Security Directory

W

WARC

warc.com

65

WARC is a well-established digital platform and advisory service specializing in marketing effectiveness. It serves a global audience of marketing professionals, agencies, media owners, and academic institutions by providing evidence-based research, case studies, data tools, and professional learning programs. The website reflects a strong market position with a comprehensive suite of products including strategy, creative, media, learning, and advisory services. The parent company is Ascential Events (Europe) Limited, indicating a credible corporate backing. Technically, the website employs modern web technologies such as jQuery, Bootstrap, Slick Carousel, and integrates marketing and analytics tools like Marketo Munchkin and Google Tag Manager. The site is mobile optimized, accessible, and SEO friendly, with a professional design and clear navigation. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with good SSL configuration and some security best practices. However, explicit security headers like Content-Security-Policy and X-Content-Type-Options are not detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. Contact information is available primarily via contact forms. Overall, the website presents a low risk profile with strong business credibility and technical maturity. The main concern is the absence of WHOIS data, which is unusual but likely due to registrar or privacy policies rather than malicious intent. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen trust and security posture.

Q

QUITEC

zoper.cz

56

ZOPER.cz is a Czech Republic based specialized e-commerce platform focused on providing modern point-of-sale (POS) technology and related services for retail and hospitality sectors. The business is operated by the company QUITEC, led by Martin Pavlík, and offers a wide range of POS hardware, software, accessories, and consulting services. The website targets small to medium-sized businesses in the Czech market, positioning itself as a knowledgeable guide and supplier in the POS domain. Technically, the website is built on the Shoptet CMS platform, utilizing common web technologies such as jQuery, Google Tag Manager, Google Analytics (both UA and GA4), Facebook SDK, and various marketing and tracking tools including ActiveCampaign and Leady. The site is mobile optimized with good navigation and content structure, though some technical improvements are possible, such as updating outdated libraries and enhancing security headers. From a security perspective, the site enforces HTTPS and uses CSRF tokens on forms, with a cookie consent mechanism in place indicating GDPR compliance. However, explicit security policies and incident response information are not published, and some security headers are missing. No vulnerabilities or exposed sensitive data were detected in the content. The lack of WHOIS data reduces domain trustworthiness, but the website content and business presence appear professional and legitimate. Overall, ZOPER.cz presents a solid business offering with good technical and privacy practices, though improvements in security transparency and domain registration clarity are recommended to enhance trust and compliance.

L

Lamael

lamael.cz

46

Lamael.cz is a business-focused website representing Lamael, a company founded in 2017 that offers a mobile application for business management. The website targets business users seeking efficient management tools, positioning itself as a niche player in the technology sector within the Czech Republic. The site is built on WordPress using the Thrive Theme and incorporates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity, indicating a mature digital marketing strategy. Security measures include HTTPS and reCAPTCHA, but lack explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the website is professional and well-branded, though it could improve transparency and security posture.

Z

Zo školy do školy | IKAR

zoskolydoskoly.sk

55

The website zoskolydoskoly.sk is an e-commerce platform specializing in children's books targeted at children aged 0 to 12 years. It offers a wide catalog of books with a focus on educational and entertaining literature for young readers. The site is localized in Slovak language and hosted on a Slovak hosting provider, indicating a regional focus. The business appears to be newly established in 2024, consistent with the domain registration date. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and integrates Google Tag Manager for analytics and tracking, although it currently denies ad and analytics storage by default, showing some privacy consideration. Security posture is moderate with HTTPS and DNSSEC enabled, but lacks security headers and formal security policies. No privacy or cookie policies were found, which is a compliance gap. Contact information is not explicitly provided on the visible content, which may affect user trust and support accessibility. Overall, the website is professionally designed with good navigation and content relevance, suitable for its target audience. The content is safe with no adult or explicit material.

M

MIDOCAR Logistic, s.r.o

dopravomat.cz

49

Dopravomat.cz is a Czech-based platform operated by MIDOCAR Logistic, s.r.o, founded in 2020, specializing in group transportation services. The website enables users to submit transportation requests for groups and receive competitive offers from a network of verified transport providers across the Czech Republic. The business model focuses on transparency, no hidden fees, and payment only after service completion, positioning itself as a trusted intermediary in the transportation sector. The platform targets groups needing various transport sizes, from personal cars to large buses, emphasizing convenience and cost-effectiveness. Technically, the website employs a custom-built infrastructure leveraging modern web technologies including Google Maps API for location autocomplete, jQuery and jQuery UI for UI components, and integrates multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized with good navigation and user experience, though some accessibility features are basic. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and uses secure form inputs but lacks visible security headers and published security policies. There is no cookie consent mechanism, which may impact privacy compliance. No incident response or vulnerability disclosure information is available. The WHOIS data is consistent with the business identity, indicating legitimacy. Overall, the security posture is adequate but could be improved with additional best practices. The overall risk is moderate with no critical vulnerabilities detected. Strategic improvements in privacy compliance, security headers, and transparency around security policies would enhance trust and reduce risk. The platform is well-positioned in its niche with a clear value proposition and solid business credibility.

Bohemiasoft s.r.o. operates a Czech-language website offering a suite of integrated online business tools tailored for small and medium entrepreneurs. Their services include online invoicing, email hosting on custom domains, e-commerce solutions, website creation, and digital office integration, positioning them as a comprehensive SaaS provider in the Czech market. The website is professionally designed with clear navigation and good content relevance, targeting entrepreneurs seeking centralized business management solutions. Technically, the site is built on WordPress with modern JavaScript libraries and includes analytics and social media integrations, reflecting a moderate level of digital maturity. Security posture is adequate but could be improved by implementing additional security headers and anti-spam measures on forms. Privacy and terms of service documents are provided, indicating a commitment to compliance, though cookie consent mechanisms are lacking. Overall, the domain registration is consistent with the business claims, showing a long-standing presence since 2008. Strategic recommendations include enhancing security headers, adding bot protection, and improving privacy compliance mechanisms to strengthen trust and security.

B

Bisport

bisport.cz

53

Bisport is a well-established small business specializing in water sports rental services, particularly canoe and raft rentals on the Sázava river in the Czech Republic. The company also offers accommodation, catering, and organizes school and corporate events, positioning itself as a regional leader in outdoor hospitality and tourism. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to families, schools, and outdoor enthusiasts. Technically, the site is built on WordPress, leveraging modern web technologies such as Google Analytics and Tag Manager for tracking, and includes a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers and policies could be improved. Overall, the site is trustworthy, user-friendly, and compliant with privacy regulations, supporting the business's credibility and customer engagement.

D

DRONTE s.r.o.

dronte.cz

45

DRONTE s.r.o. operates a specialized boat rental and water sports service primarily in the Czech Republic, focusing on rivers such as Berounka, Hron, Ohře, Otava, Sázava, Lužnice, Vltava, and Malý Dunaj. The company offers rentals of kayaks, rafts, and canoes, organizes water sports events, and provides accredited courses through its water sports school. The business also engages in boat manufacturing and sales, targeting outdoor enthusiasts and tourists interested in water activities. The website reflects a small but established regional player with a clear focus on water recreation and tourism. Technically, the website employs a moderately modern tech stack including jQuery, Nette Framework, and various UI libraries. It integrates multiple third-party analytics and advertising tools such as Google Analytics, Google Tag Manager, Google Ads, and Seznam Retargeting. The site is mobile-optimized with good navigation and content quality, though accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies. Cookie consent is implemented, indicating some privacy compliance. No incident response or vulnerability disclosure information is publicly available. The absence of WHOIS data limits domain trust verification, though the website content and business information appear consistent and legitimate. Overall, the security posture is average with room for improvement in headers, policies, and transparency. The overall risk assessment is moderate. The business appears credible and operational, but the lack of WHOIS transparency and limited security policies suggest caution. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, auditing third-party scripts, and improving accessibility and privacy compliance to strengthen trust and security culture.

Půjčovna lodí Samba s.r.o. operates a specialized water sports equipment rental service focusing on canoe, raft, and kayak rentals across several Czech rivers including Sázava, Otava, Lužnice, Morava, and Ohře. The company targets water sports enthusiasts, families, schools, and corporate groups, offering additional services such as baggage transport and theft insurance. The website is well-structured, professionally designed, and provides clear contact information and service descriptions, positioning the company as a trusted regional provider in the water sports rental market. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, and retargeting scripts from Seznam, with responsive design and embedded widgets for real-time river conditions. While the site uses HTTPS and cookie consent mechanisms, it lacks explicit security headers and a formal security policy page, which could be improved to enhance security posture. Security-wise, the site shows good practices such as encrypted connections and no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy, though the website content and contact details appear authentic and professional. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements in security headers and transparency around vulnerability disclosure would further strengthen trust and security posture.

C

Coweo Technologies s.r.o.

tvpisek.cz

72

Coweo Technologies s.r.o. operates JenPráce.cz, the second largest job and gig advertisement portal in the Czech Republic, serving job seekers and employers with a comprehensive platform for job listings, HR advertising services, and career advice. The company has a solid market position with experience dating back to 2007 and maintains a professional online presence with consistent branding and quality content. The website is well-structured, mobile-optimized, and integrates modern tracking and analytics technologies such as Google Tag Manager, Facebook SDK, and Sentry for error monitoring. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms in place. Security posture is strong with HTTPS enforced and use of security best practices, although explicit security headers could be improved. The absence of WHOIS data reduces domain transparency and trust slightly, but overall business credibility remains high based on available information and certifications like ISO 27001.

E

Elifin s.r.o.

elifin.cz

39

Elifin s.r.o. is a Czech Republic based small professional services firm specializing in comprehensive consulting services including legal, tax, accounting, and financial controlling. Established in 2006, the company offers a broad range of services such as mergers and acquisitions advisory, crisis management, corporate consulting, asset management, and company liquidation. The firm maintains partnerships with recognized organizations like KODAP and the international ETL group, enhancing its market credibility and reach. Technically, the website employs a custom or legacy CMS with JavaScript libraries such as jQuery and carouFredSel for UI components. Google Tag Manager and Google Analytics are used for tracking, although no explicit cookie consent mechanism or privacy policies are present. The site is moderately optimized for mobile and SEO, with a consistent and professional design. From a security perspective, the site uses HTTPS URLs but lacks visible security headers and published security policies. No vulnerability disclosure or incident response information is provided, which could be improved to enhance trust and compliance. The contact information is clearly presented, supporting business credibility. Overall, the website is safe, professional, and well-aligned with its business purpose. However, it would benefit from enhanced privacy compliance, security best practices, and transparency regarding data protection and incident handling.

N

Netpromotion

muzeum-st.cz

45

Muzeum středního Pootaví Strakonice is a regional cultural institution operating under the South Bohemian Region of the Czech Republic. It manages historical exhibitions primarily located in the Strakonice castle complex and the unique water mill in Hoslovice. The museum offers a variety of cultural and educational services including exhibitions, lectures, virtual tours, and special events. The institution benefits from EU funding and government support, positioning it as a key cultural heritage site in the region. The website reflects a professional and consistent brand image with clear navigation and relevant content for tourists, educators, and the general public. Technically, the website is built on WordPress using Elementor and several Jet plugins, integrating modern web technologies such as Google Tag Manager, Facebook SDK, and YouTube API. The site is mobile optimized and includes SEO best practices. Security measures include HTTPS, reCAPTCHA, and cookie consent mechanisms, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The security posture is solid with good privacy compliance, including a comprehensive GDPR policy and cookie consent. However, the site lacks explicit security policies and incident response contacts. Analytics and tracking are moderate, using Google Analytics and Facebook Pixel, with appropriate privacy notices. Overall, the website is trustworthy, well-maintained, and suitable for its audience. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and compliance.

T

TECHNICOAT s.r.o.

technicoat.cz

53

TECHNICOAT s.r.o. is a well-established, family-owned company specializing in high-performance functional coatings based on fluoropolymer technology. Founded in 1999 and headquartered in the Czech Republic, it serves a broad range of industrial sectors including automotive, energy, food, semiconductor, chemical, and general engineering. The company is part of the ADELHELM group and operates subsidiaries such as TECHNICOAT Bakeware s.r.o. Their business model focuses on B2B service provision with a strong emphasis on quality, innovation, and customer responsiveness. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Swiper.js, with integrated Google Analytics and Consent Mode for privacy compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and published security policies could enhance protection. The absence of WHOIS data due to privacy protection is noted but does not detract significantly from the legitimacy of the business, which is supported by certifications such as ISO 9001:2015 and multiple trust indicators including customer testimonials and industry awards. Overall, the website and business present a credible, professional, and secure digital presence suitable for their industrial clientele. Recommendations include enhancing security headers, publishing a security policy and incident response information, and considering a vulnerability disclosure program to further strengthen trust and compliance.

S

South Bohemia Convention Bureau

sbcb.cz

44

South Bohemia Convention Bureau is a regional organization dedicated to supporting event organizers in the South Bohemia region of the Czech Republic. It provides independent assistance in planning and executing conferences, congresses, and incentive events. The website reflects a professional and regionally focused business model, targeting event planners and corporate clients seeking venues and programs in South Bohemia. The organization positions itself as a key regional player with partnerships and a clear service offering.

T

TETRONIK - výrobní družstvo Terezín, družstvo

qtcloud.cz

48

QTCloud is a Czech Republic-based technology company specializing in cloud-based queue management system enhancements. Founded in 2017, it offers modular applications including reservation systems, statistics, central kiosk management, mobile apps, and monitoring tools. The company targets both private sector businesses and public sector offices, with notable clients such as T-Mobile and government agencies. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site uses modern frameworks like Bootstrap and jQuery, hosted likely on Wedos infrastructure, and integrates Google services for analytics and spam protection. Security posture is solid with HTTPS and reCAPTCHA, but lacks published privacy and cookie policies, which impacts compliance. Overall, the site is accessible, well-structured, and trustworthy, though improvements in privacy transparency and security headers are recommended.

G

GRASPO CZ, a.s.

graspo.store

60

GRASPO CZ, a.s. operates the website www.graspo.store as a Czech manufacturer and retailer specializing in diaries, planners, notebooks, and related stationery products. The company emphasizes environmental responsibility, demonstrated by ISO 140001:2004 certification and the use of FSC® certified paper. The website targets general consumers interested in quality stationery and offers both retail and custom manufacturing services. Technically, the site uses modern web technologies including UIkit, jQuery, Google Tag Manager, and analytics tools like Google Analytics and Smartlook, providing a moderate to good performance and mobile optimization. Security posture is strong with HTTPS enforcement, secure forms, and standard security headers, though a dedicated security policy and incident response information are absent. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the website presents a professional and trustworthy e-commerce platform with good business credibility and technical maturity.

G

G-Notes / Tiskárna GRASPO

gnotes.cz

55

G-Notes, operated by Tiskárna GRASPO, is a Czech-based manufacturer and retailer specializing in diaries, notebooks, and calendars with a strong emphasis on eco-friendly materials and custom printing services. The company targets both corporate clients and individual consumers, offering bespoke branding options and a wide product range accessible via their e-commerce platform. Their market position is that of a niche, quality-focused stationery provider with a commitment to sustainability. Technically, the website is built on the Shoptet e-commerce platform, utilizing common web technologies such as jQuery, Bootstrap, and Google Analytics, ensuring a modern and responsive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site presents a professional and trustworthy front, though the lack of WHOIS transparency slightly reduces domain trust. Strategic recommendations include enhancing security headers, updating legacy libraries, and publishing explicit security policies to further strengthen trust and compliance.

C

CleverCherry

clevercherry.com

52

CleverCherry is a well-established creative and digital agency based in Birmingham, United Kingdom, with a domain age dating back to 2000. The company positions itself as a leading agency in the Midlands, offering a range of marketing, digital, and creative services targeted primarily at businesses seeking professional digital solutions. The website reflects a professional and consistent brand image, supported by structured contact information and active social media presence. Technically, the website employs modern web technologies including Google reCAPTCHA for bot protection, Google Tag Manager for analytics, and Font Awesome for iconography, hosted on DigitalOcean infrastructure. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the website is trustworthy and credible but would benefit from enhanced privacy and security policies to align with best practices.

K

Kloeber UK Ltd

kloeber.co.uk

51

Kloeber UK Ltd is a well-established bespoke glazing solutions provider founded in 2006, specializing in made to measure doors and windows including bifold, sliding, French, and front doors. The company targets self-builders, home improvers, architects, and developers across the UK, offering a comprehensive product range and services such as technical surveys, showroom visits, and participation in exhibitions. Their market position is strengthened by multiple industry certifications and awards, reflecting a strong reputation in the real estate sector. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, Facebook Pixel, and VWO for analytics and marketing optimization. The site is hosted with Cloudflare, uses HTTPS with DNSSEC enabled, and implements cookie consent mechanisms, demonstrating a mature digital infrastructure. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site enforces HTTPS, uses DNSSEC, and manages cookie consent properly. However, explicit security headers like Content-Security-Policy are not detected, and no public security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were found, indicating a solid security posture. Overall, the website is professional, trustworthy, and compliant with GDPR. The business credibility is high, supported by clear contact information, certifications, and consistent branding. Recommendations include enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen the security and compliance posture.

Klöberfinder.com is a specialized configurator platform operated by BMI Deutschland GmbH, focusing on roofing accessories such as ventilation, roof penetrations, and drainage solutions for pitched and flat roofs. The site targets roofing professionals and end customers seeking tailored product solutions. The business operates in the manufacturing sector with a medium-sized profile and a relatively recent domain registration dating back to 2021. Technically, the website employs modern JavaScript technologies including jQuery and module scripts, with Google Tag Manager for analytics. The site is mobile optimized and presents a professional user experience with clear navigation and consistent branding. Security posture is adequate with HTTPS enforced and nonce usage in scripts, but lacks DNSSEC and visible security headers, which are recommended for improvement. Privacy compliance is basic, with a cookie consent mechanism present but no privacy policy or terms of service found. No contact emails or phone numbers are explicitly provided on the analyzed page, which could be improved for better user trust and compliance. Overall, the website is safe, professional, and trustworthy with moderate technical and security maturity.

G

Grant Cardone

grantcardone.com

60

Grant Cardone is a well-established business and real estate coaching brand, founded in 1998, with a strong market position as a leading sales trainer and real estate investor managing billions in assets. The website reflects a mature digital presence with extensive use of modern technologies, marketing tools, and analytics platforms, supporting a robust online education and coaching business model. The technical infrastructure is solid, leveraging WordPress with performance optimizations and integrations with major marketing and analytics services. Security posture is good with HTTPS and domain protections, though improvements like DNSSEC and security headers could enhance it further. Privacy compliance is a notable gap, lacking visible privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the website is professional, trustworthy, and well-optimized for its audience.

F

FAPI

fapi.cz

63

FAPI is a Czech-based SaaS platform specializing in automated online sales and payment processing for digital products, courses, memberships, and physical goods. The company targets small businesses and freelancers seeking an easy-to-use solution to manage orders, invoicing, payments, and product delivery without programming knowledge. Established in 2012, FAPI has positioned itself as a reliable and professional player in the Czech e-commerce automation market, supported by a well-designed website and positive customer testimonials. Technically, the website is built on WordPress and leverages a modern tech stack including jQuery, Google Tag Manager, multiple analytics and tracking pixels (Google Analytics, Facebook Pixel, TikTok Pixel, Hotjar, Microsoft Clarity), and Vimeo for video content. Hosting is provided via AWS infrastructure, ensuring scalability and reliability. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's history and no suspicious registration patterns. Overall, FAPI demonstrates a mature digital presence with strong business credibility and privacy compliance. The main areas for improvement include enhancing security posture by adding security headers, publishing a security policy, and providing clear incident response contacts to strengthen trust and compliance further.

D

Dave Design

davedesign.cz

43

Dave Design is a Czech-based graphic and web design studio established in 1998, specializing in custom web design, graphic design, corporate identity, SEO, e-shops, and related digital services. The company serves a diverse client base ranging from small businesses to large corporations such as Vítkovice Steel. Their website reflects a professional and consistent brand image with a portfolio showcasing various projects and client references. Technically, the website uses traditional web technologies including HTML, CSS, JavaScript, and jQuery, supplemented by Google Analytics and Tag Manager for tracking. While the site is functional and well-structured, it lacks modern security headers and privacy compliance features such as a privacy policy or cookie consent mechanism. Security posture is moderate with room for improvement, especially in enforcing HTTPS and updating outdated libraries. Overall, the website is trustworthy and credible but would benefit from enhanced security and privacy practices.

O

Obchodní a technologický holding a.s.

otholding.cz

40

Obchodní a technologický holding a.s. is a Czech investment holding company focused on technology and startups. The company provides a portfolio of services including lead management, mobile app development, web notifications, LED panel rentals, and digitalization solutions for municipalities. Their market position is that of an innovator and quality leader in their sectors, targeting businesses and startups primarily in the Czech Republic and Slovakia. The website content is professional and well-structured, supporting their business model and market positioning. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and popular libraries such as jQuery, Swiper.js, and BaguetteBox.js. Google Analytics and Google Tag Manager are used for tracking, but no explicit privacy or cookie policies are present, indicating a gap in privacy compliance. The site shows moderate performance and basic mobile optimization. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, no security headers were detected, and there is no visible incident response or security policy information. The lack of WHOIS data reduces trust and transparency, which is a concern for legitimacy. Overall, the security posture is moderate but could be improved with better privacy compliance and security best practices. The overall risk assessment suggests a generally trustworthy and professional business website with some compliance and transparency gaps. Strategic recommendations include implementing privacy and cookie policies, adding security headers, improving mobile and accessibility features, and enhancing contact and incident response information to strengthen trust and security posture.

A

APPKEE s.r.o.

appkee.sk

55

APPKEE s.r.o. is a technology company specializing in custom mobile application development for iOS and Android platforms, serving a diverse clientele including businesses, municipalities, and retail sectors primarily in Central Europe. The company offers a comprehensive suite of services including app creation, management via their APP manager platform, push notifications, coupon distribution, and advanced features like iBeacon and integrated analytics. Their market position is solidified by over 750 deployed applications and a presence in multiple countries with regional offices. Technically, the website employs modern web technologies and analytics tools, with good mobile optimization and SEO practices. Security posture is generally strong with HTTPS and secure forms, though it lacks some advanced security headers and formal security policies. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, APPKEE demonstrates a professional and trustworthy digital presence aligned with its business objectives.

A

APPKEE s.r.o.

appkee.pl

54

APPKEE s.r.o. is a technology company specializing in custom mobile application development for iOS and Android platforms, targeting businesses and municipalities primarily in Central Europe. The company offers a comprehensive app management platform and premium features such as push notifications, coupons, analytics, and iBeacon technology. Their market position is supported by a portfolio of over 750 apps and multiple regional offices. Technically, the website employs modern analytics and tracking tools, is mobile-optimized, and uses HTTPS with secure forms compliant with GDPR. However, the absence of WHOIS data and explicit security policies slightly impacts trust. Overall, APPKEE demonstrates a solid digital presence with good business credibility and technical maturity.

A

APPKEE s.r.o.

appkee.eu

60

APPKEE s.r.o. is a Czech-based technology company specializing in the development of custom mobile applications for iOS and Android platforms. The company targets a diverse audience including municipalities, businesses, restaurants, hotels, and e-commerce stores, offering a comprehensive app management platform called APP manager. With over 750 mobile applications deployed, APPKEE holds a solid regional market position supported by clear pricing models and premium features such as push notifications, app vouchers, and payment gateway integration. The company is part of the OT Holding group, enhancing its business credibility. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and YouTube APIs, ensuring good SEO and mobile optimization. The site is well-structured with multi-language support and a responsive design. Security posture is strong with HTTPS enforced and secure form handling, though some security headers are missing. Privacy compliance is evident with a comprehensive privacy policy, cookie consent mechanisms, and GDPR notices on data collection forms. Security-wise, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies and incident response information suggests room for improvement in transparency and preparedness. The WHOIS data is privacy protected, which is common for small tech firms, but limits domain ownership visibility. Overall, the website and business present a trustworthy and professional front with minor technical and security enhancements recommended. Strategically, APPKEE should focus on implementing security headers, publishing incident response details, and enhancing accessibility to further strengthen trust and compliance. Continued monitoring of third-party scripts and maintaining GDPR compliance will support sustainable growth and risk mitigation.

E

EnvoThemes

envothemes.com

56

EnvoThemes is a specialized provider of free and premium WordPress themes, focusing primarily on WooCommerce and multipurpose themes for businesses and eCommerce stores. Established in 2017, the company offers a variety of themes compatible with popular page builders such as Elementor, Brizy, Visual Composer, and KingComposer. Their market position is that of a niche player catering to WordPress users seeking customizable and fast-loading themes. The website demonstrates a good level of technical maturity, leveraging WordPress 6.6.2, WooCommerce 7.8.0, and modern JavaScript libraries, along with integration of Google Analytics and Tag Manager for marketing insights. Hosting appears to be Czech-based, consistent with the registrant information.

C

Corel Corporation

wordperfect.com

67

The website www.wordperfect.com serves as the official portal for the WordPerfect family of productivity software products, including office suites and PDF tools. It targets individuals, businesses, government, and educational institutions with a variety of licensing options. The site is professionally designed, with clear navigation and a consistent brand presence aligned with Corel Corporation and its parent company Alludo. The business model focuses on software sales and licensing, maintaining a niche but established market position in office productivity software. Technically, the site employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS enforcement and trusted certification badges, although explicit security policies and incident response contacts are not published. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professional, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure mechanisms, and enhancing accessibility.

C

Corel Corporation

videostudiopro.com

50

The website www.videostudiopro.com represents the VideoStudio Pro family of video editing software products by Corel Corporation, reimagined by Alludo. It targets individual consumers as well as business and education sectors, offering multiple product tiers, licensing options, free trials, and extensive learning resources. The site is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence. Technically, it employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Optimizely, ensuring a responsive and interactive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain is a notable anomaly, possibly due to privacy protection or recent registration, but the website's professional content and association with Corel and Alludo mitigate immediate trust concerns. Overall, the site is reliable and well-maintained, suitable for its target audience.

C

Corel Corporation

paintshoppro.com

62

The website www.paintshoppro.com represents the official online presence for PaintShop Pro, a photo editing software product line owned by Corel Corporation. The site offers comprehensive product information, free trials, special offers, and educational resources targeting individual photographers, business, and education sectors. The business model revolves around software sales, licensing programs, and bundled product offerings. The website is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and Optimizely for analytics and A/B testing. It is mobile optimized and uses HTTPS with a cookie consent mechanism, indicating a good level of digital maturity. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and manages user consent for cookies and tracking. However, explicit security headers are not detected, and no public security policy or incident response information is available. The absence of WHOIS data for the domain is a notable gap, though the site’s professional appearance and linkage to Corel and Alludo domains mitigate some concerns. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

C

Corel Corporation

painterartist.com

63

The website www.painterartist.com represents the official online presence for the Painter family of digital painting software products, owned by Corel Corporation and reimagined by its parent company Alludo. It targets individual artists, businesses, and educational institutions with a comprehensive product lineup including Painter, Painter Essentials, and ParticleShop. The site offers product information, free trials, tutorials, and licensing options, positioning itself as a mature player in the digital art software market. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and privacy compliance evident through detailed privacy and cookie policies. However, the absence of WHOIS data and explicit security policies slightly detracts from trust. Overall, the site is professional, content-rich, and trustworthy, though improvements in transparency and security disclosures are recommended.

E

Etnetera Core a.s.

etnetera.cz

70

Etnetera Core a.s. is a Czech technology company specializing in custom software development and operation of innovative technology projects. The company targets business clients seeking tailored software solutions and positions itself as an established player in the software development industry. The website content reflects a professional and consistent brand image, emphasizing their expertise in technology innovation. Technically, the website is built on the Webflow platform, utilizing modern web technologies including Google Tag Manager, Microsoft Clarity, Cookiebot for cookie consent, and Google reCAPTCHA for form security. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics in place. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and published security policies or incident response contacts are absent, representing areas for improvement. No vulnerabilities or suspicious domains were detected. Overall, the website presents a low-risk profile with strong privacy compliance and professional business credibility. The lack of public WHOIS data is mitigated by the legitimate and transparent business presence online. Strategic recommendations include enhancing security headers, publishing security policies, and adding incident response information to further strengthen trust and compliance.

I

IKAR

kniznykompas.sk

44

The website podcast.kniznykompas.sk is a media platform dedicated to podcasts about books and reading, operated by IKAR, the largest Slovak publishing and book distribution company. It offers literary content including book tips, interviews, bestseller rankings, and contests, targeting book readers and podcast listeners. The site integrates with multiple popular podcast platforms, enhancing accessibility and reach. Technically, the site uses a modern tech stack including Google Analytics, Facebook SDK, Adform tracking, and the Yii PHP framework, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS and CSRF tokens but lacks important security headers and a published security policy. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

I

IKAR, a.s.

ikar.sk

54

IKAR, a.s. is the largest publishing house in Slovakia, specializing in publishing and wholesale distribution of a wide variety of books including Slovak and international authors. The website reflects a mature digital presence with a professional design, clear navigation, and a broad catalog of books across multiple genres. The company targets a general audience of readers of all ages and maintains active social media channels to engage with customers. Technically, the website employs modern web technologies such as Google Tag Manager, Facebook Pixel, and Google Analytics for marketing and analytics purposes, with optimizations like preloading fonts and images to enhance performance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements could be made by implementing security headers and a cookie consent mechanism to enhance privacy compliance. Overall, the website demonstrates a high level of professionalism and trustworthiness, supported by consistent WHOIS data and clear business information.

K

Knihomola

knihomola.sk

44

Knihomola.sk is a Slovak-based online platform dedicated to aggregating quality book reviews from Slovak and Czech bloggers, readers, and reviewers. Established in 2017, it serves a niche audience passionate about literature, offering book discovery, blog hosting, and a widget for embedding book reviews. The website maintains a consistent brand presence and targets readers seeking curated literary content. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Owl Carousel, Google Analytics, and Facebook SDK, hosted on Webglobe servers. The site is mobile-optimized with good SEO practices and moderate performance. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks advanced security headers and published security policies. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms domain legitimacy and consistency. Overall, the site is professional, trustworthy, and well-positioned within its niche.

PORCELANOSA Grupo is a leading global manufacturer and retailer specializing in ceramic products, kitchen furniture, and bathroom elements. The company targets both professional and consumer markets with a broad portfolio of products and services, including construction systems and interior design configurators. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site leverages modern JavaScript libraries, CDN services, and analytics tools to ensure performance and user engagement. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are lacking. The absence of WHOIS data limits domain trust verification, but the overall professional presentation and related domains support legitimacy. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and improving contact transparency.

S

SafeTalk

safetalk.cz

66

SafeTalk is a SaaS provider specializing in whistleblowing reporting systems designed to help companies comply with whistleblower protection laws, particularly targeting companies with over 50 employees. The platform emphasizes secure, anonymous communication between employees and management, facilitating legal compliance and internal investigations. The website presents a professional and user-friendly interface built on modern web technologies such as React, Next.js, and Material-UI, indicating a mature digital infrastructure. Tracking and analytics tools like Microsoft Clarity and Google Tag Manager are used, reflecting a moderate level of user behavior analysis. Security posture is solid with HTTPS enforced and secure form handling, though the absence of explicit security headers and privacy policies suggests room for improvement. The lack of WHOIS data transparency limits full trust verification of the domain registration, but the website content and design indicate a legitimate business. Strategic recommendations include publishing comprehensive privacy and cookie policies, enhancing security headers, and providing clear incident response and vulnerability disclosure information.

K

KASI, spol. s.r.o.

kasi.cz

49

KASI, spol. s.r.o. is the largest Czech manufacturer specializing in cast iron sewer products, with a strong presence in the European market. The company operates its own development, foundries, concrete plant, and engineering production, positioning itself as a leader in innovation and quality within its niche. The website reflects a professional manufacturing business targeting industrial clients and infrastructure developers. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable digital infrastructure. The presence of cookie consent and privacy policies demonstrates compliance with GDPR regulations. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Overall, the website is trustworthy, well-structured, and provides clear contact information and business details, although WHOIS data is unavailable, likely due to privacy protection.

D

DEK a.s.

atelier-dek.cz

60

DEK a.s. operates a specialized construction services website atelier-dek.cz, offering a broad range of expert services including accredited laboratory testing, project consulting, expert opinions, and energy certifications. The company is well-established with a domain age since 2007 and targets construction professionals and investors primarily in the Czech Republic. The website is built on Drupal CMS with a moderate technical infrastructure including modern analytics and tracking tools. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and explicit security policies could be improved. Privacy compliance is evident with cookie consent and a privacy policy page. Overall, the site presents a professional and trustworthy business presence.

B

Bohemiasoft s.r.o.

dropareal.cz

52

Dropareal is a Czech Republic-based e-commerce platform specializing in dropshipping services. It enables entrepreneurs to launch their own online stores without upfront inventory costs by partnering with 33 wholesalers offering over 100,000 products. The platform handles order fulfillment and customer service through wholesalers, allowing users to focus on marketing and sales. The website is professionally designed, mobile-optimized, and provides comprehensive legal and privacy documentation, including GDPR compliance and cookie consent mechanisms. Technically, Dropareal employs a modern tech stack including Bootstrap, jQuery, Google Fonts, and various third-party analytics and retargeting tools such as Google Analytics, Facebook Ads, and Seznam Retargeting. The site uses HTTPS with good SSL configuration and secure form handling, though it lacks explicit HTTP security headers and a dedicated security policy page. The website performance is moderate with good mobile responsiveness and basic accessibility features. From a security perspective, the site demonstrates good practices with encrypted connections and cookie consent but could improve by implementing additional security headers and providing incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear policies and consent mechanisms. Business credibility is supported by clear company information, contact details, and legal terms. Overall, Dropareal presents a trustworthy and professional dropshipping platform with solid technical and privacy foundations. Recommendations include enhancing security headers, adding incident response information, and improving accessibility to further strengthen the security posture and user trust.

B

Bohemiasoft s.r.o.

zombeek.cz

50

Zombeek.cz is a Czech-based online platform operated by Bohemiasoft s.r.o. that provides users with a free, easy-to-use website builder featuring responsive templates, drag-and-drop editing, and e-shop integration. The platform targets individuals and small businesses seeking to quickly create professional websites without technical expertise. The website demonstrates a solid technical infrastructure leveraging modern web technologies and third-party services such as Google reCAPTCHA and analytics tools. Security posture is generally strong with HTTPS enforcement and anti-bot measures, though some security headers are missing and no formal security policy is published. Privacy compliance is well addressed with clear cookie consent mechanisms and GDPR-aligned privacy policies. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy. Overall, Zombeek.cz presents a professional and trustworthy service with room for improvement in security transparency and domain registration clarity.

P

PANKREA s.r.o.

bazenymachov.cz

54

Bazény Machov, operated by PANKREA s.r.o., is a Czech-based manufacturer specializing in custom plastic pools, including foil, stainless steel, and ceramic pools, as well as related products such as septic tanks, rainwater tanks, laundry chutes, and plastic cellars. Established since 1995, the company has produced over 1500 pools, positioning itself as an experienced and trusted provider in the local market. The website is professionally designed, providing clear navigation and comprehensive product information targeted at residential and commercial customers seeking tailored pool solutions. Technically, the website uses a moderate technology stack including jQuery, Nivo Slider, Google Tag Manager, and Google Fonts, running on the Estofan CMS platform. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site employs HTTPS and a cookie consent banner with default denial of ad and analytics storage, indicating privacy-conscious design. However, no advanced security headers or explicit security policies are present, and WHOIS data is unavailable, which limits domain trust verification. No vulnerabilities or malicious content were detected. Overall, the website presents a trustworthy and professional business front with good content quality and privacy compliance. The main risk lies in the lack of WHOIS transparency and limited explicit security policies. Strategic improvements in security headers, incident response information, and domain registration transparency would enhance trust and security posture.

P

PANKREA s.r.o.

contpro.eu

52

CONT Proficontainers, operated by PANKREA s.r.o., is a Czech-based company specializing in manufacturing, renting, and selling modular containers and units for business use. Their offerings include residential, sanitary, storage, and technological containers, serving both individual entrepreneurs and large corporations. The website demonstrates a solid market position with references to notable clients such as Škoda and ArcelorMittal. The business model focuses on providing tailored container solutions, including self-storage services, with a clear emphasis on meeting diverse customer needs. Technically, the website employs a moderate technology stack including jQuery, NivoSlider, Google Tag Manager, and Google Analytics, hosted on the Estofan CMS platform. The site is moderately optimized for performance and mobile use, with basic SEO and accessibility features. Cookie consent mechanisms are implemented, reflecting awareness of privacy compliance requirements, although explicit privacy and security policies are limited. From a security perspective, the site uses HTTPS and standard Google tracking tools but lacks visible security headers and detailed security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is unavailable due to EURid privacy policies, but the domain usage aligns with the business claims. Overall, the security posture is moderate with room for improvement in headers, policy transparency, and mobile optimization. The overall risk assessment indicates a legitimate, small business website with moderate technical and security maturity. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, improving mobile responsiveness, and conducting regular security audits to strengthen trust and compliance.

C

CNC-INAXES s.r.o.

cnc-inaxes.cz

51

CNC-INAXES s.r.o. is a Czech Republic based company specializing in the sale and servicing of CNC machining equipment since 2006. The company offers a range of CNC machinery including vertical and horizontal machining centers, lathes, and special machines under its own INAXES brand and represents selected manufacturers in the Czech and Slovak markets. Their target audience includes industrial manufacturers and businesses requiring CNC machining solutions. Technically, the website is built on the Estofan CMS platform, uses modern JavaScript libraries like jQuery and Nivo Slider, and integrates Google Tag Manager and analytics services. The site is mobile optimized with good SEO practices but lacks some advanced accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms but could be improved by adding security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were found. Overall, the website presents a professional and trustworthy digital presence aligned with the company's business model and market position.

D

DEHAU TRÁVNÍK s.r.o.

dehau.cz

52

DEHAU TRÁVNÍK s.r.o. is a Czech-based company specializing in supplying hygiene and disinfection products, technologies, and services primarily for institutional clients such as healthcare, social care, hospitality, education, and public administration sectors. The company positions itself as a significant market player offering comprehensive solutions including training, installation, dosing systems, and expert consulting, supported by an e-shop platform for product sales. The website reflects a professional and business-focused digital presence with clear navigation and relevant content tailored to its target audience. Technically, the site uses modern JavaScript libraries, Google Tag Manager with consent mode, and is built on the Estofan CMS platform, delivering moderate performance and good mobile optimization. Security posture is moderate with cookie consent and privacy policies implemented, but lacks visible HTTP security headers and explicit incident response information. The absence of WHOIS registration data is a notable transparency and trust concern, impacting the overall legitimacy score. Strategic recommendations include improving security headers, verifying domain registration, and enhancing incident response visibility to strengthen trust and compliance.

R

RRT s.r.o.

autacesky.cz

51

AUTAČESKY.cz is a specialized service provider based in the Czech Republic offering Czech language localization for automotive systems. The company serves a niche market of drivers who own foreign cars and want their vehicle systems translated into Czech. With over 17,500 customers served and 17 years of experience claimed, the business operates primarily in the transportation sector, providing on-site installation services across Czech regions. The website is professionally designed, featuring customer testimonials, social media integration, and comprehensive contact options including phone, email, and forms protected by Google reCAPTCHA. Technically, the website employs modern analytics and marketing tools such as Google Tag Manager, Google Analytics, and Elfsight widgets. It uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, some security best practices like security headers are not evident, and no explicit security or incident response policies are published. The WHOIS data for the domain is missing, which reduces trust in domain registration legitimacy but is partially offset by the presence of verifiable business information on the site. The security posture is solid with encrypted connections and spam protection on forms, but could be improved by adding security headers and formalizing security policies. Privacy compliance is basic but functional, with cookie consent and a privacy policy page. Overall, the website is trustworthy, user-friendly, and well-targeted to its audience, though domain registration transparency should be improved to enhance credibility.

O

OXIT s.r.o.

oxit.cz

57

OXIT s.r.o. is a Czech Republic-based small IT services company specializing in comprehensive IT network management, web development, intranet systems, and hardware/software sales. The company holds multiple partner certifications including Microsoft, Eset, Lenovo, and Dell, indicating a strong market position within the local IT service sector. Their website demonstrates a professional and content-rich presence with detailed client references and clear contact information. Technically, the site uses modern frameworks such as PHP with Nette, Bootstrap for responsive design, and integrates Google Analytics and Tag Manager for tracking, complemented by a cookie consent mechanism. Security posture is generally good with HTTPS and reCAPTCHA on forms, though the absence of security headers and a privacy policy page are notable gaps. WHOIS data is unavailable, which slightly reduces trust but does not outweigh the positive business indicators. Overall, the website is well-structured, secure, and trustworthy for its business domain.

Pošumavská odpadová, s.r.o. is a regional waste management company operating primarily in the Czech Republic, serving over 48 municipalities and more than 53,000 residents. The company provides comprehensive waste services including mixed municipal waste, sorted waste, hazardous waste, bulk waste, and bio waste management. They operate multiple collection yards across several towns including Klatovy, Sušice, Kašperské Hory, and Kolinec. The website reflects a regional service provider with a focus on public and municipal waste management needs. Technically, the website uses legacy HTML with windows-1250 charset and includes common JavaScript libraries such as jQuery and Google Analytics for tracking. The site lacks modern CMS indicators and advanced frameworks, suggesting a basic but functional technical infrastructure. Performance and mobile optimization are moderate to basic, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and includes Google site verification, but lacks visible security headers and privacy or cookie policies, indicating gaps in compliance and security best practices. No WHOIS data is available, which reduces transparency and trustworthiness. The site does not appear to be blocked or protected by a WAF, and no forms collecting sensitive data are present. Overall, the website is functional and provides relevant business information but requires improvements in privacy compliance, security posture, and technical modernization to enhance trust and user experience.