Security Directory

C

Czech Health Technology Institute, z. s.

czechhealth.cz

45

Czech Health Technology Institute (CHTI) is a Czech non-profit organization founded in 2023, focused on identifying and supporting innovative healthcare technology solutions to improve healthcare delivery and quality. The organization collaborates with government ministries, academic institutions, and private sector partners to implement humanitarian programs, complex healthcare solutions, centers of excellence, and educational initiatives, particularly supporting healthcare development in Ukraine. The website reflects a professional and consistent brand presence with clear communication of its mission, team, partners, and contact information. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI libraries, ensuring good mobile optimization and user experience. The site includes a comprehensive cookie consent mechanism aligned with GDPR requirements, though it lacks a dedicated privacy policy and terms of service pages, which are important for full compliance. Analytics and marketing tools such as Google Analytics, Google Tag Manager, Incomaker, and Facebook Pixel are used with user consent. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and published security policies or incident response information. No vulnerabilities or suspicious content were detected. WHOIS data is consistent with the organization's claims, indicating legitimacy. Overall, the site scores well on professionalism and business credibility but should improve privacy and security documentation. Strategic recommendations include publishing a privacy policy and terms of service, enhancing security headers, and providing incident response and vulnerability disclosure information to strengthen trust and compliance.

The website at saugierdve.lt/login serves as a login portal for GRIFS AG, a company presumably operating in Lithuania given the domain and registrar information. The site is primarily functional with a focus on user authentication, featuring branding elements but lacking detailed business descriptions or public-facing content. The technical infrastructure includes standard web technologies such as Google Analytics and Google Tag Manager for tracking, Google Fonts for typography, and Font Awesome for icons. The domain is registered with a Lithuanian registrar, UAB "Interneto vizija", since 2016, indicating a stable and legitimate presence. From a security perspective, the site uses HTTPS, but no explicit security headers were detected in the provided data. There is no visible privacy policy, cookie policy, or terms of service on the login page, which raises compliance concerns, especially regarding GDPR. No contact information or incident response channels are exposed, limiting user support and security communication. The site does not appear to be behind a WAF or security challenge, allowing full content access. Overall, the website demonstrates a basic level of technical implementation suitable for a corporate login portal but lacks comprehensive privacy and security disclosures. The absence of contact and policy information may impact user trust and regulatory compliance. Strategic improvements in these areas would enhance the site's security posture and business credibility.

Vedle Tebe is a Czech website currently under construction, representing a home care alliance as indicated by the logo and minimal text content. The domain was registered in 2018 and is hosted on EuroVPS infrastructure, using WordPress with a maintenance plugin to display the under construction page. The website lacks substantive content, contact information, privacy policies, and security features, limiting its digital maturity and trustworthiness. No advanced technologies or analytics are detected, and no security headers or compliance indicators are present. Overall, the site is in an early development stage with minimal risk but also minimal business credibility and user engagement potential.

Stolařství Šputa s.r.o. is a well-established Czech woodworking and construction company specializing in custom furniture, interior and exterior woodwork, and wooden buildings. Founded in 1999 and operating primarily in Ostrava, the company offers a broad range of wood-related manufacturing services including stairs, doors, furniture, pergolas, and dřevostavby (wooden houses). The website reflects a mature business with a clear market position serving both individual and commercial clients. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Analytics, and Google Maps API, hosted likely by Active24, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, GDPR compliance, cookie consent, and secure forms, though some security headers and incident response contacts could be improved. Overall, the site is professional, trustworthy, and compliant with relevant privacy regulations.

E

Euroregion Silesia - CZ

euroregion-silesia.cz

48

Euroregion Silesia - CZ operates as a regional cross-border cooperation entity focused on fostering sustainable development, tourism, and institutional collaboration between Czech and Polish border regions. The organization facilitates EU-funded projects, organizes training and events, and promotes regional tourism products such as the Silesianka trail. The website reflects a well-established entity with a domain registered since 2002, indicating long-term presence and legitimacy. The content is primarily in Czech and targets local municipalities, institutions, and potential project applicants. Technically, the website uses modern web technologies including Bootstrap, jQuery, Font Awesome, and Google Analytics, hosted by Active24. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks a dedicated privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and serves its audience effectively.

Stavby Complet s.r.o. is a Czech-based small enterprise specializing in chimney construction, maintenance, and related services, including manufacturing their own chimney system. The company has been established since 2011 and positions itself as a quality-focused specialist with a broad service portfolio targeting both industrial and residential customers. The website reflects a professional and consistent brand image with comprehensive service descriptions and customer references. Technically, the site uses modern web technologies such as Bootstrap and jQuery, integrates Google Analytics and Ads for marketing, and implements GDPR-compliant privacy and cookie policies. Security posture is adequate with secure forms and consent mechanisms, though some security headers and incident response details are missing. Overall, the website is well-structured, mobile-optimized, and trustworthy, supporting the company's market position as a reliable local specialist.

E

EPUAP 2026

epuap2026.org

46

EPUAP 2026 is a specialized healthcare event website promoting the 25th Annual Meeting of the European Pressure Ulcer Advisory Panel scheduled in Helsinki, Finland. The site targets healthcare professionals and researchers interested in pressure ulcers, providing event details and registration information. The business model centers on conference organization and information dissemination within the healthcare sector. The website is built on WordPress using Elementor and common plugins, reflecting a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and explicit security policies. Privacy compliance is limited, with no privacy or terms of service pages detected, though a cookie policy with consent is present. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security measures.

T

Taneční škola ASTRA Praha

astra-praha.cz

39

Taneční škola ASTRA Praha is a local dance school offering a wide range of dance courses and events targeting adults, youth, and children in Prague and surrounding areas. Their services include standard and Latin dance courses, competitive dance, summer dance schools, seminars, dance clubs, wedding dance lessons, and dance performances. The website is professionally designed with clear navigation and good content quality, supporting multiple dance-related offerings and event announcements. Technically, the website employs common web technologies including Google Analytics, Google Tag Manager, and Plausible Analytics for tracking, along with Google Fonts for typography. The site is mobile-optimized and uses HTTPS, though no explicit security headers were detected. The site lacks a cookie consent mechanism despite having a GDPR-compliant privacy policy, indicating partial privacy compliance. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data. However, the absence of WHOIS data limits domain trust assessment, and no incident response or security policy information is provided. The site does not appear to be behind a WAF or security challenge, and content is fully accessible. Overall, the security posture is moderate but could be improved with better header configurations and privacy mechanisms. The overall risk is low given the nature of the business and content, but the lack of WHOIS transparency and cookie consent are notable gaps. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response contacts, and enhancing accessibility features to improve trust and compliance.

Telšių žinios is a Lithuanian regional news media outlet focused on providing local news, cultural content, and community information for the Telšiai county area. Established in 2003, it operates a professional WordPress-based website featuring diverse news categories, video content, and subscription services. The site targets Lithuanian-speaking residents and stakeholders interested in regional affairs. Technically, the website employs a modern CMS with SEO and accessibility plugins, Google Fonts, and Google Analytics for tracking. Advertising is managed primarily through Google Ad Manager and DoubleClick. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and visible privacy or cookie policies, indicating room for compliance improvement. No WAF or blocking mechanisms interfere with content accessibility, and the domain registration aligns well with the business profile, supporting legitimacy. Overall, the website is professionally designed, well-structured, and trustworthy, though privacy compliance needs enhancement.

Z

zahojime.cz | I malá rána může být velkou komplikací! Informace o prevenci a léčbě nehojících se ran.

zahojime.cz

32

The website zahojime.cz is an informational platform focused on wound care, providing educational content about the prevention and treatment of non-healing wounds. It targets a general audience interested in healthcare and wound management. The site is built on WordPress using the Divi theme and incorporates Google Analytics for visitor tracking. While the technical infrastructure is modern and the site is accessible with good mobile optimization, there is a lack of comprehensive privacy and cookie policies, as well as absence of contact information, which impacts user trust and compliance. The security posture is moderate with HTTPS usage but lacks visible security headers and incident response details. The domain WHOIS data is unavailable, raising concerns about domain legitimacy and trustworthiness.

V

Všeobecná zdravotní pojišťovna ČR (VZP ČR)

vzpoura-urazum.cz

43

The website 'VZPoura úrazům' is a project operated by the Všeobecná zdravotní pojišťovna ČR (VZP ČR), focusing on injury prevention among children and youth through educational meetings and awareness campaigns. It holds a reputable position as a long-standing initiative within the Czech healthcare and education sectors, targeting schools and young audiences. The project leverages official branding and maintains active social media channels to engage its audience effectively. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various UI libraries, ensuring a responsive and user-friendly experience. The site is secured with HTTPS and integrates Google reCAPTCHA and cookie consent mechanisms, reflecting a good level of digital maturity. However, some security headers are missing, and there is no visible CMS or hosting provider information. From a security perspective, the site demonstrates solid practices such as encrypted connections and bot protection, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain reduces trustworthiness, although the website content and official contact details strongly indicate legitimacy. Overall, the website is professional, content-rich, and well-targeted, with moderate technical and security maturity. Strategic improvements in security headers, transparency policies, and domain registration data would enhance trust and compliance.

T

tovi

tovi.cz

34

tovi.cz is a Czech-based small technology company specializing in custom web and mobile application development, web design, process automation, and digital marketing services such as SEO and PPC. Founded in 2017, the company presents a professional portfolio of completed projects and transparent pricing examples, targeting businesses seeking tailored digital solutions. The website is well-structured, mobile-optimized, and uses modern web technologies including Google Fonts, Font Awesome, and jQuery, with analytics integrated via Google Analytics and Tag Manager. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies, which is a notable gap given GDPR requirements. Contact information is clearly provided with email, phone, and a contact form, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy and security disclosures.

E

Erudyt.cz

erudyt.cz

42

Erudyt.cz is a Ukrainian Saturday school based in Prague, Czech Republic, providing Ukrainian education to children living abroad. The school offers education from grades 1 to 11 with the possibility of obtaining an official Ukrainian state certificate. It has been operating for over 10 years and collaborates with the International Ukrainian School in Kyiv. The website is built on WordPress, uses common web technologies, and is hosted on servers associated with fcomet.com. Contact information including phone numbers, email, and physical address is clearly provided. However, the site lacks privacy and cookie policies, security headers, and incident response information, which are areas for improvement. The content is safe, educational, and culturally focused, targeting Ukrainian families in the Czech Republic.

Asociace Sommelierů ČR is a Czech Republic-based professional association focused on wine education, sommelier certification, and promotion of wine culture. Founded in 1997, it holds a reputable position as a member of the International Sommelier Association and offers accredited courses, seminars, and organizes competitions and events. The website reflects a mature, professional organization targeting wine professionals, students, and enthusiasts. Technically, the site is built on WordPress with modern plugins and good mobile optimization. Security posture is solid with HTTPS and cookie consent, though lacking advanced security headers and published policies. WHOIS data is unavailable, which slightly reduces domain trust but the site content and structure support legitimacy. Overall, the site is well-maintained, content-rich, and trustworthy for its audience.

A

Agentura Osma a.s.

osma.cz

43

Agentura Osma a.s. is a well-established Czech family-owned manufacturer specializing in the design and production of self-adhesive labels. With a history dating back to 1991 and a domain registered since 2000, the company serves a broad European market including France, producing over one million labels weekly. Their business model focuses on combining unique design with advanced printing technologies to support brand image development for clients in food, cosmetics, beverages, and related sectors. The website reflects a mature digital presence with modern technologies, good mobile optimization, and comprehensive content including customer testimonials and certifications. Security posture is solid with HTTPS and cookie consent implemented, though some security headers and formal policies are absent. Overall, the company demonstrates strong business credibility and technical maturity.

C

CADENAS PARTsolutions

partsolutions.com

57

CADENAS PARTsolutions operates as a leading provider of digital solutions for industrial manufacturers, specializing in 3D CAD models, component software, and product catalogs. Their website reflects a mature business with a strong market position, offering services that enhance engineering efficiency and sales through digital product configurators and strategic parts management. The company targets industrial manufacturers and engineers globally, supported by multilingual site options and a professional online presence. Technically, the website is built on WordPress with modern performance optimizations including NitroPack and AJAX search capabilities. The infrastructure supports fast loading times and good mobile responsiveness, leveraging common web technologies and frameworks such as Bootstrap and jQuery. SEO and accessibility are adequately addressed, though accessibility could be improved further. From a security perspective, the site enforces HTTPS and includes several security headers, but lacks a publicly available security policy, incident response contacts, or vulnerability disclosure mechanisms. DNSSEC is not enabled, which is a recommended enhancement. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid baseline security posture. Overall, the website is trustworthy, professional, and well-aligned with the company’s business objectives. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and enhancing accessibility compliance to further strengthen trust and security posture.

C

Crystal BOHEMIA a.s.

24crystal.cz

39

Crystal BOHEMIA a.s. operates the e-commerce website 24crystal.cz, specializing in the sale of crystal glassware and related decorative and gift products. The company targets consumers interested in high-quality crystal products, positioning itself as a niche retailer within the Czech Republic. The website provides a professional online shopping experience with clear navigation and detailed terms of service, reflecting a mature business model founded in 2019. Technically, the website employs common JavaScript libraries such as jQuery, Slick Carousel, and tracking tools including Google Analytics and Facebook Pixel. The site is hosted under the registrar REG-WEBGLOBE and uses HTTPS, ensuring secure communication. However, the site lacks explicit privacy and cookie policies and does not implement visible security headers, indicating areas for compliance and security improvement. From a security perspective, the website shows a moderate posture with no detected vulnerabilities or blocking mechanisms. The absence of privacy and cookie consent mechanisms presents compliance risks under GDPR. Contact information is clearly provided, enhancing business credibility. The content is safe for general audiences but includes mature content related to alcohol products. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and better mobile optimization to strengthen trust and regulatory adherence.

I

Integrační centrum Praha

konferenceintegrace.cz

39

Integrační centrum Praha operates as a non-profit organization focused on integration and migration communication, primarily organizing conferences such as "Komunikací k integraci". The website serves as an informational and promotional platform for these events, targeting professionals in public administration, NGOs, media, and academia. Technically, the site is built on WordPress using the Enfold theme and WPML for multilingual support, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security headers and incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting its role as a government/non-profit entity in the Czech Republic.

C

Centrum na podporu integrace cizinců v Ústeckém kraji

centrumcizincu.cz

47

Centrumcizincu.cz is a Czech Republic based regional integration center focused on supporting foreigners, especially Ukrainian citizens and other immigrants, in the Ústecký region. The organization provides free legal, social, and educational counseling, Czech language courses, and integration activities funded by the European Union and the Czech Ministry of Interior. The website is professionally designed using WordPress CMS with modern technologies and includes multilingual support via Google Translate. Contact information and cookie consent mechanisms are clearly implemented, reflecting good privacy compliance. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site is trustworthy and serves a clear non-profit government-related mission.

O

OPAGROUP s.r.o.

nasaleze.eu

9

Nasaleze.eu is a Czech healthcare-focused website offering clinically proven natural nasal sprays designed to protect against airborne viruses, bacteria, and allergens. The business operates primarily through partnerships with pharmacies and online shops, targeting consumers seeking natural preventive nasal care products. The website is built on WordPress using the Divi theme, hosted by a reputable Czech provider, and demonstrates good technical implementation with moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the site is professional and trustworthy but would benefit from improved privacy compliance and security best practices.

K

KK NEPTŪNAS

bcneptunas.lt

40

KK Neptūnas is a professional basketball club based in Lithuania, operating an official website that provides comprehensive information about the team, match schedules, ticket sales, and merchandise. The website targets basketball fans and sports enthusiasts primarily in Lithuania and Europe. The business model revolves around sports entertainment, sponsorships, and fan engagement through digital channels. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern web technologies such as Bootstrap and Owl Carousel for UI components. Google Analytics and Tag Manager are used for visitor tracking with IP anonymization enabled, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but visible PHP warnings and lack of security headers indicate areas for improvement. Privacy and cookie policies are absent, which is a compliance gap. Overall, the website is functional and professional but requires backend fixes and enhanced privacy compliance to improve trust and security.

M

Ministr zdraví z. ú.

ministrzdravi.cz

39

Ministr zdraví z. ú. is a Czech non-profit think tank dedicated to improving public health by extending the healthy life expectancy of the Czech population by five years. The organization focuses on data-driven policy recommendations, healthcare system reform, and public awareness. Their website is professionally designed, content-rich, and targets policymakers, healthcare professionals, and the general public. The organization actively engages with its audience through multiple social media channels and transparent donation mechanisms. Technically, the site is built on WordPress with modern plugins for GDPR compliance and analytics integration. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the professional presentation and trust signals on the site.

Bingo Connect is the official magazine of The Bingo Association Limited, serving as the authoritative news and information source for licensed bingo operators in the United Kingdom. The website provides industry news, features, charity event coverage, and regulatory updates tailored to the bingo sector. It maintains a professional presence with consistent branding and trusted certifications from recognized gambling and responsible gaming bodies. Technically, the site is built on WordPress with a modern plugin ecosystem including Yoast SEO and GDPR compliance tools, ensuring good SEO and privacy adherence. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is well-positioned as a niche media outlet within the UK gambling industry, targeting industry professionals and stakeholders.

E

Eurozel - Čerstvé a zdravé

eurozel.sk

70

Eurozel - Čerstvé a zdravé is a small retail business operating in Slovakia, specifically targeting the Bratislava region. The company specializes in the regular delivery of fresh fruits, vegetables, and supplementary goods, catering to customer requirements and agreements. The website is built on WordPress using the Divi theme, enhanced with SEO optimization via Yoast and cookie consent management through Cookiebot. The technical infrastructure reflects a moderate level of digital maturity with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service. Overall, the website presents a professional and trustworthy front for a local retail delivery service, though improvements in security and compliance documentation are recommended.

Č

České ILCO, z.s.

ilco.cz

45

České ILCO, z.s. is a well-established Czech non-profit patient organization dedicated to supporting individuals living with stoma. With over 30 years of experience, it provides education, support, and advocacy for patients, collaborating with healthcare providers and governmental bodies. The website reflects a mature digital presence built on WordPress with the Divi theme, offering comprehensive content and clear navigation tailored to its target audience. Technically, the site employs modern web technologies including Google reCAPTCHA v3 and GDPR-compliant cookie management, ensuring user privacy and security. However, the absence of WHOIS data and missing security headers suggest areas for improvement in transparency and security hardening. Overall, the organization's online presence is professional and trustworthy, supporting its mission effectively.

C

CLINITEX s.r.o.

clinitex.cz

60

CLINITEX s.r.o. is a Czech company specializing in the production and sale of healthcare textiles and medical clothing, serving medical professionals, healthcare staff, and patients. Established in 2005, the company emphasizes quality, comfort, and modern design in its product offerings. The website reflects a mature business with a clear market position in the healthcare textile sector. Technically, the site uses established JavaScript libraries such as jQuery and Owl Carousel, with a cookie consent mechanism implemented to comply with privacy regulations. The site is hosted under Czech domain registrars and uses HTTPS with good SSL configuration, indicating a secure environment. However, there is room for improvement in security policies and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

SimplyWines | Vína jsou naše srdeční záležitost

simplywines.cz

39

SimplyWines.cz is a Czech Republic based e-commerce platform specializing in wine sales and education. The website targets consumers interested in learning about wine origins, production, and gastronomic culture, positioning itself as a niche retailer with a focus on wine enthusiasts. The site offers a wine catalog and online ordering capabilities, supported by clear contact information and a professional design. Technically, the site employs modern web technologies including Google Analytics, Facebook Pixel, and Hotjar for analytics and marketing, and uses HTTPS to secure communications. However, the absence of explicit privacy and cookie policies and lack of WHOIS transparency slightly reduce trustworthiness. Security posture is moderate with room for improvement in security headers and vulnerability disclosure mechanisms. Overall, the site is functional, professional, and targets a mature audience interested in wine products.

M

MeDitorial s.r.o.

veterinarni-lekari.cz

56

The website www.veterinarni-lekari.cz is a professional information portal dedicated to veterinary healthcare professionals in the Czech Republic. Operated by MeDitorial s.r.o., it provides a comprehensive range of services including veterinary news, accredited courses, thematic articles, event calendars, and career opportunities. The site targets veterinary specialists and healthcare providers, positioning itself as a leading source of veterinary knowledge in the region. Technically, the website employs modern JavaScript libraries such as jQuery, Google Tag Manager, and Magnific Popup, ensuring a responsive and user-friendly experience. The site is mobile-optimized and includes structured data for SEO benefits. However, no CMS or hosting provider information is explicitly detected. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating attention to secure data handling. However, no explicit security headers were detected, and no dedicated security or incident response policies are published. The absence of WHOIS data for the domain reduces confidence in domain legitimacy, though the website content and company information appear professional and trustworthy. Overall, the site demonstrates a solid business and technical foundation with room for improvement in security transparency and domain registration clarity. Strategic recommendations include implementing security headers, publishing security policies, and resolving WHOIS data visibility to enhance trust and compliance.

V

vianovis GmbH - web mapping solutions

vianovis.de

48

vianovis GmbH is a specialized German technology company providing advanced web mapping solutions primarily for municipalities, cities, counties, and regional authorities. With over 30 years of experience, they offer a comprehensive geoportal platform (touvia.MAPS) including data management, interactive maps, citizen participation tools, and full hosting and support services. Their market position is strong within Germany, serving over 200 customers with scalable solutions tailored to different sizes of communities and organizations. The website reflects a professional and trustworthy business with clear pricing and customer testimonials. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Slider Revolution, leveraging HTML5 video and WebGL for interactive content. Hosting is provided by kasserver.com, and the site is well optimized for SEO and mobile devices. Security posture is good with HTTPS, SSL certificates, and hCaptcha for form protection, though some security headers could be improved. Privacy compliance is robust with a clear privacy and cookie policy and GDPR consent mechanisms. Overall, the site and business demonstrate a mature digital presence with strong security and privacy practices, suitable for their target audience. No critical vulnerabilities or blocking mechanisms were detected, indicating a reliable and accessible platform.

V

vianovis GmbH - web mapping solutions

touvia.de

48

vianovis GmbH is a specialized technology company focused on delivering advanced web mapping solutions primarily for municipalities, cities, and regions in Germany. With over 30 years of experience, the company offers a comprehensive suite of geoportal services including touvia.MAPS, touvia.geoCMS, and touvia.komMIT, enabling clients to create interactive, customizable online maps with integrated data management and citizen participation features. The company positions itself as a full-service provider with personalized support and transparent pricing, serving over 200 customers nationwide. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, leveraging WebGL for real-time data visualization. Hosting is likely provided by kasserver.com, and the site employs HTTPS with hCaptcha for form security. The site is well-optimized for SEO and mobile devices, though some security headers could be improved. Security posture is solid with HTTPS and spam protection, but lacks explicit security policies or incident response contacts. Privacy compliance is good, featuring GDPR-compliant cookie consent and a privacy policy. No critical vulnerabilities or suspicious activities were detected. Overall, vianovis GmbH presents a professional, trustworthy, and technically competent online presence aligned with its business focus. Strategic improvements in security headers and formal security policies would enhance its security maturity and trustworthiness further.

Z

Zakra

zakrademos.com

69

Zakra is a WordPress theme provider specializing in offering over 100 starter sites that enable users to quickly build responsive and SEO-friendly websites. The company appears to be established since 2019 and targets website developers, freelancers, and small to medium businesses seeking ready-made website templates. The website demonstrates a moderate level of digital maturity with integration of modern web technologies such as Google Analytics, Google Tag Manager, Crisp Chat, and uses WordPress with Elementor and WooCommerce plugins. The site is hosted on a CDN (Cloudfront) ensuring reasonable performance and global availability. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the site is professional and trustworthy but could improve transparency and security documentation.

I

Inovis d.o.o.

inovis.si

55

Inovis d.o.o. is a Slovenian IT services company established in 2007, offering a broad range of IT solutions including external IT services, IT support, cloud computing, cybersecurity, IT infrastructure development, and consulting. The company targets businesses seeking reliable and advanced IT solutions to support growth and operational efficiency. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Analytics and Facebook Pixel, alongside consent management for GDPR compliance. Security posture is solid with HTTPS and reCAPTCHA, though lacking published security policies or incident response details. Overall, the website is professional, well-structured, and trustworthy, supporting the company's market position as a reliable IT partner in Slovenia.

The website www.luckia.es is currently inaccessible from the analyzed location due to a Cloudflare geographic access block. The visible content is limited to a message informing users that access is denied from their current location, with a contact email provided for support. Due to this restriction, no substantive business or service information is available on the page. The site uses Cloudflare for security and performance, and Google Fonts for typography. No privacy, cookie, or terms of service policies are present on the blocked page, and no interactive forms or social media links are visible. The main branding logo is present, indicating the company name Luckia, which is likely a gambling or betting platform based in Spain.

S

Sdružení pro integraci a migraci

uprchlici-vitejte.cz

60

Uprchlíci vítejte is a Czech Republic based non-profit project dedicated to facilitating dignified housing for refugees by connecting them with local residents willing to share their homes. The project is part of a broader European and international network and operates under the auspices of Sdružení pro integraci a migraci, a well-established organization providing legal and social support to migrants. The website provides comprehensive information about the project, its concept, FAQs, team members, and contact details, supporting transparency and trust. Technically, the website is built on WordPress using common plugins such as Yoast SEO and Contact Form 7, with a Bootstrap-based responsive design. It uses HTTPS and standard web technologies, but lacks some advanced security headers and privacy compliance documents such as privacy and cookie policies. The site includes forms for housing offers and refugee registrations, as well as a newsletter signup integrated with Mailchimp. From a security perspective, the site shows good basic practices with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies and security headers represents compliance and security gaps. Contact information is clearly provided, including emails, phone, and physical address, enhancing credibility. No WAF or blocking mechanisms were detected, and the site content is safe and appropriate for general audiences. Overall, the website is a credible and well-maintained platform supporting a socially important cause, with room for improvement in privacy compliance and security hardening to enhance trust and regulatory adherence.

Z

Zakra

zakratheme.com

67

Zakra is a well-established WordPress theme provider founded in 2019, offering a highly customizable, fast, and SEO-friendly multipurpose theme with over 100 templates. The company targets WordPress users ranging from small businesses to bloggers and eCommerce store owners, positioning itself as a top-rated theme in the market. Technically, the website leverages modern WordPress technologies, including popular page builders and SEO plugins, ensuring excellent performance and mobile optimization. Security posture is solid with HTTPS enabled and domain transfer protection, but lacks visible security headers and formal privacy or cookie policies. Overall, the site demonstrates professionalism and trustworthiness but would benefit from enhanced privacy compliance and security best practices.

VKR Holding is an established enterprise headquartered in Denmark, specializing in the ownership and development of companies that produce sustainable building components focused on improving indoor climate and environmental impact. With a presence in 38 countries and over 17,000 employees, VKR Holding holds a strong market position in the manufacturing sector, particularly in real estate-related products. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that targets investors, partners, and stakeholders interested in sustainability and corporate governance. Technically, the site employs modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance, hosted likely behind Cloudflare or a similar provider. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

E

Evidsoft s.r.o.

topenicerpadlem.cz

54

The website www.topenicerpadlem.cz represents Evidsoft s.r.o., a small Czech company specializing in the sale, installation, servicing, and general repairs of heat pumps from leading brands such as Hitachi, Daikin, LG, and Panasonic. The company targets both residential and commercial customers primarily in the Moravia region. The site is well-structured, professionally designed, and provides detailed product information, pricing, and contact details, supporting a strong regional market position. Technically, the website employs modern web technologies including jQuery, Bootstrap, Google Fonts, and Google reCAPTCHA v3, ensuring a responsive and secure user experience. The site uses HTTPS exclusively and integrates Google Analytics for traffic monitoring. However, some security headers are missing, and there is no explicit security policy or incident response information published. From a security perspective, the site demonstrates good practices such as encrypted connections and bot protection but lacks comprehensive security headers and incident response contacts. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness. No vulnerabilities or malicious content were detected. Overall, the website is a credible and professional digital presence for a regional energy equipment provider, with moderate technical maturity and a solid security posture. Strategic improvements in security policy transparency and WHOIS data availability would enhance trust and compliance.

S

Spolek mediků českých

spolekmedikuceskych.cz

42

Spolek mediků českých is a Czech Republic-based non-profit community organization established in 1863 that supports medical students by providing networking opportunities, organizing events, and offering study support and facilities. The website serves as a digital hub for this community, featuring event calendars, membership information, and social media links. The organization holds a respected position within its niche, leveraging its long-standing tradition to maintain community engagement. Technically, the website is built on WordPress 6.8.3 with common plugins such as Jetpack and CoBlocks, and integrates Google services like Fonts and Calendar. The site is hosted on Czech providers with HTTPS enforced, ensuring secure connections. Mobile optimization and accessibility are adequate, though SEO and performance could be enhanced. The site lacks comprehensive privacy and cookie policies, which impacts compliance. From a security perspective, the site benefits from HTTPS but lacks visible security headers and incident response information. No forms or sensitive data collection points were detected on the homepage, reducing immediate risk exposure. Tracking is minimal, limited to Jetpack analytics. Overall, the security posture is moderate but could be improved by implementing best practices and transparency in privacy and incident response. The overall risk is low given the nature of the site and its content, but strategic improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and regulatory adherence.

M

MeDitorial s.r.o.

cls.cz

58

Česká lékařská společnost Jana Evangelisty Purkyně (ČLS JEP) is a prominent non-profit professional association representing medical doctors, pharmacists, and healthcare workers in the Czech Republic. The organization provides a broad range of services including organizing medical societies and clubs, publishing medical journals, hosting conferences and events, and maintaining a centralized member registry. The website reflects a well-established entity with a large membership base and strong partnerships with governmental and healthcare institutions. The site content is professionally curated, targeting medical professionals and stakeholders in the healthcare sector.

F

Förderverein Montanregion Erzgebirge e.V.

fv-montanregion-erzgebirge.de

48

Förderverein Montanregion Erzgebirge e.V. is a small non-profit organization dedicated to promoting and supporting the mining heritage of the Erzgebirge region in Germany. The website serves as a platform to communicate their projects, sponsorship opportunities, and community engagement activities. Their market position is regional and cultural, targeting local stakeholders and heritage enthusiasts. Technically, the website is built on WordPress using the Enfold theme, with modern web technologies and a cookie consent mechanism that supports GDPR compliance. Security posture is adequate with HTTPS enforced and cookie consent blocking, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it lacks explicit incident response or vulnerability disclosure information.

The website bikerentalmanager.com is currently inaccessible due to a 403 Forbidden error served by Cloudflare's Web Application Firewall (WAF). This indicates that access to the site is blocked, possibly due to security policies or misconfiguration. The page content is minimal, consisting solely of an error message with no business or contact information, privacy policies, or terms of service. The domain is registered since 2013 with a reputable registrar and uses Cloudflare DNS services, but DNSSEC is not enabled. No structured data or SEO metadata is present, and the site is set to noindex, preventing search engine indexing. Overall, the site lacks visible content and compliance information, limiting the ability to assess its business or security posture fully.

E

ETHNOCATERING

ethnocatering.cz

45

ETHNOCATERING is a Czech Republic based social enterprise specializing in authentic catering services with flavors from the Middle East, Europe, and the Mediterranean. With over 19 years of experience, the company serves a diverse clientele including weddings, conferences, and corporate events, emphasizing social impact by employing disadvantaged women. The website is professionally designed using WordPress and Elementor, featuring good content quality and clear navigation. Technical infrastructure includes modern web technologies and compliance with GDPR through a robust cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Overall, the site reflects a trustworthy and credible business with a strong social mission.

N

NORMA connect

norma-connect.de

64

NORMA connect is a German telecommunications provider specializing in 5G mobile tariffs within the premium D-Netz network. The company offers prepaid and postpaid plans with flexible data options, allnet and SMS flat rates, and eSIM support. Their business model includes direct consumer sales via a WordPress-based website integrated with a Shopify webshop partner for order processing. The website is professionally designed, mobile-optimized, and SEO-friendly, targeting German consumers seeking reliable 5G mobile services. Technical infrastructure leverages WordPress CMS with modern plugins for video playback, cookie consent, and image optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are absent. No privacy policy or terms of service pages were found, indicating room for compliance improvement. Overall, the site is trustworthy, safe for general audiences, and well-positioned in the German telecommunications market.

P

Poradna pro integraci, z. ú.

p-p-i.cz

40

Poradna pro integraci is a well-established Czech non-profit organization founded in 2001, dedicated to supporting the integration of foreigners in the Czech Republic. The organization provides free social and legal counseling, Czech language courses, and promotes multiculturalism. Their website reflects a professional and consistent brand presence, with clear navigation and relevant content targeting immigrants and foreigners seeking integration assistance. The organization maintains offices in Prague and Ústí nad Labem, with transparent contact information and active social media engagement. Technically, the website is built on WordPress using popular plugins such as Slider Revolution and Visual Composer, hosted by a reputable Czech provider (Active24). The site is mobile-optimized and performs moderately well, with standard SEO and accessibility features. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, though additional security headers and explicit security policies could enhance the posture. From a security perspective, the site shows no signs of vulnerabilities or malicious content. However, it lacks formal incident response contact channels and vulnerability disclosure mechanisms. Privacy compliance is good, with a comprehensive GDPR-related privacy policy present, though cookie consent mechanisms are not evident. Overall, the site demonstrates a solid security baseline appropriate for a non-profit organization. The domain registration data aligns well with the organization's history and location, indicating legitimacy and trustworthiness. The site links to partner organizations, reinforcing its community and sector integration. No advertising or extensive tracking is detected, supporting a privacy-conscious approach. Strategic recommendations include implementing security headers, adding explicit security and incident response policies, and introducing cookie consent mechanisms to improve compliance and trust. These steps will strengthen the organization's digital maturity and security posture while maintaining its mission focus.

F

Fyziotoncar s.r.o.

fyziotoncar.cz

47

Fyziotoncar s.r.o. is a small, regionally focused healthcare provider specializing in physiotherapy, rehabilitation, and wellness services in the Czech Republic, with physical branches in Děčín, Jílové, and Proboštov. The company emphasizes a family tradition dating back to 1994 and collaborates with sports professionals and medical experts. Their website reflects a professional and consistent brand image, providing clear contact information and service descriptions targeted at patients with musculoskeletal issues and wellness needs. Technically, the website uses modern web technologies including Google Fonts and Flickity for UI components, with custom CSS and JavaScript bundles. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, there is no explicit CMS or hosting provider identified, and performance is moderate. Accessibility features are basic but present. From a security perspective, the site uses HTTPS (implied by the URL), has a cookie consent mechanism with granular options, and does not expose sensitive data in the HTML. However, no security headers were detected in the provided data, and no incident response or security policies are published. The WHOIS data is unavailable, likely due to privacy protection, which limits domain trust verification. Overall, the security posture is moderate with room for improvement in headers and documented policies. The overall risk is low given the nature of the business and the professionalism of the website, but the lack of WHOIS transparency and security headers suggests the company should enhance its security and compliance posture to build greater trust and resilience.

Apartmány Engadin is a small hospitality business operating since 2006, offering family-friendly and sports group accommodations in Boží Dar, Czech Republic. The website provides comprehensive information about their apartments, wellness center, and additional services such as event hosting and long-term rentals. The business targets families, sports teams, and corporate groups seeking mountain lodging with wellness amenities. Technically, the website uses standard web technologies including jQuery, LayerSlider, and integrates third-party booking and social media services. The site is mobile-optimized with good navigation and content relevance. Security posture is moderate with HTTPS usage but lacks explicit security headers and privacy policies. Contact information is clearly presented with multiple channels, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the business claims.

O

oxygen th_4

homeofav.cz

39

Voděrádky.cz is a Czech-based event venue offering a unique multimedia hall with a summer stage under centuries-old oak trees. The business targets event organizers and cultural communities, providing venue rental, multimedia content creation, and technical support for hybrid and live events. The company positions itself as a niche provider combining natural ambiance with advanced technology. The website is built on WordPress using Oxygen Builder, integrating modern multimedia players and optimized for SEO and mobile devices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, but could improve transparency on security and incident handling.

The website premium-wordpress-themes.org is an informational resource focused on educating users about the benefits of premium WordPress themes, targeting small businesses and WordPress users. It provides content emphasizing design quality, support, customization, and affordability of premium themes compared to free alternatives. The site operates on WordPress 4.7.29, hosted by GreenGeeks, and uses older versions of jQuery and related libraries. The technical infrastructure is basic with moderate performance and limited mobile optimization. Security posture is weak due to lack of security headers, outdated software, and missing HTTPS enforcement details. No privacy, cookie, or terms of service policies are present, and no contact information or social media links are provided, limiting trust and compliance. The domain registration is consistent and legitimate, registered since 2015 with a reputable registrar and hosting provider.

C

COOP MORAVA, s.r.o.

coopmorava.cz

46

COOP MORAVA, s.r.o. operates the largest retail cooperative network in the Moravia region of the Czech Republic, with over 800 stores under the COOP brand. The company focuses on providing grocery and household products to general consumers, supported by promotional campaigns, a mobile application, and recipe content to engage customers. The website reflects a mature digital presence with a professional design and consistent branding, targeting a broad consumer base in the region. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent mechanisms. The absence of WHOIS data and privacy policy pages slightly reduces trustworthiness. No critical vulnerabilities or exposed sensitive data were found in the content. The tracking and analytics usage is extensive, which may raise privacy considerations. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced transparency in privacy and security policies, improved security headers, and WHOIS data availability to strengthen its compliance and trust posture.

Softsolutions, s.r.o. is a Slovakian small technology company specializing in custom software applications, responsive web design, and mobile app development. The company positions itself as a professional, flexible, and reliable partner for clients seeking tailored software solutions. Their website reflects a modern design using Bootstrap and jQuery, optimized for mobile devices and integrating Google Analytics for visitor tracking. However, the site lacks critical privacy and cookie policies, and no terms of service or security policies are published, which may impact user trust and compliance with GDPR regulations. The contact information is clearly provided, including phone, email, and social media links, supporting business credibility. The domain is well-established since 2014 with DNSSEC enabled, indicating a legitimate and consistent registration.