Security Directory

A

Active Radio a.s.

youradio.cz

60

Youradio.cz is a Czech online music streaming and podcast platform operated by Active Radio a.s. It offers users the ability to listen to curated music moods, create personalized playlists, and access podcasts via web and mobile applications. The service targets Czech-speaking users seeking free and premium music streaming experiences with social and community features. Technically, the website employs modern JavaScript libraries, integrates multiple analytics and advertising platforms, and supports mobile responsiveness. Privacy and cookie policies are clearly presented with consent management mechanisms, reflecting GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. The absence of WHOIS data limits domain trust verification but the website content and branding indicate a legitimate media service. Overall, Youradio.cz presents a professional, user-friendly platform with moderate technical maturity and good privacy practices.

G

Geis SK s.r.o.

geis-group.sk

49

Geis SK s.r.o. is a well-established logistics and transportation company operating primarily in Slovakia with a strong international presence through its parent Geis Group. The company offers a comprehensive range of logistics services including pallet transport, full truckload transport, warehousing, air and sea freight, and packaging solutions. The website reflects a mature business with over 75 years of experience, targeting business customers requiring reliable logistics solutions. Technically, the website uses a modern tech stack including jQuery, Google Tag Manager, Hotjar, and a web chat system, hosted on a German hosting provider. The site is mobile optimized and provides good user experience and navigation. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and publicly available incident response or vulnerability disclosure policies. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. The site is free from adult or questionable content and complies well with GDPR requirements.

R

Royal Spa, a.s.

diana-losiny.cz

48

The website www.diana-losiny.cz represents Wellness hotel DIANA Velké Losiny, a medium-sized hospitality business operating in the Czech Republic's Jeseníky region. It offers accommodation, wellness services, therapeutic procedures, sports facilities, and family-friendly amenities. The hotel is part of the Royal Spa group, a recognized spa and wellness operator in the Czech market. The site is professionally designed with good content quality, clear navigation, and mobile optimization, targeting tourists and wellness seekers. The business model focuses on hospitality and wellness services with additional conference facilities and gourmet cuisine offerings. Technically, the website uses a custom CMS platform with common JavaScript libraries such as jQuery, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is served over HTTPS with good SSL configuration, though security headers are not explicitly detected. Cookie consent mechanisms and privacy policies are implemented, indicating a good level of privacy compliance. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site shows good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies and incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces domain registration trustworthiness, but the strong brand association with Royal Spa and consistent business information support legitimacy. Overall, the site presents a low risk but would benefit from enhanced security headers and domain registration transparency. Strategic recommendations include implementing security headers, publishing a security policy and vulnerability disclosure, and verifying domain registration details to improve trust and compliance.

K

Králický Sněžník, z.ú.

kralickysneznik.net

43

Králický Sněžník, z.ú. operates a comprehensive tourism promotion website for the Králický Sněžník region in the Czech Republic. The site provides detailed information on local attractions, accommodation options, events, and live weather and webcam feeds, targeting tourists and visitors interested in outdoor activities and regional culture. The business model focuses on destination marketing and supporting local hospitality services. Technically, the website employs modern JavaScript libraries such as jQuery, Leaflet.js for interactive maps, and Google Tag Manager for analytics and tracking, indicating a moderate level of digital maturity. The site is mobile-optimized and features a cookie consent mechanism aligned with GDPR requirements. Security-wise, the website uses HTTPS with good SSL configuration and implements cookie consent, but lacks explicit security headers and incident response contact details, which are areas for improvement. The absence of WHOIS registrant data introduces some uncertainty regarding domain registration legitimacy, though the website content and contact information suggest a legitimate regional tourism entity. Overall, the website presents a professional and trustworthy front for regional tourism promotion with moderate technical and security maturity.

G

Gmina Baborów

baborow.pl

58

Gmina Baborów operates an official municipal website serving the local community in Poland, providing public announcements, event information, and access to government services. The site is well-structured, uses modern web technologies including Bootstrap and jQuery, and integrates Google Analytics for visitor insights. The website demonstrates good digital maturity with mobile optimization and accessibility features. Security posture is adequate with HTTPS and CSRF protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is limited by the absence of a dedicated privacy policy page, but cookie consent is implemented. Overall, the domain registration data aligns well with the website's official nature, indicating high legitimacy and trustworthiness.

O

Obec Červená Voda

cervenavoda.cz

44

Obec Červená Voda operates as the official municipal government website for the town of Červená Voda in the Czech Republic. It provides residents and visitors with essential information about local government services, community news, tourism, and events. The website serves as a central hub for municipal communication and public service announcements, positioning itself as a trusted local government resource. The business model is focused on public service rather than commercial activity, targeting local citizens and tourists. Technically, the website employs a custom CMS with a modern JavaScript stack including jQuery, Swiper.js, and various UI libraries. It integrates Google Analytics and Facebook SDK for analytics and social media engagement. The site is mobile optimized and uses HTTPS with a valid SSL certificate, ensuring secure data transmission. However, there is room for improvement in security headers and privacy compliance features. From a security perspective, the site demonstrates a moderate security posture with HTTPS enabled and no visible sensitive data exposure. The absence of security headers and explicit privacy and cookie policies are notable gaps. No vulnerabilities or suspicious activities were detected in the content. The WHOIS data is unavailable due to privacy protection, which is common for Czech domains and does not detract from the site's legitimacy. Overall, the website is a well-maintained municipal portal with good content quality and user experience. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing incident response contacts to improve trust and compliance. These steps will strengthen the site's security posture and align it better with GDPR and other regulatory requirements.

W

Web Commerce GmbH

konradsblatt.de

47

Konradsblatt is a German regional Catholic weekly newspaper serving the Archdiocese of Freiburg. The website provides news, commentary, subscription services, and an online shop for related publications. The business is positioned as a trusted religious media outlet with a clear target audience in the Catholic community. The website is professionally designed, mobile-optimized, and uses Edith CMS as its content management system. It integrates Matomo analytics with some privacy considerations. Security posture is good with HTTPS and basic security headers, but lacks explicit privacy and cookie policies as well as incident response information. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

H

HRADECKÁ KULTURNÍ A VZDĚLÁVACÍ SPOLEČNOST s.r.o.

adalbertinum.cz

53

HRADECKÁ KULTURNÍ A VZDĚLÁVACÍ SPOLEČNOST s.r.o. operates as a regional cultural and educational organization in Hradec Králové, Czech Republic. The website serves as a comprehensive platform for cultural events, educational courses, venue rentals, and ticket sales, targeting the general public including families and youth. Supported by local government entities, it holds a stable market position as a trusted regional service provider. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google Analytics, ensuring a good user experience with mobile responsiveness and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern for domain transparency but does not detract from the professional presentation and trust signals on the site. Overall, the site is well-maintained, GDPR compliant, and provides valuable cultural services to its community.

F

Freiburger Orientierungsjahr

freiburger-orientierungsjahr.de

45

The Freiburger Orientierungsjahr website represents a small, regionally focused educational and faith-based orientation year program affiliated with the Archdiocese of Freiburg. It offers young adults a structured year for personal development, study and career orientation, and faith strengthening. The website is professionally designed with clear navigation and consistent branding, targeting primarily German-speaking youth seeking guidance after high school. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, hosted on professional infrastructure with HTTPS and cookie consent mechanisms in place. Security posture is solid with no critical vulnerabilities detected, though some security best practices like security headers and incident response policies could be improved. Overall, the site is trustworthy, GDPR compliant, and safe for general audiences.

A

as4u.cz, s.r.o.

cz-mesta.eu

60

The website www.cz-mesta.eu serves as an online encyclopedia dedicated to nearly 1400 towns and settlements in the Czech Republic, focusing on their urbanistic and historical development. It is a niche cultural and historical resource published in collaboration with the Sdružení historických sídel Čech, Moravy a Slezska and managed by as4u.cz, s.r.o. The site offers rich content including maps, photographs, and detailed descriptions, targeting general audiences interested in Czech urban history. The business model is informational, providing free access under a Creative Commons license, positioning itself as a trusted cultural reference within its domain. Technically, the site uses a custom CMS named Public4u, with frontend technologies including jQuery, jQuery UI, Leaflet.js for maps, and Swiper.js for sliders. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. However, the site lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site uses HTTPS but does not expose security headers or incident response information. No vulnerabilities or sensitive data exposures were found in the content. The domain WHOIS data is privacy protected as per EURid policy, which is reasonable for this type of informational site. Overall, the security posture is moderate but could be improved by adding security headers, privacy notices, and vulnerability disclosure mechanisms. The overall risk assessment is low, with the main recommendations focusing on enhancing privacy compliance and security best practices to improve trust and regulatory adherence. The site is professionally designed and trustworthy for its intended audience, with no signs of malicious or adult content.

The website www.mladifotografujipamatky.cz is a platform dedicated to a youth photography contest focused on capturing historical monuments, organized by the Czech non-profit association Sdružení historických sídel Čech, Moravy a Slezska, z.s. It serves a niche cultural heritage audience primarily within the Czech Republic, providing contest information, galleries, and event updates. The site is well-branded and consistent with its mission, targeting young photographers and cultural enthusiasts. Technically, the site uses the Public4u CMS platform, jQuery libraries, and integrates Mapy.cz APIs for mapping features. The website is moderately optimized for performance and mobile devices, with a clear navigation structure and good content quality. However, accessibility and SEO optimizations are basic and could be improved. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating gaps in compliance and security best practices. No analytics or tracking scripts were detected, suggesting minimal user tracking. WHOIS data is unavailable, likely due to registry privacy policies, which limits domain trust analysis but the site’s content and contact information support legitimacy. Overall, the website is functional and professional for its purpose but would benefit from enhanced security measures, privacy compliance, and technical improvements to increase trust and user experience.

The website www.historickemestoroku.cz represents the Sdružení historických sídel Čech, Moravy a Slezska, a non-profit association dedicated to promoting historic towns in the Czech Republic through competitions and cultural heritage programs. The site serves as an information hub for the 'Historic Town of the Year' competition, providing news, event details, and partner information. The target audience includes municipalities, cultural heritage professionals, and the general public interested in historic preservation. Technically, the website is built on the Public4u CMS platform and uses legacy but stable technologies such as jQuery and Mapy.cz API for mapping. The site is mobile-optimized with a moderate performance profile and basic accessibility features. SEO is basic but functional, with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data reduces transparency and trustworthiness somewhat, but the presence of official registration details and partner logos supports legitimacy. Overall, the website is a well-maintained cultural heritage portal with good content quality and business credibility but could improve in privacy compliance and security best practices. The domain WHOIS data absence is a notable concern that should be addressed to enhance trust.

The website www.soutezpamatkaroku.cz represents a non-profit organization, Sdružení historických sídel Čech, Moravy a Slezska, z.s., focused on promoting cultural heritage preservation through the 'Památka roku' competition. It serves a niche audience including historians, municipalities, and cultural heritage professionals in the Czech Republic. The site provides competition information, news updates, and resources for journalists, positioning itself as a reputable entity in the cultural heritage sector. Technically, the website uses a proprietary CMS called Public4u, along with jQuery and Mapy.cz APIs for interactive maps. The site is mobile optimized with good navigation and content structure, though it relies on somewhat dated JavaScript libraries. Performance is moderate, and SEO practices are adequately implemented. However, there is room for improvement in accessibility and modern security headers. From a security perspective, the site enforces HTTPS and does not expose sensitive data in its HTML. However, it lacks visible security headers and privacy/cookie policies, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain is a notable concern, reducing the ability to verify domain legitimacy fully. No signs of WAF or blocking mechanisms were detected, and the site appears safe with no adult or questionable content. Overall, the website is a credible and professional platform for its intended purpose but would benefit from enhanced privacy compliance, improved security headers, and verification of domain registration details to strengthen trust and security posture.

The website www.ehd.cz serves as the official platform for the European Heritage Days (Dny evropského dědictví) in the Czech Republic. It provides event listings, heritage site registrations, and promotes a mobile application to facilitate user engagement. The site targets a general audience interested in cultural heritage and related events, positioning itself as a niche cultural event promoter within the government or non-profit sector. The business appears to be operated by as4u.cz, s.r.o., a small Czech company specializing in digital solutions. Technically, the website employs a CMS named Public4u and uses common JavaScript libraries such as jQuery and Leaflet.js for interactive maps. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site lacks visible security headers and privacy compliance mechanisms such as cookie consent banners or detailed privacy policies. The absence of WHOIS data for the domain reduces trustworthiness, although the website content and branding appear professional and legitimate. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website is functional and serves its cultural informational purpose well but should enhance its security posture and privacy compliance to improve trust and meet regulatory requirements.

H

Hračkobraní – Festival hračky z přírodního materiálu

hrackobrani.cz

37

The website hrackobrani.cz represents a niche festival focused on toys made from natural materials, held at a castle in Kamenice nad Lipou, Czech Republic. It targets families and visitors interested in traditional and natural toys, organizing an annual event with ticket sales facilitated through an external platform (GoOut). The site is built on WordPress with common JavaScript libraries and plugins, providing a moderate level of technical sophistication but lacking advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. The absence of WHOIS data and contact information reduces trust and business credibility. Overall, the site is functional and content-rich for its purpose but requires improvements in privacy compliance, security best practices, and transparency to enhance trustworthiness and user confidence.

Global Energy Services, s.r.o. is a Slovak-based company specializing in the operation, maintenance, and servicing of renewable energy installations including photovoltaic parks, wind farms, and biogas stations. As part of the WEON Group, it benefits from a broader ecosystem focused on renewable energy project development. The website presents detailed references to multiple renewable energy projects, demonstrating operational experience and a solid market presence in Slovakia. Technically, the website uses legacy JavaScript libraries and a basic responsive framework, with moderate performance and limited SEO and accessibility features. Security posture is moderate, with DNSSEC enabled but lacking modern security headers and using outdated libraries. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in security, privacy compliance, and technical modernization would enhance trust and resilience.

U

UV GROUP s.r.o.

topstavebne.sk

48

TOP STAVEBNÉ, operated by UV GROUP s.r.o., is a Slovak media platform specializing in construction materials, services, and technologies. The website serves professionals and enthusiasts in the construction and architecture sectors by providing articles, tips, inspirations, and a magazine subscription service. The platform maintains a solid market position as a regional media brand with a consistent and professional online presence. Technically, the website employs a custom CMS with common libraries such as jQuery, Bootstrap, WOW.js, and Google Analytics, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS, Google reCAPTCHA for forms, and a cookie consent mechanism, but lacks advanced security headers and a published security policy. Overall, the site is trustworthy, GDPR compliant, and well-maintained, with clear contact information and partner affiliations.

E

Erzbistum Freiburg

fortbildung-ebfr.de

43

The website www.fortbildung-ebfr.de serves as the official platform for pastoral education and training within the Archdiocese of Freiburg, Germany. It offers a range of educational services including workshops, coaching, supervision, and online learning targeted at clergy, pastoral workers, educators, and volunteers. The site reflects a well-structured and consistent brand aligned with its non-profit religious mission. Technically, the site is built on Edith CMS, leveraging common web technologies such as jQuery, Bootstrap, and Matomo analytics. Hosting and DNS infrastructure are consistent with the content provider, indicating a stable technical foundation. Security posture is adequate with HTTPS enabled and some privacy-aware analytics configurations; however, the absence of explicit privacy and cookie policies and missing security headers represent compliance and security gaps. Overall, the site is safe, professional, and trustworthy but would benefit from enhanced privacy compliance and security best practices.

W

Web Commerce GmbH

konradsblatt-online.de

47

Konradsblatt is a regional weekly newspaper serving the Catholic community of the Freiburg Archdiocese in Germany. It offers news, commentary, and religious content through its website, e-paper subscriptions, and an online shop. The website is professionally designed with clear navigation and targets readers interested in church-related news and events. The business operates in the media and non-profit sectors, leveraging digital platforms to extend its reach. Technically, the website uses Edith CMS as its content management system, with frontend technologies including jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics with cookie disabling features to track user interactions while respecting privacy preferences. The site is hosted with UI-DNS name servers and uses HTTPS, ensuring secure communications. Mobile optimization and SEO practices are well implemented, though accessibility could be improved. From a security perspective, the website enforces HTTPS and uses some security headers but lacks comprehensive security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy or cookie policy pages found, though a cookie consent mechanism is present. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. Strategic improvements in privacy disclosures, security headers, and incident response transparency would enhance its security posture and compliance standing.

E

Estreházy Galanta s.r.o.

2family.eu

45

The website 2family.eu is a professionally designed platform promoting cultural and historical tourism centered on the Esterházy and Forgách noble families' heritage in Slovakia and Hungary. It targets tourists and history enthusiasts by offering an interactive mobile application, information about unique historical sites, and accommodation recommendations. The business operates in the hospitality and real estate sectors with a niche focus on regional cultural tourism. The company behind the site is Estreházy Galanta s.r.o., a small Slovak entity. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Swiper, and other UI libraries, hosted by WebSupport s.r.o., a Slovak hosting provider. The site is mobile-optimized with good navigation and content quality, though SEO and accessibility features are basic. No CMS is explicitly detected. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and formal security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; a GDPR page exists but no cookie consent mechanism is implemented. Contact information is clearly provided, enhancing business credibility. Overall, the site is safe, trustworthy, and well-suited for its target audience. Recommendations include implementing cookie consent, adding security headers, and publishing security and incident response policies to improve compliance and security posture.

S

Sdružení historických sídel Čech, Moravy a Slezska, z.s.

historickasidla.cz

57

Sdružení historických sídel Čech, Moravy a Slezska (SHS ČMS) is a well-established Czech non-profit organization founded in 1990, dedicated to preserving and promoting historical municipalities and cultural heritage. The website serves as an information hub for members and the public, offering event calendars, news, competitions, and resources related to heritage preservation. The organization maintains active engagement through social media and partner sites, reinforcing its position in the cultural heritage sector. Technically, the website uses a CMS called Public4u, integrates jQuery libraries, Google Tag Manager for analytics, and Mapy.cz API for mapping functionalities. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks advanced security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS data reduces domain transparency and trustworthiness, but the website content and contact information appear legitimate and professional. Overall, the website is a reliable and professional platform for its niche audience, with moderate technical maturity and a good security baseline. Improvements in security headers, incident response transparency, and domain registration disclosure would enhance trust and compliance.

E

Erzdiözese Freiburg

ebfr.de

44

The Erzdiözese Freiburg website serves as the official digital presence of one of Germany's largest Catholic archdioceses, providing extensive information on faith, pastoral care, education, social services, and community engagement. The site targets a broad audience including parishioners, families, youth, and church staff within the Freiburg region. It offers structured navigation and a variety of resources reflecting its role as a major religious institution. Technically, the website is built on Edith CMS, leveraging modern JavaScript libraries like jQuery and AblePlayer, and uses Matomo for analytics with privacy-conscious configurations. Hosting and content delivery are managed via w-commerce.de and related domains. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the site is professional, trustworthy, and well-branded, but could improve transparency and security practices.

W

Web Commerce GmbH

kath-musterhausen.de

47

The website www.kath-musterhausen.de represents SESAM, a web platform service designed for church institutions within the Erzdiözese Freiburg. It is developed and hosted by Web Commerce GmbH, providing a comprehensive web-building toolkit including event management, news, forms, newsletters, and room and duty scheduling. The site targets church organizations seeking a versatile and supported online presence. Technically, the site uses Edith CMS, jQuery, and Matomo analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS and some security headers, though cookie consent mechanisms and explicit security policies are lacking. Overall, the site is professional, trustworthy, and well-aligned with its niche audience.

5

50Hertz Transmission GmbH

50hertz.com

63

50Hertz Transmission GmbH operates as a leading transmission system operator in Germany, focusing on integrating renewable energy sources into the power grid and ensuring reliable electricity supply to approximately 18 million people in East Germany and Hamburg. The company maintains a professional and well-structured website that serves multiple stakeholders including partners, customers, investors, and the general public interested in energy transition. The business model centers on grid infrastructure development, system control, market facilitation, and customer services within the energy sector. The website content is relevant and well-organized, reflecting the company's market position and key services effectively. Technically, the website is built on ASP.NET WebForms with a modern front-end stack including jQuery, Kendo UI, and other JavaScript libraries. The site uses DNN CMS and integrates Usercentrics for cookie consent management. Performance is moderate with good mobile optimization and basic accessibility features. SEO optimization is basic but functional. The site is served over HTTPS with a good SSL configuration, though security headers are not explicitly detected. From a security perspective, the site enforces HTTPS and uses a consent management platform, indicating attention to privacy compliance. However, there is no published security policy or incident response contact, and no vulnerability disclosure or security.txt file is found. The absence of WHOIS data for the domain www.50hertz.com is a notable anomaly, potentially indicating domain registration issues or use of alternative domains. Overall, the security posture is solid but could be improved with enhanced transparency and security best practices. The overall risk assessment is moderate with a recommendation to improve domain registration transparency, publish security policies, implement security headers, and enhance accessibility and SEO. These steps will strengthen trust, compliance, and security culture, supporting the company's strategic goals in the energy sector.

H

Hofmann Recycling

hofmann-recycling.de

56

Hofmann Recycling is a small, regionally focused certified waste disposal and recycling company based in Zwickau, Germany. The company offers a broad range of services including waste collection, recycling, container rental, and disposal solutions. Their website reflects a professional and consistent brand image targeting both private and commercial customers in the local area. Technically, the site is built on the Contao CMS platform, utilizing modern JavaScript libraries and a GDPR-compliant consent management platform. Analytics are implemented via Google Analytics 4 and Universal Analytics with IP anonymization, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and published security policies. Overall, the website is trustworthy, well-structured, and compliant with privacy regulations, though improvements in security transparency and contact information availability could enhance credibility further.

P

Pěší pouť k Božímu milosrdenství - Pěší pouť

pout.cz

41

The website pout.cz is dedicated to organizing and providing information about the annual walking pilgrimage to Slavkovice, Czech Republic, focused on spiritual and religious activities related to Divine Mercy. The site targets a niche audience interested in religious pilgrimages and community events. The business model is non-commercial and community-driven, with offerings including event information, registration forms, and merchandise such as T-shirts. The domain is well established since 2006, supporting the site's legitimacy and history. Technically, the website uses a traditional HTML/CSS/JavaScript stack with jQuery libraries and embeds Google Forms for data collection. The site is hosted likely via the registrar Active24, a Czech hosting provider. The design and navigation are basic but functional, with moderate performance and limited mobile optimization. SEO and accessibility features are minimal but present. From a security perspective, the site uses HTTPS but lacks visible security headers and employs multiple versions of jQuery, which may introduce vulnerabilities. There are no privacy or cookie policies, and no explicit contact emails or phone numbers are provided, which impacts compliance and trust. The embedded Google Forms handle user data collection without visible privacy disclosures, representing a compliance gap. Overall, the website is safe and appropriate for general audiences, with no adult or questionable content. The domain registration data is consistent with the website's purpose and location. Strategic improvements in security headers, privacy compliance, and technical modernization would enhance the site's security posture and user trust.

A

as4u.cz, s.r.o.

stetsko.cz

60

The website www.stetsko.cz serves as a regional informational portal for the Štětí area in the Czech Republic, providing cultural, natural, and event-related information to residents and tourists. It is supported by local government entities and regional partners, offering a comprehensive calendar of events, news updates, and photo galleries. The business model is informational and promotional, focusing on community engagement and tourism support. Technically, the site is built on the Public4u CMS platform, utilizing jQuery and standard web technologies. It is mobile-optimized with a moderate performance profile and basic accessibility features. The site uses HTTPS and includes cookie consent mechanisms, but lacks advanced security headers and explicit security policies. From a security perspective, the site demonstrates a reasonable posture with HTTPS enforcement and cookie consent but lacks detailed security policies, incident response contacts, and vulnerability disclosures. The absence of WHOIS data for the domain reduces trust and raises questions about domain legitimacy, although the website content and partner affiliations suggest a legitimate regional service. Overall, the site is safe, professional, and trustworthy for general audiences, with recommendations to improve security headers, domain registration transparency, and privacy documentation to enhance compliance and trustworthiness.

H

Hedin Automotive

hedinautomotive.sk

71

Hedin Automotive is a Slovakian automotive dealership specializing in the sale of new and used vehicles along with authorized vehicle servicing. The company targets consumers and businesses seeking reliable automotive solutions. The website reflects a medium-sized business with a professional online presence and consistent branding. Technically, the site is built on Orchard CMS and leverages modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and Google Tag Manager, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced, use of Google reCAPTCHA, and a comprehensive cookie consent mechanism, although explicit security policies and incident response contacts are not publicly visible. Overall, the website is trustworthy, compliant with GDPR, and employs extensive analytics and marketing tools to optimize user engagement and advertising effectiveness.

P

Prowellness

prowellness.cz

46

Prowellness.cz is a Czech Republic based e-commerce retailer specializing in sauna and infrared sauna accessories, replacement parts, and wellness products. The company operates with a strong market position in the niche sauna and wellness sector, supported by 14 years of experience and a manufacturing subsidiary, SaunaSystem, which designs custom saunas. The website is professionally designed, offers comprehensive product information, and includes customer testimonials and a showroom for product demonstration. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Analytics, Hotjar, and Facebook SDK, with a cookie consent mechanism in place, indicating good digital maturity. Security posture is solid with HTTPS and reCAPTCHA implemented, though additional security headers could enhance protection. The absence of WHOIS data slightly reduces trust but is mitigated by clear business information and external verifications. Overall, the site presents a trustworthy and professional online presence for sauna-related products.

N

Netland Oy

netland.fi

53

Netland Oy is a Finnish software company specializing in the development of websites and web applications, offering tailored internet, intranet, extranet, and mobile solutions. Established since 1991, the company maintains a professional online presence with a focus on business clients requiring customized software solutions. Their key offerings include proprietary publishing systems (SiteRunner and AppRunner), custom web applications, server solutions, and email services. The website reflects a mature business with consistent branding and clear service descriptions. Technically, the website employs a range of JavaScript libraries such as jQuery, SweetAlert, and Howler.js, indicating a moderately modern tech stack. The site is mobile-optimized and accessible, with good SEO practices and structured navigation. However, no major modern frameworks or CMS platforms beyond their proprietary SiteRunner system are detected. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and DNSSEC, which are positive indicators. However, there is no evidence of advanced security headers or published security policies, incident response plans, or vulnerability disclosure mechanisms. The absence of these elements suggests room for improvement in security maturity. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website is trustworthy, professional, and compliant with GDPR through clear privacy and cookie policies. The domain registration data aligns well with the business identity, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date libraries to improve the security posture further.

R

ROMOTOP

romotop.cz

44

ROMOTOP is a Czech-based company recognized as a European leader in manufacturing and selling fireplace stoves, fireplace inserts, and design fireplaces. Their products emphasize ecological standards and cater to a broad audience including consumers seeking heating solutions for standard and low-energy homes. The website is professionally designed with multilingual support and clear navigation, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and analytics tools, ensuring a responsive and interactive user experience. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms but lacks visible security headers and explicit privacy or security policies, indicating room for improvement. The absence of WHOIS data reduces transparency and trust slightly, but the overall professional presentation and contact information support legitimacy. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and verifying domain registration details to improve trust and compliance.

A

Automa – časopis pro automatizační techniku, s. r. o.

automa.cz

48

Automa.cz is the online presence of Automa – časopis pro automatizační techniku, s. r. o., a specialized Czech magazine focused on automation technology and industrial control. Established in 2000, it serves professionals and companies in the automation sector by providing industry news, technical articles, market overviews, and event calendars. The website features a professional design with clear navigation and a consistent brand identity, supported by active social media channels. Technically, the site is built on ASP.NET with common JavaScript libraries and integrates Google Tag Manager for analytics and marketing. Security posture is moderate with HTTPS enabled but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-established but would benefit from enhanced privacy and security transparency.

M

Město Havlíčkův Brod

muhb.cz

52

The website www.muhb.cz serves as the official online presence for the city of Havlíčkův Brod, Czech Republic. It provides comprehensive information about city governance, public services, news updates, and tourist information. The site targets residents, local businesses, tourists, and public officials, offering a broad range of municipal services and resources. The business model is government/public service with a medium-sized municipal scope and a historical foundation dating back to the 13th century. Technically, the site employs a modern technology stack including Bootstrap, jQuery, FontAwesome, and Google Analytics, built on the CPedit CMS platform. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security measures include HTTPS enforcement and use of Google reCAPTCHA, though security headers are not detected, indicating room for improvement. From a security perspective, the site demonstrates good practices such as cookie consent management and secure form handling but lacks visible security headers and an incident response contact. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and official branding strongly support legitimacy. Overall, the site is a well-maintained municipal portal with good content quality and user experience. Strategic recommendations include enhancing security headers, publishing incident response information, and improving domain registration transparency to strengthen trust and compliance.

S

Sdružení oboru vodovodů a kanalizací ČR, z.s.

vystava-vod-ka.cz

56

The website vystava-vod-ka.cz represents the international water industry exhibition 'VODOVODY-KANALIZACE' (VOD-KA), a significant event in Central Europe focused on water supply and sewerage technologies. The event is organized by Sdružení oboru vodovodů a kanalizací ČR, z.s., with operational support from Exponex, s.r.o. The site provides detailed information about the exhibition, including past event summaries, exhibitor catalogs, and contact details. The business model centers on event organization and industry networking, targeting professionals and companies in the water sector. The website content is professionally presented in Czech, with good navigation and mobile optimization.

E

Exponex, s.r.o.

dny-teplarenstvi-a-energetiky.cz

54

The website www.dny-teplarenstvi-a-energetiky.cz represents a well-established conference event focused on the heating and energy sectors in the Czech Republic. It serves as a platform for industry professionals, partners, exhibitors, and media to engage in discussions shaping the future of the energy field. The business model centers on event organization and conference hosting, with a strong presence indicated by attendance and partner statistics. The site content is professional and relevant, targeting industry stakeholders. Technically, the website uses legacy JavaScript libraries such as jQuery 1.11.2 and jQuery UI, along with Lightbox.js for UI elements. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. No CMS or hosting provider information is evident. Security measures include a cookie consent mechanism; however, no security headers or advanced protections are detected, and the SSL configuration could not be verified from the data provided. From a security perspective, the site shows moderate maturity with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is a concern for domain legitimacy and trust but does not directly impact the operational security of the website. Privacy compliance is supported by an external privacy policy and a cookie consent banner, indicating awareness of GDPR requirements. Contact information is transparent and professional, enhancing business credibility. Overall, the website is functional and professional but would benefit from technical modernization, enhanced security headers, and improved domain transparency. Strategic recommendations include updating JavaScript libraries, implementing security headers, verifying SSL configurations, and publishing incident response and security policies to strengthen trust and compliance.

The website 'Monastery Tourism' operated under the domain klasternituristika.cz is a niche platform focused on religious and pilgrimage tourism primarily in the Czech Republic. It offers information on pilgrimage sites, accommodation, places of interest, and pilgrimage routes, targeting pilgrims and tourists interested in Christian historical monuments and faith-based travel. The business model revolves around providing informational content and booking capabilities, supported by user registration and login features. The site has been active since 2015, indicating a mature presence in its niche market. Technically, the website employs a combination of legacy and modern web technologies including jQuery, Bootstrap 3, Leaflet.js for mapping, and the Nette PHP framework. It integrates Matomo analytics for user tracking and uses HTTPS for secure communication. The site is moderately optimized for mobile devices and SEO, with a good user experience and clear navigation. However, some technical improvements are recommended, such as updating libraries and enhancing accessibility. From a security perspective, the site uses HTTPS and secure forms but lacks visible security headers like CSP or HSTS, which are important for modern web security. No privacy or cookie policies are present, which is a compliance gap especially under GDPR. The absence of incident response contacts and security policies reduces transparency. The domain WHOIS data is consistent and trustworthy, with no suspicious patterns detected. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer policy disclosures to strengthen trust and regulatory adherence.

SFNCM is a French professional association dedicated to clinical nutrition and metabolism, providing healthcare professionals with training, scientific publications, events, and practical resources. The website is well-structured, professionally designed, and targets healthcare practitioners interested in nutrition clinical care. The technical infrastructure leverages modern JavaScript libraries and a reputable CMS platform (AssoConnect), with good mobile optimization and SEO practices. Security posture is solid with HTTPS, cookie consent management, and nonce-based script loading, though explicit security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profit organizations. Overall, the site presents a trustworthy and professional front for its audience.

I

Internetseelsorge

internetseelsorge.de

42

Internetseelsorge.de is a German non-profit organization providing free Christian pastoral care and spiritual guidance through mail and chat services. The website targets individuals facing life crises, spiritual questions, or feelings of loneliness, offering confidential and anonymous support. The organization collaborates with recognized Catholic partners, enhancing its credibility and reach within the German-speaking community. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and uses Matomo analytics to respect user privacy. Hosting is provided by kasserver.com, a known hosting provider. Security posture is solid with HTTPS enforced, though improvements in security headers and cookie consent mechanisms are recommended. The website is well-structured, mobile-optimized, and provides clear navigation and service descriptions, supporting a positive user experience. No adult or explicit content is present, making it safe for general audiences.

W

Web Commerce GmbH

digitalpastoral.de

45

Digitalpastoral.de is a German-language digital platform focused on providing resources, networking, and content for Catholic church communities and pastoral workers. The platform serves as a marketplace and knowledge hub for digital church practice, offering articles, event listings, and community engagement tools. It is developed and maintained by Web Commerce GmbH, with affiliations to multiple (Erz-)Bistümer, indicating a trusted position within the church digital ecosystem. The website targets church professionals and digital faith communities, positioning itself as a niche but important resource in the religious digital media space. Technically, the site is built on Edith CMS and leverages modern web technologies including jQuery, Bootstrap, and FontAwesome. It integrates Matomo analytics with privacy-conscious tracking controls and uses HTTPS to secure communications. The site demonstrates good mobile optimization and accessibility features, with a clear navigation structure and professional design. However, some security best practices such as security headers and explicit cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site shows a moderate maturity level with no visible vulnerabilities or exposed sensitive data. The lack of a published security policy or incident response contacts is a gap in transparency and readiness. Privacy compliance is partial, with a privacy policy present but no cookie consent banner detected. Overall, the domain and hosting infrastructure appear legitimate and consistent with the business claims, with no signs of suspicious WHOIS data or blocking by WAFs. The overall risk assessment is moderate with recommendations to implement explicit cookie consent, add security headers, and publish security and incident response policies to strengthen trust and compliance. The platform is well-positioned as a specialized digital resource for church communities but should address these gaps to maintain and improve its credibility and security posture.

A

August Horch Museum Zwickau gGmbH

horch-museum.de

48

The August Horch Museum in Zwickau is a cultural institution specializing in automotive history and technology, offering extensive exhibitions and multimedia experiences. The museum targets automotive enthusiasts, tourists, and culture seekers, positioning itself as a regional leader in automotive heritage. The website supports multiple languages and provides virtual tours and an online shop, reflecting a moderate digital maturity. Technically, the site uses established JavaScript libraries and Google services, hosted on a reliable German hosting provider. Security posture is solid with HTTPS and cookie consent management, though some security headers could be improved. Privacy compliance is well addressed with GDPR-aligned cookie management and clear policies. Overall, the site is professional, trustworthy, and user-friendly, with room for enhanced security policies and incident response transparency.

S

Sekce pro mládež České biskupské konference a Asociace křesťanských sdružení mládeže, z. s.

celostatnisetkanimladeze.cz

58

The website celostatnisetkanimladeze.cz represents a non-profit organization focused on organizing the Celostátní setkání mládeže (National Youth Meeting) in the Czech Republic. The event targets young people aged 14 to 30 and is organized by the Youth Section of the Czech Bishops' Conference and the Association of Christian Youth Associations. The site provides event information, news, and multimedia content related to the event and its history. The organization holds a recognized position within the Czech Catholic community and maintains active social media channels to engage its audience. Technically, the website uses a combination of jQuery, Bootstrap 4, and other JavaScript libraries, hosted with Cloudflare DNS and registered via a Czech registrar. The site is mobile-optimized and uses HTTPS with a good SSL configuration. However, it lacks some modern security headers and formal privacy and cookie policies, which are important for compliance and user trust. Analytics are handled via Matomo, indicating a moderate level of user tracking. From a security perspective, the site is well-configured with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of security headers and formal privacy documentation are areas for improvement. The WHOIS data is consistent with the website's Czech origin and organizational claims, supporting legitimacy. Overall, the site is professional, trustworthy, and serves its community well but should enhance privacy compliance and security best practices to improve user trust and regulatory adherence.

S

Scholastika

scholastika.cz

47

Scholastika is a well-established private higher vocational school and creative educational center based in Prague, Czech Republic, specializing in visual communication and design education. Founded in 2011, it offers accredited three-year post-secondary studies in graphic, motion, and game design, alongside a broad portfolio of practical courses for the general public in various art and design disciplines. The institution emphasizes practical training, industry collaboration, and personal approach, supported by professional instructors with strong ties to the creative sector. Scholastika maintains a strong digital presence with a professionally designed website, active social media channels, and a newsletter subscription service. Technically, the website employs modern web technologies including jQuery, lazy loading, and multiple tracking and analytics tools such as Google Tag Manager, Facebook Pixel, and Hotjar. The site is hosted on Czech-based servers with a domain registered since 2011, consistent with the business history. The website is mobile-optimized, SEO-friendly, and provides clear navigation and rich content about courses, pricing, and contact information. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, Scholastika presents a trustworthy, professional, and user-friendly online presence suitable for its educational mission. Strategic improvements in security headers and transparency around security policies could further enhance its security posture and user trust.

Church Tourism is a niche tourism platform focused on pilgrimage sites, Christian historical monuments, accommodation, and related events primarily in the Czech Republic. The website offers multilingual content, detailed information on pilgrimage routes, places of interest, and booking options for accommodation. It serves pilgrims and tourists interested in faith-based travel and cultural heritage. The platform collaborates with multiple regional partners and promotes events such as the Night of Churches and spiritual exercises. Technically, the website uses a modern but somewhat dated tech stack including jQuery, Bootstrap 3, Leaflet.js for maps, and Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile responsive and well-structured, though some accessibility features are basic. Security posture is adequate with HTTPS enforced and secure forms, but lacks visible security headers and cookie consent mechanisms, which are areas for improvement. Overall, the website is trustworthy, professionally presented, and aligned with its business purpose.

W

Wildstyle Network

wildstyle-network.com

68

Wildstyle Network is a well-established digital agency based in Germany, with over 20 years of experience supporting global clients in digital transformation through innovative communication and technology solutions. The website reflects a professional and consistent brand image, targeting businesses seeking advanced digital services. Technically, the site is built on Drupal 9, leveraging modern web technologies and integrating consent management and analytics tools such as Cookiebot and Piwik/Matomo, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements like enabling DNSSEC and adding a security.txt file could enhance trust further. Overall, the site is compliant with GDPR and provides a good user experience with clear navigation and mobile optimization.

OÖ Landes-Kultur GmbH is the largest cultural institution in the Austrian state of Upper Austria, serving as a museum and cultural hub for the regional population. The organization offers a broad range of exhibitions, events, educational programs, and publications, targeting a general audience interested in art, culture, and regional heritage. The website reflects a professional and well-structured digital presence, supporting the institution's mission to reach beyond central locations into the wider region through diverse cultural offerings. Technically, the website is built on the Contao Open Source CMS and leverages modern web technologies including jQuery, Slick Carousel, and FontAwesome Pro. It integrates Google Tag Manager and Google Analytics with privacy-conscious configurations such as IP anonymization. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish a security policy or incident response contacts, which are areas for improvement. Privacy and cookie policies are present and appear GDPR compliant, supporting user data protection. Overall, the website is trustworthy and professionally maintained, though the absence of WHOIS data reduces domain registration transparency. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and providing incident response contacts to strengthen security posture and user trust.

F

Freegun - Underwear and Clothing for Men, Women and Children

freegun.com

60

Freegun.com is an established e-commerce retail website specializing in underwear and clothing for men, women, and children. The business appears to be based in France, supported by domain registration data and language settings. The website uses PrestaShop CMS and integrates several modern marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, Klaviyo, and Doofinder for search functionality. Payment processing is handled via PayPlug, a known payment partner. The site design is professional and mobile-optimized, providing a good user experience with clear navigation and relevant content focused on retail apparel. However, the site lacks visible privacy and cookie policies, which impacts compliance and user trust.

MarramWind Ltd is a joint venture between ScottishPower and Shell New Energies UK focused on developing a large-scale floating offshore windfarm off the north-east coast of Scotland. The project aims to deliver up to 3 GW of renewable energy, powering over 3.5 million homes, and contributing to the UK's net-zero targets. The website provides detailed information about the project, partners, vision, and stakeholder engagement opportunities, reflecting a professional and credible business presence. Technically, the website is built on ASP.NET Web Forms and leverages modern JavaScript libraries such as jQuery, Bootstrap, and Modernizr, along with Google Fonts and Google Tag Manager for analytics. The site is mobile-optimized and accessible, though some SEO and security header enhancements could improve its digital maturity. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security headers and a dedicated security policy or incident response contact. The WHOIS lookup failed due to a domain naming rule violation, which may be a querying artifact rather than a true registration issue, as the site is live and professional. Overall, the security posture is moderate but could be strengthened with additional controls and transparency. The overall risk assessment is low, with recommendations to implement security headers, cookie consent mechanisms, and publish security policies to enhance trust and compliance. The site is safe for general audiences and aligns well with its business objectives and market positioning.

E

Welkom bij Oilandgas.nl

energyproduction.nl

47

The website www.oilandgas.nl serves as an informational resource focused on the Dutch energy production sector, specifically oil & gas, geothermal, and wind energy. It provides detailed industry data including exploration and production licenses, company directories, and sells related industry posters and books. The target audience appears to be industry professionals and companies operating within the Netherlands energy market. The business model centers on information dissemination and product sales related to the energy sector. Technically, the website is built on Joomla CMS using the Gantry5 framework, incorporating modern JavaScript libraries such as jQuery, jQuery UI, and Google reCAPTCHA v3 for bot protection. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. From a security perspective, the site uses HTTPS and Google reCAPTCHA but lacks visible security headers and published privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are provided, limiting transparency and trust. No vulnerabilities or malicious content were detected in the provided data. Overall, the website is functional and professional but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trustworthiness and regulatory adherence.

E

ERTICO

ertico.com

56

ERTICO is a well-established European partnership organization specializing in Intelligent Transport Systems (ITS) and smart mobility innovation. The website reflects a mature digital presence with a focus on collaboration, European projects, and industry events. The technical infrastructure is based on Drupal CMS with modern libraries such as Swiper.js and Matomo analytics, indicating a balanced approach to performance and privacy. Security posture is generally good with HTTPS enabled and domain registration protections in place, though improvements are recommended in security headers and explicit security policies. Privacy compliance is partially addressed through cookie consent mechanisms but lacks a visible privacy policy and terms of service. Overall, the website is professional, trustworthy, and safe for general audiences.