Security Directory

Institut Curie is a prestigious French non-profit organization specializing in cancer research, treatment, and education. Established in 1909, it holds a leading position in Europe for oncology services and scientific research. The website reflects this stature with comprehensive content targeting patients, researchers, and healthcare professionals. The institution's digital presence is built on modern web technologies including Nuxt.js and Tailwind CSS, ensuring a responsive and performant user experience. Privacy compliance is well addressed with clear cookie consent mechanisms and privacy policies in French. Security posture is strong with HTTPS enforcement and security headers, though a dedicated security policy and incident response information are absent. Overall, the website is professional, trustworthy, and aligned with the organization's mission.

S

Sector s.r.o.

vibe.sk

43

Vibe.sk is a Slovak music and entertainment website operated by Sector s.r.o., focusing on providing music news, music videos, and artist profiles primarily for Slovak and international audiences. The site offers categorized music content by genre and style, targeting general music enthusiasts. It maintains a moderate market position as a regional media portal with consistent branding and regular content updates. Technically, the site uses a mix of JavaScript libraries including jQuery, Google Analytics, Google Adsense, and Video.js for media playback, with a custom or sector.sk-based CMS platform. The website is served over HTTPS and includes cookie consent mechanisms compliant with GDPR, but lacks visible security headers and explicit security or incident response policies. No contact emails or phone numbers are publicly listed, which may impact user trust and support accessibility. Overall, the site is functional with good content quality and moderate technical implementation, but could improve security posture and compliance transparency.

Z

Zväz vojakov Slovenskej republiky

zvazvojakov.sk

46

Zväz vojakov Slovenskej republiky is a Slovak non-profit organization representing military veterans. The website serves as an information hub for members and the public, providing updates on events, legal advice, and cooperation with other military and veteran organizations. The site is built on WordPress using Elementor and JetEngine, reflecting a moderate level of digital maturity with good content quality and navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit privacy policies. Overall, the website is legitimate and trustworthy, with room for improvement in privacy compliance and security best practices.

H

HOREZZA, a.s.

granithotels.sk

44

HOREZZA, a.s. operates the Granit Hotels brand, managing multiple hotel properties in Slovakia, providing accommodation and booking services primarily targeting general consumers and travelers. The website presents a professional and consistent brand image with clear navigation and booking functionality. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries, hosted on a CMS platform by SoftSolutions. Mobile optimization and user experience are good, though accessibility features are basic. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, but lacks explicit security policies and incident response contacts. Overall, the domain registration aligns well with the business identity, indicating legitimacy and trustworthiness.

SysCom, operated by Aglo Solutions s.r.o., is a Slovak technology company specializing in a proprietary content management system and application framework designed for rapid development of websites, intranet solutions, and online shops. The company targets businesses and developers seeking efficient web and application development platforms, boasting over 10 years of experience and a portfolio including government and corporate clients. The website presents a professional and consistent brand image with clear contact information and client references, positioning SysCom as a credible player in the regional technology sector. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Font Awesome, and various UI plugins, running on the SysCom CMS platform. The site is mobile-optimized with good navigation and design quality, though performance is moderate. Google Analytics is used for visitor tracking, but no visible cookie consent or privacy policies are present, indicating room for improvement in privacy compliance. From a security perspective, the site uses HTTPS (assumed but not explicitly confirmed), but lacks visible security headers and formal security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the business claims, showing consistent registration details and no privacy protection, supporting legitimacy. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy compliance, security header implementation, and formal policies to improve its security posture and regulatory adherence.

A

Automagazin.sk - Novinky, testy, recenzie

automagazin.sk

65

Automagazin.sk is a leading Slovak automotive media website offering news, vehicle tests, reviews, motorsport coverage, and travel advice. It targets Slovak-speaking automotive enthusiasts and maintains a strong market position as the most read motorist magazine in Slovakia. The business model relies on advertising and subscription services, supported by partnerships with related domains. Technically, the site is built on WordPress with a modern tech stack including Google Analytics and Adsense, and it demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR consent. Overall, the site is professional, trustworthy, and content-rich, with no blocking or WAF interference detected.

R

Repromeda

repromeda.hr

43

Repromeda is a healthcare provider specializing in assisted reproduction and infertility treatment, targeting couples and individuals seeking to build families. The website presents a professional image with a clear focus on fertility services and has a strong market presence with over 6000 successful births. The company operates multiple country-specific domains, indicating a regional expansion strategy. Technically, the website is built on WordPress using Elementor and Yoast SEO, with integrations for Google Tag Manager and reCAPTCHA, reflecting a modern digital infrastructure. Security posture is adequate with HTTPS and some best practices, but lacks comprehensive security headers and explicit security policies. Privacy compliance is basic, with cookie consent present but no clear privacy policy or terms of service found. WHOIS data shows inconsistencies, notably a future domain creation date, which raises questions about domain registration legitimacy. Overall, the website is trustworthy and professional but would benefit from improved transparency and security enhancements.

R

Repromeda

repromeda.pl

43

Repromeda is a healthcare provider specializing in fertility treatments and family planning services, operating primarily in Poland with a network of related sites across Central and Eastern Europe. The website presents a professional and content-rich platform targeting individuals and couples seeking fertility assistance, boasting a track record of 6000 children born through their services. Technically, the site is built on WordPress using modern plugins such as Elementor, Yoast SEO, and Fluent Forms, with integration of Google Tag Manager and reCAPTCHA for analytics and security. The security posture is solid with HTTPS and anti-bot measures, though it lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly identified privacy policy page. Overall, the site is trustworthy and well-positioned in its market segment, though improvements in transparency and security documentation are recommended.

R

Repromeda

repromeda.it

42

Repromeda is a healthcare provider specializing in reproductive medicine and genetic fertility treatments, operating primarily as a Czech clinic with localized websites for multiple European countries including Italy. The website presents a professional image with a clear focus on advanced fertility technologies and accessible treatments. The business targets individuals seeking fertility solutions, positioning itself competitively against Western European providers by offering high medical standards and no waiting lists. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, integrating Google services like Tag Manager and reCAPTCHA for analytics and security. The security posture is solid with HTTPS and spam protection, though it lacks visible security headers and formal security policies. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is well-structured, mobile-optimized, and SEO-friendly, but could improve transparency and security documentation.

R

Repromeda

repromeda.de

49

Repromeda is a healthcare service provider specializing in fertility treatments and family planning support, operating primarily in Germany with a strong regional presence and over 6,000 babies born through their services. The website is professionally designed using WordPress and modern plugins, supporting multiple languages to cater to a broad European audience. The technical infrastructure includes Google Tag Manager, Fluent Forms, and Elementor, indicating a mature digital presence. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the website is trustworthy and professional but could improve transparency and compliance aspects.

R

Repromeda

repromeda.hu

46

Repromeda is a healthcare provider specializing in fertility and reproductive services, operating primarily in Hungary with a strong presence across multiple European countries via sister sites. The company has a solid market position, having facilitated the birth of over 6000 babies, targeting individuals and couples seeking family planning and fertility treatments. The website is professionally designed using WordPress with modern plugins such as Elementor and Yoast SEO, supporting multilingual content and optimized for mobile devices. Security measures include HTTPS enforcement, security headers, and Google reCAPTCHA integration, reflecting a good security posture. However, the absence of explicit privacy policies, terms of service, and incident response documentation indicates room for improvement in compliance and transparency. Overall, the site is trustworthy and well-positioned but would benefit from enhanced privacy and security disclosures.

R

Repromeda

repromeda.com

48

Repromeda is a healthcare service provider specializing in fertility and family planning treatments, with a notable track record of over 6,000 children born through their services. The website is professionally designed using WordPress with Elementor and integrates modern technologies such as Fluent Forms and Google services for analytics and advertising. The site is accessible without any WAF or security challenges, indicating good availability. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is generally good with HTTPS and reCAPTCHA implemented, but lacks visible security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site presents a professional front for fertility services but would benefit from improved transparency and compliance documentation.

R

Repromeda

repromeda.sk

45

Repromeda is a healthcare provider specializing in assisted reproduction and infertility treatment, operating primarily in Slovakia with multiple sister sites in neighboring countries. The website presents a professional and consistent brand image, targeting individuals and couples seeking fertility services. The technical infrastructure is based on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good performance and SEO optimization. Security measures include HTTPS, Google reCAPTCHA, and Google Tag Manager, though explicit security policies and incident response information are not published. Overall, the site is trustworthy and well-maintained, with room for improvement in privacy compliance documentation and accessibility features.

N

NUTRISENS ITALIA S.B.R.L

nutrisens-medical.it

60

Nutrisens Italia S.B.R.L is a medium-sized Italian company specializing in clinical nutrition and special alimentation products. The company offers a broad range of nutritional solutions designed for healthcare professionals, patients, and consumers, focusing on effective, safe, and palatable products that enhance quality of life. Nutrisens holds a strong market position in Italy with a well-established brand, supported by active social media presence and customer testimonials. The website reflects a professional and comprehensive digital presence with clear navigation and rich content. Technically, the site is built on a custom ASP.NET platform using modern libraries such as Bootstrap and jQuery, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policy disclosures and advanced security headers. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, Nutrisens demonstrates a mature digital infrastructure and trustworthy business profile.

N

Nutrisens

nutrisens.com

49

Nutrisens is a French agro-food group specializing in nutrition and health products tailored for patients with malnutrition, dysphagia, specific diets, and allergies. The company offers products developed by expert nutritionists and chefs, targeting both individual patients and healthcare professionals. Their business model includes direct sales through an online shop and professional channels, positioning them as a specialized player in the healthcare nutrition sector. The website is professionally designed, multilingual, and optimized for SEO, reflecting a medium-sized enterprise with a clear market focus. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates multiple analytics and tracking tools including Matomo, Microsoft Clarity, Bing UET, and LinkedIn Insight. The site uses HTTPS and includes a cookie consent mechanism via Axeptio, indicating a baseline compliance with privacy regulations. However, explicit privacy and terms of service pages were not detected in the provided content, which could be improved. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML. There is no evidence of security headers in the provided data, and no direct incident response or security policy information is available. The absence of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, though the website content and technical setup suggest a legitimate business. No vulnerabilities or malicious indicators were found. Overall, Nutrisens presents a professional and trustworthy online presence in the healthcare nutrition industry, with room for improvement in privacy transparency and security header implementation. The lack of WHOIS data is a concern that should be investigated further to confirm domain legitimacy.

Z

Združenje Manager

mqportal.si

41

MQ portal is a Slovenian web platform dedicated to modern leadership and management excellence, operated by Združenje Manager, an established organization with nearly 30 years of experience. The portal serves as a knowledge base offering articles, best practices, interviews, and event information targeted at managers and business professionals. The business model revolves around content dissemination, membership networking, and training events. Technically, the site is built on WordPress with modern plugins for performance and GDPR compliance, including WP Rocket and Moove GDPR Cookie Compliance. The site is moderately performant, mobile-optimized, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved and incident response information is absent. No critical vulnerabilities or suspicious WHOIS patterns were detected, and the domain registration aligns well with the business claims. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

A

A1 Slovenija

a1.si

64

A1 Slovenija is a leading private telecommunications provider in Slovenia, offering a wide range of communication services including mobile subscriptions, prepaid packages, triple play bundles, and devices. The company serves over 700,000 users with a strong market presence and a workforce of more than 500 employees. Their website reflects a mature digital infrastructure with modern technologies such as Liferay CMS, Vue.js, and various accessibility and analytics tools. The site is well-optimized for SEO, mobile-friendly, and compliant with GDPR regulations, including a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response information are not publicly disclosed. Overall, the domain registration and business information align well, indicating a trustworthy and legitimate enterprise.

C

Cognigy GmbH

cognigy.ai

75

Cognigy GmbH is a German-based technology company specializing in conversational AI solutions designed to automate and enhance customer service operations. Positioned as a leader in the conversational AI market, as evidenced by its recognition in the 2025 Gartner Magic Quadrant, Cognigy offers a comprehensive AI platform that supports voice and chat AI agents, agent assist tools, and integrations with major contact center platforms. The company targets enterprise customers seeking to deploy AI-powered customer service automation across multiple channels and languages. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies including JavaScript, CSS3, and HTML5, with embedded video content hosted on Vimeo. The site demonstrates good digital maturity with mobile optimization, accessibility considerations, and SEO best practices. Analytics and marketing tools such as Google Tag Manager and HubSpot Analytics are employed with appropriate cookie consent mechanisms, reflecting compliance with privacy regulations including GDPR. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers such as Content-Security-Policy and Strict-Transport-Security. No exposed sensitive data or vulnerable libraries were detected. However, explicit incident response contacts and a vulnerability disclosure policy are not publicly available, representing areas for improvement. Overall, the website presents a professional, trustworthy, and secure digital presence consistent with a reputable technology enterprise. The absence of WHOIS data is a minor concern but is offset by strong business and trust indicators. Strategic recommendations include enhancing transparency around security incident response and vulnerability reporting to further strengthen trust and compliance.

B

Balkan Pensiony

balkanpensiony.cz

58

Balkan Pensiony is a small hospitality business offering accommodation services in Bulgaria, specifically in the Bansko and Primorsko regions. The website presents two main pensions, Atika and Nadia, targeting tourists seeking winter and summer vacation stays. The business model focuses on direct accommodation bookings with a clear regional niche. The website is built on Joomla CMS with a moderate technical infrastructure including Bootstrap, jQuery, and social media integration via Facebook SDK. Google Analytics is used for visitor tracking. Security posture is basic with HTTPS enabled but lacking security headers and privacy policies, which are critical for GDPR compliance. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact phone number appear legitimate. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

R

Ridera Development s.r.o.

rezidence-keltickova.cz

56

Rezidence Keltičkova is a residential real estate development project located in Slezská Ostrava, Czech Republic, developed by Ridera Development s.r.o., a subsidiary of Ridera a.s. The project offers modern family housing with 41 apartments ranging from 1+KK to 4+KK, all sold out, with a focus on peaceful living near the city center. The website is professionally designed using WordPress and Elementor, featuring clear navigation and relevant content for prospective buyers and investors. Technical infrastructure includes modern web technologies and tracking tools such as Google Analytics and Facebook Pixel, with HTTPS enforced and a cookie consent mechanism implemented. However, the absence of WHOIS data and registrant information limits domain trust assessment.

C

CEC European Managers

sustainableleaders.eu

53

SustainableLeaders.eu is a professionally maintained website representing the Sustainable Leadership Project managed by CEC European Managers, a non-profit organization based in Belgium. The project focuses on empowering leaders for a net-positive future through sustainable leadership training, reports, and summit events. The website targets managers, consultants, and organizations interested in sustainability within the European context. The business model is non-profit with EU funding and partnerships supporting its activities. Technically, the site is built on WordPress using the Enfold theme and includes modern web technologies such as jQuery and LayerSlider. The site is moderately performant, mobile-optimized, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with a clear privacy policy and cookie management. Contact information is comprehensive, including email, phone, physical address, and a contact form. Overall, the website is trustworthy, professional, and well-aligned with its stated mission.

J

Judoverse

judoverse.org

65

Judoverse.org is a website dedicated to a judo-themed NFT project, offering digital collectibles related to the sport of judo. The site targets NFT enthusiasts and fans of judo, leveraging blockchain technology to create unique digital assets. The business appears to be a small-scale, recently founded entity (2022) focusing on niche digital collectibles. The website features SVG animations and a clean, modern design but lacks comprehensive textual content and detailed business descriptions. Technically, the site uses Cloudflare DNS, Google Fonts, and Google Analytics, with HTTPS enabled, ensuring basic security and performance standards. However, DNSSEC is not enabled, and security headers are missing, which could be improved to enhance security posture. The security posture is moderate, with no critical vulnerabilities detected, but the absence of privacy and cookie policies, as well as incident response contacts, indicates gaps in compliance and security transparency. Contact is primarily through an external Discord link, with no direct company emails or phone numbers provided. Overall, the site is functional and moderately secure but would benefit from enhanced privacy compliance and security best practices.

I

ijfstore.org

ijfstore.org

52

ijfstore.org is the official online merchandise store for the International Judo Federation, specializing in clothing, accessories, and event-related products for judo veterans and championship events. The website leverages PrestaShop as its e-commerce platform and Elementor for design, providing a modern and user-friendly shopping experience targeted at judo practitioners and fans worldwide. The store is relatively new, with domain registration dating from October 2023, aligning with its business launch. From a technical perspective, the website employs modern web technologies including Google Fonts, Google Analytics, Google reCAPTCHA v3 for bot protection, and various JavaScript libraries such as Swiper.js for interactive elements. Hosting is provided by Lighthouse Hosting in Poland, consistent with the domain registration location. The site is mobile-optimized and offers good navigation and content relevance, although accessibility features are basic. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented; however, the absence of DNSSEC and missing security headers like Content-Security-Policy and X-Frame-Options represent areas for improvement. No privacy policy or terms of service pages were detected, which poses compliance risks, especially under GDPR. Contact information is not explicitly provided, limiting direct communication channels. Overall, the website presents a trustworthy and professional e-commerce presence for IJF merchandise but would benefit from enhanced privacy compliance, improved security headers, and clearer contact details to strengthen user trust and regulatory adherence.

A

Advanced Technology Cluster

atcluster.eu

44

Advanced Technology Cluster is a Czech Republic-based technology cluster focused on fostering innovation and collaboration in advanced technologies such as Artificial Intelligence, XR technologies, cybersecurity, process optimization, and ESG principles. The cluster supports research and development, promotes education, and facilitates cooperation between businesses, academia, and the public sector. The website is professionally designed using WordPress and Elementor, with modern plugins and a focus on user experience. However, it lacks explicit privacy and cookie policies, and contact information is limited to a phone number. Security posture is good with HTTPS enabled, but security headers and vulnerability disclosure mechanisms are absent.

S

Sociálna poisťovňa

socpoist.sk

11

Sociálna poisťovňa is the official Slovak government social insurance institution providing a wide range of social security services including pensions, sickness and maternity benefits, unemployment benefits, and employer services. The website serves as a comprehensive portal for insured persons, employers, and other stakeholders, offering information, electronic services, and contact channels. The institution holds a strong market position as the national social insurance provider with a long operational history since 2003. Technically, the website is built on Drupal CMS with modern JavaScript libraries such as Swiper.js and jQuery, ensuring good accessibility, mobile optimization, and user experience. The site uses HTTPS and includes a cookie consent mechanism compliant with GDPR. Analytics are implemented via Google Tag Manager and Google Analytics, with moderate user tracking. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks visible security headers in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website is professional, trustworthy, and well-maintained, serving its government mandate effectively. Strategic recommendations include enhancing security headers, publishing a security.txt file for vulnerability disclosure, and providing explicit incident response contacts to further strengthen security posture and trust.

D

Dev-Com Informatikai kft.

judobcknmbr.com

44

JUDOBCKNMBR.COM is a specialized e-commerce platform launched in 2024 by Dev-Com Informatikai kft., focused on providing official and custom judo backnumbers, sponsor labels, and related products. The website targets judokas and judo enthusiasts seeking personalized and competition-approved identifiers. The business leverages official partnerships with the International Judo Federation (IJF) and the European Judo Union (EJU), enhancing its market credibility within the niche sports apparel sector. The platform offers a user-friendly interface with clear navigation and product categorization, supporting a seamless ordering experience.

F

FC Zlín

fctrinityzlin.cz

44

FC Zlín is a Czech football club with an official website providing comprehensive information about the club, including news, match schedules, team rosters, ticket sales, fan merchandise, and partner details. The website targets football fans and the local community, offering engagement through social media and online services. The business model revolves around sports club promotion, fan engagement, and merchandising. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, OwlCarousel, Font Awesome, and Google Fonts. It integrates Google Analytics and Facebook SDK for tracking and marketing purposes. Hosting appears to be regional with Czech-based registrar and name servers. The site is mobile-optimized with good navigation and content structure, though SEO and accessibility could be improved. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies or vulnerability disclosures. No cookie consent mechanism was detected, indicating partial GDPR compliance. No contact phone numbers or detailed business registration data were found, limiting direct contact options. The WHOIS data is consistent and transparent, supporting legitimacy. Overall, the website is functional and professional with moderate security and privacy compliance. Strategic improvements in security headers, privacy notices, and contact transparency would enhance trust and compliance.

S

Sector s.r.o.

rozpravky.sk

38

Rozpravky.sk is a Slovak media website operated by Sector s.r.o., offering a large collection of free animated fairy tales and cartoons primarily targeting children and families in Slovak and Czech languages. The platform is positioned as a regional niche media provider with a business model based on free content streaming supported by advertising. Technically, the site uses a mix of legacy and modern web technologies including jQuery 1.8.3, Google Fonts, FontAwesome, and Google Analytics. While the site is accessible and well-structured with good navigation and mobile optimization, it lacks explicit privacy and terms of service pages, and uses an outdated jQuery version which poses security risks. Security posture is moderate with HTTPS enforced and cookie consent implemented, but missing advanced security headers and vulnerability disclosures. WHOIS data confirms the legitimacy of the domain ownership by Sector s.r.o., consistent with the website's branding and market focus. Overall, the site is functional and trustworthy but would benefit from improved security practices and compliance documentation.

A

ALSA, z.s.

alspruvodce.cz

52

ALSA, z.s. operates a community portal dedicated to supporting individuals affected by Amyotrophic Lateral Sclerosis (ALS) in the Czech Republic. The organization provides educational resources, patient counseling, equipment rental, rehabilitation programs, and community networking. Positioned uniquely in the Czech and Slovak regions, ALSA serves a niche healthcare non-profit market focused on ALS patient support. The website is professionally designed using modern React and Next.js technologies, offering a good user experience with mobile optimization and clear navigation. However, it lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with no detected security headers or explicit SSL information in the provided data. Social media presence is strong, enhancing community engagement and trust. Overall, ALSA presents as a credible and focused non-profit organization with room for improvement in privacy and security compliance.

Kolín.cz is a well-established local news and information portal serving the Kolín region in the Czech Republic. Operated by Clever Soft s.r.o., the website provides timely news articles, event calendars, business directories, accommodation listings, classifieds, and local media services such as TV and cinema information. The site targets residents and visitors of the Kolín area, offering a comprehensive community resource supported primarily through advertising revenue. The domain has been active since 1997, indicating a long-standing presence in the local media landscape. Technically, the website employs a custom CMS and integrates modern web technologies including Google Tag Manager, Google Publisher Tags for advertising, AMP components for performance, and Google Fonts for typography. Hosting is provided by Active24, a reputable Czech hosting provider. The site is mobile-optimized with good SEO practices and basic accessibility features. GDPR compliance is evident through a comprehensive privacy policy and an active consent management platform. From a security perspective, the site uses HTTPS with a good SSL configuration and implements a consent mechanism for cookies and personal data processing. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found in the analysis. Overall, Kolín.cz presents a professional and trustworthy online presence for local news and services. It maintains good privacy and security practices appropriate for its business model and audience. Strategic recommendations include enhancing security headers, auditing third-party scripts regularly, and adding clearer contact phone information to improve user trust and support.

K

Klub Pathfinder

pathfinder.sk

48

Klub Pathfinder is a Slovak non-profit organization dedicated to youth development through outdoor activities, Christian education, and community events. The website serves as a hub for event announcements, training programs, and resources for youth and their leaders. It maintains an active presence with regular content updates and social media engagement, primarily on Facebook. Technically, the site is built on WordPress with common plugins for galleries, forms, and cookie management, providing a moderate performance and good mobile experience. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal security policies. Privacy compliance is partial due to the absence of a privacy policy and terms of service pages. Overall, the site is trustworthy and professional, serving its target audience effectively.

S

Statutární město Mladá Boleslav

mb-net.cz

51

The website https://mb-net.cz/ is the official online presence of the statutory city of Mladá Boleslav, Czech Republic. It serves as a comprehensive portal for residents and visitors, offering city information, municipal services, news updates, event calendars, and contact details. The site is well-positioned as a government entity's digital platform, providing essential public services and information in Czech language. The business model is focused on public service delivery and citizen engagement, with no commercial intent. The domain's long history since 1997 supports its credibility and established presence. Technically, the website employs a custom CMS (vismo®), modern web standards including HTML5, CSS3, and JavaScript, and integrates Google services such as reCAPTCHA for form security and Google Analytics for traffic analysis. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Cookie consent and GDPR compliance mechanisms are implemented effectively. From a security perspective, the site uses HTTPS with excellent SSL configuration, employs reCAPTCHA to protect forms, and manages cookie consent responsibly. However, it lacks explicit published security policies, incident response contacts, and security headers that could enhance its security posture. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is a trustworthy, professional municipal portal with good content quality and technical implementation. Strategic improvements include publishing security and incident response policies, enhancing security headers, and possibly adding terms of service to improve transparency and compliance.

K

Klub Pathfinder z.s.

pathfinder.cz

63

Klub Pathfinder z.s. is a Czech non-profit organization dedicated to youth development through scouting and outdoor activities. The organization offers a variety of programs including weekend meetings, camps, and educational opportunities for youth leaders. The website reflects a well-structured and content-rich platform targeting children, youth, and their guardians, emphasizing values such as responsibility, nature protection, and faith. Technically, the site is built on Drupal CMS with modern web technologies and includes integrations for analytics and user tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit security policies. The absence of WHOIS data is a concern for domain trust but does not detract from the legitimacy of the organization as evidenced by comprehensive contact information and partnerships. Overall, the site is professional, trustworthy, and well-positioned within its sector.

S

Sector s.r.o.

sector.sk

33

Sector.sk is a Slovak media portal specializing in gaming news, reviews, videos, and hardware content targeting the gaming community. The website offers daily updates and community engagement features such as forums and contests, positioning itself as a regional leader in gaming media. The company behind the site is Sector s.r.o., a small media entity based in Slovakia. Technically, the site employs a modern but custom technology stack including jQuery, FontAwesome, Google Tag Manager, and various ad networks. While the site is functional and content-rich, it lacks formal privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enabled and some tracking technologies in use, but missing advanced security headers and incident response disclosures. Overall, the site is accessible without WAF blocking and shows consistent WHOIS data supporting legitimacy.

P

Petit Press, a.s.

sme.sk

60

SME.sk is a leading Slovak news portal operated by Petit Press, a.s., providing comprehensive news coverage across various sectors including politics, economy, culture, and sports. The website targets the general Slovak public and holds a strong market position as one of the most read news sources in Slovakia. The business model is primarily based on online media publishing with revenue streams from advertising and subscriptions. The site demonstrates a high level of content quality and consistent branding, reflecting its established reputation since its founding in 1993. Technically, SME.sk employs a modern web technology stack including JavaScript frameworks, Google Fonts, and multiple advertising and analytics platforms such as Google DoubleClick, PubMatic, and Gemius. The site uses a custom CMS and shows good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in speed and accessibility. From a security perspective, the website enforces HTTPS with excellent SSL configuration and includes standard security headers. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR adherence. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for enhancement. Overall, SME.sk presents a secure, professional, and trustworthy online presence with minor gaps in explicit security governance documentation. Strategic recommendations include publishing a dedicated security policy, establishing a vulnerability disclosure program, and enhancing accessibility to improve user experience and compliance.

V

Vyklízení nemovitostí Pardubice, bourací práce

vyklizeni-pardubice-hutla.cz

54

Vyklízení nemovitostí Pardubice, bourací práce is a small local business specializing in property clearance, waste removal, and demolition services primarily serving the Pardubice region in the Czech Republic. The company offers a wide range of clearance services including residential, commercial, and specialized spaces such as schools and warehouses. Their market position is that of a trusted local service provider with a focus on professional and ecological waste disposal. The website is well-structured, with clear contact information and a customer review, supporting trust and credibility. Technically, the website uses standard web technologies including jQuery, Facebook SDK, and Google Fonts. It implements GDPR-compliant cookie consent mechanisms and structured data markup for SEO. The site is mobile-optimized and provides a good user experience, though some security headers appear to be missing. The WHOIS data is unavailable, which limits domain legitimacy verification, but the website content and contact details suggest a legitimate small business. From a security perspective, the site uses HTTPS and has basic form validation and cookie consent. However, there is no explicit security or incident response policy published, and no advanced security headers detected. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the security posture is moderate but could be improved with additional headers and policies. The overall risk assessment is low to moderate. The main concern is the lack of WHOIS data which reduces domain trustworthiness. Strategic recommendations include enhancing security headers, publishing a security/privacy policy, and maintaining regular audits of third-party scripts. The business appears credible and the website professional, making it a reliable service provider in its niche.

A

ALSA.z.s

zsalsa.cz

47

The website www.zsalsa.cz represents ALSA.z.s, a Czech non-profit organization dedicated to supporting patients diagnosed with ALS and their families. The organization provides counseling, therapy consultations, specialized equipment lending, rehabilitation stays, and specialist home visits. It is positioned as the sole organization in the Czech and Slovak Republics focusing on ALS patient support. The website is well-designed, mobile-optimized, and rich in relevant content including news, events, and media coverage links. Social media presence is active on Facebook, YouTube, and Instagram. Technically, the site is built on Drupal 10 with Bootstrap 5.2 and uses modern web technologies including Vue.js and Google Tag Manager for analytics. The site is accessible and SEO-optimized, though performance is moderate. Security posture is adequate with HTTPS implied but lacks visible security headers and explicit privacy or cookie policies, which are compliance gaps. No WHOIS data is available, which reduces domain trustworthiness and should be investigated further. Overall, the site is a credible and professional resource for ALS patients and their families, but improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

Speciální stavby Most spol. s r.o. is a Czech company specializing in large-scale demolition, construction of industrial complexes, and steel structure assembly, with a market presence dating back to 1991. The company serves industrial and energy sectors, offering services such as demolition of reinforced concrete and steel structures, bridge constructions, and dismantling of power plant boilers. It operates continuous shift work and holds ISO certifications for quality, environmental, and occupational health and safety management, indicating a mature operational framework. Technically, the website is built on WordPress with common plugins for sliders, lightbox, and GDPR compliance. The site is moderately performant, mobile-optimized, and includes a cookie consent mechanism, reflecting a reasonable level of digital maturity. However, no advanced security headers were detected, and WHOIS data is unavailable, which slightly impacts trustworthiness. From a security perspective, the site enforces HTTPS and GDPR compliance, but lacks visible incident response contacts and security.txt files. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS data and security headers suggests areas for improvement in domain transparency and security hardening. Overall, the website presents a professional and trustworthy business front with good compliance and content quality. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving domain registration transparency to strengthen trust and security posture.

D

DINEVA - cestovní agentura

dineva.cz

58

DINEVA is a Czech travel agency specializing in vacation packages to Bulgaria, Turkey, and Greece. The company collaborates with Czech and German travel agencies to provide a broad selection of trips, including custom travel arrangements and charter flight tickets. The website presents a professional and consistent brand image, targeting travelers seeking tailored holiday experiences in Eastern Mediterranean destinations. Technically, the site is built on Joomla CMS with modern frontend technologies such as Bootstrap and jQuery, and it integrates Google Analytics and Facebook Pixel for marketing and analytics purposes. Security posture is moderate with HTTPS enabled but lacks important security headers and visible privacy or cookie policies, indicating compliance gaps. The absence of WHOIS data for the domain raises concerns about domain legitimacy, although the website content and contact information appear credible. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

U

UnionOcel s.r.o.

unionocel.cz

51

UnionOcel s.r.o. is a Czech-based medium-sized manufacturing and wholesale company specializing in steel sheets, cuttings, and CNC machining services. Established in 2001, it has developed a strong market position as a leader in its sector, offering a broad portfolio of metalworking services supported by modern facilities and technologies. The website reflects a professional and consistent brand image, targeting industrial clients and manufacturers. Technically, the site employs modern web technologies including Bootstrap, jQuery, and integrates advanced analytics and marketing tools such as Google Tag Manager and Microsoft Clarity. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, although some security headers are missing and no explicit security policy is published. Overall, the site is well-structured, GDPR compliant, and trustworthy, with no signs of malicious activity or content safety concerns.

Fastav Development is a Czech Republic based real estate developer specializing in retail parks and commercial centers with over 80 completed projects and 20 years of market presence. The company positions itself as a leading developer in the Czech and Slovak retail real estate market, targeting business clients and retail tenants. Their business model focuses on comprehensive development and management of retail properties. The website content is professionally presented, consistent, and relevant to their industry, though it lacks some compliance documentation such as privacy and cookie policies. Technically, the website uses a traditional tech stack including jQuery, Google Analytics, Google Tag Manager, and Highslide JS for image slideshows. It is built on the WebRedakce CMS platform by NETservis s.r.o. The site is mobile optimized with good navigation and design quality but lacks advanced accessibility features and SEO optimization. Security posture is basic with no detected security headers or HTTPS verification in the provided data, and no incident response or vulnerability disclosure information is published. The WHOIS data is unavailable publicly, likely due to privacy protection or registry policies, which slightly reduces trustworthiness. However, the business information on the site is consistent and credible. Overall, the website is functional and professional but would benefit from improved security practices, privacy compliance, and transparency to enhance trust and compliance.

F

FK Dukla Praha

fkdukla.cz

49

FK Dukla Praha is a well-established Czech football club with a strong online presence, offering comprehensive information about its teams, matches, fan activities, and merchandise. The website serves as a central hub for fans and stakeholders, providing timely news, match reports, and engagement opportunities. Technically, the site employs modern web technologies including Bootstrap and jQuery, integrates multiple analytics and marketing tools, and maintains GDPR compliance with a clear privacy and cookie policy. Security posture is generally good with HTTPS enforced and cookie consent implemented, though improvements in security headers and script hygiene are recommended. Overall, the site is professional, trustworthy, and well-aligned with the club's brand and business objectives.

F

FC Zlín

fcfastavzlin.cz

47

FC Zlín is a Czech football club with an official website providing comprehensive information about the club, including news, match schedules, team rosters, ticket sales, fan merchandise, and partner details. The site targets football fans and the local community, offering engagement through social media and online services. The business model revolves around sports club promotion, fan engagement, and merchandising. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, OwlCarousel, and integrates Google Analytics and Facebook SDK for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit privacy or security policies. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the site is trustworthy and professional but could improve privacy compliance and security practices.

C

Calliditas s.r.o.

calliditas.net

10

Calliditas s.r.o. is a Czech technology company specializing in integrating modern technologies such as virtual and augmented reality (XR) and artificial intelligence (AI) into educational materials and business process optimization. The company collaborates with educational institutions, government bodies, and leading Czech brands, positioning itself as a key player in the Czech technology and education sectors. Their market position is supported by multiple ISO certifications and membership in a technology cluster, indicating a commitment to quality and security. The website is built on a modern WordPress platform with WooCommerce and Elementor, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and ISO 27001 certification, though the site lacks explicit privacy and cookie policies, which are recommended for compliance. Overall, the site is professional, well-branded, and trustworthy, targeting businesses and educational organizations in the Czech Republic.

The website www.elita.blog serves as a professional magazine and blog platform focused on technology, business, IT, and related topics primarily for a Czech-speaking audience. It is closely associated with ARICOMA, a technology company, which is evident from branding and linked parent company references. The site offers curated articles, interviews, and insights targeting professionals and enthusiasts interested in digital transformation, public administration, and innovation. Technically, the site employs modern frontend technologies including jQuery, Bootstrap, Google reCAPTCHA, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and basic security practices like CAPTCHA and cookie consent implemented, though some security headers are missing. Privacy compliance is addressed through cookie consent and links to GDPR information on the parent company site. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, though the professional presentation and parent company association mitigate this concern. Overall, the site is well-positioned as a niche media outlet within the technology sector in the Czech Republic.

Register.com operates as a domain registration and web services provider integrated under the Network Solutions and Newfold Digital umbrella. The company offers a comprehensive suite of services including domain registration, web hosting, website building, professional email, SSL certificates, and online marketing solutions targeted primarily at small businesses and entrepreneurs. The website reflects a mature digital presence with consistent branding and a professional user experience. Technically, the site leverages Adobe Experience Manager as its CMS, uses modern web technologies, and includes accessibility and privacy compliance tools such as AudioEye and OneTrust. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy are absent. WHOIS data for the domain is unavailable or protected, which slightly reduces transparency but does not detract significantly from the site's legitimacy given its association with Network Solutions. Overall, the site is well-structured, secure, and compliant with privacy regulations, making it a trustworthy platform for domain and web services.

D

Mzdový software DUNA MZDY

dunamzdy.cz

48

The website www.dunamzdy.cz represents a Czech payroll software provider targeting small and medium-sized enterprises and contributory organizations. The site offers a modern payroll system named DUNA MZDY with a free trial version, positioning itself as a specialized solution in the Czech market. The business model revolves around software sales and support for payroll management. Technically, the website employs common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Smartsupp Live Chat, indicating a moderate level of digital maturity. The site is accessible without WAF or blocking mechanisms, and it is mobile-optimized with good SEO practices. However, the absence of WHOIS registration data and lack of visible privacy or terms of service pages reduce the overall trust and compliance posture. Security-wise, HTTPS is enabled, but advanced security headers and policies are not evident. The site lacks explicit contact information and security incident response details, which are important for business credibility and compliance. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

T

TILL CONSULT a.s.

dunamedik.cz

10

The website www.dunamedik.cz represents TILL CONSULT a.s., a Czech company specializing in healthcare software solutions tailored for medical offices, including dental and general practitioners. Their flagship product, DUNA MEDIK, supports electronic communication with health insurance companies and other health authorities, facilitating patient record management, appointment scheduling, billing, and vaccination tracking. The company holds a solid market position in the Czech healthcare software sector, targeting medical professionals with specialized software variants. Technically, the website employs modern web technologies such as Google Analytics, Smartsupp Live Chat, Bootstrap framework, and SVG icons, ensuring a responsive and user-friendly experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response information. The absence of WHOIS data reduces domain transparency and trust slightly, but the overall professional presentation and clear contact information mitigate this concern. Strategic recommendations include enhancing security headers, publishing security policies, and improving domain registration transparency.

D

Dojo Academy

dojoacademy.fr

61

Dojo Academy is a specialized educational institution focused on training professionals in the sports sector, particularly judo and related disciplines. Founded in 2021, it offers a range of diploma programs, continuing education, and workshops, including partnerships with prestigious institutions such as Université Paris Dauphine – PSL. The website reflects a well-structured and professional digital presence with clear branding and comprehensive course offerings. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is basic, with no explicit privacy or terms of service pages detected. Overall, the site is trustworthy and well-positioned within its niche market.