Security Directory

S

STUDENT AGENCY TRAVEL k.s.

studentagency.cz

65

STUDENT AGENCY is a well-established Czech travel company offering a broad range of travel services including flight tickets, bus tickets, vacations, and language stays. With a market presence spanning over 30 years, it holds a strong position in the transportation sector in the Czech Republic. The website reflects a professional and comprehensive online travel agency platform targeting travelers seeking affordable and convenient travel options. The company operates multiple related domains serving different travel needs, indicating a diversified service portfolio. Technically, the website is built on modern frameworks such as Next.js and React, incorporating Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. Security measures include HTTPS enforcement and standard security headers, contributing to a robust security posture. However, the absence of visible privacy and cookie policies, as well as lack of WHOIS transparency, slightly reduce the overall trust and privacy compliance score. No explicit incident response or vulnerability disclosure information is found, which could be improved to enhance security transparency. Overall, the site is secure, professional, and trustworthy with room for improvement in privacy and compliance documentation. Strategic recommendations include publishing comprehensive privacy and cookie policies with consent mechanisms, enhancing WHOIS data transparency, and establishing clear security incident response and vulnerability disclosure channels to strengthen compliance and trust.

S

STUDENT AGENCY TRAVEL k.s.

sa.cz

66

STUDENT AGENCY TRAVEL k.s. operates a comprehensive online travel platform primarily serving the Czech Republic. The company offers a wide range of travel-related services including flight tickets, bus tickets, holiday packages, language stays, hotel bookings, and travel insurance. With a market presence of over 30 years, it holds a strong position in the regional travel market, targeting travelers, students, and general consumers seeking affordable and convenient travel options. The website reflects a mature business model with multiple related domains and a consistent brand identity. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Google Tag Manager and reCAPTCHA v3 for analytics and security. The site is well-optimized for performance, mobile responsiveness, and accessibility, providing a seamless user experience. Security best practices are observed, including HTTPS enforcement and security headers, although explicit security policies and incident response details are not publicly disclosed. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. Contact information is transparent, enhancing business credibility. However, the absence of WHOIS data and vulnerability disclosure mechanisms slightly reduce trust scores. Overall, the site is professional, secure, and trustworthy, suitable for general audiences without any adult or questionable content.

Z

Zabbix

zabbix.com

77

Zabbix is a globally recognized enterprise-class open-source network and application monitoring solution. The company offers a comprehensive suite of products including on-premise software, a fully managed cloud platform, professional services, and extensive training and certification programs. Their market position is strong, supported by a large deployment base and trusted by Fortune 500 companies and government entities. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site uses modern JavaScript libraries and tracking tools, with good performance and mobile optimization. Security posture is solid with HTTPS enforced and published security policies, though some security headers could be improved and a cookie consent mechanism is missing, which may affect GDPR compliance. Overall, the business credibility is high, supported by case studies, partner programs, and active community engagement. The WHOIS data is unavailable or protected, which is a minor concern but does not detract from the overall trustworthiness given the company's established reputation.

S

Statutární město Hradec Králové

hk800.cz

49

The website hk800.cz is the official digital platform for the 800th anniversary celebrations of the city of Hradec Králové in the Czech Republic. It serves as a comprehensive resource for cultural events, exhibitions, and community engagement activities related to the milestone. The site is operated by the city government, providing authoritative and trustworthy information to residents and visitors. The business model is centered on governmental and cultural event promotion, supported by partnerships with local businesses and media. The website demonstrates a consistent brand identity aligned with the city’s heritage and celebration theme. Technically, the site is built on Joomla CMS with a modern tech stack including Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience such as carousels and lazy loading. It integrates Google Analytics, Google Tag Manager, and Facebook Pixel for analytics and marketing purposes, all managed with a cookie consent mechanism ensuring GDPR compliance. Hosting and domain registration are consistent with Czech providers, and the site shows good mobile optimization and SEO practices. From a security perspective, the website enforces HTTPS and uses cookie consent banners to comply with privacy regulations. While explicit security headers are not fully visible in the provided data, no critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website’s purpose and geographic location, indicating legitimacy. However, the site lacks explicit security policies or incident response contacts, which could be improved. Overall, the website is a well-structured, professional, and trustworthy platform for the city’s anniversary celebrations. It balances user experience, privacy compliance, and technical soundness effectively, though there is room for enhancement in security policy transparency and advanced security headers implementation.

K

Královehradecký kraj

kr-kralovehradecky.cz

63

Královehradecký kraj operates an official regional government website providing comprehensive information about the regional administration, public services, news, and community resources. The site targets residents and stakeholders within the Královéhradecký region of the Czech Republic, offering key services such as contact directories, grant information, and cultural portals. The website is built on a modern Drupal 10 CMS platform, utilizing contemporary web technologies including Bootstrap and Google Tag Manager, ensuring a responsive and accessible user experience. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms compliant with GDPR, reflecting a mature privacy posture. However, the absence of security headers and a security.txt file indicates room for improvement in security best practices. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The lack of WHOIS data is unusual but likely due to registry or query limitations rather than malicious intent, given the official nature of the site. Overall, the website demonstrates a solid technical infrastructure and professional presentation consistent with government standards. It maintains good privacy compliance and user trust indicators, including clear contact information and social media engagement. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to further strengthen security posture.

W

WBSC Europe

wbsceurope.org

68

WBSC Europe is the official continental governing body for baseball, softball, and Baseball5 in Europe. It operates under the World Baseball Softball Confederation umbrella and provides governance, event organization, rankings, development, and anti-doping services to its member federations and stakeholders. The website is professionally designed with good content quality and clear navigation, targeting sports organizations, athletes, officials, and fans interested in baseball and softball in Europe. Technically, the site uses modern frameworks such as Bootstrap and integrates multiple advertising and tracking services, including Google Tag Manager and Amazon Ads. Security posture is strong with HTTPS and security headers properly configured, though the absence of a privacy policy and terms of service pages indicates room for improvement in privacy compliance. WHOIS data is unavailable, likely due to privacy protection, but the website's professional presentation and affiliation with a known international sports federation support its legitimacy. Overall, the site is a credible and functional platform for its intended audience.

C

Canada Cup

canadacup.com

62

Canada Cup is a well-established, non-profit organization operating Canada's largest international softball tournament since 1998. The organization focuses on providing elite-level competition and exposure for young female athletes, supported by a strong volunteer base and community engagement. The website reflects a mature digital presence with integrated ticketing, registration, and live streaming services, targeting athletes, volunteers, and spectators. Technically, the site is built on WordPress with Elementor and Yoast SEO, leveraging modern web technologies and third-party platforms for event management. Security posture is solid with HTTPS and domain locking, though improvements are recommended in DNS security and privacy compliance. Overall, the site is professional, trustworthy, and content-rich, serving its audience effectively.

ZIMNÍ STADION KUŘIM s.r.o. operates a local ice hockey and recreational sports facility in the Czech Republic, targeting youth and recreational players. The website presents a professional and well-structured digital presence with clear information about services such as ice rink rental, public skating, sports equipment sales, hospitality, and accommodation. The company maintains active social media channels and provides a contact phone number for customer engagement. Technically, the website uses modern web technologies including Google Analytics and CookieHub for analytics and cookie consent management. Security posture is adequate with HTTPS enforced, though security headers and incident response information are lacking. Privacy compliance is partially addressed through cookie consent but lacks explicit privacy and terms of service pages. WHOIS data is unavailable, indicating privacy protection, which reduces transparency but does not raise immediate concerns given the professional website content. Overall, the site is safe, well-maintained, and suitable for its target audience.

C

Coqui

coqui.ba

60

Coqui.ba is a Bosnian e-commerce website specializing in the retail of certified footwear products including slippers, sandals, and clogs for women, men, and children. The company positions itself as a regional footwear brand offering comfortable and health-conscious products, supported by third-party laboratory certifications. The website targets a general audience in Bosnia and Herzegovina and surrounding regions, leveraging a modern WordPress and WooCommerce infrastructure with Elementor for design and layout. Marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Sendinblue are integrated to support customer engagement and tracking. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, though improvements in security headers and privacy compliance mechanisms are recommended. Overall, the site demonstrates good professionalism, trustworthiness, and business credibility with clear contact information and social media presence.

P

Plugo s.r.o.

plugo.cz

51

Plugo s.r.o. is a Czech-based digital marketing agency specializing in PPC campaigns, SEO, custom e-shop and website development, and content creation. With over 15 years of experience, they serve clients primarily in the Czech Republic and Austria, focusing on delivering tailored digital solutions that enhance online visibility and business growth. The website reflects a professional and consistent brand image with clear service offerings and client references. Technically, the site employs modern web technologies including Google Tag Manager, GSAP, and cookie consent mechanisms, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS and cookie consent, but lacks explicit security headers and published privacy policies, which are areas for improvement. The absence of WHOIS data limits domain trust assessment, but the presence of detailed contact and company registration information supports business credibility. Overall, the site is safe, professional, and well-structured, though it would benefit from enhanced privacy compliance and security best practices.

C

Contimex spol. s r.o.

contimex.cz

66

Contimex spol. s r.o. is a Czech strategic advertising and digital agency operating since 1993, specializing in marketing strategies, digital marketing, creativity, production, and event organization. The company serves business clients seeking comprehensive marketing solutions and maintains a professional web presence with client testimonials and a clear team structure. Technically, the website uses modern web technologies including Google Tag Manager and CookieHub for cookie consent management, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and explicit privacy policies are absent. The absence of WHOIS data limits domain legitimacy verification, but the website content and contact information suggest a trustworthy and established business. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in privacy compliance and security best practices.

K

Kubíček Balloons

kubicekballoons.cz

55

Kubíček Balloons is a Czech-based manufacturer specializing in hot air balloons, offering innovative and reliable products inspired by pilot needs. The company provides a comprehensive range of services including pilot training, custom balloon design, and sales of stock balloons. Their market position is strong within the ballooning community, supported by decades of experience and a reputation for quality and innovation. The website is professionally designed, mobile-optimized, and rich in content, targeting balloon pilots and enthusiasts globally. Technically, the site employs modern JavaScript frameworks and libraries, with good SEO and accessibility features. Security posture is solid with HTTPS, security headers, and privacy compliance, though it lacks explicit incident response and vulnerability disclosure information. Overall, the site is trustworthy and well-maintained, with a moderate risk profile primarily due to the absence of public WHOIS data and some missing policy pages.

A

Agency Vista LLC

agencyvista.com

67

Agency Vista LLC operates a leading online platform that connects brands with over 50,000 verified digital marketing agencies. Founded in 2019 and based in the United States, the company provides an all-in-one solution for marketing agencies to claim profiles and for businesses to find suitable marketing partners. The website is built on a modern React and Gatsby stack, leveraging AWS DNS and integrated with Google Analytics and HubSpot for marketing and analytics. The platform demonstrates strong digital maturity with excellent design, mobile optimization, and SEO practices. Security posture is solid with HTTPS enforcement, domain locking, and cookie consent mechanisms, though DNSSEC is not enabled and explicit security policies are absent. Overall, the site is professional, trustworthy, and well-positioned in the marketing technology sector.

A

AS Balticom

balticom.lv

55

AS Balticom is a well-established telecommunications provider based in Latvia, offering high-speed internet, digital and analog television, and telephony services primarily in Riga. As the third largest internet and TV provider in the region, Balticom focuses on delivering quality services to both residential and business customers. The website reflects a professional and consistent brand image with clear service offerings and customer engagement channels. Technically, the site employs modern JavaScript libraries and tracking tools, ensuring a responsive and user-friendly experience across devices. Security measures such as HTTPS and reCAPTCHA are implemented, though there is room for improvement in security policy transparency and HTTP security headers. Overall, the site demonstrates a mature digital presence with moderate to high security posture and compliance with privacy regulations.

D

Delska

deac.lv

79

Delska operates as a sustainable data center provider in Northern Europe, particularly focusing on the Baltic region. The company emphasizes green energy usage, GDPR compliance, and robust security, positioning itself as a leading medium-sized player with over 25 years of experience. Their business model centers on providing environmentally friendly data center services to enterprises requiring secure and compliant hosting solutions. The website content is professionally presented with consistent branding and clear messaging targeting enterprise customers interested in sustainable IT infrastructure. Technically, the website employs modern web technologies including Bootstrap, Material Design Icons, and Google Fonts, hosted behind Cloudflare DNS services. It integrates multiple third-party analytics and marketing tools such as Google Analytics, Meta Pixel, Twitter Pixel, Reddit Pixel, and Hotjar, managed through Google Tag Manager. Cookie consent is managed comprehensively via Cookiebot, ensuring GDPR compliance. The site is mobile-optimized and performs moderately well, though accessibility features are basic. From a security perspective, the site enforces HTTPS, uses domain transfer locks, and implements CSRF protection cookies. However, DNSSEC is not enabled, and explicit security policies or incident response contacts are not published. No critical vulnerabilities or exposed sensitive data were detected. The domain is newly registered but consistent with the business's claims, suggesting a recent domain acquisition or rebranding. Overall, the website presents a trustworthy and professional front with good privacy compliance and security posture. Strategic improvements include enabling DNSSEC, publishing detailed security and incident response policies, adding terms of service, and enhancing accessibility. These steps would further strengthen the company's digital maturity and trustworthiness.

W

Wellness Kuřim s.r.o.

halakurim.cz

53

Sportovní hala Kuřim is a local sports facility operated by Wellness Kuřim s.r.o., providing a variety of sports venues and services including a sports hall, inflatable summer hall, beach volleyball courts, athletic area, aquapark, fitness center, and football fields. The website targets local sports enthusiasts and community members, offering reservation systems and event information. The business operates in the hospitality sector with a small company size and a clear focus on community sports engagement. Technically, the website employs common web technologies such as Google Analytics, Facebook SDK, and Google Maps API, with a moderate performance and good mobile optimization. The site uses HTTPS and secure form submissions but lacks advanced security headers and published privacy or terms of service documents, indicating room for improvement in security and compliance maturity. Security posture is adequate with HTTPS and secure forms but missing security headers and privacy policy reduce overall security confidence. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is a concern for domain legitimacy and trustworthiness, although the website content and contact information appear professional and consistent. Overall, the website is functional and professional but would benefit from enhanced security practices, published privacy and terms policies, and improved transparency regarding data protection to increase trust and compliance.

A

as4u.cz, s.r.o.

mladoboleslavsko.eu

64

The website www.mladoboleslavsko.eu serves as the official regional tourism portal for the Mladá Boleslav area in the Czech Republic. It provides comprehensive information on tourist regions, nature, history, culture, sports, accommodation, events, and local attractions. The site targets tourists and visitors interested in exploring this region, offering services such as event calendars, photo galleries, a mobile app, and an e-shop. The business behind the site appears to be a small regional tourism promotion entity, operated by as4u.cz, s.r.o., a Czech company specializing in publishing and editorial systems.

K

Knihovna Bakov

knihovnabakov.cz

52

Knihovna Bakov is a local public library and museum located in Bakov nad Jizerou, Czech Republic. The institution offers a variety of cultural and educational services including book lending, audiobooks, internet access, copying services, and organizes events and exhibitions. The website is well-structured, providing detailed information about the library and museum, upcoming events, and recent news posts. The target audience primarily consists of local residents, visitors interested in regional history, and readers. The business model aligns with a public or non-profit cultural institution serving the community. Technically, the website is built on WordPress with common plugins such as Yoast SEO and Contact Form 7. It uses Google Analytics and Google Tag Manager for visitor tracking. The site is mobile-optimized and has good SEO practices. However, there is a lack of visible security headers and no explicit privacy or cookie policies, which are areas for improvement. HTTPS is properly implemented, ensuring secure communication. From a security perspective, the site shows a moderate security posture with no evident vulnerabilities in the HTML content. The absence of WHOIS data for the domain is a concern, reducing trustworthiness from a domain registration perspective. The site does not expose sensitive data and uses standard security practices but would benefit from enhanced security headers and compliance documentation. Overall, the website is a credible and professional representation of a local cultural institution but should address privacy compliance and domain registration transparency to improve trust and security posture.

M

město Židlochovice

koupalistezidlochovice.cz

60

Koupaliště města Židlochovice is a municipal swimming pool facility providing recreational services including multiple pools, playgrounds, and refreshment areas. The website is hosted on the Webnode platform as a subdomain, which explains the absence of WHOIS data for the subdomain. The site targets local residents and visitors, offering family-friendly leisure activities. Technically, the site uses modern web standards, is mobile optimized, and employs Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy policies. Overall, the site is functional and trustworthy but could improve compliance and security practices.

J

JRWN

jerewan.cz

42

JRWN is a small, flexible web design and development agency based in Brno, Czech Republic, specializing in custom websites, e-shops, and graphic design. They emphasize a full-service approach including design, development, hosting, and automation using their own CMS platform. The website is professionally designed with clear navigation and good mobile optimization, targeting a broad client base from small to large businesses across various industries. Technically, the site uses modern web technologies including Google Tag Manager and Google Fonts, but lacks visible security headers and explicit privacy or terms of service pages. The security posture is moderate with cookie consent implemented but missing other key security policies and disclosures. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and contact information appear legitimate and professional. Overall, the site scores well on content quality and business credibility but should improve privacy compliance and security practices.

R

RegioJet a.s.

regiojet.cz

69

RegioJet a.s. is a well-established transportation company founded in 2009, operating primarily in the Czech Republic and across Europe. The company offers train and bus ticketing services with a strong focus on customer service and convenience. Their website reflects a mature digital presence with multilingual support, comprehensive travel options, and integration with partner services such as hotel bookings and language stays. The company holds a strong market position as a leading private transport operator in Central Europe. Technically, the website is built on modern frameworks such as Next.js and React, leveraging Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized, fast, and accessible, with good SEO practices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the security posture is robust, though the site lacks a dedicated security policy and incident response contact information. No critical vulnerabilities or suspicious activities were detected. The domain registration data aligns well with the business history, supporting legitimacy and trustworthiness. The risk assessment is low, with recommendations focusing on enhancing transparency around security policies and incident response. The company demonstrates a professional and trustworthy online presence suitable for its business sector.

O

OPPORTUNITY, spol. s r.o.

alpinecentrumbrno.cz

58

OPPORTUNITY, spol. s r.o. operates the Alpine Store Brno, a specialized automotive dealership focusing on Alpine sports cars, with a modern showroom in Brno, Czech Republic. The company has a long history in automotive sales and racing, positioning itself as a key player in the regional luxury sports car market. The website is professionally designed, mobile-optimized, and provides clear contact information and business details. Technically, it uses modern JavaScript libraries and integrates multiple marketing and analytics tools with appropriate cookie consent mechanisms. Security posture is good with HTTPS and obfuscated emails, though some security headers could be improved. The domain is newly registered, which aligns with a new brand initiative rather than the company's founding date. Overall, the site is trustworthy and well-maintained.

D

dacia

dacia.cz

68

The website www.dacia.cz serves as the official Czech Republic portal for the Dacia automobile brand, providing comprehensive information on new and used vehicles, financing options, insurance, and after-sales services. It targets consumers in the Czech market interested in affordable and hybrid/electric vehicles. The site demonstrates a mature digital presence with modern technologies such as React, optimized images, and integration with Google Analytics and Tag Manager for marketing and analytics purposes. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks explicit privacy policy and security headers, which are recommended for enhanced compliance and protection. The absence of WHOIS data reduces domain trustworthiness, but the branding and content strongly indicate legitimacy as an official brand site. Strategic recommendations include publishing clear privacy and terms policies, adding security headers, and providing contact information for security incidents and data protection officers.

SAKO Brno, a.s. operates a waste collection yard in Brno, Czech Republic, targeting businesses, entrepreneurs, tradesmen, and citizens. The company offers a wide range of waste acceptance services including sorted waste, construction debris, hazardous waste, bio waste, electronic waste, and functional appliances. The website supports online appointment booking to streamline customer service. Technically, the website uses modern JavaScript libraries such as jQuery and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is used and cookie consent is implemented, but explicit security headers and incident response information are lacking. WHOIS data is unavailable, limiting domain trust analysis. Overall, the website is functional, professional, and compliant with GDPR cookie requirements, but could improve security posture and transparency.

K

Kubíček Aircraft s.r.o.

kubicekaircraft.com

57

Kubíček Aircraft s.r.o. is a Czech-based manufacturer specializing in ultralight aircraft, emphasizing a family tradition and quality craftsmanship. The company targets ultralight pilots and aviation enthusiasts with versatile aircraft designed for rugged and comfortable flying experiences. Their market position is niche but credible, supported by a professional website and active social media presence. Technically, the website employs modern web technologies including Alpine.js and Splide.js, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

K

Kubíček Balloons

kubicekballoons.com

60

Kubíček Balloons is a reputable hot air balloon manufacturer based in the Czech Republic, with a domain registered since 2016. The company offers innovative and reliable products tailored to pilots and balloon enthusiasts worldwide. Their website demonstrates a strong market position with a focus on quality, custom design, and proprietary polyester fabric production. Technically, the website employs modern JavaScript frameworks and libraries such as Alpine.js, Splide.js, and lightGallery, alongside Google Tag Manager and Analytics for marketing and tracking. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site uses HTTPS with strong security headers and cookie consent mechanisms, though it lacks explicit published security policies or incident response contacts. Overall, the domain registration and website content are consistent, supporting the business's legitimacy and credibility.

K

Kávéeska

kaveeska.cz

53

Kávéeska is a municipal cultural center based in Brno, Czech Republic, providing a wide range of cultural and educational events for the general public including families, children, and seniors. It operates several subsidiary cultural institutions and enjoys strong support from local and regional government bodies. The website reflects a well-established community-oriented organization with a clear focus on cultural enrichment and public engagement. Technically, the site is built on WordPress with common plugins for GDPR compliance and event management, hosted by a reputable provider. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site is professional, trustworthy, and compliant with relevant privacy regulations.

D

DBP, s.r.o.

divadlobolkapolivky.cz

54

Divadlo Bolka Polívky is a well-established theatre company based in Brno, Czech Republic, operating since 2001. The company offers a variety of theatrical performances, concerts, exhibitions, and cultural events targeting a general audience interested in arts and culture. Their business model centers on ticket sales and event hosting, supported by a professional online presence. The website reflects a consistent brand image and provides clear contact and social media information, enhancing trust and engagement. Technically, the website is built on WordPress with common libraries such as jQuery, Owl Carousel, and LightGallery. It integrates marketing and analytics tools including Google Tag Manager, Google Analytics, and Facebook Pixel. The site is hosted behind Cloudflare DNS and CDN services, ensuring good availability and SSL encryption. Mobile optimization and user experience are good, though some technical aspects like accessibility and SEO could be improved. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security headers and uses an outdated jQuery version, which could pose vulnerabilities. No incident response or security policy pages were found, indicating room for improvement in security governance. Privacy compliance is basic but present, with GDPR-aligned cookie and privacy policies. Overall, the website is professional and trustworthy with moderate technical maturity and security posture. Strategic improvements in security headers, library updates, and enhanced compliance documentation would strengthen the site’s resilience and user trust.

K

Kraj sveta

krajsveta.sk

50

Kraj sveta is a regional tourism promotion website focused on the Košice region in Slovakia. It offers visitors curated local experiences, bucket lists, and accommodation booking options through trusted partners like Booking.com. The website targets tourists interested in exploring the region's natural, cultural, and gastronomic attractions. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Oxygen Builder, ensuring good SEO and mobile responsiveness. However, it lacks visible privacy and cookie policies despite using tracking technologies like Google Analytics and Facebook Pixel, which poses compliance risks. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site is legitimate and professionally presented but would benefit from enhanced privacy compliance and security best practices.

K

Košice Región Turizmus

unesconadosah.sk

59

The website unesconadosah.sk serves as a regional tourism promotion platform focused on UNESCO World Heritage cultural and natural sites in Eastern Slovakia, particularly the Košice region. It highlights 18 unique heritage locations accessible within 100 minutes by car from Košice, targeting tourists and visitors interested in cultural heritage and nature. The site is managed by Košice Región Turizmus, a regional tourism organization, and provides multilingual content with language options including Slovak, English, German, Hungarian, and Polish. The business model centers on tourism promotion and regional cultural heritage awareness, supported by a mobile app and active social media presence. Technically, the website is built on WordPress 6.7.2 using the Oxygen Builder framework, enhanced with Yoast SEO Premium for search optimization and WPML for multilingual support. It integrates modern web technologies including jQuery and Google Tag Manager, and is hosted on Amazon Web Services as inferred from cookies. The site demonstrates good mobile optimization and moderate performance, with proper SEO metadata and structured data for enhanced search visibility. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism via CookieYes, categorizing cookies by necessity and purpose. While explicit security headers like Content-Security-Policy or X-Frame-Options are not explicitly found in the provided data, no vulnerabilities or exposed sensitive data were detected. The site lacks publicly available privacy policy and terms of service pages in the analyzed content, which is a compliance gap. No incident response or vulnerability disclosure information is present. Overall, the website is trustworthy and professionally maintained, with strong business credibility and good privacy compliance regarding cookie management. Recommendations include publishing clear privacy and terms policies, enhancing security headers, and improving accessibility compliance to further strengthen the security posture and user trust.

T

Tesco Mobile

tescomobile.cz

57

Tesco Mobile Czech Republic operates as a well-established mobile virtual network operator offering prepaid SIM cards, affordable tariffs, and a mobile app with unique customer benefits. The website targets Czech consumers seeking cost-effective mobile communication services with strong brand recognition linked to Tesco. The digital infrastructure is built on WordPress with WooCommerce, integrating modern analytics and marketing tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and GDPR compliance via a consent management platform, although some security headers could be improved. Overall, the site reflects a professional and trustworthy telecommunications provider with clear contact channels and comprehensive legal documentation.

M

MERIMEX s.r.o.

merimex.cz

52

MERIMEX s.r.o. is a Czech Republic based company specializing in the sale and servicing of forestry and material handling machinery, representing major global brands such as John Deere, Sennebogen, and Waratah. The company targets professional customers in forestry and related industries, offering new and used equipment through its main website and dedicated bazaar platform. The website reflects a medium-sized business with a consistent brand presence and a focus on product offerings and service information. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics and security. The site is mobile optimized with a good user experience and clear navigation. However, some technical improvements such as enhanced security headers and more comprehensive SEO and accessibility features could be implemented. From a security perspective, the site uses HTTPS and has cookie consent mechanisms in place, but lacks visible security headers and explicit privacy or security policies. The absence of WHOIS data reduces domain trustworthiness, although the website content and branding suggest a legitimate business. No critical vulnerabilities or adult content were detected. Overall, the website presents a professional and functional digital presence with moderate security and privacy compliance. Strategic improvements in transparency, security headers, and policy disclosures would enhance trust and compliance.

P

PEFC Slovensko

pefc.sk

50

PEFC Slovensko operates as a national certification body supporting sustainable forest management in Slovakia. The organization provides certification services for forest owners, manufacturers, and consumers, promoting responsible sourcing and use of forest products. The website reflects a focused business model aligned with environmental sustainability and certification standards, positioning itself as a key player in the Slovak forestry certification market. Technically, the website employs a modern but straightforward technology stack including jQuery, Google Analytics, and a CMS platform (Kabernet). The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policies or incident response contacts are published. Overall, the domain registration and WHOIS data are consistent with the organization's identity, supporting legitimacy and trustworthiness.

H

Helix Cleaner s.r.o.

helixaircleaner.eu

47

Helix Cleaner s.r.o. is a Czech company specializing in advanced photocatalytic air purification technology designed for a variety of environments including industrial, healthcare, public, and private spaces. Their patented Helix air purifier uses titanium dioxide photocatalysis activated by UV-A light to effectively eliminate harmful particles, bacteria, viruses, and odors without the need for filters. The website presents a professional and consistent brand image with clear messaging targeting businesses and households seeking high-efficiency air cleaning solutions. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as Swiper.js and Google Tag Manager. It features responsive design optimized for mobile devices and includes a comprehensive cookie consent mechanism supporting GDPR compliance. The site uses HTTPS with strong SSL configuration, secure forms with CSRF tokens, and no exposed sensitive data, reflecting a good security posture. Security-wise, while the site enforces HTTPS and cookie consent, it lacks explicit security policy or incident response information. No vulnerabilities or suspicious patterns were detected in the content or WHOIS data. The domain is registered with a reputable registrar, and the website content aligns with the business claims, supporting legitimacy. Overall, the website scores well on content quality, technical implementation, security, privacy compliance, and business credibility. Strategic improvements include publishing security and incident response policies, enhancing security headers, and adding a vulnerability disclosure policy to further strengthen trust and compliance.

T

Techtex, s.r.o.

techtex.cz

45

Techtex, s.r.o. is a Czech Republic-based manufacturer specializing in large-span textile-clad halls and comprehensive sport facility constructions. Founded in 1999, the company holds a leading market position in the Czech Republic for sports venue roofing and related manufacturing services. Their offerings include production of steel, wood, and air-supported structures, sport surfaces, party tents, agricultural tarpaulins, and related construction services. The website reflects a medium-sized enterprise with a professional digital presence, leveraging WordPress CMS and multiple analytics tools. Security posture is generally good with HTTPS and standard best practices, though explicit security headers and vulnerability disclosures are absent. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. WHOIS data is unavailable, which slightly reduces trust but does not negate the legitimacy of the business as evidenced by detailed contact information and social media presence.

S

Softballová asociace České republiky

softball.cz

54

Softball.cz is the official website of the Softball Association of the Czech Republic, providing comprehensive information about softball competitions, national teams, development projects, and an e-shop. The website targets softball players, coaches, clubs, and fans primarily within the Czech Republic but also internationally. The site is well-structured with clear navigation and regularly updated content, reflecting an active sports organization. Technically, the site uses a custom CMS with standard web technologies including JavaScript libraries like TinyMCE and tracking tools such as Google Analytics and Google Tag Manager. Hosting appears to be managed by a Czech provider, consistent with the domain's registration data. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvements. No WAF or blocking mechanisms were detected, and the domain's WHOIS data confirms a long-standing and legitimate presence since 1998. Overall, the site is professional and trustworthy but should enhance privacy compliance and security best practices.

Č

Česká komora fitness

komorafitness.cz

58

Česká komora fitness is a professional organization representing the Czech fitness sector, including fitness center operators, personal trainers, and group exercise instructors. Founded in 2011, it provides membership services, industry news, events, and projects to support its members and the broader fitness community. The website serves as an information hub with rich content, including news articles, event calendars, and partner showcases. Technically, the site is built on WordPress with multiple plugins for user management and event handling, integrating marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mailchimp. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal incident response or vulnerability disclosure mechanisms. Privacy and cookie policies are missing, representing a compliance gap. Overall, the site is professional, trustworthy, and well-positioned within its niche but could improve privacy compliance and security best practices.

U

Unihoc

unihoc.com

65

Unihoc is a well-established company specializing in floorball sticks and equipment, operating primarily through an e-commerce platform. The company has a strong market position as a world-leading brand in floorball gear, targeting players and teams globally. Their website showcases a comprehensive product catalog with a focus on innovation and quality. Technically, the site is built on modern frameworks like React and Next.js, hosted with reputable providers and optimized for performance and mobile use. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and vulnerability disclosures. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, supporting a medium-sized retail business with a mature digital presence.

T

TUkas a.s.

tukas.cz

47

TUkas a.s. is a large, authorized automotive dealership and service provider operating in Prague, Czech Republic. The company represents seven major automotive brands including Kia, Dacia, Renault, Opel, Volvo, ŠKODA, Volkswagen, and Audi. Their business model focuses on new and used car sales, authorized servicing, and operational leasing, targeting both individual consumers and business clients. The website reflects a professional presence with clear branding and multiple partner brand logos, indicating a strong market position within the automotive retail and service sector in the region. Technically, the website is built on WordPress with Bootstrap and jQuery, integrating modern tools such as Google Tag Manager, Hotjar, and Cookiebot for analytics and privacy compliance. The site is mobile-optimized and includes structured data for SEO enhancement. Security measures include HTTPS, Google reCAPTCHA v3, and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS data limits domain trust verification, but the website content and branding suggest a legitimate and established business. Security posture is moderate with good SSL configuration and use of anti-bot measures, but lacks explicit security policies or incident response information. Privacy compliance is good with visible privacy and cookie policies and GDPR indicators. Overall, the website is safe for general audiences, with no adult or explicit content detected. The site demonstrates a good balance of business credibility, technical implementation, and privacy compliance, though improvements in security headers and WHOIS transparency are recommended. Strategic recommendations include enhancing security headers, maintaining up-to-date software, improving accessibility, and publishing clear security and incident response policies to strengthen trust and compliance.

K

Sportovní oblečení | Kappa

kappa-sport.cz

52

The website www.kappa-sport.cz is an e-commerce platform specializing in sports clothing and accessories, targeting general consumers interested in sportswear. The site presents a professional design with good content relevance and clear navigation, optimized for mobile devices. The technical infrastructure leverages modern frontend technologies including Bootstrap, jQuery, and several third-party marketing and analytics tools such as Cookiebot, Microsoft Clarity, and Google Tag Manager. Security posture is solid with HTTPS enforced and CSRF protection cookies in place, although some security headers are not explicitly detected. Privacy compliance is supported by a comprehensive cookie consent mechanism, but explicit privacy policy and terms of service pages were not found in the provided content. The absence of WHOIS data suggests privacy protection for the domain registration, which is common for retail e-commerce sites and does not raise immediate concerns. Overall, the website demonstrates a moderate to good security and privacy posture with room for improvement in transparency and security best practices.

B

BABOLAT ONLINE

babolat-online.cz

55

BABOLAT ONLINE operates as the official e-commerce platform for the BABOLAT brand in the Czech Republic, specializing in tennis, badminton, and padel sports equipment. The website offers a range of products including rackets, shoes, apparel, and racket stringing services, targeting sports enthusiasts and players in the region. The business model is retail-focused with a clear emphasis on brand authenticity and customer service, supported by numerous customer reviews and detailed contact information. Technically, the website employs a mature technology stack including jQuery, Bootstrap, Google Tag Manager, and various UI libraries to deliver a responsive and user-friendly experience. The site is mobile-optimized and includes SEO best practices such as meta tags and structured navigation. Cookie consent and GDPR compliance mechanisms are well implemented, reflecting a good level of digital maturity. From a security perspective, the site uses HTTPS for external resources and has implemented cookie consent controls, but lacks visible HTTP security headers and explicit security policies. The absence of WHOIS data for the domain is a notable concern, impacting trust and legitimacy assessments. No critical vulnerabilities or exposed sensitive data were detected in the content provided. Overall, BABOLAT ONLINE presents a professional and trustworthy e-commerce presence with room for improvement in security hardening and domain registration transparency. Strategic recommendations include enhancing security headers, verifying SSL configurations, and publishing incident response information to bolster user trust and compliance.

C

Citadele Business Center

citadelebusinesscenter.lv

43

Citadele Business Center operates as a premium office space provider located in Riga, Latvia, offering high-quality office rentals and conference center services. The website is professionally designed, targeting business professionals and companies seeking premium office environments. The business model focuses on commercial real estate leasing with a clear market position in the Latvian real estate sector. Technically, the website is built on WordPress CMS and utilizes modern JavaScript libraries such as jQuery, GSAP, and Slick Carousel. It integrates Google Analytics and Google Tag Manager for user tracking and marketing insights. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism, reflecting basic privacy compliance. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or suspicious content were detected, indicating a generally secure posture. Overall, the website presents a trustworthy and professional digital presence with moderate technical sophistication and privacy compliance. Strategic improvements in security headers and incident response transparency would enhance its security posture and compliance standing.

K

Košice Región Turizmus

kosiceregion.com

65

Košice Región Turizmus operates a comprehensive tourism portal dedicated to promoting the Košice region in Slovakia. The website offers rich content including destination guides, cultural and natural attractions, event information, and travel tips aimed at tourists and visitors. The organization positions itself as a regional tourism authority, providing valuable resources to enhance visitor experience and regional visibility. The site supports multiple languages, enhancing accessibility for international tourists. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates popular analytics and marketing tools such as Google Tag Manager, Hotjar, and Facebook Pixel. The site is mobile optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks some security headers and formal privacy and terms of service documentation. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the website content and branding appear professional and trustworthy. Overall, the site is a well-maintained regional tourism platform with moderate technical maturity and good user experience.

K

Kubíček Factory s.r.o.

kubicekvisionair.com

56

Kubíček Visionair, operated by Kubíček Factory s.r.o., is a leading Czech manufacturer specializing in custom inflatables with over 30 years of experience and a portfolio exceeding 20,000 products. Their market position is strong within the manufacturing sector, targeting businesses and organizations needing inflatables for events, advertising, and artistic purposes. The company emphasizes quality craftsmanship, user-friendly designs, and expert technical support. Technically, the website is modern, mobile-optimized, and uses contemporary JavaScript frameworks like Alpine.js, with Google Tag Manager and cookie consent mechanisms implemented for privacy compliance. Security posture is solid with HTTPS and cookie consent, though DNSSEC is not enabled and security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and social media presence. Strategic recommendations include enhancing DNS security, adding security headers, and publishing a formal security policy and incident response contacts.

O

Opportunity spol. s r.o.

opportunity.cz

57

Opportunity spol. s r.o. is a regional automotive dealership group operating in the Czech Republic, representing multiple well-known automotive brands including Renault, Dacia, Alpine, Seat, and Cupra. The company provides new car sales and automotive servicing, targeting customers in the Czech market. The website reflects a professional and consistent brand presence with clear contact information and multiple brand partnerships. Technically, the site uses a modern JavaScript stack including jQuery and integrates major analytics and advertising platforms such as Google Analytics, Facebook Pixel, and Adform. The site is served over HTTPS with good SSL configuration but lacks some security headers and a published privacy policy, which are areas for improvement. The WHOIS data for the domain is unavailable, which reduces domain trustworthiness, but the website content and branding appear legitimate and consistent with a medium-sized automotive dealership business. Overall, the site scores well on content quality and business credibility but should improve privacy compliance and security posture to enhance trust and compliance.

S

SAKO Brno, a.s.

sako.cz

69

SAKO Brno, a.s. is a large waste management company based in Brno, Czech Republic, providing comprehensive services including waste collection, sorting, and energy recovery. The company targets citizens, businesses, and municipalities with a strong local market presence and multiple related projects such as ReSAKO and specialized collection centers. The website is professionally designed using Drupal 10, with modern tracking and cookie consent technologies, ensuring good user experience and compliance with GDPR. Security posture is solid with HTTPS and cookie consent, though lacking explicit security headers and published security policies. WHOIS data is unavailable, limiting domain trust assessment, but the website's transparency and social presence support legitimacy. Overall, the site is well-structured, secure, and compliant, serving as a reliable digital front for the company.

S

SNIP&CO

ignisbrunensis.cz

44

Ignis Brunensis is a well-established cultural event organizer based in the Czech Republic, specializing in international fireworks competitions and drone shows held in Brno. The website reflects a professional and consistent brand presence with a focus on event promotion, entertainment, and community engagement. The target audience includes families, tourists, and cultural event enthusiasts. Technically, the site uses modern web technologies including JavaScript frameworks, Google Analytics, and Vimeo for multimedia content, delivering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks visible security headers and published privacy or security policies. The domain is long-standing since 2001, registered with a reputable Czech registrar, enhancing trustworthiness. Overall, the website is professional and trustworthy but would benefit from improved privacy and security disclosures.

I

INCORP a.s.

stars24.cz

66

stars24.cz is a Czech online media portal operated by INCORP a.s., focusing on celebrity news, lifestyle, and general current events including weather and crime. The website targets a general audience interested in entertainment and news within the Czech Republic. It maintains a consistent brand presence with active social media channels and provides a variety of news categories and regularly updated content. The business model is primarily advertising-driven, leveraging Google Adsense and MGID ad networks. Technically, the site uses modern web technologies including Google Tag Manager and asynchronous JavaScript for ads and analytics, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced, though some security headers could be improved. Privacy and cookie policies are present and indicate GDPR compliance, supporting user data protection. WHOIS data confirms legitimate ownership consistent with the business entity. Overall, the site is professional, trustworthy, and safe for general audiences.

Popálky o.p.s. is a Czech non-profit organization dedicated to supporting individuals affected by burn injuries and their families. The organization provides a range of services including individual counseling, scar care guidance, preventive educational programs for children and adults, and operates an e-shop tailored for burn victims. The website reflects a well-established entity founded in 2014, with a clear mission to aid recovery and prevention of burn injuries. Their market position is solid within the Czech Republic's non-profit healthcare support sector, leveraging partnerships and social media for outreach. Technically, the website is built on WordPress with modern plugins such as Smart Slider 3 and Complianz GDPR for cookie management, indicating a mature digital infrastructure. The site is hosted likely by Active24, the domain registrar, and employs HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured data. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive GDPR policy and cookie banner. Business credibility is supported by clear contact information, testimonials, and partner logos. Overall, the website presents a trustworthy, professional, and user-friendly platform for its target audience. Strategic improvements could focus on enhancing security headers, publishing a security policy, and improving accessibility to further strengthen its posture.