Security Directory

Aftermarket.sk is a Slovak domain aftermarket platform specializing in the catching and sale of expired Slovak domains. Established in 2014, it positions itself as a leading service in the Slovak domain aftermarket niche, targeting domain investors and buyers interested in domains with history. The website is built on modern web technologies including Laravel framework, FontAwesome icons, and integrates Google Analytics and Tag Manager for tracking. Security is well implemented with HTTPS, DNSSEC, and CSRF protections. However, the site lacks visible privacy and cookie policies, and no clear contact information is provided, which impacts privacy compliance and business credibility scores. Overall, the site is professional and functional but could improve transparency and compliance aspects.

404M.COM is a Czech language blog established in 2007, focusing on domains, investing, and internet business topics. It provides regularly updated content targeting investors, domain enthusiasts, and internet entrepreneurs. The website operates on WordPress CMS hosted by WEDOS Internet, a.s., a reputable Czech hosting provider. The technical infrastructure includes common web technologies such as PHP, JavaScript, and Google Analytics for tracking. The site demonstrates good SEO practices and mobile optimization but lacks formal privacy and cookie policies, which impacts compliance. Security posture is moderate with SSL enabled but missing DNSSEC and security headers. No WAF or blocking mechanisms are detected, and content is safe for general audiences.

M

Město Vsetín

mestovsetin.cz

48

Město Vsetín operates an official municipal website serving residents and visitors with comprehensive information and public services. The site offers online appointment booking, citizen portals, news updates, event information, and contact details, positioning itself as a key digital interface for local government communication. The website is well-branded with consistent use of the city emblem and maintains a professional appearance with good content quality and navigation. Technically, the site uses a modern tech stack including HTML5, CSS3, JavaScript, Google Fonts, Google Analytics, and reCAPTCHA, built on the Vismo CMS platform. It demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers like Content-Security-Policy could be improved. The site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. Security posture is solid with no visible vulnerabilities, secure forms with reCAPTCHA, and no exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies. The domain is longstanding and consistent with the official city identity, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers and continuous monitoring of third-party scripts to maintain security and privacy standards.

O

Obecní úřad Janová

janova.cz

50

The website www.janova.cz serves as the official online presence of the municipality of Janová in the Czech Republic. It provides comprehensive local government information, including news, official documents, community services, and contact details. The site targets residents and visitors seeking municipal updates and services. Technically, the site uses a custom CMS platform with JavaScript libraries such as jQuery and MooTools, delivering a moderate performance and basic mobile optimization. Security posture is moderate with HTTPS implied but lacking advanced security headers and published privacy policies. The absence of WHOIS data is a concern but the website content and official contact information support its legitimacy as a municipal site. Overall, the site is safe, professional, and trustworthy for general audiences.

O

Obec Hovězí

obec-hovezi.cz

48

Obec Hovězí operates an official municipal website serving the local community of Hovězí in the Czech Republic. The site provides comprehensive information about local government, community events, public notices, and services. It targets residents and visitors seeking official information and municipal resources. The business model is a government public service portal with a focus on transparency and community engagement. The website is well-branded with consistent use of official logos and symbols, and it maintains a good level of content quality and navigation clarity. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. No major technical issues or vulnerabilities were detected in the content. From a security perspective, the website enforces HTTPS and uses Google reCAPTCHA to protect its contact form from spam and abuse. However, it lacks explicit security headers and does not provide dedicated security or incident response policies. Privacy policies and cookie policies are present but lack active consent mechanisms. There is no vulnerability disclosure or security.txt file, which could enhance transparency and security posture. Overall, the website is trustworthy and professional, reflecting its role as an official municipal portal. The domain registration is consistent with the municipality's history, and no suspicious patterns were found. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing security policies, and considering a vulnerability disclosure program to strengthen security and compliance.

O

Obec Huslenky

huslenky.cz

48

Obec Huslenky operates an official municipal website serving the residents and visitors of the Huslenky municipality in the Czech Republic. The site provides local government information, public notices, event calendars, and community services, positioning itself as a trusted source for municipal communication. The business model is governmental public service with a focus on transparency and community engagement. The website is well-established, with a domain age dating back to 2000, reflecting a stable online presence. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. Hosting and domain registration are managed by WEDOS, a reputable Czech provider. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to mitigate spam on forms. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. No vulnerabilities or exposed sensitive data were detected in the content. Privacy policies are present and GDPR compliance is indicated, though the cookie consent mechanism is absent. Overall, the website is a reliable and legitimate municipal portal with a good trust profile. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and enhancing accessibility and SEO to improve user experience and compliance. These improvements will strengthen the site's security posture and regulatory adherence while maintaining its role as a key community resource.

O

Obec Zděchov

zdechov.cz

45

Obec Zděchov is a small municipal government entity serving the local community in the Czech Republic. The website provides information about the municipality, local services, tourism opportunities, and community events. It targets residents and visitors interested in the region. The business model is typical for a local government, focusing on public service and community engagement. The website is well-branded and consistent with its official purpose. Technically, the website uses a CMS platform (vismo), standard web technologies (HTML5, CSS, JavaScript), and integrates Google services such as reCAPTCHA and Translate. Hosting is provided by Wedos, a known Czech hosting provider. The site is moderately optimized for performance and mobile use, with basic accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect its contact form from spam. However, it lacks advanced security headers and explicit incident response or security policy disclosures. Privacy policies are present but basic, and cookie consent mechanisms are not implemented. No vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and suitable for its purpose but could improve security posture and privacy compliance to align with best practices and regulatory requirements.

S

SAMOHÝL MOTOR a.s.

samohylmotor.cz

61

SAMOHÝL MOTOR a.s. is a large, authorized automotive dealership and service provider operating primarily in the Czech Republic with multiple branches in Zlín, Olomouc, and Vsetín. The company specializes in sales and servicing of Škoda, Volkswagen, Audi, and MG vehicles, offering a comprehensive range of new and used cars, financing options, and professional maintenance services. The website reflects a well-established regional market position supported by a parent holding company and several subsidiaries and partners. Technically, the website employs modern JavaScript libraries and tracking tools such as Facebook Pixel, with a responsive design and good SEO practices. Privacy compliance is well addressed with a cookie consent mechanism and a dedicated privacy policy page. However, WHOIS data is unavailable, which slightly impacts trustworthiness from a domain registration perspective. Security posture is generally good with HTTPS enforced but could be improved by adding security headers and publishing explicit security policies. Overall, the site is professional, trustworthy, and user-friendly, serving its target audience effectively.

S

SAMOHÝL MOTOR a.s. a SAMOHÝL MB a.s.

vozynasklade.cz

60

The website www.vozynasklade.cz serves as an online platform for the sale and leasing of new and used vehicles, primarily focusing on brands such as Mercedes-Benz, Škoda, Volkswagen, and Audi. It targets customers in the Czech Republic seeking a wide selection of stock vehicles. The site is professionally designed with good navigation and mobile optimization, supporting a positive user experience. Technically, it employs modern web technologies including JavaScript, Google Fonts, and Facebook Pixel for marketing and tracking purposes. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks advanced security headers and incident response disclosures. Privacy compliance is addressed with a dedicated privacy policy and GDPR-aligned cookie consent. Overall, the site is functional and professional but would benefit from improved transparency in domain registration and enhanced security practices.

S

S-EPI, s.r.o.

mzdovecentrum.sk

54

Mzdové centrum is a well-established Slovak online portal providing comprehensive and up-to-date information for payroll accountants and HR professionals. Operated by S-EPI, s.r.o., the site offers a wide range of services including legal updates, tax and payroll guidance, educational video and audio content, and practical tools such as calculators and calendars. The portal targets professionals in Slovakia's payroll and human resources sectors and maintains a consistent and professional brand presence. Technically, the website is built on ASP.NET with jQuery and includes cookie consent mechanisms compliant with GDPR. While the site performs moderately in terms of speed and accessibility, it is mobile-optimized and SEO-friendly. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit security policies. Overall, the site is trustworthy, legitimate, and serves its niche audience effectively.

S

S-EPI, s.r.o.

vssr.sk

54

The website www.vssr.sk serves as a specialized information portal dedicated to Slovak public administration, providing comprehensive guidance on legislation, accounting, reporting, and supplementary information tailored to public sector entities. Operated by S-EPI, s.r.o., the portal targets government employees, local authorities, and professionals involved in public administration. It offers a variety of services including legislative updates, calculators, calendars, and a subscriber-only written advisory service. The site maintains a professional and consistent brand presence with clear navigation and relevant content in Slovak language. Technically, the site is built on an ASP.NET Web Forms platform with jQuery and custom scripts, reflecting a mature but somewhat legacy infrastructure. The site is moderately optimized for performance and mobile devices, with basic accessibility features. Security-wise, HTTPS is enforced with no visible vulnerabilities or exposed sensitive data, though security headers are not explicitly detected. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and linked privacy and terms of service pages. Overall, the security posture is solid but could be enhanced by implementing additional security headers and explicit incident response policies. The business credibility is high, supported by consistent WHOIS data, partner affiliations, and professional content. No adult or questionable content is present, making the site safe for general audiences. Advertising is limited and transparent, primarily using a single ad network. Strategically, the site is well-positioned as a trusted resource for Slovak public administration professionals, with opportunities to modernize technical infrastructure and strengthen security policies to maintain trust and compliance.

YourIR, operated by Iguana2 Pty. Ltd., is a specialized technology service provider offering investor relations components such as share price data, interactive charts, company announcements, and email alert services tailored for listed companies primarily in Australia and New Zealand. The company leverages over 20 years of market data experience and positions itself as a niche provider with a subscription-based business model. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting investor relations teams. Technically, the website employs a modern JavaScript stack including jQuery, Bootstrap, and Highlight.js, hosted on AWS infrastructure. While the site is mobile-optimized and performs moderately well, there is room for improvement in accessibility and SEO. The use of Google Analytics indicates moderate user tracking, but no cookie consent mechanism is present, which may impact privacy compliance. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and explicit security or incident response policies. The domain registration is privacy protected but consistent with legitimate business practices, and the domain age aligns with the company's operational history. Overall, the security posture is moderate with recommendations to enhance headers, privacy compliance, and transparency. The overall risk is low to moderate, with strategic recommendations focusing on improving privacy compliance, security headers, and public security policies to enhance trust and regulatory adherence.

H

HOPI Logistics s.r.o.

hopilogistics.eu

52

HOPI Logistics s.r.o. is a large logistics company based in the Czech Republic, specializing in warehousing, transportation, distribution, and e-commerce fulfillment services across Central and Eastern Europe. The company emphasizes sustainability and responsibility in its operations and maintains a family-oriented culture. It serves a broad range of clients including major global brands, positioning itself as a reliable and adaptable logistics partner in the region. Technically, the website employs modern JavaScript libraries, Google Tag Manager for analytics, and is hosted by a reputable Czech hosting provider. The site is well-designed, mobile-optimized, and provides multi-language support. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies and advanced security headers. Overall, the website is professional and trustworthy but could improve privacy and security transparency.

T

THINline s.r.o.

registrace-domeny-eu.cz

59

THINline s.r.o. operates the website registrace-domeny-eu.cz, providing domain registration services specifically for .eu domains along with web hosting packages. The company positions itself as an accredited .eu domain registrar with a regional presence in the Czech Republic, managing over 59,000 domains including thousands of .eu domains. The website targets individuals and businesses seeking affordable and reliable domain registration and hosting services. Technically, the site uses basic HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. Hosting is likely provided by Český hosting, a partner mentioned on the site. Security posture is moderate but lacks modern security headers and explicit HTTPS confirmation in the provided data. Privacy compliance is minimal, with no cookie consent mechanism and only basic privacy and terms pages. WHOIS data is unavailable, which reduces transparency and trustworthiness. Overall, the site is functional and professional but could improve in security and privacy compliance to enhance user trust.

T

THINline interactive s.r.o.

domena-webhosting.cz

42

The website www.domena-webhosting.cz is an informational portal focused on webhosting and domain registration advice primarily for the Czech Republic market. Operated by THINline interactive s.r.o., it provides guidance on selecting webhosting services, domain names, free hosting options, and catalogs of providers. The site leverages affiliate partnerships with Czech hosting companies such as Český hosting and promotes related services like virtual and dedicated servers. The content is well-structured, relevant, and targeted at individuals and small businesses seeking hosting knowledge. Technically, the site uses standard HTML, CSS, and JavaScript with Google Analytics and Tag Manager for visitor tracking. However, it lacks modern security headers and privacy/cookie policies, which impacts compliance and trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and footer information suggest a legitimate small business presence. Overall, the site is functional and informative but would benefit from enhanced security and privacy measures.

X

Xiaomi Global

mi.com

65

Xiaomi Global operates as the official international website for Xiaomi Corporation, a leading technology company specializing in smartphones, wearables, smart home devices, and lifestyle products. The site serves a global audience, offering comprehensive product catalogs across multiple sub-brands such as Redmi and POCO. The business model focuses on e-commerce and direct consumer engagement, positioning Xiaomi as a major player in the global consumer electronics market. Technically, the website leverages modern web technologies including React, Google Tag Manager, and TrustArc for consent management, hosted likely on Akamai infrastructure. The site demonstrates strong digital maturity with excellent mobile optimization, accessibility, and SEO practices, ensuring a high-quality user experience. From a security perspective, the site enforces HTTPS, includes multiple security headers, and employs consent mechanisms for privacy compliance. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. The absence of WHOIS data limits domain registration transparency but does not detract from the site's legitimacy given Xiaomi's global brand presence. Overall, Xiaomi Global presents a professional, secure, and user-friendly platform with minor gaps in explicit security disclosures. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and enhancing contact transparency to further strengthen trust and compliance.

E

ENGINEERS EUROPE Central Secretariat AISBL

feani.org

66

ENGINEERS EUROPE is a well-established federation representing professional engineers across 33 European countries. The organization focuses on uniting national engineering associations, facilitating professional mobility through certifications like the EUR ING certificate, and providing educational resources such as the European Engineering Education Database and continuing professional development materials. The website reflects a professional, non-profit entity with a clear mission to strengthen the engineering profession in Europe. Technically, the site is built on Drupal 10, uses modern web fonts, and integrates Google Tag Manager for analytics. It is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and secure forms, though it lacks some security headers and a published security policy. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and serves its target audience effectively.

M

midi - Evangelische Arbeitsstelle für missionarische Dienste und Innovation in der Diakonie

mi-di.de

57

midi is a non-profit organization serving as a future workshop for church and diaconal innovation in Germany. It provides research, publications, workshops, and networking opportunities targeted at church and diaconal actors. The organization is affiliated with the Evangelisches Werk für Diakonie und Entwicklung e.V. and partners with major church bodies such as EKD and Diakonie. The website is professionally designed, content-rich, and regularly updated, reflecting a strong market position within its niche. Technically, the website uses modern web standards with HTML5, CSS3, and JavaScript, and integrates Matomo for analytics. Hosting is managed via INWX nameservers. The site is mobile-optimized and performs moderately well, though accessibility features are basic. SEO practices are good with proper meta tags and Open Graph data. Security posture is solid with HTTPS enforced and secure form handling, but lacks some advanced security headers and a cookie consent mechanism. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy and GDPR consent on forms, but cookie policy and terms of service are missing. Overall, midi presents a trustworthy and professional online presence with minor areas for improvement in privacy and security transparency. Strategic enhancements in cookie consent and security headers would further strengthen compliance and user trust.

D

Deutscher Bundestag

deutscher-bundestag.de

63

The Deutscher Bundestag website serves as the official online presence of the German Parliament, providing comprehensive information about parliamentary activities, members, agendas, and live streams. It targets the general public and stakeholders interested in governmental affairs. The site is positioned as a key governmental information portal in Germany, offering essential services related to legislative transparency and public engagement. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with custom styling and scripts. It uses HTTPS for secure communication and integrates Matomo analytics for user tracking. The site appears to be well-structured with good mobile optimization and SEO practices, although no common CMS or hosting provider details are evident from the data. From a security perspective, the site benefits from HTTPS and Google site verification, indicating legitimacy and basic security hygiene. However, the absence of explicit security headers, privacy and cookie policies, and incident response contacts suggests room for improvement in security posture and compliance. No WAF or blocking mechanisms were detected, and the content is fully accessible. Overall, the website is a credible and authoritative source of governmental information with good content quality and business credibility. Strategic enhancements in privacy compliance, security headers, and incident response transparency would further strengthen its security and trustworthiness.

B

BUWOG Immobilien Treuhand GmbH

buwog-immobilientreuhand.de

44

BUWOG Immobilien Treuhand GmbH operates in the real estate sector, providing property management and related services to tenants, property owners, and investors. The company positions itself as an important player within the German real estate market, with a professional online presence that targets a broad audience including tenants and investors. The website content is well-structured and professionally designed, reflecting a medium-sized enterprise with consistent branding and clear business focus. Technically, the website is hosted on Microsoft Azure infrastructure, utilizing Azure DNS and Cookiebot for cookie consent management. The site employs modern web technologies including JavaScript and CSS, and demonstrates good mobile optimization and SEO practices. However, some advanced security headers and explicit privacy policy documentation are missing, which could be improved to enhance compliance and security posture. From a security perspective, the website benefits from HTTPS encryption and a robust cookie consent mechanism, indicating awareness of GDPR and privacy requirements. No critical vulnerabilities or suspicious patterns were detected in the WHOIS data or website content. Nonetheless, the absence of explicit privacy policies, terms of service, and incident response contacts suggests room for improvement in transparency and user trust. Overall, the website presents a trustworthy and professional image with moderate technical maturity and compliance. Strategic enhancements in privacy documentation, security headers, and contact transparency would further strengthen its security posture and regulatory compliance.

V

Vonovia SE

hand-aufs-werk.de

70

Vonovia SE is a leading real estate company based in Germany, specializing in property management and housing services. The analyzed page 'Hand aufs Werk' is part of their career section, targeting individuals interested in hands-on roles within the company. The website demonstrates a professional and consistent brand presence with a focus on user experience and compliance with cookie consent regulations. Technically, the site uses modern web technologies including JavaScript frameworks and Cookiebot for privacy management. Analytics tools such as Econda and Google services are employed to monitor user interactions. Security posture is moderate with cookie consent implemented but lacks visible security headers and incident response contacts. WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency but does not detract from the apparent legitimacy of the business. Overall, the website is well-structured, secure, and compliant with privacy norms, serving a large enterprise audience in the real estate sector.

V

Vonovia SE

hier-ist-zuhause.de

57

Vonovia SE operates the website hier-ist-zuhause.de, which promotes a contest themed around reasons to love home. As a leading real estate company in Germany, Vonovia provides property management and housing services targeting residents and tenants. The website reflects a professional corporate identity with consistent branding and a focus on tenant engagement. Technically, the site uses modern infrastructure including Azure DNS and Cookiebot for cookie consent management, ensuring GDPR compliance and user privacy. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security and incident response policies are not published. Overall, the site is well-structured, mobile-optimized, and trustworthy, serving an enterprise-level audience in the real estate sector.

T

TON a.s.

ton.eu

57

TON a.s. is a Czech-based furniture manufacturer specializing in designed chairs and tables with a heritage of over 160 years. The company targets both business and individual customers seeking handcrafted, high-quality furniture products. Their market position is that of an established medium-sized manufacturer with a strong brand presence and international reach. The website reflects a professional business model focused on manufacturing and direct sales, supported by a comprehensive product catalog and active engagement through news and social media channels. Technically, the website employs modern JavaScript frameworks, multimedia integration, and cookie consent mechanisms, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with GDPR policies and cookie consent. Overall, the website presents a trustworthy and professional image consistent with the company's business claims.

P

perusahan mitrajaya

worldsciday.org

51

The website felcanada.org operates as an Indonesian online lottery information and betting platform focusing on popular togel markets such as Singapore, Hongkong, and Sidney pools. It provides official lottery result data sourced from recognized lottery pools and facilitates online betting. The site targets Indonesian lottery players seeking timely and accurate lottery data. Technically, the website is built on the Squarespace platform, leveraging its CMS and hosting services, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and HSTS enabled, but lacks advanced security headers and DNSSEC. The WHOIS data raises concerns due to a future domain creation date, which undermines trust. Privacy and cookie policies are absent, and no contact or incident response information is provided, indicating low compliance maturity. Overall, the site presents basic content quality and limited business credibility, with gambling content targeting mature audiences.

Z

Zastoupení v České republice

evropska-unie.cz

70

The website represents the official Czech Republic representation of the European Commission, providing comprehensive information about EU policies, news, events, and services relevant to Czech citizens. It serves as a government information portal with a strong focus on transparency, multilingual support, and public engagement. The site is well-positioned as an authoritative source for EU-related information in Czechia, backed by the European Commission's infrastructure. Technically, the site is built on Drupal 10 with European Commission Library components, ensuring modern web standards, accessibility, and responsive design. The site demonstrates good SEO practices and moderate performance, with no detected blocking or WAF interference. Analytics are implemented via Piwik, with minimal user tracking and good privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected and could be improved. The site links to comprehensive privacy and cookie policies, indicating GDPR compliance. Incident response and vulnerability disclosure policies are referenced, though direct contact channels for security issues are not prominently displayed. Overall, the website is a trustworthy, professional, and well-maintained government portal with strong business credibility and technical maturity. It effectively serves its target audience with relevant content and clear navigation.

Kormidlo.cz is a Czech non-profit online catalog managed by the organization Econnect, providing a curated directory of links related to civil society topics such as human rights, social development, environment, culture, and the non-profit sector. Established in 2000, it serves as a resource hub for NGOs, activists, researchers, and the general public interested in civic issues. The website offers categorized content and allows users to submit or suggest edits to links, supported by EU funding disclaimers and managed with a custom CMS called Toolkit. Technically, the website employs standard web technologies including HTML, CSS, and JavaScript, with integrations of Google Analytics, Google Tag Manager, and Google Adsense for tracking and monetization. The site is hosted by Econnect's own hosting services and uses HTTPS for secure communication. However, the design is basic and somewhat dated, with limited mobile optimization and accessibility features. SEO practices are basic but functional. From a security perspective, the site benefits from HTTPS and a cookie consent mechanism compliant with EU regulations. However, it lacks advanced security headers and does not provide explicit privacy policies, terms of service, or vulnerability disclosure information. Contact information is limited to a single email address, with no phone or physical address details. No WAF or blocking mechanisms are detected, and the site content is safe with no adult or questionable material. Overall, Kormidlo.cz is a legitimate, stable, and moderately secure non-profit resource website with room for improvement in privacy compliance, security hardening, and user experience enhancements.

H

HOPI Logistics s.r.o.

hopiro.ro

49

HOPI Logistics s.r.o. is a large logistics company operating primarily in Central and Eastern Europe, offering comprehensive services including warehousing, transport, value-added services, and e-commerce fulfilment. The company emphasizes sustainability and ethical business practices, serving a broad range of clients including major global brands. Their market position is strong within the regional logistics sector, supported by a wide network of subsidiaries and partner sites. Technically, the website employs modern web technologies such as Google Tag Manager, FontFaceObserver, and Nette PHP framework components, hosted by a reputable provider. The site is mobile-optimized with good design and navigation, although some SEO and accessibility improvements are possible. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks published security policies and incident response contacts. Overall, the website presents a professional and trustworthy image aligned with its business goals.

H

HOPI Logistics s.r.o.

hopipl.pl

51

HOPI Logistics s.r.o. is a medium-sized logistics company operating primarily in Central and Eastern Europe, with a focus on warehousing, transport, e-commerce fulfillment, and value-added services. The company emphasizes sustainability and ethical business practices, serving a B2B audience with tailored logistics solutions. Their market position is supported by references to major global brands and a strong regional presence. Technically, the website uses modern JavaScript libraries, Google Tag Manager, and is hosted by a reputable European provider. The site is mobile-optimized and provides a cookie consent mechanism, though lacks explicit privacy and terms of service pages. Security posture is good with HTTPS and consent management, but could be improved by adding security headers and incident response information. Overall, the website is professional and trustworthy, with moderate tracking and good business credibility.

H

HOPI Logistics s.r.o.

hopi.sk

50

HOPI Logistics s.r.o. is a well-established logistics company operating primarily in Central and Eastern Europe, offering comprehensive services including warehousing, transportation, value-added services, and e-commerce fulfillment. The company emphasizes sustainability and responsible business practices, serving major global brands and maintaining a strong regional presence. The website reflects a professional and consistent brand image with multilingual support and detailed service descriptions. Technically, the site uses modern JavaScript libraries, Google Tag Manager for analytics, and is hosted by a reputable provider. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature digital presence.

H

HOPI Global Solution

hopiglobal.eu

56

HOPI Global Solution is a professional international transportation service provider specializing in road, rail, sea, and air freight solutions with a strong presence in Central Eastern Europe and global reach. The company is part of HOPI HOLDING and emphasizes optimal transportation solutions for business partners worldwide. The website reflects a medium-sized business with good branding consistency and trust indicators such as ISO 9001 certifications. Technically, the website uses modern web technologies, is hosted by a reputable provider, and offers a good user experience with mobile optimization. Security posture is adequate with HTTPS enabled but lacks explicit security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies, although a cookie consent mechanism is present. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

H

HOPI CEE Fish HUB

hopifishhub.eu

60

HOPI CEE Fish HUB operates as a modern logistics and fresh fish processing center targeting Central and Eastern Europe. The company emphasizes speed, quality, and comprehensive services including transport, storage, processing, and packaging of fresh fish and seafood. The website reflects a professional business with clear branding and a focus on serving B2B clients in the seafood logistics sector. Technically, the site uses a modern CMS (Solidpixels), integrates Google Analytics and Tag Manager for tracking, and hosts video content via Vimeo. Security posture is adequate with HTTPS and secure forms, but lacks explicit security headers and published privacy or terms policies. The WHOIS data is privacy protected, which is common and acceptable for this business type. Overall, the website is well-structured, content-rich, and trustworthy, though improvements in privacy transparency and security headers are recommended.

M

Mattoni 1873

mattoni1873.sk

51

Mattoni 1873 is a well-established beverage company specializing in premium natural mineral waters and a portfolio of internationally recognized non-alcoholic beverage brands. Founded in 1873, it holds a leading market position in Central Europe with a large operational footprint including multiple production plants and a broad brand portfolio. The website reflects a mature digital presence with good content quality, clear branding, and multilingual support. Technically, the site uses modern web technologies and integrates Google Analytics and Tag Manager for analytics and marketing purposes. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and accessible site.

P

Procter & Gamble

mujsvet-pg.cz

71

The website 'Můj svět P&G' serves as a localized consumer engagement platform for Procter & Gamble in the Czech and Slovak markets. It provides product information, promotional campaigns, contests, cashback offers, and community features tailored to regional consumers. The site reflects a strong market position of P&G as a leading multinational consumer goods company, focusing on brand marketing and customer interaction. Technically, the site is built on a modern stack including React and Sitecore CMS, hosted on Microsoft Azure, ensuring good performance, mobile optimization, and accessibility. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Privacy compliance is well addressed through links to official P&G privacy and terms pages and a cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

E

Evenea Sp. z o. o.

evenea.com

54

Evenea Sp. z o. o. operates a well-established Polish platform for event organization, ticket sales, and promotion, targeting a broad audience interested in educational, business, cultural, and entertainment events. The platform offers SaaS tools for event organizers and participants, positioning itself as a key player in the Polish event management market. Technically, the website employs modern JavaScript libraries and integrates multiple analytics and marketing tools, hosted by home.pl S.A. The site is mobile-optimized with good SEO and user experience. Security posture is solid with HTTPS and CSRF protections, but lacks some advanced security headers and DNSSEC. Privacy compliance is evident with a comprehensive privacy policy and terms of service, though cookie consent mechanisms could be improved. Overall, the domain registration data supports the legitimacy and longevity of the business.

T

TVO spółka z ograniczoną odpowiedzialnością

klubtvokazje.pl

50

Klub TVOkazje is a loyalty program operated by TVO sp. z o.o., targeting retail customers in Poland who shop via TV Okazje. The program offers benefits such as gifts, discounts, points accumulation, free shipping, and birthday promotions. The website is built using modern frontend technologies like Vue.js and provides a good user experience with clear navigation and consistent branding. The technical infrastructure is moderate in performance and mobile optimized, hosted likely by OVH SAS. Security posture is adequate but could be improved by adding security headers and explicit incident response policies. Privacy compliance is strong with a comprehensive privacy policy and minimal tracking. Overall, the website is trustworthy and professionally maintained, supporting a small-sized retail loyalty business.

V

Vanguard

vanguard.com.au

67

Vanguard Australia operates as a financial services provider targeting corporate clients in the Asia-Pacific region, focusing on investment management and related corporate financial services. The website is built on a modern technology stack including Angular 17 and Adobe Experience Manager, indicating a mature digital infrastructure. However, the content on the provided page is minimal and lacks visible contact or policy information, which limits user engagement and transparency. Security posture appears basic with no explicit security headers or privacy compliance indicators detected, though HTTPS is presumed given the URL scheme. The domain WHOIS data is unavailable due to privacy restrictions, which is common and justified for financial institutions to protect sensitive registrant information. Overall, the website presents a professional but minimal corporate presence with room for improvement in transparency and security best practices.

The website ww16.yarra.com.au is a domain parking page hosted via Sedo, indicating the domain 'yarra.com.au' is currently not in active business use but is offered for sale. The site contains minimal content, primarily advertising and related search links, with no direct business information or contact details. The technical infrastructure relies on standard HTML and JavaScript with Google Ads integration, but lacks modern security headers and visible HTTPS confirmation. Privacy and cookie policies are present but basic, hosted externally by Sedo. Overall, the site demonstrates low digital maturity and minimal security posture, typical for parked domains. The WHOIS data is unavailable due to query failure or privacy protection, which is common for domains held for resale. This limits trust and business credibility. Strategic improvements would require establishing a legitimate business presence, securing the domain with HTTPS, and providing clear contact and compliance information.

F

Fidelity International

fidelity.de

69

Fidelity International operates a comprehensive German website offering global investment and asset management solutions. The company targets institutional and private investors, providing a wide range of financial products including funds, ETFs, and robo-advisory services. The website demonstrates a mature digital presence with modern technologies and good user experience. Security posture is strong with HTTPS and data protection policies, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site reflects a reputable financial institution with consistent branding and compliance with GDPR.

S

SAMOHÝL MB a.s.

samohylmb.cz

66

SAMOHÝL MB a.s. is an authorized Mercedes-Benz dealership and service provider based in the Czech Republic, primarily serving customers in Zlín and surrounding regions. The company offers a comprehensive range of automotive services including new and used vehicle sales, authorized servicing, financing, leasing, and 24/7 towing assistance. Their market position is strengthened by official Mercedes-Benz certifications and multiple branch locations, targeting both individual consumers and business clients seeking premium automotive solutions. Technically, the website employs modern web technologies such as Tiny Slider for carousels, FontAwesome for icons, and Facebook Pixel for marketing analytics. The site is mobile-optimized with good navigation and content quality, though some accessibility features could be improved. Privacy and cookie compliance mechanisms are implemented, reflecting GDPR adherence. However, the absence of WHOIS data limits full trust verification of the domain registration. From a security perspective, the site uses HTTPS and includes anti-spam measures in forms, but lacks visible HTTP security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. The website maintains a moderate security posture with room for improvement in headers and incident response transparency. Overall, SAMOHÝL MB a.s. presents a professional and trustworthy online presence aligned with its business operations. The main risk lies in the missing WHOIS data, which should be addressed to enhance domain legitimacy and trust. Strategic recommendations include strengthening security headers, enhancing accessibility, and publishing clear security and incident response policies.

The website bilingualgeek.com currently serves a 404 Not Found error page with no accessible business content. The domain is registered since 2016 with NameCheap, Inc. and is hosted on Google Cloud Platform. The page content indicates the domain is used by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. However, no direct business information, contact details, or user-facing content is available on the site. Technically, the site uses standard web technologies (JavaScript, HTML, CSS) and enforces HTTPS with frequent certificate rotation, but lacks security headers and cookie consent mechanisms. The absence of contact information and the 404 status significantly reduce the website's usability and trustworthiness. Security posture is moderate with no evident vulnerabilities, but improvements are needed in DNS security and transparency. Overall, the site is not currently functional for end users and provides minimal information about the business or services.

O

Out:think

outthinkgroup.com

55

Out:think is a specialized marketing agency focused on helping authors build their online platforms and market their books effectively. The company leverages websites, email marketing, and social media to engage audiences and grow author followings. Their clientele includes notable bestselling authors, positioning them as a niche player in the author marketing space. Technically, the website is built on WordPress with a modern plugin ecosystem supporting media playback, form handling, and marketing automation. Hosting is via Amazon AWS infrastructure, ensuring reliable performance. Security posture is adequate with HTTPS and bot mitigation, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security transparency.

V

Výstražné informace hydrometeorologických jevů

vystrahygalileo.com

46

The website vystrahygalileo.com is a newly launched Czech language informational platform providing hydrometeorological warnings and alerts. It appears to serve as a public service or governmental resource focused on weather-related hazard information for Czech regions. The site features an interactive map and search functionality for area-specific warnings. Technically, the site uses modern JavaScript and CSS with Google Tag Manager and Google Analytics for tracking. However, it lacks comprehensive privacy, cookie, and terms of service policies, and does not provide explicit contact information or security policies. The domain is very new, registered in December 2024, consistent with a new service launch. Security posture is basic with no advanced headers or protections detected. Overall, the site is safe for general audiences but would benefit from improved privacy compliance and security best practices.

The domain juicingoasis.com currently serves a 404 Not Found error page with no accessible business content. The page content indicates that the domain is hosted by Admiral, a service provider specializing in copyright access control and privacy consent management for digital publishers. No direct business information, contact details, or policies are available on the site. Technically, the site uses basic HTML, CSS, and JavaScript, hosted on Google Cloud Platform with DNS managed by AWS Route 53. Security practices described pertain to Admiral's hosting environment, including HTTPS enforcement and certificate rotation, but no advanced security headers or policies are present. The domain registration is legitimate, registered since 2017 with NameCheap, Inc., and is not privacy protected. Overall, the site is non-functional as a business website and lacks critical privacy, security, and contact information, resulting in a low trust and quality score.

EkoLink.cz is a Czech environmental link catalog managed by the civic association BEZK, established since 2000. It serves as a resource hub for environmental, ecological, energy, transport, and societal topics, targeting the general public interested in nature and sustainability. The website aggregates over 1900 categorized links and provides community engagement through link submissions and feedback. Technically, the site uses a custom CMS called Toolkit, hosted on ecn.cz infrastructure, and integrates Google Analytics and Adsense for tracking and monetization. The design and user experience are basic but functional, with moderate SEO and accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal policies. Overall, the domain registration is consistent and legitimate, reflecting a stable and trustworthy non-profit entity.

Č

Česká společnost pro míšní léze ČLS JEP

sciday.cz

54

The website sciday.cz represents a non-profit initiative by the Czech Spinal Cord Injury Society (Česká společnost pro míšní léze ČLS JEP) focused on raising awareness about spinal cord injuries and promoting the International Spinal Cord Injury Day. The site provides educational content, event information, and links to international organizations such as ISCoS. The target audience includes healthcare professionals, patients, and the general public interested in spinal cord injury prevention and care. The organization appears small and specialized within the healthcare non-profit sector in the Czech Republic. Technically, the website uses a modern but simple technology stack including HTML5, CSS3, JavaScript, Bootstrap framework, Google Fonts, and Cloudflare DNS services. The site is mobile optimized with good navigation and content structure, though accessibility features are basic. No CMS or advanced platforms are detected, indicating a custom or lightweight implementation. Performance is moderate with no major issues detected. From a security perspective, the site uses HTTPS and Cloudflare DNS but lacks visible security headers such as CSP or HSTS. No privacy or cookie policies are present, indicating compliance gaps with GDPR. No forms or user data collection mechanisms are detected, reducing risk exposure. The absence of contact information and incident response channels limits transparency and user trust. Overall, the security posture is average with room for improvement in headers and compliance documentation. The overall risk is moderate given the non-commercial nature and limited data collection. Strategic recommendations include implementing security headers, adding privacy and cookie policies, publishing contact information for security and data protection, and enhancing compliance with GDPR. These steps will improve trust, security posture, and regulatory adherence.

C

Centrum Paraple, o.p.s.

aukceproparaple.cz

46

Centrum Paraple, o.p.s. operates a charitable auction platform through Galerie KODL, organizing annual art auctions to raise funds for people with paraplegia and wheelchair users. The website reflects a well-established non-profit entity with a clear mission and target audience of art collectors and philanthropic supporters. The digital infrastructure is built on Bootstrap 3.4.1 and a proprietary CMS (Vizus CMS), with moderate performance and good mobile optimization. Security posture is moderate, with cookie consent implemented but lacking visible security headers and explicit privacy policies. The WHOIS data is unavailable, likely due to privacy protection, but the website content and contact information indicate legitimacy and trustworthiness. Strategic improvements in security headers, privacy policy publication, and SSL configuration are recommended to enhance compliance and security.

C

Centrum Paraple, o.p.s.

golfproparaple.cz

49

Golf pro Paraple is a well-established charitable golf event organized to support individuals with spinal cord injuries through the non-profit organization Centrum Paraple. The website reflects a professional and consistent brand presence with clear communication of its mission and event details. The technical infrastructure is based on Bootstrap and a custom CMS (Vizus CMS), providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements are recommended in security headers and privacy policy transparency. Overall, the site demonstrates a trustworthy and credible presence in the non-profit sector with active social media engagement and clear contact information.

C

Centrum Paraple, o.p.s.

stardanceproparaple.cz

54

Centrum Paraple is a Czech non-profit organization focused on supporting people with spinal cord injuries through social rehabilitation services. The website promotes the StarDance charity event, which is supported by Czech Television and the public, to raise funds and awareness. The organization has a clear market position as a reputable charity with established partnerships and a strong social media presence. Technically, the website uses Bootstrap 3.4.1 and is built on the Vizus CMS platform, offering a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks some security headers and formal privacy and terms policies. WHOIS data is missing, which slightly impacts trust but the site content and contact information support legitimacy. Overall, the site is professional and trustworthy, serving a general audience with safe content.

The website alsikskrpa.cz is a cultural and historical project dedicated to the Hussite military leader Alšík Škrpa. It provides detailed historical narratives, media content including audio, and promotes a museum located at the Pátek castle in the Czech Republic. The target audience includes history enthusiasts and local visitors interested in Hussite history. The business model focuses on cultural heritage promotion and museum visitor engagement, positioning itself as a niche local cultural site. Technically, the website uses a traditional HTML/CSS/JavaScript stack with jQuery and Google Fonts, hosted on a Czech hosting provider inferred from the nameservers. The site is moderately performant, mobile-optimized, and has basic accessibility and SEO features. No CMS or advanced frameworks are detected. The site lacks advanced security headers and HTTPS enforcement is not confirmed from the provided data. From a security perspective, the site shows minimal security posture with no privacy or cookie policies, no security headers, and no vulnerability disclosure mechanisms. Contact information is clearly provided, but no incident response or security contacts are present. There is no evidence of user tracking or analytics, which reduces privacy risks but also limits marketing insights. Overall, the site is safe, with no adult or explicit content, and provides a good user experience with clear navigation and relevant content. However, it lacks important compliance elements such as privacy and cookie policies and could improve its security posture by implementing HTTPS and security headers.

G

Geodetický a kartografický ústav Bratislava

gku.sk

59

Geodetický a kartografický ústav Bratislava is a Slovak government institution specializing in geodetic and cartographic services. It provides key national services including cadastral data management, electronic portals for real estate information, and spatial observation services. The website serves government agencies, municipalities, and geospatial professionals with authoritative data and services. The institution holds a strong market position as the official geodetic authority in Slovakia. Technically, the website is built on a custom CMS (WebJET) and uses common JavaScript libraries such as jQuery and Bootstrap. It is mobile-optimized and accessible, with moderate performance. SEO is basic but functional. Cookie consent and GDPR compliance mechanisms are implemented effectively, reflecting good digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, the absence of security headers and vulnerability disclosure policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the legitimacy of the domain as a government entity with consistent registration details. Overall, the website is professional, trustworthy, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and trustworthiness further.