Security Directory

M

Médiář

mediar.cz

64

Médiář is a Czech online media publication focused on daily news about media, marketing, advertising, and PR industries. It serves professionals and agencies within the Czech media and marketing sectors by providing news, industry insights, job listings, and advertising galleries. The website is well-structured with a consistent brand presence and targets a specialized audience interested in media and marketing developments. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, and Seznam SSP ads, indicating a mature digital infrastructure. The site employs Google Consent Mode and cookie consent mechanisms to address privacy concerns, although an explicit privacy policy page was not found in the provided content. Security posture is good with HTTPS and some security best practices, but could be improved by adding explicit security headers and clearer incident response contacts. The absence of WHOIS data reduces domain transparency and slightly impacts trustworthiness, but the website content and technical setup suggest a legitimate and professional media outlet. Overall, the site scores well in content quality, technical implementation, and security, with room for improvement in privacy compliance and business credibility transparency.

A

Able.cz s.r.o.

abletocompete.ai

55

Able.cz s.r.o. operates the website abletocompete.ai, a Czech-based platform focused on promoting AI innovation and leadership in Europe. The site offers an AI challenge for developers with monetary rewards and a waiting list service for companies serious about AI adoption. Positioned as a European initiative, it aims to empower local talent and businesses to lead in AI technology. The website is professionally designed using modern web technologies, including Framer for CMS, and integrates common analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Hosting is provided by Webglobe.cz, as indicated by the domain's nameservers.

C

Crown Estate Scotland

crownestatescotland.com

71

Crown Estate Scotland is a public body managing property, natural resources, and community assets in Scotland to generate lasting economic and social value. The website clearly communicates its roles, projects, and services, targeting Scottish public authorities, community organizations, tenants, and stakeholders. The organization positions itself as a key player in sustainable development, offshore wind projects, and community empowerment. Technically, the website is built on Drupal 10 with modern libraries and frameworks, offering good mobile optimization, accessibility, and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and aligned with its public sector mission.

O

Ocean Winds

oceanwinds.com

75

Ocean Winds is a well-established international company specializing in offshore wind energy, jointly owned by EDP Renewables and ENGIE. The company develops, finances, builds, and operates offshore wind farms worldwide, positioning itself as a global leader in the renewable energy sector. Their website reflects a mature digital presence with comprehensive content, professional design, and clear business focus. Technically, the site is built on WordPress with Elementor, leveraging modern SEO and analytics tools, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS, GDPR-compliant cookie consent, and use of reCAPTCHA, though additional security headers and policies could enhance protection. Overall, the domain age and WHOIS data support the legitimacy and credibility of the business.

D

Dogger Bank Wind Farm

doggerbank.com

63

Dogger Bank Wind Farm is a large-scale offshore renewable energy project aiming to become the world's largest offshore wind farm with a combined capacity of 3.6GW. The project is a joint venture between SSE, Equinor, and Vårgrønn, targeting the UK market and focusing on sustainable energy generation and community benefits. The website reflects a mature digital presence with comprehensive project information, community engagement, and supplier recruitment. Technically, the site is built on WordPress with modern plugins and analytics, showing good SEO and accessibility practices. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though some improvements like DNSSEC and security.txt could enhance trust. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting the business's credibility and market position.

E

Energi Coast

energicoast.co.uk

60

Energi Coast is a well-established cluster organization dedicated to supporting and promoting the offshore wind energy sector in North East England. The website reflects a professional and consistent brand presence, offering key services such as supply chain coordination, skills development, innovation support, and business networking. The organization is positioned as a central hub connecting industry players, academia, and government bodies to foster regional economic growth in renewable energy. Technically, the website uses modern web technologies including Umbraco CMS, Bootstrap, and integrates Google Analytics and reCAPTCHA for security and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though some security headers could be improved. Privacy compliance is addressed with cookie consent and a privacy policy, though a dedicated security policy and incident response information are absent. Overall, the website is trustworthy, safe, and serves its business purpose effectively.

N

NOF

nof.co.uk

72

NOF is a UK-based business development membership organization focused on facilitating valuable connections within the global energy sector. The company positions itself as the strongest energy sector network in the UK, offering services such as business development support, industry introductions, events, and access to an offshore wind projects database. The website is professionally designed, mobile-optimized, and provides comprehensive information about its services and membership benefits. Contact details and social media presence reinforce its credibility. Technically, the website leverages modern technologies including Umbraco CMS, Bootstrap, Google Analytics, HubSpot, and Google reCAPTCHA for security. The site implements HTTPS with a Content Security Policy header, indicating a good security posture. However, additional security headers could enhance protection. The WHOIS data is unavailable due to domain registration constraints, but the website content and contact information strongly indicate a legitimate UK-based business. Security-wise, the site shows good practices such as secure forms with CAPTCHA and no exposed sensitive data. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. No vulnerabilities or suspicious domains were detected. Overall, the site is safe, professional, and trustworthy with a moderate to high security posture. The main risk is the lack of WHOIS data due to domain registration rules, which limits domain trust verification but does not indicate malicious intent. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to further improve trust and compliance.

M

MINUTACZ s.r.o.

minutacz.cz

46

MINUTACZ s.r.o. operates as an authorized distributor and retailer of Swiss watch brands TISSOT and BALL within the Czech Republic. The company has a well-established market presence since 2010, offering official products, service locations, and brand information targeted at consumers seeking quality Swiss watches. The website is professionally designed using WordPress CMS, incorporating SEO and GDPR compliance plugins to enhance digital maturity and user experience. The site is optimized for mobile devices and provides clear navigation and contact information, reinforcing trust and credibility. From a technical perspective, the website employs modern web technologies including Google Analytics and Tag Manager for user tracking, Yoast SEO for search optimization, and Slider Revolution for visual content. The site uses HTTPS with good SSL configuration, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a retail website. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, reflecting adherence to GDPR requirements. However, the absence of explicit security policies or incident response contacts suggests room for improvement in transparency and preparedness. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness. Strategically, MINUTACZ should focus on enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure channel to strengthen its security culture and compliance posture. These steps will further solidify customer trust and reduce risk exposure in the evolving digital landscape.

F

Fly United

flyunited.cz

49

Fly United is a professional travel service provider based in the Czech Republic, offering comprehensive travel management solutions for private and corporate clients. With over 30 years of experience and a strong client base exceeding 850 corporate customers, the company positions itself as a reliable partner in the transportation sector. Their services include flight bookings, accommodation, travel insurance, visas, transfers, car rentals, and airport parking, supported by online platforms such as Onesto, Symphony SME, and Fly Online. The website is bilingual (Czech and English) and targets both private travelers and businesses seeking travel management solutions. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Google Analytics integration, ensuring good SEO and user tracking capabilities. Security measures include HTTPS enforcement and Google reCAPTCHA v3 on forms, alongside visible PCI DSS certification, indicating compliance with payment security standards. However, the absence of WHOIS data and lack of explicit security policies or incident response information on the site represent areas for improvement. Overall, the website demonstrates a mature digital presence with professional design, clear navigation, and comprehensive content. The security posture is solid but could be enhanced by implementing additional HTTP security headers and publishing vulnerability disclosure information. Privacy compliance is good, with a clear privacy policy and terms of service, though a cookie consent mechanism is not evident. Strategic recommendations include improving security header implementation, adding incident response and vulnerability disclosure details, and enhancing accessibility features to meet broader compliance standards. These steps will strengthen trust and security culture, supporting Fly United's market position as a dependable travel service provider.

P

Planeo

planeo.cz

68

Planeo.cz is a large Czech retail and e-commerce platform specializing in electronics, garden, sport, and auto-moto products with over 100 physical stores. The website presents a professional and user-friendly interface with comprehensive privacy and cookie policies compliant with GDPR. The technical infrastructure leverages modern analytics and advertising technologies including Google Tag Manager, Cookiebot, Exponea, and multiple ad networks, indicating a mature digital marketing strategy. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers are not confirmed in the provided data. The absence of WHOIS data due to privacy protection slightly reduces trust but does not detract from the overall legitimacy of the business. Strategic recommendations include enhancing security headers and ensuring all forms are secured against CSRF and input vulnerabilities.

Legendary Cards is an e-commerce platform operated by eSports s.r.o., specializing in collectible sports cards and memorabilia primarily targeting Czech sports enthusiasts and collectors. The website offers a range of products including limited edition cards, sports figures, and related accessories, supported by promotional content and news updates. The business operates with a clear focus on the Czech market and maintains an active social media presence to engage its audience. Technically, the website employs modern web technologies including jQuery, Google Analytics, Google Tag Manager, and the Nette Framework. The site is mobile-optimized with a responsive design and uses cookie consent mechanisms to comply with GDPR. Performance is moderate with good navigation and content structure, though some improvements in accessibility and SEO could be made. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent with granular user controls. However, it lacks explicit security headers and a published security policy or incident response contact. No critical vulnerabilities or exposed sensitive data were detected, indicating a generally sound security posture. Overall, the website is trustworthy and professionally maintained, with legitimate domain registration consistent with the business identity. Strategic improvements in security headers and incident response transparency would enhance the security posture further.

E

EnVys, a.s.

envys.cz

66

EnVys, a.s. operates a community energy platform in the Czech Republic, offering long-term stable electricity prices sourced directly from local power plants. The company targets citizens, firms, and municipalities, emphasizing sustainability and compliance with ESG and Green Deal requirements. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Blazor, jQuery, Google Analytics, Microsoft Clarity, and a chatbot for enhanced user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. WHOIS data is unavailable due to CZ NIC privacy policies, but the presence of official documents and clear contact information supports legitimacy. Overall, the site reflects a mature digital presence suitable for a medium-sized energy company.

S

Sedláček s.r.o.

sedlacek-karcher.cz

50

Sedláček s.r.o. operates the website www.sedlacek-karcher.cz as an authorized reseller and service provider of cleaning and hygiene systems, prominently featuring brands such as Kärcher, TORK, and Kimberly-Clark. The company has a long-standing presence since 1994, targeting both business and consumer markets with sales, service, and rental offerings. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience. Technically, the site employs modern tracking and analytics tools including Google Tag Manager, Hotjar, and Facebook Pixel, alongside security measures like HTTPS and Google reCAPTCHA for form protection. However, the absence of explicit privacy and cookie policy pages and lack of WHOIS domain registration data introduce some trust and compliance concerns. Overall, the site demonstrates a moderate security posture with room for improvement in transparency and security headers.

N

Nej.cz

internetpb.cz

74

Nej.cz is a Czech telecommunications provider offering internet, digital television, and telephone services primarily targeting personal and business customers. The company operates as part of the O2 group, indicating a strong market position within the Czech Republic. The website presents a professional and consistent brand image with clear service offerings and contact information. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, Cookiebot for cookie consent, Hotjar for user behavior analytics, and reCAPTCHA for form security. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent management. However, WHOIS data is unavailable, likely due to privacy protection, which is common for this business type. Overall, Nej.cz demonstrates a trustworthy and professional online presence with room for minor security enhancements.

P

Peterbilt

peterbilt.com

11

Peterbilt is a leading American manufacturer specializing in diesel and electric trucks for various applications including long-haul and local delivery. The company maintains a strong market position with a comprehensive product lineup and dealer network. The website reflects a mature digital presence with modern technologies such as Nuxt.js and integrates multiple analytics and marketing tools to optimize user experience and business insights. Security posture is solid with HTTPS enforcement, security headers, and cookie consent mechanisms, although dedicated security and incident response policies are not publicly available. The absence of WHOIS data for the www subdomain is noted but does not detract from the overall legitimacy given the professional branding and content. Strategic recommendations include publishing explicit security policies and incident response contacts to enhance trust and compliance.

S

Sedláček s.r.o.

author-sedlacek.cz

49

Sedláček s.r.o. operates the website www.author-sedlacek.cz as a retail and service center specializing in bicycles, particularly the Author brand, along with related accessories and rental services. The company has an established presence since 1994 and targets cycling enthusiasts in the Czech Republic. The website is professionally designed with clear navigation and good mobile optimization, supporting a positive user experience. Technically, the site employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Google Tag Manager, alongside security measures like HTTPS and reCAPTCHA for form protection. However, the absence of privacy and terms of service pages indicates a compliance gap. The WHOIS data is unavailable, limiting domain legitimacy verification, but the website content and contact information suggest a legitimate small retail business. Overall, the site demonstrates a solid security posture with room for improvement in privacy compliance and security header implementation.

L

Lama PB s.r.o.

obytnevozypribram.cz

37

Obytné vozy Příbram is a small Czech Republic-based business specializing in luxury camper van rentals, operated by Lama PB s.r.o. The website presents a professional and clear user experience focused on promoting their rental fleet and reservation services. The business targets individuals and families seeking comfortable and stylish travel options in the Příbram region and beyond. The domain age and WHOIS data align well with the business claims, supporting legitimacy. Technically, the website uses common web technologies such as jQuery, Font Awesome, Google Analytics, and Google Maps API. The site is moderately optimized for mobile and SEO, with a clean navigation structure. However, no CMS or advanced frameworks were detected, indicating a relatively simple technical infrastructure. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. HTTPS status is unknown from the data but should be verified. No incident response or vulnerability disclosure information is present. The site uses Google Analytics for user tracking without visible consent mechanisms, indicating privacy compliance gaps. Overall, the website is functional and trustworthy for its business purpose but would benefit from improved security and privacy practices to enhance compliance and user trust.

P

P6PA+Architects

p6pa.com

41

P6PA+Architects is a premium architecture studio with a global outlook and local presence, notably in Prague and New York. The company offers architectural design and consulting services, targeting clients seeking high-quality architectural solutions. The website presents a professional portfolio and branding consistent with a niche premium service provider in the real estate sector. Technically, the site uses a combination of legacy and modern web technologies including jQuery, Google Maps API, and Swiper.js, with integration of Google Tag Manager and Facebook Pixel for analytics and marketing purposes. While the site is accessible and well-structured, it lacks visible privacy and cookie policies, explicit contact information, and WHOIS registration data, which raises concerns about transparency and compliance. Security posture is moderate with HTTPS usage implied but no security headers detected in the provided data. Overall, the site is functional and professional but would benefit from enhanced compliance and security practices.

H

Hodinářství a Zlatnictví Tomáš Vyskočil - TOVYS

tovys.cz

52

Tovys.cz is a Czech Republic-based retailer specializing in watches and jewelry, operating since 1996 with a physical store in Jihlava and an online e-commerce platform. The company offers a wide range of products from over 55 global brands, including luxury and smart watches, complemented by watchmaking and goldsmith services. The website demonstrates a mature digital presence with modern technologies such as jQuery, Swiper.js, and integration of Google Analytics and Facebook Pixel for marketing and analytics purposes. Privacy compliance is well addressed with detailed GDPR policies and cookie consent mechanisms. Security posture is generally good with HTTPS and consent management, though improvements in security headers and incident response documentation are recommended. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and comprehensive contact information support business credibility. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

P

PRVNÍ CHODSKÁ eshop

chodska.cz

59

PRVNÍ CHODSKÁ eshop operates a professional e-commerce platform specializing in construction materials such as roofing, windows, insulation, gutters, wood assortments, pergolas, and facades. The company serves a regional market in the Czech Republic with multiple physical branches, targeting construction professionals and retail customers. The website demonstrates a solid market position as a supplier with a broad product range and local availability through its branch network. Technically, the site uses a modern JavaScript stack including jQuery, Swiper.js, and integrates multiple analytics and tracking tools such as Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel, managed via Google Tag Manager. The platform appears to be built on a proprietary or custom e-commerce CMS (K2 eShop). Security posture is adequate with enforced HTTPS and error monitoring, but lacks some security headers and published security policies. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy page. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security practices.

N

Nadace fotbalových internacionálů

fotbal-nadacefi.cz

41

Nadace fotbalových internacionálů is a Czech non-profit foundation dedicated to supporting former football representatives who contributed to the national football legacy. The foundation focuses on repaying historical debts and providing social and health support to retired players. The website reflects a well-established organization with a clear mission, supported by reputable football clubs and corporate partners. Technically, the site uses legacy ASP.NET Web Forms technology with common JavaScript libraries such as jQuery and Swiper.js, and integrates Google Analytics for visitor tracking. The site is mobile responsive and well-structured, though some technical components like outdated jQuery versions and missing security headers indicate room for improvement. Security posture is moderate with HTTPS enabled but lacking advanced headers and privacy compliance features. The absence of WHOIS data reduces domain trustworthiness, but the content and partner ecosystem support legitimacy. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

M

Minuta CZ s.r.o.

tissot-hodinky.cz

61

The website www.tissot-hodinky.cz serves as the official online presence for Minuta CZ s.r.o., the authorized distributor of the prestigious Swiss watch brand TISSOT in the Czech Republic. It offers detailed product information, news, and authorized dealer locations, targeting watch enthusiasts and consumers in the Czech market. The site is professionally designed with good navigation and content relevance, supporting a retail business model focused on brand representation and sales. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and Google Analytics for user tracking and interactive features. The site appears mobile-optimized with good SEO practices but lacks explicit CMS identification and some advanced accessibility features. Performance is moderate with room for improvement in security headers and privacy compliance. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, but no security headers were detected in the provided data. There is no visible privacy or cookie policy, which is a compliance gap under GDPR. WHOIS data is unavailable, limiting domain legitimacy verification, though the presence of clear company contact details and social media links to official brand accounts supports trustworthiness. Overall, the website is functional and professional but would benefit from enhanced security practices, explicit privacy and cookie policies, and verification of domain registration details to improve trust and compliance posture.

N

Nadační fond Škoda Auto

nfsa.cz

63

Nadační fond Škoda Auto is a non-profit foundation dedicated to supporting the development of the home regions of Škoda Auto, namely Mladoboleslavska, Rychnovska, and Vrchlabska. The foundation provides financial aid, educational programs, and fosters partnerships to enhance community development. It operates grant programs and strategic projects focused on social services, cultural life, and public space revitalization. The website reflects a strong affiliation with Škoda Auto and Volkswagen, indicating a reputable backing. Technically, the website employs modern frontend technologies such as Vue.js and Vuetify, ensuring a responsive and accessible user experience. Google Analytics and Tag Manager are used for analytics, with a clear cookie consent mechanism in place, demonstrating attention to privacy compliance. The site is well-structured, professionally designed, and optimized for SEO and mobile devices. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces the ability to fully verify domain legitimacy, but the website's content and partner affiliations support its credibility. Overall, the site presents a trustworthy and professional image suitable for its non-profit mission. Strategic recommendations include improving security header implementation, publishing security and incident response policies, and verifying domain registration details to enhance trustworthiness.

Equitana Hotel Resort is a Czech Republic based wellness hotel and equestrian resort offering accommodation, spa, restaurant, and corporate event services. The website is professionally designed, mobile responsive, and provides clear navigation and contact information. The technical infrastructure relies on jQuery, Google Analytics, Facebook Pixel, and a proprietary CMS (IPO). Security posture is good with HTTPS and CAPTCHA usage, but lacks some security headers and explicit privacy policy documentation. The WHOIS data is unavailable publicly, indicating privacy protection, which is common and justified for this business type. Overall, the website presents a trustworthy and professional hospitality business with moderate digital maturity.

C

Commonwealth of Pennsylvania

filminpa.com

51

Film In PA is the official website of the Pennsylvania Film Office, a government entity promoting film and television production within the state. The site provides comprehensive information on tax incentives, location resources, production guides, and showcases films shot in Pennsylvania. It serves as a key resource for filmmakers, production companies, and industry professionals interested in leveraging Pennsylvania's diverse locations and incentives. Technically, the website is built on WordPress with modern libraries such as jQuery and Video.js, and integrates Google Analytics and translation tools. The site is mobile-optimized and SEO-friendly, though it lacks some advanced accessibility features and cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but could be improved by enabling DNSSEC and adding security headers. The domain is long-established and registered with a reputable registrar, aligning well with the official government branding and content, indicating high legitimacy and trustworthiness.

T

TEKA Systems

tekasystems.gr

60

TEKA Systems is a well-established company founded in 2004, specializing in engineering and information technology services, including SAP solutions, digital transformation, and analytics. The company holds a leading market position in its sector and targets business and enterprise clients. The website reflects a professional digital presence built on WordPress with modern SEO and tracking tools. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced DNS security and explicit security policies. Overall, the site is trustworthy and business credible but could improve privacy and security transparency.

N

Navingo BV

offshorewind.biz

66

offshoreWIND.biz is a specialized online media platform delivering daily news and insights focused on the offshore wind energy sector, including emerging technologies like floating wind and Power-to-X. The platform serves industry professionals and stakeholders, providing timely updates on projects, market developments, and technological advancements. The website is part of the Navingo BV media group, which operates several related industry news sites, positioning offshoreWIND.biz as a reputable niche media outlet within the renewable energy sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and ElasticPress, ensuring good SEO and search capabilities. It employs Google Analytics and Google Tag Manager for analytics and tracking, alongside a comprehensive cookie consent management system powered by CookieYes, reflecting a moderate level of digital maturity and privacy compliance. The site is mobile-optimized and accessible, with a professional design and clear navigation. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers in the provided data. No critical vulnerabilities or exposed sensitive data were detected. The cookie consent mechanism is robust, offering granular control over tracking and advertising cookies, though the absence of a published privacy policy and terms of service pages is a compliance gap. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for media companies. Overall, offshoreWIND.biz presents a professional and trustworthy online presence with good technical and content quality. Strategic improvements include publishing comprehensive privacy and terms of service documents, enhancing security headers, and providing clearer business contact information to strengthen compliance and trustworthiness.

O

Offshore Energy

oeec.biz

65

Offshore Energy operates a professional event website promoting the Offshore Energy Exhibition & Conference scheduled for November 2025 in Amsterdam. The business focuses on organizing and hosting a major industry event targeting energy sector professionals, exhibitors, and visitors interested in offshore energy solutions. The website provides comprehensive event information, exhibitor details, ticketing options, and networking opportunities, positioning itself as a key player in the offshore energy event market. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies including Google Analytics, Microsoft Clarity, and CookieYes for privacy compliance. The site demonstrates good SEO, accessibility, and mobile optimization, with a moderate performance profile. Security measures include HTTPS enforcement, Google reCAPTCHA, and a detailed cookie consent mechanism, although some security headers and policies are not explicitly published. The security posture is solid with no critical vulnerabilities detected in the HTML content. However, the absence of a published privacy policy, terms of service, security policy, and incident response contacts represents areas for improvement. The domain registration uses privacy protection, which is justified for this event business, and the domain age aligns with the event timeline. Overall, the website is trustworthy, professional, and compliant with cookie consent regulations but would benefit from enhanced transparency in privacy and security policies to strengthen user trust and regulatory compliance.

Z

ZX Lidars

zxlidars.com

65

ZX Lidars is a specialized company providing advanced wind lidar technology for accurate remote wind measurement, primarily serving the energy sector globally. Their product portfolio includes onshore, offshore, and turbine-mounted wind lidars, positioning them as an industry leader in wind energy measurement solutions. The company is based in the UK and has been operational since 2007, targeting wind energy developers and meteorological organizations. Technically, the website is built on WordPress and leverages modern web technologies such as jQuery, Slick Carousel, Font Awesome, and Google Tag Manager, indicating a mature digital infrastructure. The site is well-optimized for SEO and mobile devices, with good content quality and professional design. Security-wise, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and contact information suggest a legitimate business. Overall, the site demonstrates a solid business and technical foundation but would benefit from enhanced privacy compliance and security best practices.

F

Fitmin.cz

fitmin.cz

55

Fitmin.cz is a Czech-based e-commerce business specializing in manufacturing and retailing high-quality pet food and accessories for dogs, cats, horses, and rodents. The company emphasizes fresh ingredients sourced from the Orlické Mountains region and targets pet owners primarily in the Czech Republic. The website is professionally designed with clear navigation and a comprehensive product catalog, including loyalty programs and promotional offers. Technically, the site leverages modern e-commerce technologies, including the Shoptet platform, Google Analytics, Microsoft Clarity, and Facebook SDK, ensuring a robust digital presence. Security measures such as HTTPS and security headers are properly implemented, though the site lacks a dedicated security policy or incident response contact. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data limits domain legitimacy verification, posing a moderate risk. Overall, Fitmin.cz presents a trustworthy and professional online retail platform with room for improvement in transparency around security and incident response.

C

CEMEC

cemecpesquisaclinica.com.br

45

CEMEC is a Brazilian clinical research center with a professional online presence focused on clinical studies across more than 15 medical areas. The website is built on WordPress using Elementor and includes modern tracking and analytics tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity. The site is well-structured, mobile-optimized, and secured with HTTPS, reflecting a moderate to good level of digital maturity. However, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is adequate with HTTPS and reCAPTCHA usage, but could be improved by adding security headers and publishing a security policy. Overall, the site is legitimate and consistent with its business claims, but could enhance compliance and security transparency.

V

Verein Lüneburger Kaufleute e. V.

verein-lueneburger-kaufleute.de

54

Verein Lüneburger Kaufleute e. V. is a historic business association based in Lüneburg, Germany, with a legacy spanning nearly 600 years. The organization focuses on fostering economic exchange, networking, and community engagement among local entrepreneurs and merchants. Their key offerings include exclusive events such as the Handelsball and Herrenessen, regular networking evenings, and political representation for their members. The website reflects a well-established regional presence with a professional and consistent brand image targeting business professionals in the region. Technically, the website is built on the Webflow platform, utilizing modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA for form security. The site is hosted on Webflow's CDN infrastructure, ensuring moderate performance and good mobile optimization. Accessibility features are basic but present, and SEO practices are adequately implemented with proper metadata and structured content. From a security perspective, the site enforces HTTPS and integrates reCAPTCHA to protect forms from abuse. A cookie consent mechanism compliant with GDPR is implemented, providing users control over data processing. However, the site lacks explicit security headers and does not publish a security policy or incident response contacts, which are areas for improvement. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website presents a trustworthy and professional digital presence for the Verein Lüneburger Kaufleute e. V., with strong content quality and compliance posture. Strategic recommendations include enhancing security headers, publishing incident response information, and providing direct contact details for security matters to further strengthen trust and resilience.

A

Ausbildungsverbund Lüneburg e.V.

xn--al-yka.de

43

Ausbildungsverbund Lüneburg e.V. is a regional non-profit organization dedicated to coordinating apprenticeship training for young people in the Lüneburg area of Germany. The organization collaborates with numerous partner companies to offer up to 30 apprenticeship positions annually, providing services such as candidate pre-selection, apprentice support, and coordination with vocational schools and chambers. Their website reflects a professional and consistent brand image, targeting both prospective apprentices and companies seeking to train new talent. Technically, the website employs modern web technologies including JavaScript libraries like Swiper.js and integrates Google Analytics and Tag Manager for tracking, while maintaining GDPR compliance through cookie consent mechanisms. Security posture is adequate with HTTPS enforced and IP anonymization in analytics, though there is room for improvement in implementing security headers and publishing explicit security policies. Overall, the website is accessible, well-structured, and trustworthy, supporting the organization's mission effectively.

C

ComArr, spol. s r. o.

taskpool.cz

60

ComArr, spol. s r. o. operates the TaskPool helpdesk system, a mature and established web-based software solution designed to streamline communication and task management between customers and service providers. With over 17 years in the market and more than 300 implementations, the company targets businesses and institutions of various sizes seeking efficient customer support and internal task management solutions. Their offerings include customer helpdesk, internal helpdesk, IT outsourcing, and support for ISO certification and ITIL standards. The website reflects a professional and consistent brand presence, with clear service descriptions and client references.

R

Regionální dobrovolnické centrum Pardubického kraje

dobrokraj.cz

46

The website dobrokraj.cz represents the Regionální dobrovolnické centrum Pardubického kraje, a regional volunteer center focused on coordinating and supporting volunteer activities within the Pardubický region of the Czech Republic. It provides news, advisory services, and a database of volunteer organizations, positioning itself as a key non-profit entity in the local social sector. The site is supported by governmental bodies including the Ministry of Interior and the Pardubický regional government, as well as corporate sponsors like Foxconn Česká republika. The business model is non-profit, targeting volunteers, volunteer organizations, and social service stakeholders in the region. Technically, the website is built on WordPress CMS with a modern tech stack including Bootstrap and jQuery, and uses common plugins such as Revolution Slider and MonsterInsights for analytics. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks explicit security policies or incident response information. Analytics usage is moderate with anonymized IP tracking via Google Analytics. Security-wise, the site shows good practices but could improve by adding security headers, a security policy, and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. The domain registration is consistent with the business history and shows no suspicious patterns, enhancing trustworthiness. Overall, dobrokraj.cz is a professionally maintained, regionally focused non-profit website with good content quality and compliance with privacy regulations. Strategic improvements in security transparency and accessibility could further strengthen its posture.

D

Dobrovolnické centrum Koalice nevládek Pardubicka

dobrokonep.cz

46

Dobrovolnické centrum Koalice nevládek Pardubicka operates as a regional non-profit organization focused on recruiting and coordinating volunteers for non-profit and contributory organizations within the Pardubický region of the Czech Republic. The website serves as a platform to connect volunteers with various social and community projects, providing detailed volunteer opportunities and supporting materials. The organization is supported by notable partners including the Ministry of Interior of the Czech Republic and Foxconn Česká republika, enhancing its credibility and regional influence. Technically, the website is built on WordPress CMS, utilizing modern web technologies such as Bootstrap, jQuery, and popular plugins like Revolution Slider and Owl Carousel. The site is mobile-optimized with good SEO practices and includes a cookie consent mechanism compliant with GDPR. Google Analytics is implemented with anonymized IP tracking and user consent. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, but lacks some advanced security headers such as Content-Security-Policy and X-Frame-Options. No vulnerability disclosure or security policy pages are present, indicating room for improvement in security transparency and incident response readiness. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen the site's security posture and compliance.

N

Nový šachový server

nss.cz

47

Nový šachový server (NSS.cz) is a Czech media platform dedicated to delivering chess news, tournament results, interviews, and reports primarily targeting the Czech chess community. The site integrates premium membership content and an e-shop, indicating a diversified business model focused on content and commerce. Technically, the site uses a custom CMS built on the Nette Framework, with frontend technologies including jQuery and Google services for fonts, analytics, and advertising. The website is mobile-optimized and provides a good user experience with clear navigation and regularly updated content. Security posture is moderate; HTTPS is used, but security headers and advanced protections are lacking. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, reflecting GDPR awareness. However, the absence of WHOIS data reduces domain transparency and trustworthiness. Overall, NSS.cz is a well-maintained niche media site with room for improvement in security and transparency.

Anawe s.r.o. is a Czech small business specializing in comprehensive web presentation services including website creation, SEO optimization, graphic design, and corporate identity development. The company has a strong market presence with over a decade of experience and a broad portfolio of clients across various sectors. Their website reflects professionalism and a consistent brand image, targeting businesses and individuals seeking quality digital presentation solutions. Technically, the website employs standard web technologies with HTTPS and Google Analytics integration, though it lacks advanced security headers and privacy compliance mechanisms. The absence of WHOIS data limits domain trust verification, but the detailed contact and business information on the site support legitimacy. Security posture is moderate with room for improvement in headers and policy disclosures. Overall, Anawe s.r.o. presents a credible and professional digital presence with recommendations to enhance privacy compliance and security best practices.

O

Obec Jankov

obecjankov.cz

47

Obec Jankov is the official municipal government website for the town of Jankov in the Czech Republic. It serves as a central information hub for residents and visitors, providing public notices, event calendars, contact details, and local government updates. The website targets local citizens and stakeholders interested in community affairs and municipal services. The business model is focused on public service and information dissemination, positioning itself as a trusted local government portal. Technically, the website employs a mix of legacy and modern web technologies including jQuery 1.6.1, Fancybox, PhotoSwipe Lightbox, and Google Analytics for tracking. Hosting is provided by Websupport.cz, a known Czech hosting provider. The site is mobile optimized and includes accessibility features, though some scripts are outdated and could benefit from modernization. SEO and metadata are adequately implemented. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit security headers and does not provide visible security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain legitimacy and consistency with the municipal entity. Overall, the website is a well-maintained, trustworthy municipal portal with good content quality and compliance posture. Strategic improvements include updating legacy scripts, enhancing security headers, and publishing security and incident response policies to strengthen trust and resilience.

E

Elevup s.r.o.

filmana.cz

62

Filmana.cz is a Czech-Slovak streaming platform specializing in Christian films, series, and documentaries. Founded in 2023 and based in Zlín, Czech Republic, it operates under Elevup s.r.o. The platform targets audiences interested in faith-based media content, positioning itself as the first in the region with this niche focus. The business model is subscription-based streaming, supported by an independent foundation promoting Christian messages through film art. Technically, the website is built using modern frameworks such as Next.js and React, hosted on AWS infrastructure. It integrates standard analytics and marketing tools including Google Analytics, Microsoft Clarity, Google Tag Manager, and Facebook Pixel. The site implements a comprehensive cookie consent mechanism via Cookiebot, ensuring GDPR compliance in user tracking and data collection. From a security perspective, the site enforces HTTPS and uses cookie consent controls to manage user privacy. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not present. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain registration consistency and legitimacy, matching the business's founding date and location. Overall, Filmana.cz presents a professional and trustworthy online presence with good content quality and technical implementation. To enhance security posture and compliance, it is recommended to publish detailed privacy and security policies, implement security.txt, and regularly audit third-party scripts. The platform is safe for general audiences with no adult or questionable content detected.

A

Adrex.com

adrex.com

52

Adrex.com is a well-established international media portal specializing in adrenaline, extreme, and outdoor sports content. It offers a wide range of articles, videos, and a unique application database catering to extreme sports enthusiasts globally. The website is professionally designed with consistent branding and a clear focus on its niche audience. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks explicit security headers and formal privacy or cookie policies. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but does not detract from the site's professional appearance and content richness.

S

Svět IT s.r.o.

svetit.cz

63

Svět IT s.r.o. is a Czech-based technology service provider specializing in network administration and development of online projects such as mobile applications, portals, and information systems. The company emphasizes personalized and reliable IT solutions with 24-hour customer support in Czech language. Their website reflects a professional business presence with clear service offerings and client references, positioning them as an experienced player in the IT services market with a focus on cost reduction and quality service delivery. Technically, the website uses modern web technologies including Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a cookie consent mechanism, though lacks visible privacy and security policy documentation. Security posture is moderate with HTTPS implied but no explicit security headers detected, and no WHOIS data available to verify domain legitimacy. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

Seek Thermal operates an e-commerce website offering affordable infrared thermal imaging cameras targeting consumers and businesses interested in thermal imaging technology. The website is professionally designed with good content quality and consistent branding, focusing on product sales and applications in automotive and OEM markets. The technical infrastructure is based on the Weebly/EDITMYSITE platform, utilizing common web technologies and multiple third-party marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and ZoomInfo. The site is mobile optimized and has good SEO practices but lacks advanced accessibility features. Security posture is moderate with HTTPS enabled but missing key security headers and no visible security or privacy policies. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness. Overall, the website is functional and professional but requires improvements in privacy compliance, security best practices, and transparency to enhance trust and compliance.

P

PACCAR Inc

paccar.com

71

PACCAR Inc is a leading global manufacturer of high-quality commercial trucks and related financial services. The company operates multiple well-known brands including Kenworth, Peterbilt, and DAF, serving a broad transportation market. Their website reflects a mature digital presence with comprehensive business, investor, and product information targeting industry professionals and investors. Technically, the site uses modern frameworks such as Foundation and Umbraco CMS, with integration of Google Analytics and Tag Manager for analytics and marketing. The site is mobile-optimized and well-structured, though performance is moderate. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies and advanced security headers. Overall, PACCAR's website demonstrates strong business credibility and trustworthy digital infrastructure.

P

Počítačové poradenství a zpravodajství

pcporadenstvi.cz

45

The website www.pcporadenstvi.cz is a Czech-language IT advice and news portal offering articles, forums, software downloads, and multimedia galleries. It targets Czech-speaking IT enthusiasts and small business users seeking computer-related guidance. The site operates on Drupal CMS and integrates common advertising and analytics tools such as Google Analytics, Google Tag Manager, and Google Adsense. While the content is regularly updated and relevant, the site lacks explicit privacy and terms of service pages, and no official company contact information is provided on the main pages. The absence of WHOIS data for the domain raises concerns about domain legitimacy and trustworthiness. Technically, the site shows moderate performance and basic mobile optimization but lacks visible security headers and advanced form protections. Overall, the site appears functional and moderately professional but would benefit from enhanced security and compliance measures.

L

La Maison d'Oléron

lamaisondoleron.fr

52

La Maison d'Oléron is a small hospitality business specializing in vacation home rentals on the Ile d'Oléron in France. The website provides detailed information about the property, including interior, exterior, equipment, and location, targeting tourists seeking holiday accommodations. The business model relies on direct information presentation and third-party booking platforms for reservations. Technically, the website uses modern web technologies such as Bootstrap, jQuery, and Google Analytics, with a responsive design optimized for mobile devices. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response or security policies. The absence of WHOIS data reduces domain trustworthiness, though the website content and metadata suggest a legitimate small business. Overall, the site is professional and functional with room for security and compliance improvements.

C

CV-Library Ltd

contractorjobs.co.uk

60

Contractor Jobs is a UK-based online job board specializing in contract employment opportunities across various industries. Powered by CV-Library Ltd, it offers job seekers the ability to search thousands of contract roles, register CVs, and receive job alerts. The platform also supports recruiters with access to a CV database for hiring contractors. The website demonstrates a professional and user-friendly design with good mobile optimization and clear navigation, targeting contractors and recruiters within the UK market. Technically, the site employs modern web technologies including Google Analytics, Google Tag Manager, and Bing UET for analytics and tracking, alongside autocomplete and lazy loading scripts to enhance user experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though it lacks explicit security policies or incident response contacts. The WHOIS lookup failed due to a domain registration error, but the website's content and branding strongly indicate legitimacy and a well-established presence. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy platform for its target audience.

C

CV-Library Ltd

jobs-graduate.co.uk

60

JobsGraduate is a UK-focused graduate job search platform operated under the CV-Library Ltd brand. It offers a comprehensive service for graduates to search thousands of jobs, register CVs, and receive job alerts. The platform targets recent graduates and entry-level job seekers across various academic disciplines and industries within the UK. The website is professionally designed with good navigation and mobile optimization, providing a positive user experience. Technically, it employs modern JavaScript libraries, Google Analytics, Bing UET, and custom clickstream analytics to track user behavior and optimize marketing efforts. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and detailed security policies. The WHOIS data for the domain is unavailable due to domain naming rules, but the strong association with CV-Library Ltd supports legitimacy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

C

CV-Library Ltd

marketing-jobs.co.uk

60

Marketing Jobs is a UK-focused online job board specializing in marketing sector roles, powered by CV-Library Ltd. The platform offers job search, alerts, CV registration, and recruiter services, targeting marketing professionals and recruiters. The website is professionally designed with good mobile optimization and accessibility, providing a user-friendly experience. Technically, it employs modern JavaScript libraries, Google Analytics, Bing UET, and clickstream analytics, with cookie consent mechanisms in place. Security posture is adequate with HTTPS enforced, but lacks some security headers and explicit security policies. WHOIS data for the domain is unavailable due to domain naming rules, indicating the domain is likely a subdomain or alias, which slightly impacts trust but does not detract from the site's legitimacy given its association with CV-Library Ltd.