Security Directory

B

Bastide le confort médical

bastideleconfortmedical.com

59

Bastide Le Confort Médical operates as a leading French e-commerce platform specializing in medical equipment and mobility aids, including fauteuils releveurs (lift chairs), incontinence products, and professional medical supplies. The company positions itself as the premier network for medical equipment in France, targeting both individual consumers and healthcare professionals. Their business model focuses on online retail complemented by physical stores and customer support services, including delivery and installation. Technically, the website is built on the Planet Unified Commerce platform, utilizing AngularJS and Bootstrap frameworks, with integrations for advanced search (Doofinder), marketing (Google Tag Manager, SaleCycle), and cookie consent management (Axeptio). The site is mobile-optimized and employs HTTPS with a moderate performance profile. However, some modern security headers are missing, and the site could improve accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and consent management but lacks comprehensive security headers and explicit privacy policies. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data raises concerns about domain legitimacy, though the professional content and business information mitigate some risk. Overall, the website presents a trustworthy and professional front for a healthcare retail business but should address WHOIS inconsistencies and enhance security and privacy disclosures to strengthen trust and compliance.

V

Visitor Queue

visitorqueue.com

72

Visitor Queue is a Canadian-based technology company specializing in website visitor tracking and personalization software aimed at B2B businesses. Their SaaS platform enables clients to identify companies visiting their websites, obtain key contact and firmographic data, and personalize website experiences to increase conversion rates. The company has a solid market presence with over 5000 clients and positive reviews on major platforms such as Capterra, G2, and Trustpilot. Their business model is subscription-based, focusing on lead generation and website personalization services. Technically, Visitor Queue employs a modern technology stack including Google Tag Manager, Hotjar, Calendly, and integrations with Salesforce, Slack, Zapier, and others. The website is well-optimized for performance, mobile responsiveness, and SEO. Security-wise, the site enforces HTTPS, uses CSRF tokens, and implements a cookie consent mechanism, though explicit security headers like X-Frame-Options are not clearly visible. No critical vulnerabilities or exposed sensitive data were detected. The security posture is good but could be improved by publishing a formal security policy and incident response contacts. Privacy compliance is strong with GDPR and CCPA considerations evident. The absence of WHOIS data limits domain age and registrant verification, but the professional website and consistent branding mitigate concerns. Overall, Visitor Queue presents a trustworthy and mature online presence with room for enhanced transparency in security policies.

B

Burge Agency

burgeagency.com

53

Burge Agency is a well-established creative and design agency based in Winchester, Hampshire, UK, founded in 2009. The company specializes in branding, graphic design, website design, packaging, advertising campaigns, and print media, serving a diverse clientele including both large and small brands. Their website reflects a professional and consistent brand image with a comprehensive portfolio showcasing their work. Technically, the website is built on WordPress with Bootstrap and uses modern web technologies and analytics tools, indicating a moderate to good level of digital maturity. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy compliance is weak due to the absence of visible privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from improved privacy and security practices.

R

Recyclingzentrum Zwickau

recyclingzentrum-zwickau.de

49

Recyclingzentrum Zwickau operates as a local recycling center in Germany, focusing on sustainable recycling services. The website serves primarily as an informational portal with links to partner companies Hofmann Metall and Hofmann Recycling. The digital infrastructure is based on the Contao CMS platform, integrating standard tracking and consent management tools such as Google Analytics and Usercentrics. The site demonstrates basic technical implementation with moderate performance and mobile optimization. Security posture is adequate with SSL enabled and IP anonymization for analytics, but lacks advanced security headers and explicit security policies. Privacy compliance is supported by a GDPR-compliant cookie consent mechanism and a privacy policy page. However, the absence of contact information and terms of service reduces business credibility. Overall, the website is functional but basic in content and security sophistication.

E

E.L.V.I.S. AG

elvis-ag.com

58

E.L.V.I.S. AG is a European logistics consortium specializing in freight forwarding and transport services. The company positions itself as a strong network for international freight forwarders, offering a variety of transport solutions including CO2 transport calculation, partial loads, cross-load networks, and special solutions. The website is professionally designed using WordPress with Elementor and WooCommerce, indicating a moderate level of digital maturity. It supports German and English languages and includes SEO optimizations and cookie consent mechanisms. Security posture is good with HTTPS and cookie consent implemented, but lacks explicit security headers and detailed privacy or incident response policies. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

C

Centrum sociálních a zdravotních služeb Poděbrady

centrum-podebrady.info

63

Centrum sociálních a zdravotních služeb Poděbrady is a well-established non-profit organization providing comprehensive social and health care services primarily in the Středočeský kraj region of the Czech Republic. Founded in 1976, it serves seniors, disabled individuals, and foster families with a broad range of services including home health care, hospice care, social assistance, and foster care support. The organization maintains a strong regional presence with multiple branches and partnerships with government ministries and local authorities. The website reflects a professional and community-focused business model with clear service offerings and active engagement through news updates and social media. Technically, the website is built on WordPress CMS, leveraging modern web technologies such as Bootstrap for responsive design, Leaflet for interactive maps, and Splide.js for sliders. It integrates analytics tools like Google Analytics and Hotjar for user behavior insights and employs CookieYes for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, SEO practices, and accessibility basics, although there is room for improvement in security headers and accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms. Cookie consent is implemented with detailed categories, enhancing privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security headers and a vulnerability disclosure policy suggests opportunities to strengthen the security posture further. Overall, the domain appears legitimate and consistent with the organization's profile, despite limited WHOIS data due to privacy protections. The website is accessible without WAF or blocking mechanisms, providing a trustworthy and professional online presence. Strategic recommendations include enhancing security headers, formalizing vulnerability disclosure, and improving accessibility compliance to further solidify trust and security.

A

Athelas Hospic Písek

hospic-pisek.cz

56

Hospic Athelas is a Czech Republic based hospice and palliative care provider operating primarily in Písek. The organization appears to be a small non-profit healthcare entity founded around 2014, offering specialized end-of-life care services. The website is professionally designed using WordPress with the Divi theme, integrating common analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. While the technical infrastructure is modern and the site is mobile optimized, there are notable gaps in privacy compliance, including the absence of privacy and cookie policies and consent mechanisms. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit incident response contacts. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

Hospicmezibrehy.cz is a Czech Republic-based small healthcare non-profit organization providing specialized home hospice and palliative care services to terminally ill patients and their families in the Beroun and surrounding regions. The website is professionally designed using WordPress and Elementor, offering clear descriptions of their key services including mobile hospice health services, social counseling, bereavement support, and respite care. Contact details including a named director, phone number, and email are provided, along with social media presence on Facebook and Instagram. Technically, the site uses modern web technologies and SEO best practices, with Google Analytics integrated for user tracking. Security posture is adequate with HTTPS enforced and privacy compliance partially addressed via a cookie consent mechanism, though formal privacy policies and security policies are absent. WHOIS data confirms the domain is recently registered in 2023, consistent with the organization's founding. Overall, the site is trustworthy and well-positioned for its regional healthcare niche.

Aerodrom Portorož operates as the third international airport in Slovenia, specializing in general aviation services including panoramic flights, tandem skydiving, and business space rentals. The airport leverages its strategic location near Piran and Portorož to serve pilots, tourists, and business clients effectively. The website reflects a professional and consistent brand image, providing clear information and multiple service offerings tailored to its target audience. Technically, the site employs modern web technologies such as jQuery, Google Analytics, and reCAPTCHA, ensuring a secure and user-friendly experience. Security measures include HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are absent. Overall, the site demonstrates a mature digital presence with good compliance to privacy regulations and a trustworthy business profile.

S

Seakeeper Inc.

seakeeper.com

53

Seakeeper Inc. is a recognized leader in marine motion control technology, specializing in gyroscopic stabilizers and vessel attitude control systems that enhance boating experiences worldwide. Their website reflects a professional and consistent brand presence targeting boating enthusiasts and professionals. The technical infrastructure leverages modern web technologies including Google Tag Manager, Google Analytics, and Facebook Pixel for marketing and analytics, hosted on a WordPress CMS platform with embedded Vimeo videos for rich media content. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, which are recommended for improved compliance and protection. The absence of WHOIS data is a notable anomaly that slightly reduces trust but does not negate the evident legitimacy of the business. Overall, the website is well-structured, content-rich, and professionally maintained, supporting a medium-sized enterprise in the transportation sector.

E

Ewalds

ewalds.sk

61

Ewalds.sk is a well-established Slovakian e-commerce retailer specializing in home accessories and decorations, operating since 1997. The company offers a broad range of products with over 3000 decorations in stock and supports both retail consumers and wholesale buyers. Their business model combines online sales with a physical showroom, enhancing customer trust and market presence. The website is professionally designed with clear navigation and mobile optimization, supporting a positive user experience. Technically, the site leverages modern JavaScript frameworks (Vue.js), integrates Google Tag Manager, Google Analytics, Hotjar, and Facebook Pixel for marketing and analytics, and uses AWS infrastructure. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and GDPR-aligned policies. Security posture is good with HTTPS enforced and CSRF protections, though some HTTP security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a mature digital presence with strong business credibility and compliance.

368MEGA operates as an online gambling platform primarily targeting Indonesian users, offering a wide range of services including slot games, live casino, sportsbook, lottery, poker, and arcade games. The website positions itself as a trusted and comprehensive agent in the online gambling market with a focus on providing extensive game options and 24/7 customer service. The business appears to be medium-sized and founded in 2020, consistent with the domain registration data. Technically, the website employs modern tracking and marketing technologies such as Google Analytics, Facebook Pixel, TikTok Pixel, and LiveChat, and uses Cloudflare DNS services. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional and professional but could improve transparency and security practices.

The website 'Kniha milosrdenství' is a small non-profit religious platform focused on Christian mercy and prayer, providing spiritual reflections, downloadable materials, and news updates primarily for the Czech Christian community. The domain is well-established since 2012 and hosted on Czech infrastructure, supporting its legitimacy and stable presence. Technically, the site uses basic HTML, CSS, and JavaScript with Google Analytics for visitor tracking but lacks modern CMS or advanced frameworks. Security posture is moderate with no visible security headers or privacy policies, and no HTTPS confirmation from the provided data, indicating room for improvement. Privacy compliance is low due to missing cookie and privacy policies and no consent mechanisms. Overall, the site is safe with no adult or questionable content, but it would benefit from enhanced security and privacy practices to improve trust and compliance.

F

FW Africa

africadairysummit.com

44

The Africa Dairy Innovations Summit is a newly established event organized by FW Africa, positioned as the leading dairy industry event in Africa. It targets dairy industry investors, managers, professionals, and stakeholders, focusing on innovation and sustainability within the dairy sector. The business model revolves around event hosting, networking, and industry knowledge sharing, with additional revenue from sponsorship and exhibition opportunities. The website reflects a professional and consistent brand image, with clear event details and contact information, supporting its market positioning as a key industry summit in Kenya and the broader African region. Technically, the website is built on WordPress using the Divi theme, integrating Google Analytics and Matomo for visitor tracking. Hosting is via a provider associated with the domain's nameservers, likely a commercial hosting service. The site demonstrates good mobile optimization and SEO practices but lacks advanced security headers and DNSSEC, which are recommended for enhanced security. Performance is moderate, with no blocking or WAF detected, allowing full content access. From a security perspective, the site uses HTTPS with a valid SSL certificate and domain transfer protection. However, it lacks explicit security policies, privacy and cookie notices, and GDPR compliance indicators, which are critical for user trust and regulatory adherence. No incident response or vulnerability disclosure mechanisms are present. The WHOIS data is consistent with the business claims, showing a recent domain registration aligned with the event's founding year, and no privacy protection, indicating transparency. Overall, the website presents a moderate risk profile with good business credibility but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, and publishing security and incident response policies.

A

Africa Food Manufacturing (AFMASS) Expos

afmass.com

41

Africa Food Manufacturing (AFMASS) Expos operates as a leading organizer of international food and beverage manufacturing and milling industry trade shows across Africa, targeting key markets such as Kenya, Nigeria, Uganda, Zambia, and Tanzania. The company positions itself as the premier platform showcasing the latest technologies in grain storage, milling, processing, packaging, ingredients, laboratory technologies, and supply chain solutions for the food, beverage, milling, and hospitality sectors. The website reflects a professional digital presence built on WordPress with the Divi theme, integrating standard analytics and advertising tools such as Google Analytics and AdSense. However, the absence of WHOIS registration details raises questions about domain registration transparency.

M

Město Štětí

fedo.cz

51

The website www.fedo.cz represents the official online presence of the Národní festival dechových orchestrů (National Festival of Brass Bands) held in Štětí, Czech Republic. The festival has a long tradition dating back to 1969 and is organized by the town of Štětí. The site provides information about the festival's history, news updates, partner organizations, and event details. It targets music enthusiasts, participants, and the general public interested in cultural events. The business model is primarily non-commercial, focusing on cultural promotion and community engagement through event organization. Technically, the website employs standard web technologies including jQuery, Bootstrap for responsive design, Google Analytics for visitor tracking, and Cookiebot for cookie consent management. The site is mobile-optimized and has a moderate performance profile. However, it lacks some advanced security headers and explicit privacy policy documentation, which could be improved to enhance compliance and security posture. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and structure suggest a legitimate cultural organization. The site does not provide direct contact emails or phone numbers, which could be a barrier for user trust and support. Overall, the website is professionally designed and serves its purpose well for event promotion and information dissemination. Strategic improvements in privacy policy transparency, security headers, and contact information would strengthen its security and compliance posture, enhancing user trust and regulatory adherence.

R

RATE s.r.o.

rate-steti.cz

74

RATE s.r.o. is a Czech energy company specializing in the operation of hot water and heating systems, primarily serving municipalities, residential buildings, and local customers in the Štětí region. Founded in 1994 and now part of the ENERGIE AG BOHEMIA group, the company offers comprehensive heating services including heat and hot water supply, maintenance of heat exchange stations, and installation services. Their market position is that of a regional energy service provider with a stable customer base and integration into a larger energy group. Technically, the website is built on WordPress and employs modern web technologies such as jQuery, Google Tag Manager, and FancyBox. The site is well-structured, mobile-optimized, and includes SEO best practices. Privacy and cookie policies are implemented with a consent mechanism, indicating good compliance with GDPR requirements. However, some security headers are missing, and no explicit incident response or vulnerability disclosure information is provided. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain registration is a notable concern, reducing the overall trust score. The website provides clear contact information and social media presence, enhancing business credibility. Overall, the risk assessment is moderate with recommendations to improve domain transparency, implement additional security headers, and publish security policies to enhance trust and compliance.

T

TicTacROI.cz

tictacroi.cz

46

TicTacROI.cz is a Czech Republic based small marketing agency specializing in PPC advertising, web and e-commerce development, graphic design, social media management, web analytics, and consulting services. The company presents a professional and consistent brand image with a clear focus on creative marketing solutions for businesses. The website is built on WordPress using Elementor and integrates modern SEO and privacy compliance tools such as Yoast SEO and Complianz GDPR plugin. The technical infrastructure is solid with HTTPS enforced and Google Analytics for tracking, complemented by Google reCAPTCHA for form security. However, the site lacks explicit security policies and incident response information, which could be improved to enhance trust and compliance. Overall, the website is well-structured, user-friendly, and compliant with GDPR cookie regulations, reflecting a mature digital presence for a small marketing firm.

R

RND s.r.o.

rndoc.cz

48

RND s.r.o. is a Czech-based company specializing in railway freight transport and logistics services. With over 20 years of experience, it offers tailored logistics solutions including railway freight forwarding, dispatching, and leasing of specialized railway freight wagons. The company targets businesses requiring reliable and efficient rail transport across European and Asian networks. The website reflects a professional and well-structured digital presence, leveraging WordPress with modern plugins and SEO optimizations. Security measures include HTTPS and Google reCAPTCHA on forms, though some security headers are missing and privacy policies are not explicitly presented. The absence of WHOIS data reduces domain trustworthiness, but the detailed business information and contact channels support legitimacy. Overall, the site is well-designed, content-rich, and suitable for its business audience.

M

MM Group

mm.group

73

MM Group is a global leader in the manufacturing and supply of consumer packaging products including cartonboard, folding cartons, kraft papers, uncoated fine papers, leaflets, and labels. The company targets businesses and consumers in the packaging and paper industries, positioning itself as a large enterprise with a strong market presence. The website reflects a professional and consistent brand image with good content quality and clear business focus. Technically, the site is built on WordPress with integration of modern marketing and analytics tools such as Google Tag Manager, Google Analytics, LinkedIn Insight, and Cookiebot for GDPR compliance. The site is mobile optimized and SEO friendly, though accessibility features are basic.

L

LIBERTY Steel Group

libertysteelgroup.com

58

LIBERTY Steel Group is a large international steel manufacturing company with a significant global footprint including operations in the UK, Europe, USA, and Australia. The company emphasizes sustainability through its GREENSTEEL strategy aiming for carbon neutrality by 2030. The website reflects a mature digital presence built on WordPress with modern analytics and tracking tools, and a clear focus on corporate responsibility and workforce development. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced DNS security and explicit security policies. Overall, the website is professional and trustworthy, supporting the company's market position as a major steel producer.

D

Digitalka s.r.o.

digitalka.cz

44

Digitalka s.r.o. is a Czech-based creative digital agency specializing in online communication strategies, digital marketing, web development, SEO, PPC, social media marketing, and corporate identity services. The company positions itself as a client-focused agency delivering measurable performance and attractive internet presentations. Their market presence is supported by a portfolio of clients and a Google Partners certification, indicating a reputable standing in the digital marketing sector. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to their services and target audience. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder and Slider Revolution. It integrates multiple analytics and tracking tools including Google Analytics, Microsoft Clarity, and LinkedIn Insight Tag, alongside a GDPR-compliant cookie consent mechanism powered by Cookiebot. The site demonstrates good SEO practices and moderate performance, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and employs cookie consent management, but lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the analysis. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information suggest a legitimate and operational company. Overall, Digitalka.cz presents a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and conducting regular security audits to strengthen their security posture and trustworthiness.

Ř

Říp, o.p.s.

kulturaroudnice.cz

47

Říp, o.p.s. operates the KulturaRoudnice.cz portal, a local cultural platform focused on promoting and managing cultural and leisure activities in Roudnice nad Labem and the surrounding Podřipsko region. The portal provides event listings, ticket pre-sales, and additional services such as venue rentals and poster placements. The organization positions itself as a key local cultural facilitator serving residents and visitors with a user-friendly, content-rich website. Technically, the site leverages modern web technologies including Bootstrap, jQuery, and Google Analytics, ensuring responsive design and moderate performance. Security measures include HTTPS enforcement, CSRF tokens, and a cookie consent mechanism, though explicit security headers and incident response policies are absent. The lack of WHOIS data limits domain trust verification but is likely due to privacy protection, which is reasonable for a small non-profit. Overall, the site demonstrates good business credibility and privacy compliance, with room for security enhancements.

M

Místní akční skupina Podřipsko, z. s.

maspodripsko.cz

42

Místní akční skupina Podřipsko, z. s. is a Czech non-profit organization dedicated to regional and community development in the Podřipsko area. The organization manages EU and national funding programs, supports local businesses and municipalities, and promotes sustainable development initiatives. Their website is built on WordPress and integrates various plugins for content management, photo galleries, and download management. The site is well-structured, mobile-optimized, and provides comprehensive information about projects, funding opportunities, and community events. Security posture is adequate with HTTPS enabled and some security best practices in place, though improvements in security headers and cookie consent mechanisms are recommended. WHOIS data confirms the domain's legitimacy and consistency with the organization's history. Overall, the website presents a professional and trustworthy digital presence for a regional non-profit entity.

Ř

Říp, o.p.s.

vyletnarip.cz

42

Výlet na Říp is a regional tourism and cultural information website focused on the Podřipsko area in the Czech Republic. It provides visitors with detailed guides on local attractions, cycling routes, cultural events, and historical sites. The site targets tourists, cyclists, and families seeking leisure and educational activities in the region. The business operates as a small-scale informational platform supported by the regional organization Říp, o.p.s., with a clear focus on promoting local tourism and culture. Technically, the website employs modern web technologies including Google Fonts, Google Analytics, and Google Tag Manager, hosted by Wedos. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, it lacks some advanced security headers and explicit privacy or terms of service pages, which are areas for improvement. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR principles, though no formal privacy policy was found. No critical vulnerabilities or suspicious activities were detected. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website presents a trustworthy and professional platform for regional tourism promotion, with moderate technical maturity and a solid security baseline. Strategic enhancements in privacy documentation and security headers would further strengthen its compliance and trustworthiness.

Geveko Markings Germany GmbH is a well-established company specializing in the development, production, and distribution of horizontal road marking materials tailored to various sizes, materials, colors, and forms to meet segment-specific requirements. With over 100 years of experience and ISO 9001 certification, the company holds a strong market position in the transportation sector, serving primarily B2B customers focused on traffic safety and infrastructure. The website reflects a mature digital presence with comprehensive content, clear navigation, and multi-channel contact options. Technically, the site uses modern web technologies including Bootstrap, Google Analytics, Hotjar, and Facebook Pixel, hosted by Kortermann Hosting in Germany. Security posture is good with HTTPS enforced and privacy compliance evident through cookie consent mechanisms and a detailed privacy policy. No critical vulnerabilities or suspicious patterns were detected, indicating a trustworthy and professional online presence.

H

Hedin Automotive

hedinautomotive.sk

71

Hedin Automotive is a Slovakian automotive dealership specializing in the sale of new and used vehicles along with authorized vehicle servicing. The company targets consumers and businesses seeking reliable automotive solutions. The website reflects a medium-sized business with a professional online presence and consistent branding. Technically, the site is built on Orchard CMS and leverages modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and Google Tag Manager, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced, use of Google reCAPTCHA, and a comprehensive cookie consent mechanism, although explicit security policies and incident response contacts are not publicly visible. Overall, the website is trustworthy, compliant with GDPR, and employs extensive analytics and marketing tools to optimize user engagement and advertising effectiveness.

W

Wellness Vision s.r.o.

wellness-vision.cz

46

Wellness Vision s.r.o. is a Czech company specializing in the custom design and construction of wellness facilities for both private households and public venues such as hotels and wellness centers. With over 15 years of experience, the company positions itself as a trusted provider of modern, durable, and energy-efficient wellness solutions including saunas, whirlpools, steam cabins, and related products. Their website reflects a professional and well-structured digital presence, showcasing their services, references, and a showroom to engage potential clients. Technically, the website is built on WordPress and leverages common web technologies such as jQuery, Google Tag Manager, and Google Analytics for tracking and marketing purposes. The site is mobile-optimized and includes a cookie consent mechanism compliant with GDPR requirements. However, there is room for improvement in security headers and incident response transparency. From a security standpoint, the site uses HTTPS and implements cookie consent with consent mode, indicating a good privacy posture. The absence of WHOIS data due to privacy protection slightly reduces trust but is common for commercial entities. No critical vulnerabilities or exposed sensitive data were detected in the website content. Overall, Wellness Vision presents a credible and professional business with a solid online presence. Strategic enhancements in security policies and transparency could further strengthen their trustworthiness and compliance posture.

P

Prowellness

prowellness.cz

46

Prowellness.cz is a Czech Republic based e-commerce retailer specializing in sauna and infrared sauna accessories, replacement parts, and wellness products. The company operates with a strong market position in the niche sauna and wellness sector, supported by 14 years of experience and a manufacturing subsidiary, SaunaSystem, which designs custom saunas. The website is professionally designed, offers comprehensive product information, and includes customer testimonials and a showroom for product demonstration. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Analytics, Hotjar, and Facebook SDK, with a cookie consent mechanism in place, indicating good digital maturity. Security posture is solid with HTTPS and reCAPTCHA implemented, though additional security headers could enhance protection. The absence of WHOIS data slightly reduces trust but is mitigated by clear business information and external verifications. Overall, the site presents a trustworthy and professional online presence for sauna-related products.

M

MALEX Group s.r.o.

malex-group.com

42

MALEX Group s.r.o. is a Czech Republic based company specializing in the import and distribution of spare parts for escalators and elevators, serving primarily businesses requiring maintenance and replacement parts. The company positions itself as an experienced and reliable distributor with partnerships with leading global manufacturers, offering comprehensive services including technical assistance and delivery within the Czech Republic. The website reflects a professional business presence with clear service offerings and contact mechanisms, targeting service providers and businesses in the transportation sector. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and Google services such as Analytics and reCAPTCHA, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS and Content Security Policy in place, but lacks comprehensive security headers and published policies, indicating room for improvement in compliance and transparency. Overall, the website is safe, professional, and trustworthy, though it would benefit from enhanced privacy compliance and security disclosures to strengthen user trust and regulatory adherence.

S

SAUNASYSTEM s.r.o.

saunasystem.cz

10

SAUNASYSTEM s.r.o. is a Czech manufacturer specializing in the design, production, and sale of Finnish saunas and infrasaunas. The company offers a broad range of sauna products including custom and typified models, serving both residential and commercial clients. Their market position is supported by a showroom, extended warranties, and a strong online presence. Technically, the website is built on WordPress with modern JavaScript libraries and tracking tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements in HTTP security headers and WHOIS transparency are recommended. Overall, the business demonstrates professionalism and trustworthiness with clear contact channels and privacy compliance.

V

Venture Invest s.r.o.

ventureinvest.sk

38

Venture Invest s.r.o. is a Slovak digital marketing agency specializing in SEO, copywriting, web development, PPC advertising, and social media management. Established in 2017, the company targets businesses seeking to enhance their online presence and customer acquisition. The website reflects a professional and consistent brand image with clear service offerings and client testimonials, positioning it as a trusted local agency. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and GDPR compliance plugins. The site demonstrates good mobile optimization, SEO practices, and moderate performance. However, there is room for improvement in accessibility and security headers implementation. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring comprehensive cookie and privacy policies with consent mechanisms aligned with GDPR requirements. Contact information is transparent and easily accessible. Overall, the website presents a low-risk profile with a good balance of business credibility, technical implementation, and privacy compliance. Strategic enhancements in security headers and incident response documentation would further strengthen its security maturity.

N

NetDirect

netdirect.cz

69

NetDirect is a Czech-based technology company specializing in custom e-commerce solutions, boasting over 23 years of experience. The company has established itself as a leader in the Czech market by developing major e-shops such as Alza.cz and Notino.cz. Their business model focuses on B2B services, providing tailored e-shop development, B2B portals, IT outsourcing, and online marketing services. The website reflects a mature digital presence with professional design and comprehensive content targeting businesses seeking e-commerce solutions. Technically, the site employs modern frameworks like Angular and integrates multiple analytics and marketing tools, indicating a solid digital infrastructure. Security-wise, the site uses HTTPS with strong security headers and privacy policies, though it lacks explicit incident response and vulnerability disclosure information. Overall, the site is trustworthy and professional, but the absence of WHOIS data introduces some uncertainty regarding domain legitimacy. Strategic recommendations include enhancing security transparency and verifying domain registration details.

P

PARKOVANIE PRI LETISKU - MONTI

montisro.sk

43

The website airportparking.sk is a Slovak language site offering affordable parking services near Bratislava airport. The business appears to be a small local service provider established in 2013, with a focus on travelers using the Bratislava airport. The site uses BaseKit CMS and is hosted by websupport.sk, with DNSSEC enabled and a valid SSL certificate ensuring secure HTTPS connections. The technical infrastructure includes older jQuery libraries and Google Analytics for user tracking. While the site has a cookie consent mechanism, it lacks explicit privacy policy and terms of service pages, and no clear contact information is present in the analyzed content. Security headers are missing, and the jQuery version is outdated, which could pose security risks. Overall, the domain registration data is consistent and supports the legitimacy of the business.

C

Cestovná kancelária TATRATOUR Slovakia s.r.o.

tatratour.sk

49

Cestovná kancelária TATRATOUR Slovakia s.r.o. is an established Slovak travel agency specializing in summer holiday packages, including seaside vacations, last minute deals, educational and pilgrimage tours. The website is well-structured, targeting Slovak and Czech speaking customers, with a focus on family and leisure travel. The company has a long domain history since 2003, indicating market presence and stability. Technically, the site uses a mix of ASP.NET WebForms backend with modern frontend technologies like Vue.js and jQuery, integrating third-party services such as Google Analytics and Facebook Pixel for marketing and analytics. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit privacy policy, terms of service, and security headers. No blocking or WAF challenges were detected, allowing full content access. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

A

ANVI TRADE

anvitrade.cz

63

ANVI TRADE is a Czech-based company specializing in the supply of adhesives, sealants, and flooring systems, serving both household and professional construction sectors. The company positions itself as a strong partner with a comprehensive product offering and has a notable market presence supported by over 30 years of operation and an AAA certification. Their business model includes direct sales through an e-shop and professional services such as training academies. Technically, the website employs modern web technologies including Google Analytics and Cookiebot for privacy compliance, with responsive design and structured data enhancing SEO and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit incident response policies. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a mature digital presence for a medium-sized manufacturing and retail business.

S

Setra Club VIP

setraclub.cz

54

Setra Club VIP is a specialized community and informational website dedicated to enthusiasts and professionals interested in SETRA buses. The site provides news, event coverage, and community engagement focused on the SETRA brand and bus transportation sector primarily in the Czech Republic and Slovakia. The business model centers on content provision and community building with advertising opportunities. Technically, the site is built on WordPress, leveraging common plugins for SEO, contact forms, and cookie consent, hosted likely by WEDOS. The website is moderately performant, mobile-optimized, and uses Google Analytics with a cookie consent mechanism, reflecting a reasonable digital maturity. Security posture is adequate with HTTPS enforced and captcha on forms, but lacks advanced security headers and incident response disclosures. Overall, the site is trustworthy, with consistent domain registration data and no signs of malicious activity. Strategic improvements could focus on enhancing security headers, publishing incident response information, and improving accessibility compliance.

I

Industry 5.0 konverents - Industry 5.0

industry50.ee

45

Industry 5.0 is a specialized conference website focused on enhancing the competitiveness of Estonian industrial enterprises through innovation, AI, sustainability, and export strategies. The event is scheduled for May 14, 2025, in Tartu, Estonia, and is supported by reputable Estonian governmental and educational institutions. The website serves as an informational and networking platform for industry professionals, government officials, and researchers. Technically, the site is built on WordPress using modern plugins such as Yoast SEO Premium, Google Tag Manager, and Gravity Forms, hosted by an Estonian registrar. While the site is well-structured and mobile-optimized with good SEO practices, it lacks visible privacy and cookie policies, security headers, and incident response information, which are important for compliance and security posture. The domain registration is consistent with the business purpose and geographic focus, indicating legitimacy. Overall, the website is professional and functional but could improve its security and privacy compliance to enhance trust and user protection.

S

Smotly I Création de sites web e-commerce et vitrine, SEO, SEA

smotly.com

41

Smotly is a French web agency specializing in the creation of e-commerce and showcase websites, along with SEO and SEA digital marketing services. The website is built on WordPress using Elementor and incorporates modern web technologies such as Google Tag Manager and Google Ads for marketing and analytics. The site is accessible without any WAF or security challenges, indicating good availability. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. The website lacks visible privacy, cookie, and terms of service policies, which impacts compliance with GDPR and other privacy regulations. No contact information or incident response details are present, limiting direct communication channels for users or security reporting.

P

Planorama

planorama.dk

65

Planorama is a Danish company specializing in advanced course management software designed to automate and streamline all aspects of course administration, including communication, invoicing, e-learning, and evaluations. The platform integrates seamlessly with existing websites, ERP systems, CRM, marketing, and BI tools, positioning itself as a comprehensive solution for businesses offering educational services. The website content is professional, well-structured, and targeted primarily at organizations seeking to improve their course delivery and management efficiency. Technically, the website leverages Umbraco CMS, JavaScript libraries including jQuery, and integrates third-party analytics and marketing tools such as Google Analytics, Prism, and VGO tracking. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement in security headers and SSL configuration transparency. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not found, and WHOIS data is unavailable, which slightly reduces trust from a domain registration standpoint. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, Planorama presents a credible and professional online presence with a solid business model and technical foundation. Strategic improvements in security transparency, WHOIS data availability, and accessibility could further enhance trust and compliance.

Č

Český internet s.r.o.

ceskestavby.cz

52

ČESKÉSTAVBY.cz is a Czech online media portal operated by Český internet s.r.o., providing comprehensive content related to construction, gardening, and home living. The site offers a wide range of articles, project catalogs, company directories, photo galleries, podcasts, and quizzes targeting Czech-speaking individuals interested in building and maintaining homes and gardens. The business model is primarily content-driven with monetization through advertising and company listings. Technically, the website employs modern web technologies including Google Analytics, Facebook SDK, and Adform advertising scripts, with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and privacy compliance evident through detailed policies and consent mechanisms, although some advanced security headers and vulnerability disclosure mechanisms are absent. Overall, the site presents a professional and trustworthy digital presence with clear contact information and active social media engagement.

T

TOPIN

topin.cz

57

TOPIN is a Czech-based professional portal specializing in heating technology, providing a wide range of expert articles, company catalogs, calculators, and a magazine subscription service. The website targets professionals and companies in the heating, ventilation, and energy sectors, offering valuable technical content and industry resources. The business model appears to be content-driven with advertising and subscription revenue streams. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and Google Tag Manager, with a responsive design and moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit security policies. The absence of WHOIS data is a concern for domain legitimacy verification, though the website content and structure suggest a legitimate and established operation. Overall, the site is professional, trustworthy, and safe for general audiences.

Česká peleta is a Czech Republic-based informational and promotional website focused on wood fuel heating solutions, including pellets, briquettes, and wood. The site provides comprehensive content on heating technologies, product catalogs, certifications, and industry news, targeting consumers interested in modern, ecological heating options. The business is well-established with a domain age since 2010 and maintains partnerships with numerous industry members and certifications such as ENplus®. Technically, the website is built on WordPress with common web technologies and includes tracking via Google Analytics, Facebook SDK, and Seznam Retargeting. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced but lacks security headers and explicit privacy and cookie policies, indicating room for compliance and security improvements. Overall, the website is trustworthy and professional, with no signs of blocking or adult content, making it safe for general audiences.

T

TnG Air

zatopime.cz

59

TnG Air is a Czech manufacturer specializing in air-to-water heat pumps and photovoltaic systems, serving customers primarily in the Czech Republic and Slovakia. The company emphasizes a comprehensive service model including design, delivery, installation, and after-sales support, backed by a 10-year warranty and a dedicated service network. Their market position is strengthened by over 10,000 installations and 26 years of technology development. The website is professionally designed, mobile-optimized, and rich in content, targeting residential and commercial property owners seeking energy-efficient heating and solar solutions. Technically, the website leverages modern JavaScript libraries, Google Analytics, Hotjar for user behavior analysis, and is built on the Solidpixels CMS platform. It employs HTTPS with good SSL configuration and includes cookie consent mechanisms aligned with GDPR. However, the absence of WHOIS data and missing HTTP security headers present areas for improvement in trust and security posture. Security-wise, the site demonstrates good practices such as secure forms with validation and anti-spam tokens, but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The overall risk is moderate with recommendations to enhance HTTP security headers and publish security policies. Overall, TnG Air's digital presence reflects a mature, trustworthy energy solutions provider with room to improve domain transparency and security hardening to further boost customer confidence.

R

ROMOTOP

romotop.cz

44

ROMOTOP is a Czech-based company recognized as a European leader in manufacturing and selling fireplace stoves, fireplace inserts, and design fireplaces. Their products emphasize ecological standards and cater to a broad audience including consumers seeking heating solutions for standard and low-energy homes. The website is professionally designed with multilingual support and clear navigation, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and analytics tools, ensuring a responsive and interactive user experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms but lacks visible security headers and explicit privacy or security policies, indicating room for improvement. The absence of WHOIS data reduces transparency and trust slightly, but the overall professional presentation and contact information support legitimacy. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and verifying domain registration details to improve trust and compliance.

I

IndustryArena

industryarena.com

61

IndustryArena is a specialized B2B portal serving the manufacturing sector, focusing on CNC, metalworking machines, and related software. It provides a comprehensive platform including discussion forums, a marketplace for used machines, webinars, and product databases, targeting industry professionals primarily in Germany. The website demonstrates a solid market position with an established user base and professional presentation. Technically, the site leverages modern JavaScript frameworks such as Vue.js and integrates multiple analytics and marketing tools including Google Analytics and Matomo. Security-wise, the site enforces HTTPS and employs standard security headers, though lacks visible privacy and cookie policies which are critical for compliance. Overall, the site is functional and professional but could improve transparency and privacy compliance to enhance trust and regulatory adherence.

Busportal.cz is a well-established Czech transportation news portal operated by ČSAD SVT Praha, s.r.o., focusing on bus and public transport industry news, events, and updates. The website serves a niche audience of transport professionals and enthusiasts, providing timely and relevant content with advertising as a key revenue stream. The domain age and WHOIS data confirm a long-standing presence since 2001, reinforcing its market credibility. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and the Nette framework, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and some best practices, but could be improved by adding security headers and a vulnerability disclosure policy. Privacy compliance is partial, with a cookie consent banner present but no privacy policy or terms of service pages detected. Overall, the site is professional, trustworthy, and content-rich, but would benefit from enhanced compliance and security measures.

Č

Časopis CzechIndustry

casopisczechindustry.cz

54

Časopis CzechIndustry is a specialized magazine focusing on Czech industry, commerce, transport, and construction sectors. It serves a niche audience of industry professionals and stakeholders by providing news, expert interviews, and event information relevant to the Czech industrial landscape. The website content is well-structured and relevant, reflecting a small but focused publishing business. Technically, the site is built on the Webnode CMS platform, leveraging AWS Cloudfront CDN and Google Analytics for tracking with IP anonymization, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, which are important for compliance and trust. The absence of WHOIS data reduces transparency and trustworthiness, although the presence of clear contact information and consistent branding supports legitimacy. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

T

Truck1 Sp.z.o.o.

truck1.eu

56

Truck1.eu operates as a well-established European online marketplace specializing in the sale of used trucks, light commercial vehicles, construction, and agricultural machinery. Founded in 2003 and headquartered in Poland, the company connects trusted dealers worldwide with buyers seeking commercial vehicles and related equipment. The platform offers a broad inventory exceeding 300,000 listings and supports multiple languages and currencies, catering to a global audience. Its business model focuses on providing a comprehensive digital marketplace with additional promotional and paid services for sellers. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Facebook Pixel, TikTok Analytics, and other major advertising and tracking tools. The site is secured with HTTPS and implements standard security headers, ensuring a secure browsing experience. Mobile optimization and SEO practices are well addressed, although accessibility features could be enhanced further. The website is performant with moderate loading speeds and a professional design. From a security perspective, Truck1.eu demonstrates good practices such as enforcing HTTPS, using security headers, and securing user input forms. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for improving transparency and readiness. The extensive use of third-party tracking scripts indicates a high level of user data collection, which is partially mitigated by a comprehensive privacy and cookie policy compliant with GDPR. Overall, Truck1.eu presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing detailed security policies, establishing incident response contacts, and enhancing accessibility and privacy transparency to further strengthen trust and compliance.

S

Scott Technology

scottautomation.com

69

Scott Technology is a medium-sized manufacturing and technology company specializing in smart automation and robotic solutions for industrial sectors. The company has a well-established online presence with a professional website that targets industrial manufacturers and automation customers globally. Their business model focuses on providing tailored automation systems and solutions across various industries including appliances, automotive, cosmetics, healthcare, mining, and meat processing. The website content is well-structured and professionally presented, supporting their market position as a reputable automation solutions provider. From a technical perspective, the website employs modern tracking and analytics technologies such as Google Tag Manager, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, integrated with a CookiePro consent mechanism to manage user privacy preferences. The site is hosted with Cloudflare DNS services, ensuring reliable domain resolution. Mobile optimization and SEO practices are good, although accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. Security posture is adequate with HTTPS enforced and domain registration locks in place, but lacks advanced security headers and DNSSEC, which could enhance protection against DNS attacks. No explicit security policies or incident response contacts are published, indicating an area for improvement in transparency and readiness. Privacy compliance is partial, with a cookie consent banner present but no visible privacy policy or terms of service pages in the analyzed content. Overall, the website is trustworthy and professional, with a solid business foundation and digital presence. Strategic recommendations include enabling DNSSEC, publishing comprehensive privacy and security policies, adding security headers, and implementing a vulnerability disclosure program to strengthen security posture and compliance.