services through a professionally designed website that integrates an online menu and ordering platform. The business has an established market presence since 2012 and maintains active social media profiles on Google, Facebook, and Instagram to engage with customers. The website is built on modern web technologies including React and Next.js, hosted likely via the registrar's infrastructure, and leverages the ChoiceQR platform for digital ordering and management. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed with clear privacy and cookie policies and a consent mechanism. However, explicit security policies and incident response contacts are not published. Overall, the website is well-optimized for performance, mobile use, and SEO, providing a trustworthy and user-friendly experience for mature audiences interested in dining and alcoholic beverages.

B

Brauerei Gebr. Maisel GmbH & Co. KG

maiselandfriends.com

61

Maisel & Friends is a medium-sized German brewery and hospitality business based in Bayreuth, specializing in beer production, retail, and experiential services including a restaurant, hotel, and event hosting. The company has a strong market position supported by awards and a rich tradition in brewing. The website demonstrates a mature digital presence with modern technologies, good mobile optimization, and comprehensive privacy and cookie policies. Security posture is solid with HTTPS and reCAPTCHA usage, though some security headers and explicit incident response contacts are missing. The absence of WHOIS data reduces domain transparency but the professional content and branding indicate a legitimate business. Overall, the site is well-designed, user-friendly, and trustworthy for its target audience of mature beer enthusiasts and event customers.

M

Madcat.beer a.s.

madcat.beer

49

MadCat is a Czech craft brewery specializing in sour ales, lagers, and traditional ales, operating since 2011. The company is structured as a stock company with over 100 shareholders, emphasizing community involvement and direct sales through brewery visits and an online e-shop. Their market position is niche but strong locally, with active participation in charity projects and brewing workshops. Technically, the website is built on the Webnode platform, uses modern CDN hosting, and is mobile optimized with good performance. Security posture is solid with HTTPS and cookie consent implemented, though lacks published security policies and privacy documentation. Overall, the site is professional and trustworthy, with room for improvement in compliance documentation and security headers.

W

Wild Creatures

wildcreatures.cz

43

Wild Creatures is a small Czech craft brewery specializing in wild fermentation beers, offering both on-site visits and online sales through their e-shop. The website is professionally designed with good navigation and mobile optimization, targeting adult beer enthusiasts. The technical infrastructure includes standard web technologies and Google Analytics for tracking, but lacks advanced security headers and privacy compliance features. The security posture is moderate, with an age gate implemented to restrict underage access, but missing privacy and cookie policies reduce compliance. WHOIS data is unavailable, which raises some concerns about domain registration transparency but does not directly impact the legitimacy of the business as presented on the site. Overall, the website is functional and trustworthy for its business purpose but could improve in security and privacy compliance.

P

Pavel Miřejovský

dusty.cz

51

The website dusty.cz represents a personal portfolio for Pavel Miřejovský, a Czech freelance designer specializing in computer graphics, print material preparation, web presentation design, and GUI design for mobile applications. The site targets clients seeking professional design services in the Czech Republic and operates as a small-scale freelance business. The website is simple, with basic content and consistent branding, but lacks comprehensive business or legal documentation such as privacy or cookie policies. Technically, the site uses standard HTML5, CSS, JavaScript, and modern web fonts (WOFF2). It appears to be a static site without a CMS or complex frameworks. Mobile optimization is good, but accessibility and SEO are basic. No advanced analytics or advertising technologies are detected, indicating minimal tracking or marketing automation. From a security perspective, the site lacks visible security headers and no HTTPS status was provided, which may indicate suboptimal security posture. The absence of WHOIS data is a concern for domain legitimacy and transparency. No privacy or cookie policies are present, which impacts GDPR compliance. Contact information is clearly provided, but no incident response or vulnerability disclosure mechanisms are found. Overall, the website is functional and serves its purpose as a personal portfolio but has room for improvement in security, privacy compliance, and domain transparency. Strategic recommendations include implementing HTTPS, adding security headers, publishing privacy and cookie policies, and improving domain registration visibility to enhance trust and compliance.

The website asistentka.online represents a Czech startup company C26 s.r.o. offering an AI-powered virtual assistant service designed to enhance customer interaction and increase conversion rates for businesses. The service is currently in a pilot phase with individual activation requests. The website is professionally designed, mobile-optimized, and provides clear business contact information. The technical infrastructure includes modern web technologies such as Google Tag Manager, Font Awesome, and iframe embedding for the AI chat interface, hosted on reputable Active24 nameservers. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate operation.