Security Directory

I

iStores

istores.cz

56

iStores is a retail business operating as an Apple Premium Partner, specializing in the sale of Apple products including iPhones, iPads, Macs, Apple Watches, and AirPods. The website targets consumers primarily in the Czech Republic, offering authorized Apple products and related services. The business model is focused on retail sales with a medium-sized market presence. The website demonstrates a good level of content quality and branding consistency, reflecting a professional retail operation. From a technical perspective, the website employs modern web technologies such as Bootstrap Grid and uses Amazon Cloudfront as a CDN for content delivery. The site is mobile optimized and presents a good user experience with clear navigation and relevant content. However, there is limited evidence of advanced frameworks or CMS platforms, and performance is moderate. Security posture is moderate but could be improved. The site lacks visible security headers and does not present privacy or cookie policies in the provided content, which are important for GDPR compliance and user trust. No WHOIS data was available, likely due to privacy protection, which is common for retail businesses but limits domain trust assessment. No signs of WAF or blocking mechanisms were detected, indicating normal accessibility. Overall, iStores appears to be a legitimate and professional retail website with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and publishing a vulnerability disclosure policy to enhance trust and compliance.

P

PP Soft

elementstore.cz

54

ElementStore.cz is a specialized retailer focused on TREK bicycles and related cycling products including shoes, clothing, accessories, and components. The company operates both an e-commerce platform and physical stores located in Brno and Frýdek-Místek, Czech Republic. They provide professional bike servicing, a test center, and customer support, positioning themselves as a leading TREK dealer in the region. The website is well-structured with rich product listings and blog content targeting cycling enthusiasts. Technically, the site uses modern web technologies such as Google Tag Manager, Google Analytics, reCAPTCHA, and Smartsupp Live Chat, ensuring a mature digital presence. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy compliance is partial, with cookie consent implemented but no explicit privacy policy page detected. WHOIS data is unavailable, which slightly impacts trust but does not negate the professional appearance and operational legitimacy of the business. Overall, the website is a reliable and professional platform for cycling products and services in the Czech market.

W

W3 Eden, Inc.

wpattire.com

45

W3 Eden, Inc. operates the website wpattire.com, offering the Attire WordPress theme, which is designed for speed, SEO friendliness, and responsiveness. The company targets WordPress users and developers seeking high-quality themes and blocks. The website demonstrates a solid technical infrastructure built on WordPress 6.8.2, utilizing modern technologies such as Yoast SEO, jQuery, and FontAwesome, hosted via GoDaddy and Cloudfront CDN. The site is well-optimized for mobile and SEO, with good design and user experience. Security posture is adequate with HTTPS enabled and domain registration protections, but lacks advanced security headers and formal privacy or cookie policies. No signs of adult or questionable content were found, and the domain registration is consistent and transparent, supporting legitimacy.

O

Obecní knihovna v Zastávce

knihovnazastavka.cz

57

Obecní knihovna v Zastávce operates as a local public library serving the community of Zastávka, Czech Republic. The website provides information about the library's services, including book lending, a reader portal, e-books, and a return box for after-hours book returns. The library is municipally operated and targets local residents including adults, students, and children. The site is built on the Webnode CMS platform and uses Amazon Cloudfront CDN for hosting and content delivery. It employs HTTPS and a cookie consent mechanism to enhance security and privacy compliance. However, the absence of a privacy policy and WHOIS data limits full trust verification. The website is well-structured, mobile-optimized, and provides clear contact information, contributing to a positive user experience.

N

No-IP

noip.com

70

No-IP is a well-established technology company specializing in Dynamic DNS and Managed DNS services, catering to both home and business users globally. The company offers a range of services including free and paid Dynamic DNS, domain registration, SSL certificates, and managed email solutions. With over 35 million customers and more than 25 years in the industry, No-IP holds a strong market position as a trusted DNS provider. Their website reflects a professional and user-friendly design, supporting multiple languages and providing clear navigation for diverse user needs. Technically, No-IP employs a modern web infrastructure leveraging Bootstrap, Amazon Cloudfront CDN, and various analytics and marketing tools such as Google Analytics, HubSpot, and Bing Ads. The site is optimized for performance, mobile responsiveness, and accessibility, ensuring a seamless user experience. Security best practices are observed with HTTPS enforcement, CSRF tokens, and security headers, although explicit security policies and incident response information are not publicly detailed. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms and GDPR adherence. Contact information is clearly provided, enhancing business credibility. However, the WHOIS data for the domain is unavailable or missing, which raises moderate concerns about domain registration transparency, though the overall legitimacy is supported by the professional web presence and business operations. Overall, No-IP demonstrates a mature digital presence with strong business credibility and technical implementation. Strategic recommendations include publishing explicit security and incident response policies, adding a security.txt file for vulnerability disclosure, and enhancing transparency around data protection roles to further strengthen trust and compliance.

N

No-IP

no-ip.com

70

No-IP is a well-established technology company specializing in Dynamic DNS and Managed DNS services, catering to both personal and business users globally. With over 25 years of market presence and more than 35 million customers, No-IP offers a comprehensive suite of internet connectivity solutions including free and paid dynamic DNS, domain registration, SSL certificates, and managed email services. The company positions itself as a reliable and trusted DNS provider with a strong focus on uptime and ease of use. Technically, the website demonstrates a mature digital infrastructure leveraging modern frameworks such as Bootstrap, cloud-based CDN delivery via Amazon Cloudfront, and integration with multiple analytics and marketing platforms including Google Analytics, HubSpot, and Bing Ads. The site is mobile-optimized, fast-loading, and SEO-friendly, reflecting a high level of digital maturity. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks explicit security headers and a public security policy or incident response page. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration transparency, but the overall trust signals and professional presentation mitigate concerns. Overall, No-IP presents a low-risk profile with strong business credibility and technical robustness. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving WHOIS transparency to further strengthen trust and compliance.

The domain ckpalava.cz currently hosts only a Webnode placeholder error page indicating the domain is available for registration and website creation. There is no active business content, contact information, or privacy and security policies present. The website is hosted on the Webnode platform with content delivered via Cloudfront CDN. The technical infrastructure is basic and lacks modern security headers or SSL configuration details visible in the content. The absence of business information and compliance documentation indicates the domain is not currently in active commercial use.

U

University of Delaware Athletics

bluehens.com

59

The University of Delaware Athletics official website serves as the primary digital platform for the university's sports teams, providing comprehensive information including schedules, rosters, news, and ticketing. It targets students, alumni, and sports enthusiasts, positioning itself as a trusted source for athletics-related content. The site leverages modern web technologies such as Vue.js and Nuxt.js frameworks, hosted on AWS infrastructure with CDN support, ensuring a responsive and performant user experience. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting compliance with GDPR and other regulations. Security posture is solid with HTTPS enforcement and domain registration transparency, though DNSSEC is not enabled. The site integrates multiple marketing and analytics tools including Google Analytics, Facebook Pixel, and Eloqua, balanced with user privacy considerations. Overall, the website is professional, trustworthy, and well-maintained, supporting the university's athletics branding and engagement goals.

D

Duolingo

duolingo.com

67

Duolingo is a leading global language learning platform offering free and paid courses through web and mobile applications. It is widely recognized for its gamified, science-based approach to language education, targeting a broad audience from casual learners to serious students. The company maintains a strong market position as one of the most popular language learning apps worldwide, supported by a consistent brand presence and extensive social media engagement. Technically, Duolingo employs modern web technologies including React, Webpack, and Amazon Cloudfront CDN, ensuring fast performance and mobile optimization. The site integrates Google services such as reCAPTCHA and Tag Manager for security and analytics, alongside a robust cookie consent framework via OneTrust, reflecting good privacy compliance. Security posture is strong with HTTPS enforcement and multiple security headers, although explicit public security policies and incident response information are not found. The absence of WHOIS data is unusual but does not detract from the overall legitimacy given the brand's global recognition and trust signals. Overall, Duolingo presents a professional, secure, and user-friendly digital presence with room for improvement in transparency around security and incident response.

The Principles for Responsible Management Education (PRME) website represents a globally recognized initiative affiliated with the United Nations, focusing on embedding sustainability and responsible management principles into higher education institutions worldwide. With over 880 signatory members, PRME serves as a collaborative platform promoting the UN Sustainable Development Goals (SDGs) through education, research, and community engagement. The website's content is rich, professionally designed, and well-structured, targeting academic institutions, educators, and students interested in sustainability and responsible leadership. Technically, the website employs modern web technologies including Alpine.js for interactivity, Cloudfront CDN for content delivery, and Google Analytics for user tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices. However, explicit privacy and cookie policies are not detected in the provided content, which is a gap in privacy compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers are not confirmed. The WHOIS data is unavailable due to a malformed response, limiting domain trust verification. Despite this, the website's affiliation with the United Nations and the professional presentation strongly support its legitimacy. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in privacy compliance and transparency. Strategic recommendations include adding clear privacy and cookie policies, publishing security and incident response information, and enhancing domain registration transparency to strengthen trust and compliance.

Schneider Electric is a global leader specializing in energy management and automation, operating in over 100 countries. The company offers integrated energy solutions across multiple market segments, targeting industrial, commercial, and residential customers. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored for a global audience. The technical infrastructure leverages modern web technologies including Google Tag Manager, OneTrust for cookie consent, and performance monitoring tools, ensuring fast and responsive user experience across devices. Security posture is strong with HTTPS enforcement, security headers, and published security policies, although the absence of a security.txt file suggests room for improvement in vulnerability disclosure transparency. Privacy compliance is robust, featuring detailed privacy and cookie policies with GDPR adherence and consent mechanisms. Overall, the website demonstrates high business credibility and trustworthiness consistent with a large multinational enterprise.

B

Basketbal Trutnov z.s.

basketbaltrutnov.cz

9

Basketbal Trutnov z.s. is a women's basketball club based in Trutnov, Czech Republic, operating a website that serves as a hub for news, match results, team information, and community engagement. The club targets local basketball enthusiasts, players, and supporters, providing content in Czech and maintaining active social media channels. The business model is community and sports-focused, with an e-shop for merchandise sales. The website is built on the Webnode platform and hosted via Amazon Cloudfront CDN, featuring multimedia content including embedded YouTube videos and a cookie consent mechanism. Despite the lack of WHOIS data, the site presents a professional and trustworthy front with comprehensive contact information and compliance with basic privacy regulations.

U

uvex safety

uvex-safety.de

71

uvex safety is a well-established manufacturer and provider of personal protective equipment (PPE) and occupational safety products, primarily targeting business customers and safety professionals. The company offers a broad portfolio including safety helmets, protective eyewear, hearing protection, respiratory masks, gloves, footwear, and workwear. The website reflects a mature digital presence with comprehensive product information, dealer locator tools, and digital PSA solutions, positioning uvex safety as a key player in the manufacturing sector focused on workplace safety in Germany and beyond. Technically, the website is built on TYPO3 CMS with modern JavaScript frameworks and leverages Amazon Cloudfront CDN for fast content delivery. It employs Google Tag Manager for analytics and tracking, and implements cookie consent management compliant with GDPR. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a high level of digital maturity. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. Cookie consent and privacy policies are comprehensive and transparent. However, the absence of publicly available WHOIS data for the domain www.uvex-safety.com introduces some uncertainty regarding domain registration transparency. No security policy or incident response information is explicitly published, and no vulnerability disclosure mechanism is evident. Overall, the website presents a professional, trustworthy, and secure digital front for uvex safety’s business operations. The main risk lies in the lack of WHOIS transparency, which should be addressed to enhance trust. Strategic recommendations include publishing explicit security policies, establishing a vulnerability disclosure program, and providing direct security contact channels.

U

UVEX ARBEITSSCHUTZ GMBH

uvex-sportstyle-rx.com

68

The website www.uvex-sportstyle-rx.com represents UVEX ARBEITSSCHUTZ GMBH's specialized product line for prescription sports eyewear. It targets sports enthusiasts requiring high-quality, safe, and stylish prescription glasses for various sporting activities. The site is professionally designed, mobile-optimized, and uses modern technologies including TYPO3 CMS and Amazon Cloudfront CDN. Privacy and cookie consent mechanisms are well implemented, reflecting GDPR compliance. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are absent. WHOIS data is missing, which slightly reduces trust but the overall professional presentation and consistent branding support legitimacy. Recommendations include publishing explicit security and incident response policies and improving accessibility features.

U

uvex group

uvex.de

66

The uvex group is a well-established manufacturer and retailer specializing in safety, sports, and protective equipment. The company operates multiple strong brands and targets both professional and consumer markets with a focus on occupational safety and sports gear. Their market position is solid, supported by a large-scale business model and a broad portfolio of subsidiaries. The website reflects a mature digital presence with a modern technology stack centered around TYPO3 CMS and cloud-based content delivery. Privacy and cookie compliance are well implemented, including a consent management platform. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for performance and mobile use.

R

Robel.sk

robelshoes.sk

59

Robel.sk is a Slovak-based e-commerce retailer specializing in branded footwear and accessories for women, men, and children. The company operates multiple country-specific domains, indicating a strong regional presence in Central and Eastern Europe. Their business model focuses on online sales complemented by in-store reservation and pickup options, with a customer-friendly 30-day return policy. The website is professionally designed with good navigation and multilingual support, targeting consumers seeking quality branded shoes and related products. Technically, the site uses a modern tech stack including Google Tag Manager, Facebook Pixel, Sentry for error tracking, and Cloudfront CDN, running on the CREATIVE shop CMS platform. Security practices are solid with HTTPS, CSRF protection, and reCAPTCHA integration, though cookie consent mechanisms and terms of service pages are missing, which could be improved for better GDPR compliance. Overall, the domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

K

KNX Association

knx.org

73

KNX Association is a globally recognized standards organization specializing in smart home and building automation solutions. The website targets professionals in the automation industry, offering certification, training, and software tools such as ETS6. The organization positions itself as a leader with over 500 manufacturer members and 8000 certified products, emphasizing sustainability, security, and IoT integration. The website is professionally designed, well-structured, and provides comprehensive resources for its audience. Technically, the site uses a modern CMS (Weblication®), integrates various JavaScript libraries including jQuery and YouTube APIs, and employs HTTPS with good SSL configuration. The site is moderately optimized for performance and mobile devices, with good SEO practices and accessibility features. Privacy and cookie policies are clearly presented, indicating GDPR compliance. Security posture is solid with HTTPS and secure form handling, though explicit security headers and vulnerability disclosure mechanisms are absent. No critical vulnerabilities or suspicious content were detected. WHOIS data is privacy protected, which is typical for such organizations, and does not raise legitimacy concerns. Overall, the website reflects a mature digital presence with strong business credibility and a good security baseline. Strategic improvements in security headers and incident response transparency would enhance trust further.

G

GBG

gbgstatus.com

63

GBG Status is a professional status and incident reporting website for GBG, a technology company specializing in identity verification and data validation services. The site provides real-time updates on system performance and incidents affecting various GBG services, targeting business customers who rely on these services. The website is well-structured, mobile-optimized, and uses modern technologies including jQuery and Google reCAPTCHA to secure subscription forms. However, the absence of publicly accessible WHOIS data for the domain raises questions about domain registration legitimacy or recent acquisition. The site lacks explicit privacy, cookie, and terms of service policies, which impacts privacy compliance scores. Overall, the website demonstrates a solid technical foundation and professional presentation but would benefit from enhanced transparency and security policy disclosures.

M

MARKBAL.SK

markbal.sk

59

MARKBAL.SK operates as a Slovak e-commerce retailer specializing in environmentally responsible disposable tableware, packaging materials, cleaning agents, hygiene products, and eco-bio items. Established since 1994, the company positions itself as a responsible provider focused on sustainability and customer service. The website is professionally designed, well-structured, and targets Slovak consumers and businesses seeking eco-friendly disposable solutions. The business model is retail e-commerce with a clear emphasis on ecological products and customer support.

R

Robelshoes.ro

robelshoes.ro

49

Robelshoes.ro is an e-commerce retailer specializing in footwear and accessories for women, men, and children, offering a wide range of branded products. The website targets consumers primarily in Romania and neighboring European countries, providing a 30-day return policy and multiple localized country sites. The business model is focused on online retail with a multi-brand catalog, positioning itself as a regional player in the footwear market. Technically, the site uses a CREATIVE shop CMS platform with integrations such as Google Tag Manager, Facebook Pixel, and Sentry for error tracking, indicating a moderate level of digital maturity. Security measures include HTTPS enforcement, CSRF tokens, and Google reCAPTCHA on forms, though there is room for improvement in security headers and published policies. Overall, the site is professional and functional with good content quality and moderate trustworthiness. The domain WHOIS data is privacy protected by ROTLD, which is common for Romanian domains and does not raise immediate concerns. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security and incident response policies, and improving mobile optimization.

R

Robelshoes.hu

robelshoes.hu

52

Robelshoes.hu is a Hungarian e-commerce retailer specializing in branded footwear and accessories, offering a wide range of quality shoes from world-renowned brands. The website targets general consumers seeking convenient online shopping with home delivery. The platform is part of a multi-country network with sister sites serving neighboring markets. Technically, the site uses a proprietary CMS (CREATIVE shop), integrates modern tracking and analytics tools such as Facebook Pixel, Google Tag Manager, and Sentry for error monitoring. Security measures include HTTPS, CSRF tokens, and Google reCAPTCHA, indicating a mature security posture. However, explicit security policies and incident response contacts are not published, which could be improved. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience, with moderate performance and good mobile optimization.

R

Rainer Winter Stiftung

rainer-winter-stiftung.de

67

The Rainer Winter Stiftung is a well-established non-profit foundation based in Fürth, Germany, founded in 1980. It focuses on supporting disadvantaged, sick, and socially weak children and youth primarily in the Nürnberg metropolitan area and internationally. The foundation operates with a transparent, unbureaucratic model, ensuring 100% of donations go directly to the cause, supported strongly by the uvex group and its partners. The website reflects a professional and consistent brand image, with clear messaging and good content quality. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including StencilJS and Amazon Cloudfront CDN for performance. It employs Usercentrics for consent management and Google Tag Manager for analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. From a security perspective, the site uses HTTPS with strong SSL configuration and implements consent mechanisms for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers could be verified and incident response policies published to enhance security posture. Overall, the site presents low risk with a strong trust profile, good privacy compliance, and a clear business purpose. Strategic recommendations include enhancing security header implementation, publishing incident response and vulnerability disclosure policies, and maintaining regular security audits.

U

UVEX ARBEITSSCHUTZ GMBH

uvex-safety.com

72

UVEX ARBEITSSCHUTZ GMBH operates the uvex safety website, a professional platform offering a wide range of personal protective equipment (PPE) designed and certified in Germany. The company targets business clients, safety professionals, and retailers, positioning itself as a leading manufacturer and distributor of occupational safety products including helmets, glasses, gloves, footwear, and respirators. The website reflects a mature digital presence with comprehensive product information, dealer locator tools, and advisory content.

U

uvex laservision

uvex-laservision.de

59

uvex laservision is a German-based manufacturer specializing in the development, production, and distribution of laser protection products, serving industrial and medical sectors. The company positions itself as a global leader in laser safety equipment, offering a range of products accessible via an online shop. The website is professionally designed, primarily in German with English language support, and targets professionals requiring laser safety solutions. Technically, the site leverages modern web technologies including Shopware CMS, Amazon Cloudfront CDN, Google Tag Manager, and Usercentrics for cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place; however, the absence of explicit security headers and published security policies suggests room for improvement. WHOIS data confirms domain legitimacy with consistent registration and authoritative nameservers. Overall, the site is trustworthy and professionally maintained but could enhance transparency by publishing privacy policies and security disclosures.

H

Heckel

heckel-securite.fr

57

Heckel is a French manufacturer specializing in safety footwear, offering a broad range of products from lightweight safety sneakers to shoes designed for extreme environments. The company is part of the uvex group, a well-established entity in the safety and sports equipment sectors. The website demonstrates a professional digital presence with a modern TYPO3 CMS infrastructure, CDN hosting, and integration of analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Privacy and cookie compliance are well implemented, reflecting adherence to GDPR standards. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data limits full trust assessment but the overall website professionalism and branding consistency support legitimacy.

F

Filtral

filtral.com

64

Filtral is a specialized eyewear brand offering high-quality sunglasses and reading glasses, positioned within the retail sector and associated with the established uvex group. The website demonstrates a strong commitment to sustainability and quality, supported by certifications such as the EcoVadis Sustainability Rating. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and CDN hosting for fast performance and excellent mobile optimization. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with GDPR-aligned policies and consent management. However, the lack of WHOIS registration data and absence of direct contact emails or phone numbers slightly reduce business credibility. Overall, the site is professional, trustworthy, and well-maintained, suitable for its target audience.

U

uvex group

uvex-group.com

71

The uvex group is a large, internationally recognized manufacturer specializing in safety, sports, and leisure products. The company operates multiple strong brands and maintains a significant presence in Germany and Europe, with a focus on in-house production and quality control. Their website reflects a mature digital infrastructure built on TYPO3 CMS, leveraging modern web technologies and CDN delivery for optimal performance and user experience. Privacy compliance is well addressed through a comprehensive privacy policy and cookie consent management via Usercentrics. Security posture is strong with HTTPS enforcement and secure form handling, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site projects professionalism and trustworthiness consistent with a large manufacturing enterprise.

R

Robelshoes.cz

robelshoes.cz

45

Robelshoes.cz is an established e-commerce retailer specializing in branded footwear and accessories primarily targeting the Czech Republic and neighboring Central European countries. The website offers a broad catalog of products for women, men, and children, including shoes and complementary accessories. The business model focuses on online retail with multiple regional domains to cater to localized markets. The site demonstrates a consistent brand presence and provides customer-friendly policies such as free delivery over a certain amount and a 30-day return window. Technically, the website employs modern tracking and analytics tools including Google Tag Manager, Facebook Pixel, and Sentry for error monitoring, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA on forms, though there is room for improvement in security headers and privacy compliance mechanisms. Overall, the site is professional, trustworthy, and well-structured, but lacks some compliance features such as cookie consent and visible WHOIS registrant data, which slightly impacts trust scores.

D

Dětský domov Liptál

ddliptal.cz

51

Dětský domov Liptál is a longstanding educational and child care institution operating under the auspices of the Zlínský kraj regional government in the Czech Republic. The organization provides residential care and educational support to children who cannot live with their parents, emphasizing a safe and nurturing environment. The website reflects this mission with clear content and a professional presentation, targeting families, children, and regional stakeholders. Technically, the site is built on the Webnode CMS platform, leveraging modern web technologies and Amazon Cloudfront CDN for hosting static assets. Google Tag Manager is used for analytics, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced, but the absence of security headers and privacy policies suggests room for improvement. The lack of WHOIS data limits domain trust verification, though the website content and regional affiliation support legitimacy. Overall, the site is functional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

U

uvex group

uvex.com

69

uvex group is a well-established manufacturer specializing in safety, sports, and eyewear products with a global footprint. The company operates multiple subsidiaries and brands, serving industrial clients and sports enthusiasts alike. Their business model combines manufacturing with direct online sales and B2B partnerships, positioning them as a significant player in the manufacturing sector in Germany and internationally. The website reflects a professional corporate presence with clear branding and comprehensive product offerings.

U

Uber Technologies Inc.

ubereats.com

66

Uber Eats is a leading global online food and grocery delivery platform operated by Uber Technologies Inc. The website offers consumers the ability to order food and groceries from local restaurants and stores with contactless delivery options. It supports business accounts, restaurant sign-ups, and delivery partner registrations, positioning itself as a comprehensive marketplace in the food delivery sector. The platform is accessible via web and mobile apps, serving over 500 cities worldwide. Technically, the website is built using modern web technologies including React and various JavaScript libraries, with performance optimizations such as CDN usage and script preloading. It employs Google reCAPTCHA for bot defense and uses secure HTTPS connections with Content Security Policy measures. The site is well-optimized for mobile devices and accessibility, with good SEO practices evident. From a security perspective, Uber Eats demonstrates strong security posture with HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly found, which could be improved to enhance transparency and trust. Overall, the website is professional, trustworthy, and compliant with privacy regulations including GDPR. The lack of WHOIS data is due to privacy protection, which is justified for a large enterprise. The platform integrates extensive analytics and marketing tools, reflecting a mature digital marketing strategy. Strategic recommendations include publishing detailed security policies, incident response information, and vulnerability disclosure to further strengthen security culture and user trust.

A

American Heart Association

shopheart.org

74

ShopHeart.org is the official merchandise e-commerce store for the American Heart Association (AHA), a large non-profit organization dedicated to cardiovascular health. The website offers branded products such as apparel, pins, cookbooks, and educational materials, with proceeds supporting the AHA's mission. The site is built on the Shopify platform using the Impulse theme, integrating modern e-commerce technologies and analytics tools to provide a smooth user experience. The presence of privacy and cookie policies with consent mechanisms reflects a commitment to regulatory compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although formal security policy and incident response information are not publicly available. WHOIS data is privacy protected, which is typical for non-profit entities, and does not detract from the site's legitimacy given the consistent branding and official social media links. Overall, the site demonstrates a professional and trustworthy online presence aligned with the American Heart Association's brand and mission.

B

Benefit Management s.r.o.

benefit-plus.cz

64

Benefit Management s.r.o. operates the Benefit Plus platform, a comprehensive cafeteria benefits catalog and redemption service primarily targeting employees and employers in the Czech Republic. The platform offers a wide range of benefits including travel, food, books, culture, personal development, sport, and health services. The website is professionally designed, mobile-optimized, and integrates modern web technologies such as React and Next.js, with security features including HTTPS and Google reCAPTCHA. Social media presence and clear contact information enhance business credibility. However, the lack of publicly available WHOIS data and absence of a cookie consent banner indicate areas for improvement in transparency and privacy compliance. Overall, the platform holds a strong market position as a local benefits management solution with a medium-sized business profile.

W

Waragod.sk

waragod.sk

60

Waragod.sk is a Slovak-based e-commerce retailer specializing in outdoor, tactical, sports, and hobby apparel and equipment. The website targets active lifestyle consumers across multiple Central European countries, offering a broad product range including clothing, footwear, tactical gear, and accessories. The business operates a multilingual platform with clear contact information and a professional online presence. Technically, the site is built on Joomla CMS with CreativeShop e-commerce integration, leveraging modern analytics and tracking tools such as Google Analytics, Facebook Pixel, and Sentry for error monitoring. Security is well implemented with HTTPS, CSRF tokens, and Google reCAPTCHA, although some advanced security headers and policies are missing. Privacy compliance is partial due to the absence of explicit privacy and terms of service pages. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

R

Robel.sk

robel.sk

61

Robel.sk is a Slovakian e-commerce retailer specializing in branded footwear and accessories, targeting consumers primarily in Slovakia and neighboring countries. The website offers a broad selection of quality shoes and related products from well-known brands, supported by services such as in-store reservation, free delivery to pickup points, and a 30-day return policy. The business operates multiple country-specific domains, indicating a regional market presence and a mature business model focused on retail and online sales. Technically, the website employs a modern technology stack including JavaScript frameworks, Google reCAPTCHA for bot protection, Sentry for error tracking, and various marketing and analytics tools such as Facebook Pixel, Google Tag Manager, and Mouseflow. The platform is built on the CREATIVE shop CMS and uses Amazon Cloudfront CDN for content delivery. Security posture is solid with HTTPS enforced, CSRF tokens, and OAuth login options; however, explicit cookie consent mechanisms and security.txt disclosures are missing, representing compliance and transparency gaps. Overall, the website is professional, trustworthy, and well-positioned in its market segment, though improvements in privacy compliance and security policy publication are recommended.

P

PCpickup.cz

pcpickup.cz

41

PCpickup.cz is a small technology service provider based in the Czech Republic specializing in remote device repair services. Their business model centers on convenience, offering pick up, repair, and delivery of devices such as phones, laptops, Apple products, game consoles, and TVs. The company targets consumers and small businesses primarily in Brno and surrounding areas. The website is professionally designed and provides clear contact information and service descriptions, supporting a trustworthy customer experience. Technically, the website is built on the Webnode CMS platform, leveraging Amazon Cloudfront CDN for content delivery and Google Analytics for visitor tracking. The site is mobile-optimized and uses modern web technologies including HTML5, CSS3, and JavaScript. However, some technical improvements are recommended, such as implementing security headers and enhancing SEO and accessibility features. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, indicating some privacy compliance. However, the absence of a privacy policy and security headers reduces the overall security posture. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses but limits domain trust verification. Overall, PCpickup.cz presents a legitimate and professional online presence for a local device repair business. Strategic recommendations include publishing privacy and terms of service documents, implementing security headers, and adding a security.txt file to improve vulnerability disclosure and trust. These steps will enhance compliance, security posture, and customer confidence.

C

CREATIVE sites

creativesites.sk

56

CREATIVE sites is a Slovak-based medium-sized company specializing in e-commerce solutions, including proprietary e-shop platform development, online marketing, consulting, and branding services. With nearly two decades of market presence and a strong portfolio of clients, they position themselves as experts for ambitious entrepreneurs seeking professional e-commerce growth. The website is well-structured, professionally designed, and fully accessible, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, integrates Google reCAPTCHA v3 for bot protection, and employs tracking tools like Facebook Pixel and Google Tag Manager. Security posture is solid with HTTPS enforcement, CSRF protection on forms, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates high business credibility and compliance with GDPR, making it a trustworthy platform for its target audience.

P

Pulsmetry.cz

pulsmetry.cz

60

Pulsmetry.cz is a specialized Czech e-commerce retailer focused on smartwatches and sport accessories, operating since 2001. The website targets sport enthusiasts and customers seeking high-quality smartwatches, offering a wide range of products including Garmin, Suunto, Polar, and related accessories. The business positions itself as a specialist with a long-standing presence in the market, emphasizing expertise and customer satisfaction. Technically, the site is built on the Shoptet e-commerce platform, utilizing common web technologies such as jQuery, Google Analytics, and Facebook SDK, with CDN support for performance. The site is mobile-optimized and includes standard SEO and accessibility features. Security posture is generally good with HTTPS enforced and cookie consent implemented; however, the use of an outdated jQuery version and lack of explicit security headers or vulnerability disclosure mechanisms are areas for improvement. WHOIS data is unavailable, which impacts domain trustworthiness, but the website content and policies indicate a legitimate business. Overall, the site is professional and trustworthy with moderate technical maturity and privacy compliance.

B

BizBox, s.r.o.

bizboxlive.com

61

BizBox, s.r.o. operates a Czech-language e-commerce platform enabling businesses to create customizable online shops with multi-channel sales capabilities including B2B and B2C. The platform offers extensive features such as marketing tools, SEO, payment gateway integrations, and order management, targeting small to medium-sized enterprises in the Czech Republic. The website is professionally designed, mobile responsive, and provides clear contact information and customer testimonials, indicating a mature business presence. Technically, the site uses modern web technologies including jQuery, Bootstrap, Font Awesome, and is hosted via Amazon Cloudfront CDN, ensuring reasonable performance and availability. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy or terms of service. WHOIS data is missing, raising concerns about domain registration legitimacy, which impacts overall trustworthiness. Strategic improvements in security transparency and domain registration verification are recommended.

E

ELEKTROWIN a.s.

zaostrenonaelektro.cz

54

Zaostřeno na elektro is an educational and environmental project supported by ELEKTROWIN a.s., focused on promoting proper sorting and recycling of electrical waste in the Czech Republic. The website provides comprehensive information about recycling processes, types of electrical devices, and the importance of recycling for environmental protection. It targets the general public, especially consumers of electrical appliances, aiming to raise awareness and encourage responsible behavior. Technically, the website is built on the Webnode CMS platform, hosted on AWS Cloudfront CDN, and uses modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile-optimized and includes multimedia content such as embedded YouTube videos to enhance user engagement. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and formal privacy or security policies. No WHOIS data is available for the domain, which limits transparency and trust assessment. The site shows no signs of malicious content or vulnerabilities in the visible source. Overall, the website is a well-structured, informative platform with good business credibility and moderate technical maturity. However, improvements in security headers, privacy policy publication, and domain registration transparency are recommended to enhance trust and compliance.

C

Czech Pedal Car

czechpedalcar.com

56

Czech Pedal Car is a small manufacturing business based in the Czech Republic specializing in the production and sale of retro pedal car models and kits. Established since 2017, the company targets enthusiasts and collectors interested in nostalgic pedal cars. The website showcases media coverage and videos highlighting their products, indicating a niche but engaged market presence. Technically, the site is built on the Webnode platform, hosted via AWS Cloudfront, and uses modern web technologies including HTTPS and Google Tag Manager for analytics. While the site is accessible and mobile-optimized with good design and navigation, it lacks comprehensive privacy and cookie policies, security headers, and explicit contact information, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, though the website content and external media references support legitimacy. Overall, the security posture is moderate with room for enhancements in security best practices and privacy compliance.

3

3DVista

3dvista.com

60

3DVista is a professional virtual tour software provider, established since 1999, specializing in interactive 3D tours for real estate, virtual expos, and VR training. The company offers a one-time fee licensing model with features such as gamification, in-tour video conferences, and analytics. The website is built on WordPress using the Divi theme and integrates modern technologies including Google Analytics and Tag Manager, with content optimized for SEO and mobile devices. Security posture is generally good with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the website is professional and trustworthy, but improvements in privacy compliance and domain registration transparency are recommended.

C

Czech Pedal Car

czechpedalcar.cz

56

Czech Pedal Car is a small manufacturing business based in the Czech Republic specializing in the production and sale of retro pedal car models and kits. Established since 2017, the company targets enthusiasts and collectors interested in nostalgic pedal cars. The website showcases their products through multimedia content including videos and media coverage, reinforcing their niche market presence. Technically, the site is built on the Webnode CMS platform, leveraging Amazon Cloudfront CDN for content delivery and Google Tag Manager for analytics. The site is mobile optimized and uses HTTPS with good SSL configuration, though it lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain trust verification, but the website content and external media references support its legitimacy. Overall, the site presents a professional and engaging user experience with moderate technical maturity and security posture.

E

ESPRIT BOHEMIA s.r.o.

bydlime-tvorime.cz

62

BYDLÍME & TVOŘÍME is a Czech lifestyle magazine and website operated by ESPRIT BOHEMIA s.r.o., focusing on home living, decor, crafting, cooking, and inspiration. The site presents a professional and consistent brand with a clear target audience of Czech-speaking individuals interested in creative and cozy living. The business model centers on media publishing with magazine sales and online content delivery. Technically, the website uses modern JavaScript libraries, Amazon Cloudfront CDN, and integrates Facebook Pixel and Google Tag Manager for marketing and analytics. The site is built on the Webnode CMS platform and shows good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though some security headers and explicit security policies are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not detract from the site's legitimacy given the professional content and clear company information. Overall, the website is safe, family-friendly, and well-maintained, with moderate tracking and marketing tools in use.

T

TIERRA VERDE s. r. o.

tierraverde.cz

66

TIERRA VERDE s. r. o. is a well-established Czech-Slovak manufacturer and retailer of eco-friendly detergents and cosmetics, operating since 2008. The company emphasizes sustainability through its True Eco philosophy, zero-waste production, and a network of over 300 refill stations. Their business model combines e-commerce with physical refill points, targeting environmentally conscious consumers. The website reflects a mature digital presence with professional design, clear navigation, and multi-language support.

A

Arthrex Inc.

arthrexvetsystems.com

54

Arthrex Vet Systems is a division of Arthrex Inc., specializing in orthopedic and orthobiologic medical devices for veterinary applications, targeting veterinarians treating large and small animals. The website offers educational courses and product information, positioning itself as a leader in veterinary orthopedic solutions. The technical infrastructure is modern, leveraging Next.js, React, and CDN services to deliver a responsive and performant user experience. Security posture is generally good with HTTPS and reCAPTCHA usage, though lacks explicit security headers and published privacy or cookie policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified to ensure trust. Overall, the site is professional and trustworthy in content but requires improvements in privacy compliance and security transparency.

Arthrex is a globally recognized leader in the orthopedic medical device industry, specializing in minimally invasive products, surgical techniques, and medical education. The company targets orthopedic surgeons, healthcare professionals, and patients seeking advanced treatment options. Their website reflects a mature enterprise with a comprehensive offering of products, educational resources, and clinical research support. The brand is well-established with consistent messaging and a strong digital presence. Technically, the website is built on modern frameworks such as Next.js and Bootstrap, leveraging cloud CDN services for performance and scalability. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Security measures include HTTPS enforcement, security headers, and cookie consent mechanisms, demonstrating a solid security posture. While the WHOIS data for the domain is unavailable, likely due to privacy protection or registry policies, the website content and external references strongly support the legitimacy of the business. Privacy and cookie policies are comprehensive and GDPR compliant, though incident response contact details could be improved. Overall, Arthrex's digital presence is professional, secure, and trustworthy, with minor recommendations to enhance transparency and incident response readiness.

M

www.mgus.cz

mgus.cz

55

The website www.mgus.cz serves as the official platform for the XXIV. pracovní konference na téma monoklonálních gamapatií, a specialized medical conference scheduled for October 8, 2025, in Hradec Králové, Czech Republic. The site provides essential event information including expert guarantors, venue details, and registration navigation. The business model focuses on event organization within the healthcare sector, targeting medical professionals and researchers interested in monoclonal gammopathies. The site is built on the Webnode CMS platform and hosted via AWS Cloudfront CDN, reflecting a moderate level of digital maturity with good mobile optimization and basic SEO practices.

Č

Český zahrádkářský svaz, z. s.

izahradkar.cz

54

The website izahradkar.cz serves as the official online portal for the Czech Gardening Association (Český zahrádkářský svaz, z. s.), providing authoritative gardening advice, magazine content, and community engagement for Czech-speaking gardening enthusiasts. The site is well-positioned as a trusted resource in the gardening sector within the Czech Republic, targeting hobbyists and professionals interested in horticulture, fruit, vegetable, and ornamental plant cultivation. The business model is primarily non-profit, focusing on education and community support through digital content and events. Technically, the website is built on WordPress, leveraging modern web technologies including Google Tag Manager, Google reCAPTCHA, and Seznam SSP advertising. The site uses HTTPS with a good SSL configuration and is hosted likely via WEDOS, a Czech hosting provider. Performance is moderate with good mobile optimization and basic accessibility features. SEO is enhanced by Yoast SEO plugin and structured data in JSON-LD format. From a security perspective, the site employs HTTPS and reCAPTCHA for form protection but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or cookie policy pages found. Contact information is not explicitly provided in the main content, which may affect user trust and compliance. Overall, the website is a credible and professional resource with good content quality and technical implementation. However, it would benefit from enhanced privacy and security disclosures, explicit contact information, and improved accessibility to strengthen compliance and user trust.

S

Spolek pro obnovu Katzelsdorfského zámečku, z. s.

katzelsdorfsky-zamecek.cz

53

The website represents a small non-profit organization dedicated to the restoration of Katzelsdorfský zámeček, a cultural heritage site in the Czech Republic. The organization provides information and community engagement related to this restoration effort. The site is built on the Webnode CMS platform and uses standard web technologies including HTTPS, Google Analytics, and Facebook SDK for social media integration. The technical infrastructure is moderate with CDN hosting and basic mobile optimization. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks important security headers and privacy policies, indicating room for improvement in compliance and security best practices. Overall, the website is functional and trustworthy for its niche audience but would benefit from enhanced privacy and security measures.