Security Directory

The website www.otod.cz serves as the official platform for the XVII Ostravské traumatologicko-ortopedické dny, a specialized medical conference focused on traumatology and orthopedics. Organized by Klinika úrazové chirurgie a ortopedie and Fakultní nemocnice Ostrava a LF OU, the site provides detailed event information, program schedules, partner listings, and contact details. The target audience primarily consists of healthcare professionals including doctors, nurses, and specialists in trauma and orthopedic care. The business model revolves around event organization and conference management within the healthcare sector, supported by partnerships with medical suppliers and institutions. From a technical perspective, the website employs a standard Bootstrap framework with jQuery and FontAwesome for UI components and styling. The site is moderately optimized for performance and mobile devices, though accessibility and SEO features are basic. No CMS or hosting provider details are evident. The site lacks advanced analytics or tracking scripts, indicating a minimal data collection approach. Security posture is limited; no HTTPS or security headers were explicitly detected in the provided data, and no privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. The absence of WHOIS data reduces domain trustworthiness, though the site content and partner affiliations suggest legitimacy. No forms are embedded; registration is handled via an external partner domain. Overall, the site is professionally designed and content-rich for its niche audience but requires improvements in security, privacy compliance, and domain transparency to enhance trust and regulatory adherence.

The website fyzioterapeuticke-dny.cz serves as the official platform for the "Mikulovské dny rehabilitace a lázeňství" conference, a specialized event organized by the Institute of Clinical Rehabilitation at Palacký University Olomouc. It targets healthcare professionals, researchers, and students in rehabilitation and balneotherapy, providing a venue for knowledge exchange, professional development, and networking. The site features detailed event information, partner logos, and contact details, reflecting a focused academic and professional audience. Technically, the site employs standard web technologies such as Bootstrap and jQuery, with a moderate level of mobile optimization and basic SEO practices. However, the absence of privacy and cookie policies, lack of visible security headers, and unclear HTTPS status indicate gaps in security and privacy compliance. Contact information is clearly presented, but no social media presence or advanced analytics are detected. Overall, the site is functional and professional but requires improvements in security and compliance to enhance trust and user safety.

The website brnenske-dny.cz represents SYMMA, spol. s r.o., an established small company organizing the 24th Brno Days of Emergency Medicine conference in the Czech Republic. The site targets healthcare professionals and students interested in emergency medicine, providing detailed event information, registration, accommodation, and partner details. The business model focuses on event management and professional networking within the healthcare sector. Technically, the site uses a standard Bootstrap framework with jQuery and Google Fonts, delivering a moderate performance and basic mobile optimization. Security posture is adequate with HTTPS assumed but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security measures.

The website www.novakovy-dny.cz represents the XXI. Novákovy traumatologické dny, a national medical congress focused on trauma surgery in the Czech Republic. Organized by SYMMA, spol. s r.o., the site provides detailed information about the event, including program schedules, registration, accommodation, partners, and contact details. The target audience is healthcare professionals specializing in trauma care, including doctors, nurses, and physiotherapists. The business model revolves around event organization with revenue from registration fees and sponsorships. Technically, the website uses a standard Bootstrap framework with jQuery and FontAwesome for styling and interactivity. It includes Google Fonts for typography. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility and SEO features. No CMS or hosting provider information is evident. The site does not include analytics or tracking scripts, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for GDPR compliance and user trust. The WHOIS data is missing, which raises concerns about domain legitimacy and transparency. However, the website content is professional and consistent with a legitimate medical conference. Contact information is clearly provided with company emails and phone numbers. Overall, the site is functional and informative but would benefit from improved security practices, privacy compliance, and domain registration transparency to enhance trustworthiness and compliance with regulations.

The website www.liberecke-dny.cz serves as the official platform for the "Liberecké dny urgentní a intenzivní medicíny 2025" medical congress, organized by SYMMA, spol. s r.o. in cooperation with regional medical institutions in the Czech Republic. It targets healthcare professionals specializing in urgent and intensive medicine, offering a comprehensive program including workshops, lectures, and networking events. The site provides detailed event information, registration links, and partner acknowledgments, positioning itself as a regional leader in medical event organization. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and FontAwesome, ensuring a responsive and user-friendly interface. However, mobile optimization and accessibility are basic, and no CMS or hosting details are evident. The site lacks advanced analytics or tracking scripts, indicating minimal user tracking and a focus on content delivery. From a security perspective, the site lacks visible security headers and privacy/cookie policies, which are critical for GDPR compliance and user trust. The WHOIS data is unavailable, raising concerns about domain legitimacy and transparency. No forms are embedded on the site; registration is handled externally, reducing direct data collection risks but also limiting control over user data. Overall, the website is professionally designed and content-rich, serving its business purpose well. However, improvements in security posture, privacy compliance, and domain transparency are recommended to enhance trust and regulatory adherence.

The website telemedicina-brno.cz serves as the official platform for the III. national conference on healthcare electronization and telemedicine scheduled for March 2025 in Brno, Czech Republic. It is organized by SYMMA, spol. s r.o., a small Czech company specializing in event organization within the healthcare and technology sectors. The site provides detailed conference information, including program themes, registration fees, venue details, and partner organizations, targeting healthcare professionals, government officials, and technology stakeholders. The business model focuses on knowledge sharing and networking through event hosting. Technically, the website employs standard web technologies such as Bootstrap, jQuery, and FontAwesome, with Google Fonts for typography. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. No CMS or hosting provider details are evident. The site does not implement analytics or tracking scripts, indicating a minimal user tracking approach. From a security perspective, the site lacks visible security headers and does not display privacy or cookie policies, which are critical for GDPR compliance. The absence of incident response contacts and vulnerability disclosure mechanisms further limits its security posture. However, the domain registration is consistent and legitimate, with no suspicious WHOIS patterns. The site is accessible without WAF or blocking mechanisms. Overall, the website is professional and informative but requires improvements in privacy compliance, security best practices, and mobile optimization to enhance trust and user experience.

The website www.vyhnankovy-dny.cz serves as the official platform for the Vyhnánkovy traumatologické dny medical congress, organized by SYMMA, spol. s r.o., in collaboration with the 3rd Faculty of Medicine, Charles University and the Faculty Hospital Královské Vinohrady. It targets healthcare professionals specializing in traumatology and surgery, offering a detailed program and registration information for the event scheduled in March 2026. The site reflects a niche, professional event with strong academic and hospital affiliations, positioning it as a credible source within the Czech medical community. Technically, the website employs a standard Bootstrap framework with jQuery and FontAwesome, ensuring a responsive and visually consistent user experience. However, mobile optimization and accessibility are basic, and no advanced CMS or hosting details are evident. The site lacks analytics and tracking scripts, indicating minimal user tracking and a privacy-conscious approach, though it also lacks explicit privacy and cookie policies. From a security perspective, the site is served over HTTPS (assumed from modern standards though not explicitly confirmed), but no security headers or advanced protections are detected. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the professional content and company contact details mitigate some risk. No forms are hosted directly on the site, reducing attack surface, but also limiting direct data collection. Overall, the website is a well-structured, professional event site with good content quality and business credibility but requires improvements in security posture, privacy compliance, and domain registration transparency to enhance trust and compliance with modern standards.

The website neurochirurgie-brno.cz serves as the official platform for the 16th Brno Neurosurgery Days conference organized by the Neurosurgery Clinic of the Faculty of Medicine at Masaryk University and the Faculty Hospital Brno. It targets medical professionals, especially neurosurgeons and healthcare workers from the Czech Republic and Slovakia, providing detailed event information, registration links, and contact details. The business model focuses on event organization and professional medical education. The site demonstrates moderate digital maturity with a clean design, use of Bootstrap and jQuery, and hosting on a Czech provider, but lacks advanced CMS or analytics integrations. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The site does not employ tracking or advertising technologies, indicating a privacy-conscious approach but also missing opportunities for user engagement analytics. Overall, the website is professional and functional with good content relevance and navigation clarity. However, it would benefit from enhanced privacy compliance, security best practices, and mobile optimization improvements to strengthen trust and regulatory adherence. The domain registration data aligns well with the website's purpose and location, supporting legitimacy.

The website www.m-t-m.cz represents a professional conference platform organized by SYMMA, spol. s r.o., focusing on modern technologies in medicine, including AI, virtual reality, and 3D printing. It targets medical professionals, academics, and technology companies, providing event information, registration, and contact details. The site is well-structured with clear navigation and relevant content, supporting the niche market of medical technology conferences in the Czech Republic. Technically, the site uses a standard Bootstrap framework with jQuery and FontAwesome, ensuring a responsive and visually consistent experience, though mobile optimization and accessibility could be improved. No advanced CMS or analytics tools are detected, indicating a straightforward implementation with moderate performance. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy/cookie policies, which are important for GDPR compliance and user trust. The absence of WHOIS data reduces transparency and trustworthiness, though the site content and contact information appear legitimate and professional. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and WHOIS transparency to improve trust and regulatory adherence.

Instituto Politécnico de Bragança (IPB) is a Portuguese public higher education institution focused on delivering a wide range of academic programs including undergraduate, master's, doctoral, and continuing education courses. The institution also emphasizes research, innovation, and internationalization through programs like Erasmus+ and dual degrees. IPB serves students, academic staff, and international partners, positioning itself as a regional leader in polytechnic education in Portugal. The website reflects this with comprehensive content, clear navigation, and consistent branding. Technically, the website employs modern front-end technologies such as Bootstrap 4.6, jQuery, and Google Fonts, and is built on WordPress CMS. The site is mobile-optimized and offers moderate performance. However, there is room for improvement in accessibility and SEO optimization. The hosting provider is not explicitly identified, but the site uses HTTPS with a good SSL configuration. From a security perspective, the site uses HTTPS and modern libraries but lacks visible security headers and explicit security policies. There is no cookie consent mechanism detected, which is a GDPR compliance gap. No forms collecting personal data were found on the homepage, reducing immediate risk. The WHOIS data aligns well with the institution's identity, indicating high legitimacy. Overall, the security posture is moderate but could be enhanced with better headers, policies, and compliance mechanisms. The overall risk is low given the nature of the institution and the website's content. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and improving accessibility and SEO. These steps will enhance trust, compliance, and security maturity.

U

Universidad de La Laguna

ull.es

56

Universidad de La Laguna is a public higher education institution based in Spain, offering a wide range of academic programs, research opportunities, and cultural services. The website serves students, faculty, researchers, and the public with multilingual content and comprehensive institutional information. Technically, the site is built on WordPress with modern libraries such as Bootstrap and jQuery, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and some best practices, but lacks certain security headers and explicit vulnerability disclosure mechanisms. Privacy compliance is partially met with a privacy policy present but no visible cookie consent mechanism. Overall, the domain appears legitimate and consistent with a public university, though WHOIS data is unavailable due to registrar restrictions. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security policies to improve trust and compliance.

U

UAB Diginet LTU

autoplius.lt

62

Autoplius.lt is a leading Lithuanian online automotive marketplace established in 2003, operated by UAB Diginet LTU. The platform offers a comprehensive range of services including used and new car listings, vehicle rentals, automotive parts, and related services, targeting general consumers interested in vehicle transactions within Lithuania and neighboring regions. The website demonstrates a mature digital infrastructure leveraging modern technologies such as Cloudflare CDN, Firebase, and multiple analytics and advertising platforms to support its operations and monetization strategies. Security posture is adequate with HTTPS enforced and Cloudflare DNS usage; however, the absence of explicit security policies, privacy and cookie consent mechanisms, and incident response contacts indicates room for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and safe for general audiences, with a solid business credibility and technical foundation.

E

Efpia E4Ethics

efpia-e4ethics.eu

55

Efpia E4Ethics is a French-language lifestyle blog offering a wide range of articles on topics such as employment, beauty, fashion, practical information, home and garden, wellness, sports, and vacations. The website targets a general audience interested in lifestyle content and operates as a small content publishing platform. Technically, the site is built on WordPress, utilizing common web technologies like jQuery, Font Awesome, and Google Fonts. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enabled and a cookie consent banner present, but lacks advanced security headers and explicit privacy policy documentation. No direct company contact emails or phone numbers are provided, though a contact form is available. The domain WHOIS data is not publicly accessible due to EURid privacy policies, but no suspicious indicators were found in the website content or structure. Overall, the website is safe, professional, and suitable for general audiences.

T

TRITON Funds s.r.o.

tfunds.cz

47

TRITON Funds s.r.o. operates as a specialized investment fund focusing on direct investments in ownership shares of small and medium-sized Czech and Slovak companies that are not publicly traded. The company emphasizes active management and value creation through quality leadership, capital injection, and operational energy. The website reflects a professional and consistent brand presence, targeting investors and business owners seeking growth or succession solutions. Technically, the site is built on WordPress with Elementor Pro, hosted likely by Wedos, and employs modern web technologies with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and business credible but would benefit from enhanced privacy and security disclosures.

E

Ecwid Inc

ecwid.com

63

Ecwid Inc operates a leading ecommerce platform that enables businesses to quickly launch online stores and sell across multiple channels without technical expertise. The platform offers comprehensive ecommerce features including inventory management, payments, shipping automation, and marketing tools. Ecwid is positioned as a global SaaS ecommerce solution with a strong brand presence and is a subsidiary of Lightspeed, a reputable parent company. Technically, the website is built on WordPress with modern technologies and CDN support, delivering excellent performance and mobile optimization. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism and trustworthiness with minor gaps in transparency regarding domain registration and direct contact information.

A

ASSOCIATION OF EUROPEAN ATTORNEYS

aeuropea.com

64

The ASSOCIATION OF EUROPEAN ATTORNEYS (AEA) operates as a large international network of lawyers with extensive global coverage, boasting offices in 159 countries and approximately 9,000 lawyers. The organization provides membership services, referrals, arbitration court functions, and organizes international congresses. The website is professionally designed using WordPress and WooCommerce, enhanced with modern plugins such as Breakdance and Complianz for GDPR compliance. The technical infrastructure supports fast performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though no explicit security policy or incident response information is published. WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy despite the professional appearance and contact information consistency. Overall, the website presents a credible legal association with room for improvement in transparency and security documentation.

P

PepiApp - Mobilní aplikace, vývoj mobilní aplikace pro Android a iOS

pepiapp.cz

60

PepiApp is a small technology service provider specializing in mobile application development for Android and iOS platforms, based in the Czech Republic. The website presents a professional image with a clear focus on their core services and target audience. The technical infrastructure leverages modern web technologies including Webflow CMS, Google Tag Manager for analytics, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and CSRF protection cookies in place, although some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is partially addressed through a detailed cookie consent mechanism, but the absence of a visible privacy policy and contact information limits full compliance assurance. Overall, the website is functional, well-designed, and trustworthy, but could benefit from enhanced transparency and security documentation.

Ambit Media a.s. operates a specialized media portal focused on the publication and subscription management of healthcare-related magazines and educational materials primarily targeting healthcare professionals and readers interested in medical topics. The company, founded in 2016 and based in the Czech Republic, offers subscription services, book sales, and educational events, positioning itself as a niche media publisher within the healthcare sector. The website reflects this focus with content primarily in Czech and includes partner links to related healthcare and medical publication sites. From a technical perspective, the website employs a modern tech stack including jQuery, Bootstrap, Google Fonts, and various UI and carousel libraries. It integrates Google Analytics and Google Tag Manager for user tracking and marketing insights. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. Hosting is managed through REG-ZONER, consistent with the domain registration data. Security posture is moderate; while HTTPS is implied and cookie consent mechanisms are in place, explicit security headers and detailed security policies are absent. No critical vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is basic but present, with a privacy policy, cookie banner, and terms of service clearly linked. Contact information is comprehensive, enhancing business credibility. Overall, the website presents a professional and trustworthy front for Ambit Media a.s., with a solid business model and consistent domain registration data. Strategic improvements in security headers, incident response transparency, and enhanced privacy compliance would further strengthen the site’s security and trustworthiness.

P

Pavelka s.r.o., advokátní kancelář

pavelkapartners.cz

48

Pavelka s.r.o. is a boutique Czech law firm founded in 2015 by Mgr. Jan Pavelka, LL.M., specializing in corporate law, private client services, family offices, and complex legal advisory. The firm holds a strong market position as a recognized boutique legal service provider with awards in 2018 and 2019. Their client base includes significant Czech business groups, family firms, and individual investors. The website demonstrates a professional digital presence built on WordPress, leveraging common web technologies such as jQuery and Google Analytics for user tracking. While the site is well-structured and content-rich, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS usage but missing security headers and vulnerability disclosure mechanisms. Contact information is comprehensive and clearly presented, enhancing business credibility.

B

Boehringer Ingelheim

boehringer-ingelheim.com

64

Boehringer Ingelheim is a large global pharmaceutical company focused on improving life for people and animals through innovative healthcare products and research. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site uses Drupal CMS with modern web technologies and good performance optimizations. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The missing WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the website's quality and trust signals. Overall, the site is professional, secure, and compliant with minor areas for improvement in transparency and WHOIS data availability.

W

World Health Organization

who.int

73

The World Health Organization (WHO) is a globally recognized United Nations agency dedicated to promoting health, ensuring safety, and serving vulnerable populations worldwide. The website serves as a comprehensive portal for health topics, emergencies, data, and organizational information, targeting a general global audience. WHO holds a strong market position as a leading international health authority with an enterprise-level digital presence. The site is well-branded, consistent, and professionally maintained, reflecting WHO's authoritative status. Technically, the website employs a modern technology stack including ASP.NET, Kendo UI, Google Fonts, FontAwesome, and integrates analytics tools such as Google Analytics and Microsoft Clarity with consent management. The site is mobile-optimized, accessible, and SEO-friendly, hosted likely on WHO or UN infrastructure with CDN support. Performance is moderate with good technical implementation. From a security perspective, the site enforces HTTPS, uses consent mechanisms for tracking, and avoids exposing sensitive data. However, explicit security policies, vulnerability disclosure, and privacy documentation are not found, indicating room for improvement in compliance and transparency. No critical vulnerabilities or suspicious domains were detected. Overall, the WHO website is a trustworthy, professional, and authoritative resource with excellent content quality and business credibility. Strategic recommendations include publishing explicit privacy and cookie policies, security policies, and vulnerability disclosure information to enhance compliance and user trust.

SYMMA spol. s r.o. is a well-established Czech company specializing in organizing national and international conferences, congresses, symposia, and related events primarily in the healthcare sector. With a history dating back to 1995 and a domain registered since 2000, the company offers comprehensive event management services including project planning, graphic design, printing, online registration, participant recruitment, venue rental, audiovisual support, catering, accommodation, and accounting. Their target audience includes institutions, professional associations, universities, companies, and individuals interested in professional healthcare events. Technically, the website uses Bootstrap 4, jQuery, FontAwesome, and Google Fonts, indicating a modern but basic tech stack. The site shows moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Hosting and domain registration are consistent with the company's long-standing presence. From a security perspective, the website lacks HTTPS enforcement and security headers, and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available. Contact information is clearly provided, but the absence of security best practices and compliance documentation represents a risk. Overall, the website is professional and trustworthy in terms of business credibility but requires significant improvements in security posture and privacy compliance to meet modern standards. Strategic recommendations include implementing HTTPS, adding security headers, publishing privacy and cookie policies, and enhancing mobile and accessibility features.

S

Site.pro

b1.lt

63

Site.pro is a Finnish technology company specializing in AI-powered website building solutions. Their platform offers a comprehensive suite of services including AI website creation, domain registration, email services, online stores, and collaboration tools. The company targets a broad audience ranging from individuals and small businesses to resellers and design studios, positioning itself as an accessible and versatile SaaS provider in the website building market. The website is professionally designed, supports multiple languages, and integrates modern web technologies to enhance user experience and functionality. Technically, Site.pro employs a modern tech stack including Google Tag Manager, Google Analytics, Bootstrap Material Design, and supports advanced login mechanisms such as social OAuth and WebAuthn biometric authentication, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses captchas on forms, and provides secure login options, though explicit security headers could be more visible and a dedicated security policy page is absent. Overall, the website demonstrates a strong security posture with room for improvement in transparency and incident response readiness. The domain WHOIS data is privacy protected, which is typical for SaaS companies, and no suspicious patterns were detected. The site is fully accessible without WAF or blocking mechanisms, supporting a positive risk profile. Strategic recommendations include enhancing security header implementation, publishing vulnerability disclosure policies, and improving accessibility compliance to further strengthen trust and compliance.

The website www.orlaf.cz serves as a specialized medical journal platform focused on otorhinolaryngology and phoniatrics, primarily targeting healthcare professionals in the Czech Republic. Operated by MeDitorial s.r.o., it provides access to journal articles, archives, and specialist content with controlled access via a specialist agreement form. The business model revolves around content provision and professional engagement within a niche healthcare segment. Technically, the site employs a modern JavaScript stack including jQuery, Google Tag Manager, and cookie consent tools, ensuring a responsive and user-friendly experience. The site is well-structured with SEO and accessibility considerations, though some improvements in security headers and explicit policy pages are recommended. Performance is moderate with good mobile optimization. Security posture is solid with HTTPS enforced and secure form handling, but lacks visible security headers and incident response information. The absence of WHOIS data is a notable concern, impacting domain trustworthiness, though the website content and structured data strongly indicate legitimacy. Cookie consent and privacy policy presence support GDPR compliance. Overall, the site is professional and trustworthy for its intended audience, with recommendations to enhance security transparency and domain registration clarity to further strengthen trust and compliance.

The website www.cs-gynekologie.cz serves as a professional medical journal platform focused on gynecology, targeting healthcare specialists primarily in the Czech Republic. Operated by MeDitorial s.r.o., it provides access to journal articles, archives, and current issues, with user authentication for professionals. The site demonstrates a solid market position within a niche healthcare media segment. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and cookie consent scripts, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement and secure login forms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a notable gap, reducing domain trustworthiness despite the professional presentation and content. Overall, the site is well-structured, compliant with GDPR basics, and trustworthy for its intended audience.

The website www.csnn.eu serves as a professional portal and medical journal for Czech and Slovak healthcare specialists, focusing on neurology and neurosurgery. Operated by MeDitorial s.r.o., it provides access to current and archived journal issues, expert articles, and specialist-only content. The site targets healthcare professionals authorized to prescribe or dispense medicinal products, as confirmed by the specialist agreement page. The business model centers on specialized content delivery and professional engagement within the healthcare sector in the Czech Republic and Slovakia. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and cookie consent frameworks, ensuring a responsive and user-friendly experience. The site is well-structured with SEO and accessibility considerations, though accessibility could be improved. HTTPS is enforced, and forms include CSRF tokens, indicating a good baseline security posture. However, explicit security headers and published security policies are absent. From a security and compliance perspective, the site demonstrates good practices such as HTTPS, cookie consent, and privacy policy presence, aligning with GDPR requirements. The WHOIS data is unavailable due to EURid privacy policies, which is typical for .eu domains and does not raise concerns. No vulnerabilities or malicious content were detected. The site lacks a vulnerability disclosure policy and incident response information, which could be improved to enhance trust. Overall, www.csnn.eu is a professionally maintained, secure, and compliant healthcare specialist portal with a clear business focus and good technical implementation. Strategic improvements in security transparency and accessibility would further strengthen its position and trustworthiness.

S

Spolek Hlas onkologických pacientů

hlaspacientu.cz

48

Hlaspacientu.cz is a Czech non-profit organization advocating for oncology patients and their families, aiming to improve quality of life despite illness. The website serves as a platform for information dissemination, patient support, and community engagement, positioning itself as a recognized voice in the Czech healthcare advocacy space. Technically, the site is built on WordPress with modern plugins and frameworks, hosted by WEDOS, and demonstrates good mobile optimization and moderate performance. Security posture is solid with HTTPS, security headers, and GDPR-compliant cookie consent, though lacks explicit published security policies or incident response contacts. Overall, the site is trustworthy, professional, and compliant with privacy regulations, with recommendations to enhance security transparency and accessibility.

M

Montonio Finance UAB

montonio.com

10

Montonio Finance UAB operates a comprehensive e-commerce payment and shipping platform targeting small and medium-sized businesses primarily in the Baltic region. The company offers integrated checkout solutions including payments, refunds, shipping, and payment links, supporting popular e-commerce platforms such as Shopify, WooCommerce, and Magento. Their market position is strengthened by over 7,000 business customers and a payment institution license issued by the Bank of Lithuania. Technically, the website is built on Webflow with modern marketing and analytics integrations like HubSpot, Google Tag Manager, and Intercom, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not published. The absence of WHOIS domain registration data reduces domain trustworthiness but does not detract from the professional presentation and business legitimacy. Overall, Montonio presents a secure, compliant, and user-friendly platform with room for improvement in transparency of security policies and domain registration clarity.

W

WWW.KOTVA.CZ, a.s.

mincer.cz

10

Mincer.cz is a specialized e-commerce retailer and contractual partner of the Czech National Bank (ČNB), offering a curated selection of gold and silver commemorative coins and numismatic accessories. The website targets numismatists, collectors, and organized numismatic societies, providing both retail sales and cooperative opportunities. The business operates primarily in the Czech Republic with a small company profile and a focused niche market position. Technically, the website is built on the Upgates e-commerce platform, leveraging modern analytics and marketing tools such as Google Analytics 4, Facebook Pixel, and Matomo, alongside live chat support. The site is well-optimized for mobile devices and demonstrates excellent design quality and user experience. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are not publicly disclosed. WHOIS data is unavailable, which slightly impacts trust and business credibility scores. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable platform for numismatic product sales.

C

Care Comm s.r.o.

florence.cz

52

Florence.cz is a Czech professional healthcare journal focused on nursing and related medical professions. Operated by Care Comm s.r.o., it provides current news, expert articles, educational resources, and job listings for healthcare professionals. The website is well-structured, content-rich, and targets healthcare practitioners primarily in the Czech Republic. Technically, the site uses a mix of JavaScript libraries including jQuery, Google Fonts, and integrates third-party advertising and tracking services such as Facebook Pixel and Google Analytics. The site is served over HTTPS with cookie consent mechanisms in place, reflecting good privacy compliance. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency. Security headers are not visibly implemented, and no explicit security or incident response policies are published. Overall, the site presents a professional and trustworthy front for its niche audience but would benefit from enhanced security practices and clearer domain registration information.

AMCA, spol. s r. o. operates the website cslr.cz, serving as the online presence for the Czech Society for Wound Healing (ČSLR). The organization focuses on providing professional resources, organizing congresses, and offering educational courses related to wound care. The website targets healthcare professionals and members of the wound care community primarily in the Czech Republic. The business model is that of a professional society supported by memberships, events, and partnerships. The domain has been active since 2003, indicating a well-established presence in the healthcare sector. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and cookie consent mechanisms compliant with GDPR. The site is mobile optimized and uses structured data (JSON-LD) to enhance search engine understanding. Performance is moderate with good SEO and accessibility basics, though some improvements could be made in accessibility and security policy disclosures. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. Cookie consent is implemented properly, but there is no explicit security policy or incident response information published. The WHOIS data is consistent with the website content and business claims, supporting legitimacy. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website presents a professional and trustworthy image with good content quality and technical implementation. Recommendations include publishing a security policy, adding incident response contacts, and improving accessibility features to enhance compliance and user experience further.

G

garcy.studio

garcy.studio

67

Garcy.studio is a professional design studio specializing in branding, website design, and digital product development including apps and SaaS. The company positions itself as a trusted partner for businesses worldwide, emphasizing quality, client satisfaction, and delivering joyful, effective design solutions. The website reflects a modern, well-crafted digital presence with multimedia content and clear service offerings. Technically, the site leverages Webflow CMS, integrates Google Fonts, Google reCAPTCHA, Smartlook analytics, and Vimeo for video content, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and bot protection mechanisms in place, though security headers and incident response policies could be enhanced. Privacy compliance is good, with a comprehensive privacy policy and terms of service available. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

P

Packung s.r.o.

boxollo.com

10

BOXOLLO.COM is a logistics optimization platform operated by Packung s.r.o., a Czech Republic-based company specializing in packaging size optimization and logistics data-driven decision making. The website offers a SaaS model with multiple subscription plans and a warehouse picker application, targeting logistics companies and e-commerce businesses. The platform is recognized by independent experts and includes client testimonials, indicating a niche but credible market position. Technically, the site is built on WordPress with Elementor and Yoast SEO, providing a modern and responsive user experience. Security posture is adequate with HTTPS and consent management but lacks advanced security headers and incident response documentation. WHOIS data is missing, which raises concerns about domain registration legitimacy, though the website content and company information appear consistent and professional. Overall, the site demonstrates good business credibility and privacy compliance but should address domain registration transparency and enhance security policies.

SUPPOO is a Czech Republic based B2B SaaS platform developed by Customize.cz, s.r.o., specializing in centralized management of customer reviews and ratings across multiple platforms such as Google, Seznam, Heureka, and Zboží.cz. The platform leverages AI to generate response suggestions, offers detailed analytics, team management features, and notification services to help businesses improve their online reputation efficiently. The website is professionally designed, mobile-optimized, and provides clear contact channels including a contact form with reCAPTCHA and company email and address details. Structured data and testimonials enhance trust and SEO. Technically, the site uses modern web technologies including Google Fonts, jQuery, and Google Tag Manager for analytics. It is hosted likely on Czech hosting providers with DNS servers ns.web4u.cz and ns2.web4u.cz. Performance is moderate with good mobile responsiveness and SEO optimization. Security posture is adequate with HTTPS enforced and cookie consent mechanisms, but lacks advanced security headers and DNSSEC is not enabled. Security-wise, no critical vulnerabilities or malware indicators were found. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security maturity. The domain WHOIS data is consistent and legitimate, supporting the business credibility. Overall, SUPPOO presents a trustworthy, professional SaaS offering with solid technical implementation and business credibility, though it would benefit from enhanced security policies and DNS security improvements.

У

Украинское независимое информационное агентство УНИАН

unian.net

61

The website www.unian.net represents the Ukrainian Independent Information Agency UNIAN, a major news media organization founded in 1993. It provides comprehensive news coverage including politics, economics, sports, weather, and more, targeting a general audience primarily in Ukraine and Russian-speaking users. The site is well-structured with extensive content, multiple language versions, and active social media presence, reflecting a mature digital media business model. Technically, the site employs modern analytics and advertising technologies, including Google Tag Manager, Matomo, and Gemius, and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS and some security headers, though explicit security policies and vulnerability disclosure mechanisms are absent. WHOIS data is unavailable, which slightly reduces transparency but does not detract from the site's legitimacy given the strong business and content indicators. Overall, the site is professional, content-rich, and trustworthy, serving as a key information source in Ukraine.

C

Czech Health Technology Institute, z. s.

czechhealth.cz

45

Czech Health Technology Institute (CHTI) is a Czech non-profit organization founded in 2023, focused on identifying and supporting innovative healthcare technology solutions to improve healthcare delivery and quality. The organization collaborates with government ministries, academic institutions, and private sector partners to implement humanitarian programs, complex healthcare solutions, centers of excellence, and educational initiatives, particularly supporting healthcare development in Ukraine. The website reflects a professional and consistent brand presence with clear communication of its mission, team, partners, and contact information. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI libraries, ensuring good mobile optimization and user experience. The site includes a comprehensive cookie consent mechanism aligned with GDPR requirements, though it lacks a dedicated privacy policy and terms of service pages, which are important for full compliance. Analytics and marketing tools such as Google Analytics, Google Tag Manager, Incomaker, and Facebook Pixel are used with user consent. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and published security policies or incident response information. No vulnerabilities or suspicious content were detected. WHOIS data is consistent with the organization's claims, indicating legitimacy. Overall, the site scores well on professionalism and business credibility but should improve privacy and security documentation. Strategic recommendations include publishing a privacy policy and terms of service, enhancing security headers, and providing incident response and vulnerability disclosure information to strengthen trust and compliance.

The website at saugierdve.lt/login serves as a login portal for GRIFS AG, a company presumably operating in Lithuania given the domain and registrar information. The site is primarily functional with a focus on user authentication, featuring branding elements but lacking detailed business descriptions or public-facing content. The technical infrastructure includes standard web technologies such as Google Analytics and Google Tag Manager for tracking, Google Fonts for typography, and Font Awesome for icons. The domain is registered with a Lithuanian registrar, UAB "Interneto vizija", since 2016, indicating a stable and legitimate presence. From a security perspective, the site uses HTTPS, but no explicit security headers were detected in the provided data. There is no visible privacy policy, cookie policy, or terms of service on the login page, which raises compliance concerns, especially regarding GDPR. No contact information or incident response channels are exposed, limiting user support and security communication. The site does not appear to be behind a WAF or security challenge, allowing full content access. Overall, the website demonstrates a basic level of technical implementation suitable for a corporate login portal but lacks comprehensive privacy and security disclosures. The absence of contact and policy information may impact user trust and regulatory compliance. Strategic improvements in these areas would enhance the site's security posture and business credibility.

Vedle Tebe is a Czech website currently under construction, representing a home care alliance as indicated by the logo and minimal text content. The domain was registered in 2018 and is hosted on EuroVPS infrastructure, using WordPress with a maintenance plugin to display the under construction page. The website lacks substantive content, contact information, privacy policies, and security features, limiting its digital maturity and trustworthiness. No advanced technologies or analytics are detected, and no security headers or compliance indicators are present. Overall, the site is in an early development stage with minimal risk but also minimal business credibility and user engagement potential.

Stolařství Šputa s.r.o. is a well-established Czech woodworking and construction company specializing in custom furniture, interior and exterior woodwork, and wooden buildings. Founded in 1999 and operating primarily in Ostrava, the company offers a broad range of wood-related manufacturing services including stairs, doors, furniture, pergolas, and dřevostavby (wooden houses). The website reflects a mature business with a clear market position serving both individual and commercial clients. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Analytics, and Google Maps API, hosted likely by Active24, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, GDPR compliance, cookie consent, and secure forms, though some security headers and incident response contacts could be improved. Overall, the site is professional, trustworthy, and compliant with relevant privacy regulations.

E

Euroregion Silesia - CZ

euroregion-silesia.cz

48

Euroregion Silesia - CZ operates as a regional cross-border cooperation entity focused on fostering sustainable development, tourism, and institutional collaboration between Czech and Polish border regions. The organization facilitates EU-funded projects, organizes training and events, and promotes regional tourism products such as the Silesianka trail. The website reflects a well-established entity with a domain registered since 2002, indicating long-term presence and legitimacy. The content is primarily in Czech and targets local municipalities, institutions, and potential project applicants. Technically, the website uses modern web technologies including Bootstrap, jQuery, Font Awesome, and Google Analytics, hosted by Active24. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks a dedicated privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and serves its audience effectively.

Stavby Complet s.r.o. is a Czech-based small enterprise specializing in chimney construction, maintenance, and related services, including manufacturing their own chimney system. The company has been established since 2011 and positions itself as a quality-focused specialist with a broad service portfolio targeting both industrial and residential customers. The website reflects a professional and consistent brand image with comprehensive service descriptions and customer references. Technically, the site uses modern web technologies such as Bootstrap and jQuery, integrates Google Analytics and Ads for marketing, and implements GDPR-compliant privacy and cookie policies. Security posture is adequate with secure forms and consent mechanisms, though some security headers and incident response details are missing. Overall, the website is well-structured, mobile-optimized, and trustworthy, supporting the company's market position as a reliable local specialist.

E

EPUAP 2026

epuap2026.org

46

EPUAP 2026 is a specialized healthcare event website promoting the 25th Annual Meeting of the European Pressure Ulcer Advisory Panel scheduled in Helsinki, Finland. The site targets healthcare professionals and researchers interested in pressure ulcers, providing event details and registration information. The business model centers on conference organization and information dissemination within the healthcare sector. The website is built on WordPress using Elementor and common plugins, reflecting a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and explicit security policies. Privacy compliance is limited, with no privacy or terms of service pages detected, though a cookie policy with consent is present. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security measures.

T

Taneční škola ASTRA Praha

astra-praha.cz

39

Taneční škola ASTRA Praha is a local dance school offering a wide range of dance courses and events targeting adults, youth, and children in Prague and surrounding areas. Their services include standard and Latin dance courses, competitive dance, summer dance schools, seminars, dance clubs, wedding dance lessons, and dance performances. The website is professionally designed with clear navigation and good content quality, supporting multiple dance-related offerings and event announcements. Technically, the website employs common web technologies including Google Analytics, Google Tag Manager, and Plausible Analytics for tracking, along with Google Fonts for typography. The site is mobile-optimized and uses HTTPS, though no explicit security headers were detected. The site lacks a cookie consent mechanism despite having a GDPR-compliant privacy policy, indicating partial privacy compliance. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data. However, the absence of WHOIS data limits domain trust assessment, and no incident response or security policy information is provided. The site does not appear to be behind a WAF or security challenge, and content is fully accessible. Overall, the security posture is moderate but could be improved with better header configurations and privacy mechanisms. The overall risk is low given the nature of the business and content, but the lack of WHOIS transparency and cookie consent are notable gaps. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response contacts, and enhancing accessibility features to improve trust and compliance.

Telšių žinios is a Lithuanian regional news media outlet focused on providing local news, cultural content, and community information for the Telšiai county area. Established in 2003, it operates a professional WordPress-based website featuring diverse news categories, video content, and subscription services. The site targets Lithuanian-speaking residents and stakeholders interested in regional affairs. Technically, the website employs a modern CMS with SEO and accessibility plugins, Google Fonts, and Google Analytics for tracking. Advertising is managed primarily through Google Ad Manager and DoubleClick. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and visible privacy or cookie policies, indicating room for compliance improvement. No WAF or blocking mechanisms interfere with content accessibility, and the domain registration aligns well with the business profile, supporting legitimacy. Overall, the website is professionally designed, well-structured, and trustworthy, though privacy compliance needs enhancement.

Z

zahojime.cz | I malá rána může být velkou komplikací! Informace o prevenci a léčbě nehojících se ran.

zahojime.cz

32

The website zahojime.cz is an informational platform focused on wound care, providing educational content about the prevention and treatment of non-healing wounds. It targets a general audience interested in healthcare and wound management. The site is built on WordPress using the Divi theme and incorporates Google Analytics for visitor tracking. While the technical infrastructure is modern and the site is accessible with good mobile optimization, there is a lack of comprehensive privacy and cookie policies, as well as absence of contact information, which impacts user trust and compliance. The security posture is moderate with HTTPS usage but lacks visible security headers and incident response details. The domain WHOIS data is unavailable, raising concerns about domain legitimacy and trustworthiness.

V

Všeobecná zdravotní pojišťovna ČR (VZP ČR)

vzpoura-urazum.cz

43

The website 'VZPoura úrazům' is a project operated by the Všeobecná zdravotní pojišťovna ČR (VZP ČR), focusing on injury prevention among children and youth through educational meetings and awareness campaigns. It holds a reputable position as a long-standing initiative within the Czech healthcare and education sectors, targeting schools and young audiences. The project leverages official branding and maintains active social media channels to engage its audience effectively. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various UI libraries, ensuring a responsive and user-friendly experience. The site is secured with HTTPS and integrates Google reCAPTCHA and cookie consent mechanisms, reflecting a good level of digital maturity. However, some security headers are missing, and there is no visible CMS or hosting provider information. From a security perspective, the site demonstrates solid practices such as encrypted connections and bot protection, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain reduces trustworthiness, although the website content and official contact details strongly indicate legitimacy. Overall, the website is professional, content-rich, and well-targeted, with moderate technical and security maturity. Strategic improvements in security headers, transparency policies, and domain registration data would enhance trust and compliance.

T

tovi

tovi.cz

34

tovi.cz is a Czech-based small technology company specializing in custom web and mobile application development, web design, process automation, and digital marketing services such as SEO and PPC. Founded in 2017, the company presents a professional portfolio of completed projects and transparent pricing examples, targeting businesses seeking tailored digital solutions. The website is well-structured, mobile-optimized, and uses modern web technologies including Google Fonts, Font Awesome, and jQuery, with analytics integrated via Google Analytics and Tag Manager. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies, which is a notable gap given GDPR requirements. Contact information is clearly provided with email, phone, and a contact form, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy and security disclosures.

E

Erudyt.cz

erudyt.cz

42

Erudyt.cz is a Ukrainian Saturday school based in Prague, Czech Republic, providing Ukrainian education to children living abroad. The school offers education from grades 1 to 11 with the possibility of obtaining an official Ukrainian state certificate. It has been operating for over 10 years and collaborates with the International Ukrainian School in Kyiv. The website is built on WordPress, uses common web technologies, and is hosted on servers associated with fcomet.com. Contact information including phone numbers, email, and physical address is clearly provided. However, the site lacks privacy and cookie policies, security headers, and incident response information, which are areas for improvement. The content is safe, educational, and culturally focused, targeting Ukrainian families in the Czech Republic.

Asociace Sommelierů ČR is a Czech Republic-based professional association focused on wine education, sommelier certification, and promotion of wine culture. Founded in 1997, it holds a reputable position as a member of the International Sommelier Association and offers accredited courses, seminars, and organizes competitions and events. The website reflects a mature, professional organization targeting wine professionals, students, and enthusiasts. Technically, the site is built on WordPress with modern plugins and good mobile optimization. Security posture is solid with HTTPS and cookie consent, though lacking advanced security headers and published policies. WHOIS data is unavailable, which slightly reduces domain trust but the site content and structure support legitimacy. Overall, the site is well-maintained, content-rich, and trustworthy for its audience.

A

Agentura Osma a.s.

osma.cz

43

Agentura Osma a.s. is a well-established Czech family-owned manufacturer specializing in the design and production of self-adhesive labels. With a history dating back to 1991 and a domain registered since 2000, the company serves a broad European market including France, producing over one million labels weekly. Their business model focuses on combining unique design with advanced printing technologies to support brand image development for clients in food, cosmetics, beverages, and related sectors. The website reflects a mature digital presence with modern technologies, good mobile optimization, and comprehensive content including customer testimonials and certifications. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and formal policies are absent. Overall, the company demonstrates strong business credibility and technical maturity.