Security Directory

C

Curebase

curebase.ai

64

Curebase operates as a modern eClinical software provider specializing in clinical trial management solutions including ePRO, eConsent, recruitment, engagement, and integrated EDC. The company targets life sciences teams and clinical researchers, positioning itself as a reliable and innovative platform to accelerate clinical trials and improve data quality. The website reflects a medium-sized healthcare SaaS business with a professional and consistent brand presence. Technically, the site leverages modern frameworks such as React, is hosted on Vercel, and integrates multiple analytics and marketing tools including HubSpot, Microsoft Clarity, and Google Analytics. The site is well-optimized for performance, mobile responsiveness, and SEO. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable due to privacy protection, which is justified for this business type. Overall, the website is trustworthy, professional, and well-structured, supporting the company's market position in healthcare technology.

T

TrialX

trialx.com

65

TrialX operates as a healthcare technology company specializing in providing a comprehensive clinical trials listing service. Their platform enables users to search for relevant clinical research studies, updated daily, and offers additional solutions such as patient recruitment management and decentralized research. The website demonstrates a professional design with clear navigation and modern interactive features, targeting patients, volunteers, and healthcare professionals. Technically, the site leverages modern JavaScript frameworks, Google Analytics, Hotjar, and OneTrust for analytics and privacy compliance, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain is a notable anomaly that slightly impacts trust but does not detract from the overall professional presentation. Strategic recommendations include enhancing transparency with published privacy and security policies, adding vulnerability disclosure mechanisms, and improving contact information availability to bolster trust and compliance.

F

Faro Health

farohealth.com

65

Faro Health is a specialized healthcare technology company focused on providing AI-powered software solutions for digital clinical trial protocol design. Founded in 2016, the company targets clinical research teams and study designers, offering tools that improve trial quality, reduce costs, and accelerate study design processes. Their market position is that of a niche SaaS provider with advanced AI capabilities tailored for modern clinical research. Technically, the website is built on WordPress with Elementor, leveraging Cloudflare for DNS and security, and integrates HubSpot and Google Analytics for marketing and analytics. The site demonstrates strong digital maturity with excellent design, mobile optimization, and SEO practices. Security posture is robust with HTTPS, bot management, reCAPTCHA, and cookie consent mechanisms, although DNSSEC is not enabled and no explicit incident response contacts or vulnerability disclosures are published. Overall, the website is professional, trustworthy, and compliant with GDPR, but could improve transparency around security policies and incident response. The risk profile is low with no critical vulnerabilities detected.

K

Kenjo

kenjo.io

68

Kenjo is a technology company offering workforce management software tailored for small and medium enterprises (SMEs) with deskless teams. Their platform consolidates HR tasks such as shift planning, time tracking, and payroll preparation into a single solution, positioning them as a specialized SaaS provider in the HR tech space. The website reflects a professional and consistent brand image with clear messaging targeting SMEs managing deskless workers. Technically, the site leverages modern frameworks like Next.js and React, integrates multiple analytics and marketing tools, and employs a cookie consent mechanism compliant with GDPR standards. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security headers and incident response information are absent. Overall, the site is well-structured, performant, and trustworthy, with no signs of blocking or WAF interference.

X

Xpress-pay

xpress-pay.com

66

Xpress-pay operates as a provider of digital bill payment tools targeting businesses seeking efficient online and mobile payment solutions. The website presents a professional and consistent brand image, emphasizing growth acceleration through their payment tools. The technical infrastructure is built on WordPress with Thrive Theme, integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and various email marketing platforms, indicating a mature digital marketing approach. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy policies suggests room for improvement. The lack of WHOIS data and contact information slightly reduces trustworthiness but does not detract from the overall professional presentation. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to bolster trust and compliance.

D

Diit.cz | Vybráno z IT

diit.cz

55

Diit.cz is an established Czech IT news portal founded in 2009, providing news and information about hardware, software, and internet technologies. The website targets IT professionals and technology enthusiasts primarily in the Czech Republic. Its business model relies on content publishing supported by advertising revenue, as evidenced by multiple ad networks and tracking services integrated into the site. The site uses Drupal CMS with a foundation CSS framework and several JavaScript libraries, including an outdated version of jQuery, which poses potential security risks. The website is mobile optimized and offers a good user experience with clear navigation and relevant content. However, it lacks visible privacy and cookie policies, which impacts its privacy compliance score.

C

cdr.cz

cdr.cz

58

cdr.cz is a well-established Czech IT news and media website founded in 1998, providing technology news, guides, and blogs primarily for Czech-speaking IT professionals and enthusiasts. The site operates on a Drupal CMS platform with a modern technology stack including Google Analytics, Google Tag Manager, and various advertising networks. The website is monetized primarily through advertising and uses multiple ad networks and tracking services. Security posture is good with HTTPS and some security headers, but lacks explicit privacy and cookie policies, which impacts privacy compliance. No direct contact information or security incident response details are provided publicly. Overall, the website is professional, content-rich, and trustworthy, but could improve transparency and compliance with privacy regulations.

H

herminapress, s.r.o.

aplausin.cz

53

Aplausin.cz is a Czech-language online media portal specializing in entertainment and celebrity news. Operated by herminapress, s.r.o., it targets the Czech-speaking general public interested in lifestyle and entertainment content. The website is supported primarily through advertising revenue and maintains a moderate market position within the regional media sector. The site features a professional design with consistent branding and a good quality of content relevant to its audience. Technically, it is built on Drupal 9 and integrates modern web technologies including Google Tag Manager, Google Analytics, and multiple advertising platforms. Mobile optimization and SEO practices are well implemented, though accessibility features could be enhanced. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but additional security headers could improve defenses. The absence of WHOIS data limits domain trust verification, though the site appears legitimate and professionally managed. Overall, the website provides a safe and compliant user experience with extensive user tracking for advertising and analytics purposes.

A

Aira Communication, s.r.o.

jsmekocky.cz

58

Jsme kočky is a Czech online lifestyle magazine targeting women interested in health, fashion, relationships, and entertainment. Operated by Aira Communication, s.r.o., founded in 2016, it offers diverse content with a humorous and candid tone. The website leverages Drupal CMS and integrates multiple advertising and analytics technologies, including Google Analytics, Facebook SDK, and Gemius tracking, supported by a robust cookie consent mechanism via Didomi CMP. While the site is well-structured and professionally designed, it lacks explicit privacy policy and terms of service pages, which are critical for compliance and user trust. The absence of WHOIS data for the domain raises concerns about domain legitimacy, although the business information and content quality suggest a legitimate operation. Security posture is generally good with HTTPS enforced, but security headers and incident response policies are missing, indicating room for improvement.

A

Aira Group s.r.o.

aira.cz

61

Aira Group s.r.o. is a Czech-based technology service provider specializing in IT outsourcing, web development, online marketing, and custom application development. The company targets businesses seeking comprehensive IT and marketing solutions, positioning itself as a reliable partner with a portfolio of notable clients across various industries. The website reflects a professional and consistent brand image with detailed service descriptions and client references, indicating a medium-sized enterprise with a solid market presence in the Czech Republic. Technically, the website employs a modern tech stack including jQuery, bxSlider, Fancybox, Font Awesome, and integrates marketing and analytics tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. Hosting leverages AWS Cloudfront CDN for widget delivery. The site is mobile-optimized with good SEO practices but could improve accessibility and security headers. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, explicit privacy and terms of service pages are not clearly found, and WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency. No critical vulnerabilities or WAF blocking were detected, and contact information including a data protection officer contact is provided. Overall, the website presents a trustworthy and professional digital presence with moderate security and privacy compliance. Strategic improvements in security headers, explicit privacy policies, and WHOIS transparency would enhance trust and compliance.

E

emlyon alumni

emlyonforever.com

61

emlyon alumni is a professional community platform dedicated to the members of emlyon business school, providing networking, career support, events, and mentoring services. The website is well-branded, bilingual (French and English), and offers a variety of resources to alumni and partners. Technically, it uses modern web technologies including Vue.js, Google Analytics, and Google Maps API, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and SSO authentication, though some security headers and explicit policies are not evident. The absence of WHOIS data reduces transparency but the site content and branding suggest legitimacy. Overall, the platform supports a medium-sized educational community with a focus on engagement and career development.

H

HEC Alumni

hecalumni.fr

53

HEC Alumni operates as the official alumni network for HEC Paris, serving over 80,000 graduates worldwide. The website provides a comprehensive platform for networking, career development, events, and lifelong learning, targeting alumni, students, and recruiters. The digital infrastructure leverages modern web technologies including Vue.js, Google Analytics, and various social media integrations, reflecting a mature digital presence. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are absent. The lack of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the website's professional content and affiliation with HEC Paris support its credibility. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a trusted resource for its community.

S

Staatliche Museen zu Berlin

smb.museum

52

Staatliche Museen zu Berlin is a prominent public cultural institution in Germany dedicated to preserving, researching, and sharing art and cultural treasures. The website reflects a mature digital presence with comprehensive content including exhibitions, research, educational programs, and online offerings. It targets a broad audience including the general public, researchers, students, and families. The institution maintains a strong market position as a leading universal museum in Berlin. Technically, the site is built on TYPO3 CMS and integrates modern analytics and marketing tools such as Google Analytics, Matomo, and Facebook Pixel, ensuring good performance and SEO optimization. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities, although formal security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with GDPR, providing a safe and accessible user experience.

The Motiv Open website serves as the official platform for an international bowling tournament held annually in Brno, Czech Republic. It provides comprehensive event information including registration links, schedules, results, news updates, and partner acknowledgments. The target audience primarily consists of bowling players and enthusiasts across Europe. The business operates as a small-scale event organizer focusing on sports hospitality and community engagement within the bowling niche. Technically, the website employs a traditional tech stack featuring jQuery, Bootstrap 3.3.7, Google Tag Manager, Google Analytics, and Facebook Pixel for analytics and marketing. While the site is functional and moderately optimized for mobile, it uses somewhat dated frameworks and lacks advanced accessibility features. Performance is moderate with basic SEO and meta tag implementations. From a security perspective, the site uses HTTPS and implements a cookie consent banner, indicating some privacy awareness. However, it lacks visible security headers, published security policies, and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected, but the absence of privacy and terms of service pages represents a compliance gap. The WHOIS data aligns well with the website's Czech origin and event focus, supporting legitimacy. Overall, the site is professional and trustworthy for its purpose but would benefit from enhanced privacy compliance, improved security practices, and modernization of its technical stack to reduce risks and improve user trust.

R

Reims Tourisme et Congrès

reims-tourisme.com

62

Reims Tourisme et Congrès operates as the official tourism organization for the city of Reims, France, providing comprehensive visitor information, event promotion, and accommodation services. The website serves as a key digital platform to attract tourists and support local hospitality businesses, positioning itself as a trusted regional tourism authority. The business model focuses on destination marketing and cultural promotion, targeting tourists, event organizers, and local stakeholders. Technically, the website is built on WordPress with WooCommerce integration, leveraging modern web technologies such as Google Analytics, Matomo, and Rocket Lazy Load for performance optimization. The site demonstrates good mobile responsiveness and basic accessibility features, with a moderate performance profile. SEO and content quality are well managed, supporting effective visitor engagement. From a security perspective, the site enforces HTTPS and includes several security headers, reflecting a good security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact information including a Data Protection Officer email. However, the absence of public WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, though the website content and branding strongly indicate a legitimate and professional operation. Overall, the website presents a low-risk profile with strong business credibility and adequate technical and security controls. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving accessibility to further strengthen trust and compliance.

B

Bílý kruh bezpečí, z. s.

116006.cz

43

The website www.116006.cz represents a Czech Republic based non-profit social service operated by Bílý kruh bezpečí, z. s., providing a free, 24/7 telephone helpline (116 006) for victims of crime and domestic violence. The service is officially registered under Czech social service law and offers expert, anonymous, and free crisis intervention. The website content is well-structured, professionally designed, and targeted at victims seeking help, with clear navigation and relevant information. Technically, the site is built on WordPress using the Foundation CSS framework and includes standard tracking via Google Analytics and Tag Manager. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks some security headers and a published privacy policy. WHOIS data is missing, which limits domain registration transparency but does not detract from the apparent legitimacy of the service. Overall, the website is a credible, well-maintained resource for victim support in the Czech Republic.

G

GoFox - Tecnologias de Informação

ffletter.com

46

FFLetter is an online email marketing platform operated by GoFox - Tecnologias de Informação, targeting businesses and marketers primarily in Portuguese-speaking markets. The platform offers tools for newsletter creation, subscription form integration, campaign analytics, and anti-spam enforcement. The website is professionally designed with clear navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses established libraries such as jQuery and Swiper.js, integrates Google reCAPTCHA for bot protection, and employs Google Analytics for user tracking. Security posture is solid with HTTPS enforced and anti-spam policies actively monitored using AI, though some improvements in security headers and library updates are recommended. The absence of WHOIS data for the domain is a notable concern, impacting trust and business credibility. Overall, the site is functional, compliant with privacy regulations, and positioned as a niche SaaS provider in the email marketing industry.

O

Okolo bytu

okolobytu.cz

56

Okolo bytu is a Czech informational portal established in 2009, targeting owners and managers of apartment buildings and housing cooperatives. It offers a comprehensive range of services including articles, a community forum, e-letter subscriptions, and partnerships with reputable companies. The website maintains a consistent brand presence and provides valuable content relevant to its niche audience. Technically, the site is built on WordPress with popular plugins such as WooCommerce and bbPress, supported by Cloudflare DNS and enhanced with SEO and structured data. The site is mobile-optimized and performs moderately well. Security posture is good with HTTPS enforced and standard security headers present, though it lacks a visible cookie consent mechanism and dedicated security policy pages. Overall, the domain registration data aligns well with the website content, supporting its legitimacy and trustworthiness.

S

Sousedé

sousede.cz

59

Sousedé.cz is a Czech Republic based digital platform specializing in the management and collaboration of residential communities, specifically SVJ (homeowners associations) and apartment buildings. The platform connects committees, property managers, management companies, and unit owners to streamline communication, legal compliance, and administrative tasks. It offers key services such as duty monitoring, online voting, document management, and integration with established property management systems like DOMUS. The website positions itself as a leading portal in its niche with over 2,000 buildings and 45,000 users, emphasizing ease of use and comprehensive features for all stakeholders. Technically, the website is built on modern web technologies including React and Next.js, ensuring fast performance and excellent mobile responsiveness. It integrates analytics and marketing tools such as Google Analytics and HubSpot, and employs security best practices including HTTPS and security headers. The site features a well-structured user interface with clear navigation and professional design, supporting a positive user experience. From a security perspective, the platform demonstrates good practices with encrypted connections and role-based access controls. However, there is no publicly visible incident response or vulnerability disclosure policy, and WHOIS data for the domain is unavailable, which slightly impacts trustworthiness. Privacy and cookie policies are comprehensive and GDPR compliant, with user consent mechanisms in place. Overall, Sousedé.cz presents a mature and professional digital service for residential community management in the Czech market. Strategic recommendations include improving transparency by publishing domain registration details, establishing a formal security incident response policy, and adding a security.txt file to facilitate vulnerability reporting.

A

Asociace realitních kanceláří České republiky

arkcr.cz

42

The website www.arkcr.cz represents the Asociace realitních kanceláří České republiky, the largest professional association of real estate offices in the Czech Republic. Founded in 1991, it serves over 300 member offices and provides services including education, MLS cooperation systems, publications, and real estate listings. The site targets real estate professionals and the general public interested in property. The business model is centered on membership benefits, professional development, and market collaboration. The association holds a strong market position as a key industry player in Czech real estate. Technically, the website is built on WordPress with a modern tech stack including Foundation CSS, jQuery, and FontAwesome. It integrates Google Analytics and Facebook Pixel for tracking and marketing purposes. The site is mobile-optimized with good navigation and content quality, though some accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, HTTPS is enforced, and a cookie consent mechanism is implemented, indicating some privacy awareness. However, the absence of explicit security headers such as Content-Security-Policy and X-Frame-Options is a concern. No direct contact emails or phone numbers are visible, and no privacy policy or terms of service pages were found on the homepage, which may impact compliance and trust. The WHOIS data is missing or not publicly available, which raises questions about domain registration transparency. Overall, the website is professional and trustworthy in content and business representation but could improve its security posture and privacy compliance. Strategic recommendations include implementing security headers, publishing clear privacy and terms policies, and verifying domain registration details to enhance legitimacy and trust.

RAK CZ a.s., operating under the brand Doktor House, provides specialized consulting services addressing complex real estate issues such as inheritance disputes, unclear property boundaries, and legal encumbrances. The company positions itself as a trusted expert in diagnosing and resolving 'diseases' affecting properties, targeting property owners and stakeholders primarily in the Czech Republic. The website is professionally designed using WordPress with modern plugins and frameworks, offering a user-friendly experience including a contact form secured by Google reCAPTCHA. However, the absence of WHOIS data and lack of explicit privacy and terms policies present trust and compliance gaps. Security posture is moderate with HTTPS and reCAPTCHA implemented but missing key security headers. Overall, the site is functional and credible but would benefit from enhanced transparency and security hardening.

R

RAK CZ a.s.

spravujemenemovitosti.cz

43

The website www.spravujemenemovitosti.cz represents RAK CZ a.s., a Czech company specializing in residential property management services including economic, technical, advisory, and professional chair services for housing associations. The company positions itself as a local specialist with multiple references in Prague, targeting property owners and housing associations. The website is professionally designed, content-rich, and provides clear contact information, indicating a medium-sized business with a solid market presence in the Czech real estate sector. Technically, the site is built on WordPress CMS using modern technologies such as jQuery, Gutenberg, and Foundation CSS framework. It integrates Google Analytics and Google reCAPTCHA for analytics and security. The site is mobile-optimized and has good SEO practices, though accessibility is basic. Security posture is good with HTTPS and bot protection but lacks some security headers and formal security policies. The absence of WHOIS data is a concern for domain legitimacy but does not detract from the professional presentation and trust signals on the site. Overall, the site is safe, business-focused, and compliant with GDPR through a visible privacy policy and cookie consent mechanism.

T

The PUB

thepubworld.com

62

The PUB operates a chain of pubs primarily in the Czech Republic with additional locations in Berlin and Bucharest. The business focuses on providing a unique beer experience including self-service taps, master bartenders, and beer pouring education, complemented by food offerings. The website is professionally designed with good mobile optimization and clear navigation, supporting their hospitality business model. Technically, the site uses common web technologies such as jQuery and GSAP, with Google Analytics and Tag Manager for tracking. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain age and WHOIS data support the legitimacy of the business.

C

Centrum pro rodinu Vysočina, z. s.

centrumrodin.cz

44

Centrum pro rodinu Vysočina, z. s. is a Czech non-profit organization dedicated to supporting families through various programs such as residential stays, marriage preparation, counseling, and events targeting parents, couples, and families in the Vysočina region. The website is built on Joomla! CMS and employs common web technologies including jQuery, Bootstrap, and tracking tools like Google Analytics and Facebook SDK. It presents a professional and consistent brand image with clear contact information and testimonials, indicating a trustworthy and community-focused organization. Security posture is moderate with HTTPS enforced and CSRF tokens in forms, but lacks advanced security headers and explicit privacy or cookie policies. The website is accessible without WAF or blocking mechanisms and contains no adult or questionable content, making it safe for general audiences. Overall, the site scores well on business credibility and content quality but should improve privacy compliance and security best practices to enhance trust and regulatory adherence.

S

Salesiánská asociace Dona Boska

sadba.org

44

Salesiánská asociace Dona Boska (SADBA) is a Czech non-profit organization dedicated to supporting disadvantaged children and youth worldwide through volunteer missions and educational initiatives. The organization focuses on training and sending volunteers abroad, supporting salesian missions, and fostering development cooperation. Their website reflects a professional and well-structured digital presence, targeting volunteers, donors, and supporters primarily in the Czech Republic. The site offers detailed project descriptions, news updates, and partner affiliations, reinforcing its credibility in the non-profit sector. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution. It employs Google Analytics and Google Tag Manager for tracking and analytics, and includes a cookie consent mechanism compliant with EU regulations. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. Security-wise, HTTPS is enforced, and reCAPTCHA is used for form protection; however, additional security headers are recommended to enhance protection. The security posture is solid but could benefit from implementing more comprehensive HTTP security headers and regular plugin updates to mitigate vulnerabilities. The absence of a visible privacy policy and terms of service pages is a compliance gap that should be addressed to meet GDPR and other privacy regulations fully. WHOIS data is unavailable due to a malformed response, which slightly reduces trustworthiness, but the website content and partner endorsements support legitimacy. Overall, SADBA presents a trustworthy and professional online presence suitable for its non-profit mission. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and conducting periodic security audits to maintain a robust security posture.

S

Septeo Notaires

mondossiernotairepro.fr

55

Mondossiernotairepro.fr is a professional web portal operated by Septeo Notaires, designed to allow notaries and related professionals to track the progress of their dossiers. The platform offers services such as dossier tracking, document management, notifications, and appointment scheduling integration. The business targets professional users in the French real estate and notary sector, positioning itself as a niche SaaS provider with a medium-sized operation founded in 2017. The website is well-branded and consistent with the parent company Septeo, reflecting a focused business model serving the legal and real estate industry. Technically, the site uses modern web technologies including ASP.NET MVC, JavaScript, and CSS, hosted likely via DNSimple with a moderate performance profile. Mobile optimization and user experience are good, though accessibility features are basic. Security posture is adequate with HTTPS and anti-CSRF tokens implemented, but lacks some security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data is consistent and legitimate, supporting the trustworthiness of the site.

S

Storm Bowling

stormbowling.com

62

Storm Bowling operates a professional e-commerce platform specializing in bowling equipment and accessories. The website showcases multiple brands and a wide product range targeting bowling enthusiasts. The business model is retail-focused with a medium-sized market presence. Technically, the site uses Magento CMS with modern JavaScript libraries and analytics tools, hosted on DigitalOcean infrastructure. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced, but lacks visible security headers and privacy compliance mechanisms. WHOIS data is unavailable, which slightly impacts trust but the site content and branding appear legitimate. Overall, the site is functional and trustworthy for its business purpose but could improve privacy and security transparency.

Xbowling.cz is a Czech Republic-based bowling entertainment service provider operating since at least 2011. The website offers information about bowling services and multiple branches, targeting general leisure customers. The technical infrastructure includes common web technologies such as jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel, with cookie consent implemented via CookieYes. The website is accessible without any WAF or security challenges, but lacks explicit privacy and terms of service pages, and does not provide clear contact information. Security posture is moderate with HTTPS enabled but missing security headers and use of an outdated jQuery version. Overall, the site is functional and professional but could improve privacy compliance and security best practices.

B

Bowling Brno

bowlingbrno.cz

41

Bowling Brno is a medium-sized hospitality and leisure business located in Brno, Czech Republic, offering a variety of sports and entertainment services including bowling, adventure golf, beach volleyball, a golf simulator, and restaurant facilities. The website is professionally designed with good content quality and clear navigation, targeting families, sports enthusiasts, and corporate clients. The business maintains an active social media presence and community engagement through youth sports programs and tournaments. Technically, the website uses modern JavaScript libraries and frameworks such as Foundation, jQuery, and LightGallery, with Google Analytics and Facebook SDK for tracking. However, there is no evidence of a CMS or hosting provider information. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. WHOIS data is missing, which reduces domain trustworthiness and should be investigated further. Overall, the website is functional, trustworthy, and suitable for its business purpose but could improve in security and privacy compliance.

B

Bowling Zone

bowlingzone.cz

51

Bowling Zone is a small hospitality and entertainment business based in Liberec, Czech Republic, specializing in bowling and related leisure activities. The company offers professional bowling lanes, certified coaching, and additional entertainment options such as pinball and darts, targeting families, friends, and corporate groups. Their website is built on WordPress with a modern tech stack including Bootstrap and various plugins for enhanced user experience and functionality. The site supports online reservations and newsletter subscriptions, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks some security headers and a published privacy policy, which are areas for improvement. Overall, the business presents a trustworthy and professional online presence with room to enhance compliance and security practices.

B

Bartoň Studio s.r.o.

bartonstudio.cz

65

Bartoň Studio s.r.o. is a Czech-based company specializing in custom and pre-built e-commerce solutions tailored for B2B and B2C online businesses. Positioned as an expert e-commerce development studio in Plzeň, the company offers services focused on creating performant, user-friendly online shops with a strong emphasis on design and technical quality. The website reflects a professional digital presence using WordPress CMS with the Divi theme, integrating common marketing and analytics tools such as Google Analytics, Hotjar, and Google Tag Manager. Security measures include HTTPS enforcement, security headers, and reCAPTCHA for form protection, alongside a cookie consent mechanism indicating some privacy compliance awareness. However, the absence of a dedicated privacy policy and terms of service pages represents a compliance gap that should be addressed.

L

LEX z.s.

gunlex.cz

51

LEX z.s. is a Czech non-profit organization dedicated to protecting the rights of firearms owners. The website serves as an information hub providing legislative updates, articles, training information, and advocacy activities related to firearms ownership in the Czech Republic. The organization has a long-standing presence since 2002, reflected in the domain age and consistent WHOIS data. The site targets firearms owners, sport shooters, and those interested in firearms legislation, offering multilingual support and active content updates. Technically, the website is built on Joomla CMS with common JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. While the site is functional and professionally designed with good navigation and content relevance, it lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure information. Overall, the site is trustworthy and serves its community well but would benefit from enhanced privacy compliance and security best practices.

2

210 Gym Plzeň

avalonfitness.cz

44

210 Gym Plzeň is a modern fitness center located in Plzeň, Czech Republic, offering a large facility of 2100 square meters equipped with over 80 Grün Sport machines. The gym provides personal trainers, group fitness classes, and specialized zones such as strength training and Booty builder areas. The website reflects a professional local business targeting fitness enthusiasts in the region. Technically, the site is built on WordPress using Elementor, with integrations for analytics and marketing tools like Google Analytics and Facebook Pixel. Security posture is good with HTTPS and security headers in place, but lacks published security policies or incident response information. Privacy compliance is basic with a cookie consent mechanism but no clear privacy or terms of service pages. Overall, the site is trustworthy and well-maintained, though WHOIS data is unavailable, likely due to privacy protection.

A

ADREX BASE CAMP

adrex.cz

44

Adrex Base Camp is a small outdoor sports business located in Vír, Czech Republic, specializing in year-round sports equipment rental, test centre services, and organizing company and group events focused on adventure and outdoor activities. The website presents a professional and consistent brand image with clear contact information and active social media presence. The business targets outdoor enthusiasts and corporate groups seeking organized sports and adventure experiences in the Svratka Valley region. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and MonsterInsights for analytics and SEO optimization. It employs HTTPS with a valid SSL certificate and integrates Google Maps API for location services. The site is moderately optimized for performance and mobile devices, with basic accessibility features. However, some security best practices like security headers are missing. From a security perspective, the site uses HTTPS and has a cookie consent mechanism, but lacks a published privacy policy, terms of service, and security policy pages. WHOIS data for the domain is unavailable, which limits the ability to fully verify domain legitimacy and trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is functional, professional, and safe for general audiences but would benefit from enhanced privacy compliance documentation and improved security headers. The absence of WHOIS data is a notable gap in trust assessment and should be addressed to improve domain transparency and credibility.

Teco a.s. is a Czech-based company specializing in industrial automation and intelligent building management systems. The company offers a range of modular control and regulation systems, including PLCs and smart home solutions, targeting industrial clients, building managers, and energy sectors. Their market position is strong within the Czech Republic, supported by a professional website, active news updates, and comprehensive product catalogs. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and various UI libraries, with a CMS identified as Khaki. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers are not explicitly detected. Privacy compliance is well addressed with GDPR-aligned policies and cookie management. The WHOIS data is unavailable, which slightly reduces transparency but does not detract significantly from the company's legitimacy given the professional online presence and contact information. Overall, the website scores well on content quality, technical implementation, and security, making it a trustworthy and professional digital asset for Teco a.s.

F

Freedom BMX Magazin | Startseite

freedombmx.de

56

Freedom BMX Magazin is Germany's largest BMX-focused media outlet, providing daily news, videos, and photos related to BMX sports. The website targets BMX enthusiasts primarily in the German-speaking community and operates on a WordPress platform with extensive integration of advertising and affiliate marketing tools. The technical infrastructure includes modern analytics and advertising services such as Google Analytics, Google Adsense, Ezoic, and Outbrain, hosted via Ezoic's infrastructure. Security posture is adequate with HTTPS enforced and consent management implemented, though explicit security headers and formal security policies are absent. Privacy compliance is basic, with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the site is professionally designed and functional, with moderate risk due to missing formal policies and contact information.

I

IVAR CS

ivarcs.cz

59

IVAR CS is a Czech-based company specializing in manufacturing and distributing components for water, heating, and gas systems. The company targets professional installers and businesses in the plumbing and heating sectors, offering a comprehensive product catalog and technical support. The website reflects a medium-sized enterprise with recognized ISO certifications, indicating a commitment to quality and environmental standards. The digital presence is professional, with clear navigation and relevant content tailored to its industry audience. Technically, the site employs modern web technologies including jQuery, FontAwesome, and Google Analytics, and is built on a custom or framework-based CMS likely using the Nette Framework. Security measures such as HTTPS and standard security headers are implemented, though there is room for improvement in publishing explicit security policies and incident response information. The absence of WHOIS data due to privacy protection slightly reduces trust but is common for business entities. Overall, the website is secure, compliant with GDPR, and suitable for its business purpose.

P

Pražská paroplavební společnost a.s.

praguesteamboats.com

59

The Prague Steamboat Company, operating under the domain www.praguesteamboats.com, is a historic transportation service provider specializing in river cruises on the Vltava River in Prague. Founded in 1865, the company offers sightseeing cruises, restaurant cruises, private event hosting, and boat rentals using culturally significant paddle steamers. The website presents a professional and consistent brand image targeting tourists and locals interested in unique river experiences. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, and Google Analytics for tracking, with good mobile optimization and SEO practices. However, the absence of explicit privacy and terms of service pages and missing WHOIS registration data for the domain introduce some concerns. Security posture is moderate with cookie consent implemented but lacking visible security headers. Overall, the site is functional, trustworthy, and content-rich but would benefit from enhanced compliance and security measures.

E

ETOA - European Tourism Association

etoa.org

59

ETOA is a well-established European tourism trade association focused on enhancing tourism business opportunities across Europe. It serves a diverse membership base including tourism suppliers, destinations, buyers, and tour guides. The organization offers a range of services such as membership benefits, industry events, advocacy, and sustainability resources, positioning itself as a key player in the European tourism sector. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its B2B audience. Technically, the site is built on WordPress with modern plugins and tracking technologies, ensuring good SEO and user experience across devices. Security posture is strong with HTTPS, security headers, and secure login mechanisms, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR adherence. Overall, the website and business present a credible and trustworthy profile with no critical security or content safety concerns.

T

The Conference Forum

immuno-oncology360.org

60

Immuno-Oncology360.org is a specialized digital platform operated by The Conference Forum, focusing on the Immuno-Oncology and Cell Therapy sector. It offers a comprehensive suite of services including conferences, editorial content, podcasts, webinars, and marketing services tailored to healthcare professionals and biotech industry stakeholders. The platform positions itself as a niche leader in this healthcare segment, supporting community engagement and knowledge sharing. Technically, the website employs a modern technology stack with popular JavaScript libraries and tracking tools, hosted on Amazon AWS infrastructure with Cloudfront CDN, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and client domain protections enabled, but lacks DNSSEC and explicit security headers, and does not publish formal security or incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and content-rich, suitable for its target audience but with room for security and privacy improvements.

I

International Coalition of Library Consortia (ICOLC)

icolc.net

59

The International Coalition of Library Consortia (ICOLC) operates as an informal global coalition of approximately 200 library consortia, facilitating collaboration and dialogue on library-related issues. The organization targets library consortia and educational institutions worldwide, providing services such as meetings, statements, and reports to support its members. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its audience. Technically, the website is built on Drupal 10 with Bootstrap frameworks, leveraging modern web technologies and responsive design. Hosting and DNS services are provided through Amazon Registrar and AWS Route53, ensuring reliable infrastructure. Google Analytics is used for visitor tracking, although no explicit cookie consent mechanism is present. The site demonstrates good mobile optimization and accessibility features. From a security perspective, the site uses HTTPS and registrar-level domain protections but lacks DNSSEC and security headers, which are recommended for enhanced security. No privacy or cookie policies were found, indicating gaps in compliance with privacy regulations such as GDPR. The absence of a security policy or incident response contact further limits the security posture. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the organization. The overall risk is moderate with recommendations to improve privacy compliance, enable DNSSEC, and implement security best practices. Enhancing transparency and user trust through published policies and consent mechanisms would strengthen the website's credibility and compliance.

P

Prodigi Group Ltd

prodigi.com

61

Prodigi Group Ltd operates a leading global print on demand dropshipping platform, offering businesses and individuals access to a vast catalogue of customizable products through an easy-to-use online platform and API. The company integrates with major ecommerce platforms such as Shopify, Etsy, Wix, WooCommerce, and BigCommerce, enabling seamless order automation and fulfillment. Their business model focuses on local printing with global dropshipping, emphasizing eco-friendly practices and sustainability. The website reflects a mature digital presence with comprehensive product offerings, strong branding, and customer testimonials, positioning Prodigi as a trusted player in the print on demand industry. Technically, the website employs modern JavaScript frameworks like Alpine.js, integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, Mixpanel, and Segment, and uses responsive design with Tailwind CSS for excellent mobile optimization. The platform dashboard is hosted on a subdomain, indicating a structured service architecture. Performance is moderate with good SEO and accessibility features, supporting a positive user experience. Security posture is solid with HTTPS enforced and no visible sensitive data exposure. However, the absence of explicit security headers and a public security policy or incident response contact suggests room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is supported by verified contact emails, professional content, and trust signals such as Fine Art Trade Guild approval and reputable client logos. Overall, Prodigi presents a professional, secure, and privacy-conscious platform suitable for its target audience. The main risk area is the lack of publicly available WHOIS data, which may be due to privacy protection but warrants monitoring. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing incident response contacts to further strengthen trust and compliance.

A

Automoto klub v AČR Nepomuk - since 1946

amknepomuk.cz

42

The website for Automoto klub v AČR Nepomuk is a minimal, outdated online presence for a local automotive club in the Czech Republic with a claimed history since 1946. The site uses deprecated HTML framesets and lacks substantive content, modern design, or mobile optimization. There are no visible contact details, privacy policies, or terms of service, and no WHOIS data is available for the domain, which raises concerns about legitimacy and trustworthiness. The site includes Google Analytics and Tag Manager scripts but lacks security best practices such as HTTPS enforcement and security headers. Overall, the digital maturity of the site is low, and it does not meet modern standards for security or privacy compliance.

M

Město Nepomuk

nepomuk.cz

44

The website www.nepomuk.cz is the official online presence of the town of Nepomuk in the Czech Republic, providing municipal news, events, and citizen services. It serves as a local government portal targeting residents and visitors, offering information about the town, upcoming events, contact details, and a citizen portal. The site is professionally designed with consistent branding and good content quality, supporting multiple languages including Czech, English, and German. Technically, it employs modern web technologies such as Google Analytics, Google reCAPTCHA, jQuery, and smart app banners, ensuring a moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and reCAPTCHA for form protection but lacks visible security headers and comprehensive privacy or cookie policies, which are areas for improvement. The WHOIS data for the domain is unavailable, which is unusual but may be due to registry policies. Overall, the site is trustworthy and serves its purpose well but could enhance its security posture and privacy compliance.

A

Autodoprava OMstavby

autodoprava-omstavby.cz

45

Autodoprava OMstavby is a small Czech transportation and construction logistics company based in Plzeň, offering services such as earthworks, demolition, domestic freight transport, vehicle rental with drivers, and material removal. The company emphasizes reliability and has been operating for over two decades, supported by customer testimonials and a clear local presence. The website is built on WordPress using the Divi theme, with standard technologies like jQuery and Google Analytics integrated. It features a GDPR-compliant contact form and cookie consent banner, reflecting basic privacy awareness. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. Security posture is moderate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site is functional, professional, and suitable for its target audience but would benefit from enhanced security and transparency measures.

NEVA Group s.r.o. is an established authorized dealer and service provider specializing in DAF and TATRA commercial vehicles in the Czech Republic. The company offers a comprehensive range of services including new and used truck sales, vehicle servicing, driver training, financing, and spare parts supply. With a domain age dating back to 2008 and certifications such as ISO 9001 and ISO 14001, NEVA Group demonstrates a solid market presence and commitment to quality and environmental standards. The target audience primarily consists of commercial vehicle operators and transport companies seeking reliable vehicle solutions and support. Technically, the website employs a traditional tech stack featuring jQuery 1.9.1, Bootstrap, and Google Analytics, with a moderate performance profile and basic mobile optimization. While the site includes cookie consent mechanisms and integrates marketing tools like Google Tag Manager and Google Ads, it lacks modern security headers and uses outdated JavaScript libraries, which may expose it to vulnerabilities. Privacy compliance is partial, with no explicit privacy policy page detected, though cookie consent is implemented. From a security perspective, the site benefits from HTTPS but lacks visible security headers and explicit security policies. The use of outdated libraries and absence of a vulnerability disclosure or incident response contact reduce its security maturity. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, NEVA Group's website is professional and functional, with good business credibility and moderate technical and security posture. Improvements in privacy policy transparency, security header implementation, and updating legacy scripts would enhance its compliance and security standing.

A

ABADIA a.s.

abadia.cz

50

ABADIA a.s. is a Czech manufacturing and trading company specializing in steel constructions, locksmith elements, suspended balconies, and technological equipment. Established in 2006, the company has a medium-sized team and a strong market presence in the Czech Republic and neighboring countries. Their website reflects a professional business with clear service offerings and client testimonials. Technically, the site is built on Drupal CMS, uses modern JavaScript libraries, and integrates Google Analytics and other tracking tools with a compliant cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the website is well-structured, mobile-optimized, and trustworthy, supporting the company's credibility and business goals.

B

Bydlení v Dobřanech

byty-dobrany.cz

53

The website www.byty-dobrany.cz represents a small real estate business focused on selling residential apartments in Dobřany, Czech Republic. The business targets young adults seeking starter apartments and seniors looking for comfortable housing. The site is professionally designed using the Wix platform and provides clear information about the property offerings, including apartment sizes and location benefits. However, the absence of WHOIS data limits the ability to fully verify domain ownership and legitimacy. Technically, the site uses modern web technologies and includes Google Analytics and Tag Manager for tracking, but lacks advanced security headers and privacy compliance features. The security posture is moderate with HTTPS enabled but missing key headers and policies. Overall, the site is functional and trustworthy for its business purpose but would benefit from enhanced privacy and security measures.

AGRICO s.r.o. is a well-established Czech company specializing in manufacturing and supplying stable technologies and agricultural equipment, including products for pig, poultry, cattle, and horse breeding, as well as fishery supplies and grain storage solutions. The company positions itself as a traditional and trusted supplier with over 35 years of experience, supported by multiple ISO certifications and quality awards. Their business model includes direct sales through an online catalog and e-shop, targeting farmers and agricultural enterprises primarily in the Czech Republic. Technically, the website employs modern frontend technologies such as Bootstrap 5, jQuery, and PhotoSwipe, with responsive design and good SEO practices. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and explicit incident response information. WHOIS data is missing, which reduces domain trustworthiness, but the website content and certifications support legitimacy. Overall, the site is professional, user-friendly, and trustworthy with room for security improvements.

A

ACOND a.s.

acond.cz

61

ACOND a.s. is a leading Czech manufacturer specializing in heat pumps, air conditioning, and floor heating solutions. With over 12,000 installations, the company serves residential and commercial customers primarily in the Czech Republic and abroad. Their business model focuses on manufacturing, direct sales, installation, and servicing, supported by a strong partner network and comprehensive customer support. The website reflects a professional and trustworthy brand with clear communication of product offerings, warranties, and customer testimonials. Technically, the website is built on the Webflow platform, leveraging modern JavaScript libraries and analytics tools such as Google Analytics, Microsoft Clarity, and Adform. It employs a consent management platform (Usercentrics) to ensure GDPR compliance. The site is mobile-optimized, fast-loading, and well-structured, providing an excellent user experience. From a security perspective, the site uses HTTPS and integrates consent mechanisms for privacy compliance. However, it lacks visible security headers and does not publish an incident response or vulnerability disclosure policy, which are areas for improvement. The absence of WHOIS data limits domain legitimacy verification, but the overall digital footprint and business information suggest a legitimate and established entity. Overall, the website demonstrates a mature digital presence with strong content quality and privacy compliance, though it would benefit from enhanced security practices and transparent domain registration information.