Security Directory

C

Czechtour

czechtour.net

39

The website www.czechtour.net represents an established chess tournament series in the Czech Republic, active since 2001. It organizes multiple international chess festivals including the well-known CZECH OPEN Pardubice. The site targets chess players and their families, offering tournament participation and accommodation discounts. Technically, the site uses Plume CMS with common JavaScript libraries and Google Analytics for visitor tracking. However, it lacks visible privacy and cookie policies, and no contact information is explicitly provided on the main pages. Security posture is weak due to missing HTTPS confirmation and absence of security headers. WHOIS data is unavailable or the domain is not found in the registry, raising concerns about domain legitimacy and registration status. Overall, the site provides relevant content but requires improvements in security, privacy compliance, and transparency to enhance trust and compliance.

E

Evangnet, z. s.

evangnet.cz

43

Evangnet.cz is a Czech-language independent evangelical Christian portal primarily serving the Českobratrská církev evangelická community. It offers a variety of services including news articles, event calendars, online worship broadcasts, discussion forums, and resource materials. The portal operates as a non-profit entity and targets evangelical Christians within the Czech Republic. The website content is regularly updated and reflects a consistent branding aligned with its religious mission. Technically, the site uses legacy JavaScript libraries such as jQuery 1.11.2 and jQuery UI, along with CSS and FontAwesome for styling and icons. While the site is functional and content-rich, it lacks modern security headers and uses outdated libraries that may expose it to vulnerabilities. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is understandable for a non-profit religious organization. Overall, the site is moderately secure and credible but would benefit from technical and compliance improvements.

PILA MARTINICE s.r.o., operating under the brand MARTINICE GROUP, is a Czech company specializing in turnkey wooden buildings including family houses, halls, roofs, and photovoltaic installations. With over 20 years of experience since 1997, the company positions itself as a reliable regional manufacturer and construction service provider offering high precision and a 25-year warranty on their wooden construction systems. Their target audience includes individuals and businesses seeking quality wooden buildings with modern technology and flexible project options. Technically, the website is built on a custom CMS (IPO CMS) and uses modern JavaScript libraries such as jQuery, Google Tag Manager, Facebook Pixel, and Matomo for analytics. The site is mobile-optimized and employs HTTPS with reCAPTCHA for form security. However, it lacks some security headers and a published privacy policy, which are areas for improvement. From a security perspective, the site demonstrates good practices like HTTPS enforcement and cookie consent mechanisms but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain is a notable concern, impacting the overall trustworthiness assessment. Overall, the website is professional, content-rich, and trustworthy from a business perspective but would benefit from enhanced transparency in privacy and security policies and improved domain registration visibility.

H

Hodinářství a Zlatnictví Tomáš Vyskočil - TOVYS

tovys.cz

52

Tovys.cz is a Czech Republic-based retailer specializing in watches and jewelry, operating since 1996 with a physical store in Jihlava and an online e-commerce platform. The company offers a wide range of products from over 55 global brands, including luxury and smart watches, complemented by watchmaking and goldsmith services. The website demonstrates a mature digital presence with modern technologies such as jQuery, Swiper.js, and integration of Google Analytics and Facebook Pixel for marketing and analytics purposes. Privacy compliance is well addressed with detailed GDPR policies and cookie consent mechanisms. Security posture is generally good with HTTPS and consent management, though improvements in security headers and incident response documentation are recommended. The absence of WHOIS data reduces domain trustworthiness, but the professional presentation and comprehensive contact information support business credibility. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

M

Minuta CZ s.r.o.

tissot-hodinky.cz

61

The website www.tissot-hodinky.cz serves as the official online presence for Minuta CZ s.r.o., the authorized distributor of the prestigious Swiss watch brand TISSOT in the Czech Republic. It offers detailed product information, news, and authorized dealer locations, targeting watch enthusiasts and consumers in the Czech market. The site is professionally designed with good navigation and content relevance, supporting a retail business model focused on brand representation and sales. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and Google Analytics for user tracking and interactive features. The site appears mobile-optimized with good SEO practices but lacks explicit CMS identification and some advanced accessibility features. Performance is moderate with room for improvement in security headers and privacy compliance. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, but no security headers were detected in the provided data. There is no visible privacy or cookie policy, which is a compliance gap under GDPR. WHOIS data is unavailable, limiting domain legitimacy verification, though the presence of clear company contact details and social media links to official brand accounts supports trustworthiness. Overall, the website is functional and professional but would benefit from enhanced security practices, explicit privacy and cookie policies, and verification of domain registration details to improve trust and compliance posture.

NEWIN is a non-profit network association representing economic development agencies across Lower Saxony, Germany. The organization facilitates communication, coordination, and knowledge exchange among regional economic promoters and collaborates closely with state ministries and funding bodies. The website is professionally designed using TYPO3 CMS and provides comprehensive information about events, workshops, and organizational structure. Technically, the site uses modern web technologies and offers good mobile optimization and accessibility. Security posture is adequate with HTTPS enforced and secure forms, though explicit security headers and policies could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website content and external links indicate a legitimate and established organization. Overall, the site is trustworthy and well-maintained, serving its target audience effectively.

N

Nový šachový server

nss.cz

47

Nový šachový server (NSS.cz) is a Czech media platform dedicated to delivering chess news, tournament results, interviews, and reports primarily targeting the Czech chess community. The site integrates premium membership content and an e-shop, indicating a diversified business model focused on content and commerce. Technically, the site uses a custom CMS built on the Nette Framework, with frontend technologies including jQuery and Google services for fonts, analytics, and advertising. The website is mobile-optimized and provides a good user experience with clear navigation and regularly updated content. Security posture is moderate; HTTPS is used, but security headers and advanced protections are lacking. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, reflecting GDPR awareness. However, the absence of WHOIS data reduces domain transparency and trustworthiness. Overall, NSS.cz is a well-maintained niche media site with room for improvement in security and transparency.

E

ERTICO - ITS Europe

itseuropeancongress.com

54

The website represents a professional and well-structured event platform for the 17th ITS European Congress 2026 in Istanbul, focusing on Intelligent Transport Systems and smart mobility. It targets industry professionals, exhibitors, speakers, and partners, providing comprehensive event information and participation opportunities. The technical infrastructure is based on Drupal CMS with modern JavaScript libraries and Matomo analytics, indicating a mature digital presence. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security headers and published privacy policies. The absence of WHOIS data for the domain raises concerns about domain legitimacy, though the website content and branding suggest a legitimate business operation. Overall, the site is safe, professional, and well-optimized for users, but would benefit from enhanced transparency and security documentation.

H

Hvozdnice

hvozdnice.eu

42

Hvozdnice.eu is the official municipal website for the village of Hvozdnice in the Czech Republic. It serves as a community portal providing news updates, official documents, contact information, and public service announcements relevant to residents and visitors. The website is positioned as a local government informational resource with a focus on transparency and community engagement. The content is primarily in Czech and includes sections on urban planning, local governance, cultural events, and infrastructure projects. Technically, the site is built on WordPress with common plugins such as Yoast SEO and WPBakery Page Builder, indicating a moderate level of digital maturity. The site is mobile responsive and optimized for search engines, though accessibility features are basic. Security posture is good with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response information. Overall, the website is trustworthy and professionally maintained, suitable for its purpose as a municipal information portal.

A

Adrex.com

adrex.com

52

Adrex.com is a well-established international media portal specializing in adrenaline, extreme, and outdoor sports content. It offers a wide range of articles, videos, and a unique application database catering to extreme sports enthusiasts globally. The website is professionally designed with consistent branding and a clear focus on its niche audience. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks explicit security headers and formal privacy or cookie policies. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but does not detract from the site's professional appearance and content richness.

S

Sport 2000 Alsace

sport2000-alsace.com

48

Sport 2000 Alsace operates as a regional sports retail and e-commerce platform focused on serving sports clubs in the Alsace region of France. The company offers exclusive club equipment deals, personalized services such as flocage and embroidery, and maintains a communication platform for partner clubs. The business is supported by physical retail stores in Illkirch and Sélestat, reinforcing its local presence and customer engagement. The website is built on PrestaShop, leveraging modern web technologies and providing a responsive user experience tailored for its target audience of sports clubs and team managers. From a technical perspective, the website demonstrates a solid infrastructure with HTTPS enabled and integration of common e-commerce technologies. However, there is room for improvement in security hardening, such as implementing security headers and enhancing privacy compliance with explicit policies and consent mechanisms. The absence of WHOIS data for the subdomain is typical and does not detract from the legitimacy of the business. Social media links and contact information further support the company's credibility. Security posture is adequate with no visible vulnerabilities or exposed sensitive data, but the lack of security headers and privacy policies represents compliance and security gaps. The website does not appear to track users extensively, indicating a privacy-conscious approach, though formal policies are missing. Overall, the risk level is moderate with recommendations to improve transparency and security controls. Strategically, Sport 2000 Alsace should focus on enhancing privacy compliance, implementing security best practices, and maintaining clear communication channels to strengthen trust and regulatory adherence. These steps will support sustainable growth and reinforce its position as a trusted regional sports retail partner.

C

Cnam

lecnam.net

62

The website analyzed is an authentication portal for the Conservatoire National des Arts et Métiers (Cnam), a well-established French educational institution. The portal provides secure login access to the Espace Numérique de Formation, targeting students and staff. The site uses standard web technologies including Bootstrap and jQuery, though some libraries are outdated, which may pose security risks. The design is professional and consistent with the institution's branding, offering a good user experience with mobile optimization. However, privacy compliance is limited, with no visible cookie consent mechanisms or detailed privacy policies on this page. Security posture is moderate; HTTPS is implied but no security headers were detected, and outdated JavaScript libraries present vulnerabilities. WHOIS data for the subdomain is unavailable, which is typical for subdomains but reduces transparency. Overall, the site is legitimate and functional but would benefit from security and privacy improvements.

P

PROIZS

proizs.cz

48

PROIZS.cz operates as a specialized e-commerce platform providing professional equipment primarily for emergency services such as firefighters and rescuers. The website offers a comprehensive catalog of products including firefighting gear, rescue tools, protective clothing, and accessories, targeting emergency responders and related professionals in the Czech Republic. The business model focuses on retail sales supported by workshops, training, and customer engagement through newsletters and loyalty programs. The company maintains partnerships with recognized brands enhancing its market position in the niche emergency equipment sector. Technically, the website is built on a custom CMS with a modern tech stack including jQuery, Google Analytics, Facebook SDK, and Google reCAPTCHA for security. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and anti-bot measures in place, though it lacks some HTTP security headers which could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security-wise, the site shows good practices such as encrypted connections and consent mechanisms but could enhance its defenses by implementing additional security headers and publishing incident response information. No vulnerabilities or malware indicators were found. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness, but the professional content and clear contact information mitigate concerns. Overall, PROIZS.cz presents a trustworthy and professional online presence with a clear focus on emergency service equipment retail. Strategic improvements in security headers and WHOIS transparency would further strengthen its credibility and security posture.

P

Požární bezpečnost s.r.o.

vyzbrojna.cz

59

Požární bezpečnost s.r.o. operates the largest e-commerce platform in the Czech Republic specializing in firefighting equipment, protective gear, and related safety products. The company targets firefighters, rescue services, and safety professionals primarily in the Czech and Slovak markets. Their business model focuses on online retail complemented by services such as outsourcing fire protection and safety management, equipment servicing, and technical engineering support. The website reflects a mature business with a strong market position and a comprehensive product catalog.

C

Compagnie des Transports Strasbourgeois

cts-strasbourg.eu

65

Compagnie des Transports Strasbourgeois (CTS) operates as the primary public transportation provider in Strasbourg, France, offering bus and tram services, ticketing, trip planning, and real-time traffic information. The website serves a broad audience including daily commuters and tourists, providing essential transit information and online services. The company maintains a solid market position as the main transit operator in the region. Technically, the website is built on OpenCms 8 ADE with a technology stack including jQuery, Select2, Chosen, and Matomo for analytics. Payment processing is securely integrated via PayZen. The site demonstrates moderate performance and basic mobile optimization, with accessibility and SEO features at a basic level. From a security perspective, the site uses HTTPS and secure payment iframes but lacks explicit security headers and documented security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is evident through cookie consent mechanisms and a privacy policy, though GDPR-specific details are basic. Overall, the website is professional, trustworthy, and functional with room for improvement in security policies and technical optimizations. The domain registration aligns well with the business, supporting legitimacy and trustworthiness.

A

Association des Centraliens de Lyon (ACL)

technica-magazine.fr

57

Technica Magazine is a professional publication serving the alumni and engineering community of Centrale Lyon. It offers specialized content including dossiers, articles, and newsletters focused on engineering, career development, and alumni activities. The website demonstrates a solid technical infrastructure using modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security measures include HTTPS enforcement, CSRF tokens, and hCaptcha for form protection, reflecting a mature security posture. However, the absence of WHOIS data and explicit security policies slightly reduce transparency and trust. Overall, the site is professional, compliant with GDPR, and trustworthy for its target audience.

N

Nadace Divoké husy

divokehusy.cz

47

Nadace Divoké husy is a Czech non-profit foundation dedicated to supporting charitable benefit events and organizations that assist disadvantaged children, adults, and seniors. The foundation operates by doubling the proceeds of benefit events up to a certain amount, fostering philanthropy and community solidarity across the Czech Republic. Their market position is unique as the only ecumenical foundation in the country with a long-standing history of over 28 years. The website reflects a professional and consistent brand image with clear messaging targeted at donors, beneficiaries, and the general public interested in social support activities. Technically, the website employs common web technologies such as jQuery, Google Analytics, and Google Tag Manager, with a cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, no CMS or hosting provider details are explicitly identified, and some security best practices like security headers are missing. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks advanced security headers and explicit incident response or vulnerability disclosure information. No WHOIS data is available, which limits domain trust assessment, but the website content and contact information appear legitimate and professional. Overall, the site demonstrates a moderate to good security posture with room for improvement in security headers and transparency. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving accessibility. The foundation's digital presence supports its mission effectively, but domain registration transparency should be verified to strengthen trust.

A

Aquaponik s.r.o.

aquaponik.cz

43

Aquaponik s.r.o. operates a specialized e-commerce and consulting platform focused on aquaponic farming systems and related products in Central Europe, primarily the Czech Republic. The company offers a range of products including aquaponic systems, water treatment, measurement devices, and hydroponics supplies, targeting both B2B customers and aquaponics enthusiasts. The website presents a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses a modern JavaScript stack including jQuery, Google Tag Manager, and Owl Carousel, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. The absence of WHOIS data reduces transparency and trustworthiness, but the website content and business information appear legitimate. Overall, the site is well-positioned in its niche with room for security and compliance enhancements.

D

Dieci srl

dieci.com

51

Dieci srl is a manufacturer specializing in telehandlers, forklifts, concrete mixers, and dumpers primarily serving the agriculture and construction sectors. The company offers a broad product range including stationary, articulated, and rotating machinery, targeting professional users in farming, construction, mining, and emergency services. The website is multilingual, professionally designed, and includes resources such as downloadable brochures, dealer networks, newsletters, and digital service portals (DTS and DCS). Technically, the site uses modern web technologies including Bootstrap, jQuery, and various UI libraries, with integration of Google Tag Manager and Facebook Pixel for analytics and marketing. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit incident response information. WHOIS data is unavailable, which raises concerns about domain registration transparency. Overall, the site is functional, professional, and trustworthy from a business perspective but could improve security and transparency aspects.

L

Linklaters

linklaters.de

67

Linklaters is a global law firm focused on providing legal certainty in a changing world, targeting corporate clients and legal professionals. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Tag Manager and Cookiebot, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, but lacks explicit security headers and published security policies. Privacy compliance is partially addressed through cookie consent mechanisms, but no privacy policy or terms of service were detected in the provided content. Overall, the site is legitimate and trustworthy, aligned with the Linklaters brand and German market presence.

S

Stadt Ibbenbüren

ibbenbueren.de

53

The website www.ibbenbueren.de serves as the official municipal portal for the city of Ibbenbüren, Germany. It provides a broad range of online services and information tailored to citizens, local businesses, and visitors, including administrative services, social benefits, cultural events, and urban planning. The site is well-positioned as a trusted government resource with a clear focus on accessibility and user engagement through social media channels and visual assistance tools. Technically, the site employs a mature technology stack centered around jQuery and proprietary CMS components, delivering a responsive and accessible user experience. While performance is moderate, the site benefits from good SEO practices and a clear navigation structure. The cookie consent mechanism and privacy policy demonstrate compliance with GDPR requirements. From a security perspective, the site shows good practices such as no exposed sensitive data and consent-based cookie usage. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No WAF or blocking mechanisms interfere with content accessibility. Overall, the website is a reliable and professional municipal platform with strong content quality and privacy compliance. Strategic improvements in security transparency and technical hardening would further strengthen its posture and user trust.

K

K2N way s.r.o.

kubota.cz

62

Kubota.cz represents the Czech Republic branch of Kubota Corporation, a globally recognized manufacturer of agricultural and industrial machinery. The website showcases a comprehensive product range including tractors, lawn mowers, and accessories, targeting agricultural professionals and municipal service providers. The company emphasizes sustainability and environmental responsibility, supported by a long corporate history and recent acquisitions such as Kverneland and Great Plains. Technically, the website employs modern frameworks like Bootstrap and jQuery, with integrated analytics and cookie consent mechanisms, reflecting moderate digital maturity. Security posture is adequate with cookie consent and no visible vulnerabilities, though security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting Kubota's strong market position in the manufacturing sector.

S

Správa železnic, státní organizace

szdc.cz

60

Správa železnic is a Czech state organization responsible for managing the national railway infrastructure. The website serves multiple audiences including passengers, suppliers, carriers, and contractors, providing comprehensive information about projects, services, and organizational structure. It holds a significant market position as the primary railway infrastructure manager in the Czech Republic. The site is well-branded and professionally maintained, reflecting its government entity status. Technically, the website is built on the Liferay CMS platform and uses modern JavaScript libraries such as jQuery, Slick Carousel, and Unite Gallery. It integrates analytics tools including Google Analytics and Facebook Pixel for user tracking and marketing purposes. The site is mobile-optimized with good navigation and SEO practices, although accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and includes important security headers. It publicly documents its cybersecurity policies and incident response capabilities, including a CSIRT team. However, the absence of a vulnerability disclosure policy and security.txt file is noted. WHOIS data is unavailable, which limits domain registration trust analysis, but the official domain and content suggest legitimacy. Overall, the website demonstrates a solid security posture and compliance with GDPR, with clear contact and privacy information. The risk level is moderate due to missing WHOIS transparency and minor technical improvements needed. Strategic recommendations include implementing a vulnerability disclosure program, enhancing accessibility, and maintaining updated domain registration information.

M

Muséum de Bordeaux - sciences et nature

museum-bordeaux.fr

57

The Muséum de Bordeaux - sciences et nature is a well-established public museum located in Bordeaux, France, focusing on natural history and cultural exhibitions. It serves a broad audience including families, schools, leisure professionals, journalists, and patrons. The museum offers permanent and temporary exhibitions, educational workshops, events, and virtual tours, positioning itself as a key cultural institution in the region. Technically, the website is built on Drupal 10 with modern libraries such as jQuery UI, Slick Carousel, Leaflet.js for maps, and FontAwesome for icons. It demonstrates good mobile optimization, accessibility, and SEO practices. The site includes a cookie consent mechanism and privacy policies aligned with GDPR requirements, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no dedicated security or incident response policies are published. The WHOIS data is unavailable, which limits domain registration insights but does not detract from the site's legitimacy given its professional content and official nature. Overall, the website is secure, compliant, and professionally maintained, with no signs of blocking or malicious activity. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

H

HELLENiQ ENERGY

helleniqenergy.gr

71

HELLENiQ ENERGY is a leading energy group operating in Southeastern Europe with activities spanning six countries. The company focuses on refining, supply, and sales of petroleum products and petrochemicals, positioning itself as a key player in the energy sector. Their website reflects a professional corporate presence with clear branding and comprehensive business information. The target audience includes industry stakeholders, partners, and customers interested in energy solutions with a focus on low carbon emissions. Technically, the website is built on Drupal 9, leveraging modern web technologies such as jQuery UI and Slick Carousel for UI components. It integrates Google Tag Manager and Cookiebot for analytics and cookie consent management, demonstrating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. From a security perspective, the site enforces HTTPS and implements multiple security headers, contributing to a strong security posture. Cookie consent mechanisms comply with GDPR requirements, offering users granular control over cookie categories. However, explicit security policies, incident response contacts, and vulnerability disclosure information are absent, representing areas for improvement. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic enhancements in transparency around security policies and incident handling would further strengthen its security and compliance posture.

P

Příbram Média s.r.o.

pribram.cz

51

Příbram Média s.r.o. operates www.pribram.cz, the largest local news portal serving the Příbram region in the Czech Republic. The website provides comprehensive local news coverage, traffic updates, event information, and advertising services targeted at residents and visitors of the region. The business model centers on media content delivery combined with advertising revenue. The company maintains a professional online presence with consistent branding and integration of social media channels such as Facebook, Instagram, YouTube, and Twitter. The content is primarily in Czech and focuses on community news and events, making it highly relevant to its target audience. Technically, the website uses a custom CMS with a technology stack that includes jQuery, jQuery UI, Google Fonts, and lazy loading for images. It integrates Google Analytics and Facebook Pixel for analytics and tracking, alongside Seznam Sklik for advertising. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, indicating awareness of privacy regulations such as GDPR. However, it lacks explicit security headers and a published security policy or incident response contact, which are areas for enhancement. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data confirms the legitimacy of the domain registration, matching the company information and location. Overall, www.pribram.cz is a trustworthy and professionally managed local news portal with a solid business foundation and adequate technical infrastructure. Strategic improvements in security policies and technical modernization could further strengthen its security posture and user trust.

D

Dolák s.r.o.

toyotadolak.cz

44

Toyota Dolák is a large, authorized Toyota dealership and service provider operating in the Czech Republic. It holds the position as the largest Toyota sales and service partner in the country, offering a comprehensive range of services including new and used vehicle sales, vehicle buyback, leasing, rental, and authorized servicing. The company operates multiple branches across key Czech cities, enhancing accessibility and customer reach. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to consumers and businesses interested in Toyota vehicles and related services. From a technical perspective, the website is built on WordPress with a modern technology stack including jQuery, Google Tag Manager, and various UI libraries. It is mobile-optimized and SEO-friendly, with good performance and accessibility standards. The presence of cookie consent mechanisms and GDPR-compliant privacy policies indicates a mature approach to privacy and regulatory compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and a security.txt file suggests room for improvement in security best practices. The lack of WHOIS data reduces domain trustworthiness somewhat, but the professional presentation and detailed business information mitigate concerns. Overall, Toyota Dolák presents a trustworthy and professional online presence with strong business credibility and good technical implementation. Strategic improvements in security policies and domain transparency would further enhance trust and compliance.

5

5M square s.r.o.

novesvetlo.cz

43

5M square s.r.o. operates the website novesvetlo.cz, specializing in the sale of healthy and biodynamic lighting products including full-spectrum LED strips, blue light blocking glasses, and lighting solutions designed to support healthy sleep. The company targets customers seeking lighting solutions with positive health impacts, positioning itself as a niche e-commerce provider in the Czech Republic's energy-related retail sector. The website is professionally designed with clear navigation and good content relevance, supporting a positive user experience. Technically, the site uses established JavaScript libraries such as jQuery and Flexslider, hosted likely with WEDOS, and implements cookie consent mechanisms, though lacks advanced security headers and explicit incident response information. Security posture is moderate with no critical vulnerabilities detected but could be improved with enhanced HTTP security headers and documented security policies. Overall, the domain registration data aligns well with the business, indicating legitimacy and trustworthiness. Strategic recommendations include improving security headers, publishing security policies, and enhancing analytics and marketing transparency.

B

Bc. Jiří Trnka

musicgate.cz

44

MUSICGATE.cz is a Czech Republic-based media portal specializing in music-related content including news, event invitations, press releases, photo and video reports, interviews, and reviews. Founded in 2016 and operated by Bc. Jiří Trnka, the site targets music enthusiasts primarily within the Czech Republic. The business model revolves around content publishing supported by advertising partnerships and sponsored banners. The portal maintains a consistent brand presence and offers a comprehensive range of music-related services, positioning itself as a niche leader in the Czech music media space. Technically, the website employs a custom CMS with a technology stack including jQuery, jQuery UI, Google Fonts, and standard web technologies. Hosting is linked to the registrar REG-GRANSY and nameserver svethostingu.eu. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Advertising is managed primarily through the Sklik network, with transparent ad placements and cookie consent mechanisms in place. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers such as CSP or HSTS. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, the site lacks a formal security policy or vulnerability disclosure mechanism. Overall, the security posture is adequate but could be improved with additional headers and incident response documentation. The overall risk assessment is low, with no signs of malicious content or blocking mechanisms. The site is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic recommendations include enhancing security headers, implementing a security.txt file, and formalizing incident response policies to further strengthen the security posture and user trust.

Úklidy Morava is a small, local cleaning services company based in Moravská Ostrava, Czech Republic, offering household, office, and communal area cleaning services primarily in the Moravian region. The company emphasizes professional and precise cleaning work with a long-standing presence since 1995, supported by a domain registered in 2013. The website presents clear business information and contact details but lacks formal privacy and cookie policies, which are important for compliance and user trust. Technically, the site uses older JavaScript libraries and lacks visible advanced security headers, indicating room for improvement in security posture. Overall, the site is functional and professional but would benefit from modernization and enhanced compliance measures.

G

Gymnázium Teplice

gymtce.cz

48

Gymnázium Teplice is a secondary grammar school based in the Czech Republic, providing comprehensive secondary education with a focus on preparing students for higher education. The institution actively participates in European educational programs such as Erasmus+ and offers Cambridge Exam preparation, positioning itself as a reputable educational provider in the Ústecký kraj region. The website reflects a medium-sized educational institution with consistent branding and a good level of content quality. Technically, the website employs common JavaScript libraries including jQuery, jQuery UI, Hammer.js, and integrates Facebook SDK for social media functionality. The site is built on the eSchool.cz CMS platform, with moderate performance and basic mobile optimization. SEO and accessibility features are present but could be enhanced for better compliance and user experience. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating room for improvement in security best practices and privacy compliance. The absence of WHOIS data raises minor concerns about domain registration transparency, though the active content and partner affiliations support the site's legitimacy. Overall, the website is professional and trustworthy for its educational purpose but would benefit from enhanced privacy disclosures, security headers, and improved mobile and accessibility features to strengthen its digital maturity and compliance posture.

O

Obchodní akademie s. r. o.

obaka.cz

40

Obchodní akademie s. r. o. is a small private educational institution in the Czech Republic specializing in business academy studies combined with sports activities. It operates multiple campuses in Ostrava and Karviná, targeting students interested in both academic and athletic development. The website presents clear contact information and social media presence, supporting its regional educational role. Technically, the site uses a modern JavaScript stack including jQuery, Nette Framework AJAX, and Google reCAPTCHA for security on login forms. The site is mobile optimized with moderate performance and basic SEO and accessibility features. Security posture is good with HTTPS and CAPTCHA but lacks advanced security headers and formal privacy or cookie policies, which are compliance gaps. WHOIS data is missing, limiting domain trust assessment, but no suspicious content or vulnerabilities were detected. Overall, the site is professional and functional but could improve privacy compliance and security hardening.

S

Střední škola obchodní a služeb SČMSD, Polička, s.r.o.

ssospolicka.cz

48

Střední škola obchodní a služeb SČMSD, Polička, s.r.o. is a private secondary vocational school located in Polička, Czech Republic, with a long-standing tradition dating back to 1929. The school offers a variety of study programs including business, marketing, public administration, cosmetology, hairdressing, and sports massage, targeting students and their parents. The website reflects a professional and well-structured digital presence with comprehensive content, clear navigation, and modern web technologies. Security measures such as HTTPS, Google reCAPTCHA Enterprise, and Google Tag Manager are implemented, although some security headers could be improved. Privacy and cookie policies are present and GDPR compliant. However, WHOIS data for the domain is unavailable, which slightly impacts trustworthiness from a domain registration perspective. Overall, the site is trustworthy, content-rich, and serves its educational audience effectively.

Základní škola a Praktická škola, Opava is a public educational institution located in Opava, Czech Republic, providing primary and practical school education. The website serves students, parents, and the local community with information about school events, projects, and contact details. The institution maintains a consistent brand presence and complies with GDPR regulations, reflecting a responsible approach to data privacy. Technically, the website uses a modern tech stack including jQuery, Mapy.cz API, and Owl Carousel, built on the AKTIVNÍ ŠKOLA CMS platform. It is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are absent. Overall, the site is trustworthy and professionally maintained, supporting the institution's mission effectively.

E

Edunation

edunation.cz

54

Edunation is a specialized Czech company providing digital services tailored for educational institutions, including school website creation, graphic design, and virtual tours. The website reflects a focused business model targeting schools and school founders, with a strong presence in the Czech education sector. Technically, the site uses modern JavaScript libraries and frameworks such as jQuery, Nette, and Google APIs, indicating a mature digital infrastructure. Security measures include HTTPS and Google reCAPTCHA, but the absence of explicit security headers and privacy policies suggests room for improvement. Overall, the site is professional and trustworthy, though it lacks some compliance documentation and direct contact details. Strategic enhancements in privacy compliance and security policies would strengthen its market position and trustworthiness.

B

Bez Bariér

ostrava-bezbarier.cz

50

Bez Bariér is a small non-profit organization based in Ostrava, Czech Republic, providing free advisory and mapping services to severely physically disabled citizens, particularly those using wheelchairs. Established in 2000, it focuses on barrier-free access consulting, accessibility mapping, and project documentation review for local authorities. The website reflects a specialized local service with strong ties to municipal partners and accessibility initiatives. Technically, the site is built on WordPress with common libraries like jQuery and Lightbox2, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. The absence of WHOIS data reduces domain trust but the site's content and partnerships support its legitimacy. Overall, the site is professional and trustworthy for its niche audience but should enhance privacy compliance and security best practices.

Č

Čazmatrans - Nova d.o.o.

cazmatrans.hr

53

Čazmatrans - Nova d.o.o. is a Croatian transportation company specializing in bus services within Croatia and international routes. The website provides an online ticket purchasing platform targeting general travelers and commuters. The company has a medium-sized presence with multiple subsidiaries and a well-established market position since 2012. The website is professionally designed with good navigation, mobile optimization, and relevant content focused on transportation services. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper.js, and integrates Google services like Tag Manager and Maps API, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, cookie consent implemented, and secure payment logos displayed, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with GDPR, and provides a safe user experience.

A

AnarchyMu Season 6 Episode 3

anarchymu.com

56

AnarchyMu.com is a niche online gaming website hosting private servers for the MU Online MMORPG, specifically focusing on Season 6 Episode 3. The site offers game client downloads, player rankings, market for in-game items, and community forums. The target audience is MU Online players seeking private server experiences with enhanced rates and features. Technically, the site uses jQuery and jQuery UI libraries, with Cloudflare DNS hosting but lacks advanced security headers and DNSSEC. The website design is functional and moderately optimized for mobile, with basic SEO and accessibility features. Security posture is limited, with no evident privacy or cookie policies, and no incident response or vulnerability disclosure information. The domain is registered since 2017 with a reputable registrar and Cloudflare nameservers, indicating moderate legitimacy. Overall, the site provides a functional gaming community platform but lacks formal privacy, security, and compliance measures.

The Wasser- und Bodenverband "Untere Tollense / Mittlere Peene" is a regional government-related organization based in Jarmen, Germany, focused on water and soil management. Their website provides comprehensive information about their tasks, organizational structure, and current activities, targeting local stakeholders and the public interested in environmental and water management issues. The site is professionally designed with clear navigation and relevant content, reflecting a small-sized public service entity. Technically, the website is built on TYPO3 CMS 6.2 with common web technologies such as Bootstrap, jQuery, and Font Awesome. While the site is mobile-optimized and performs moderately well, it uses an outdated CMS version which may pose security risks. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and incident response information. Privacy compliance is limited, with no cookie consent mechanism and only a basic privacy policy present. Overall, the website is trustworthy and serves its informational purpose effectively but would benefit from modernization and enhanced security and privacy practices.

The Wasser- und Bodenverband Mittlere Uecker-Randow is a regional public law corporation in Germany responsible for the maintenance and management of secondary water bodies and related infrastructure within the Uecker and Randow river basins. Founded in 1992, the organization serves municipalities and landowners in a defined geographic area, providing essential environmental and water management services. The website reflects this mission with detailed descriptions of its history, responsibilities, and operational scope, targeting local stakeholders and the general public. Technically, the website is built on TYPO3 CMS version 6.2, utilizing Bootstrap and common JavaScript libraries such as jQuery and Flexslider. The site is moderately optimized for mobile devices and offers a clear navigation structure. Hosting is managed via DomainControl nameservers, indicating professional domain management. However, the CMS version is outdated, which may pose security risks. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, indicating partial compliance with modern security and privacy standards. No incident response or vulnerability disclosure information is provided. No tracking or analytics scripts were detected, suggesting minimal user tracking. Overall, the website is trustworthy and professional for its public sector role but would benefit from updates to security practices, privacy compliance, and CMS modernization to enhance its security posture and regulatory adherence.

L

Landkreis Ludwigslust-Parchim

kreis-lup.de

60

The Landkreis Ludwigslust-Parchim website serves as the official digital portal for the regional government of the Ludwigslust-Parchim district in Germany. It provides comprehensive administrative information, citizen services, political updates, and regional news. The site targets residents, local businesses, and visitors seeking governmental resources and services. The business model is that of a public sector entity focused on regional governance and community support. Technically, the website employs a traditional tech stack centered around jQuery and the ikiss CMS framework, supplemented by accessibility tools such as Eye-Able and ReadSpeaker. The site is mobile-optimized and offers good navigation and content structure, although some technologies are somewhat dated. Performance is moderate, with no significant technical issues detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and incident response policies are not publicly evident, and no vulnerability disclosure mechanisms are present. The WHOIS data is minimal but does not raise suspicion, supporting the site's legitimacy as a governmental domain. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could benefit from enhanced security policies and transparency. The risk profile is low, with recommendations focusing on improving security headers, incident response visibility, and vulnerability disclosure to strengthen trust and resilience.

E

European Free Trade Association (EFTA)

efta.int

70

The European Free Trade Association (EFTA) website serves as the official online presence of the intergovernmental organization comprising Iceland, Liechtenstein, Norway, and Switzerland. It provides comprehensive information about EFTA's role in promoting free trade and economic integration within Europe and globally. The site targets government officials, trade professionals, and policy makers, offering detailed resources on trade relations, legal texts, statistical cooperation, and organizational structure. The website is well-established, reflecting the organization's long history since 1997, and maintains a professional and authoritative tone.

H

hoster.by

hoster.by

65

hoster.by is a Belarus-based technology company specializing in domain registration, web hosting, and cloud infrastructure services. Established in 2004, it offers a comprehensive platform for businesses to start and grow online, including free SSL certificates and promotional offers for domain purchases. The company targets businesses and individuals seeking reliable hosting and IT infrastructure solutions. The website demonstrates a solid technical foundation using Bitrix CMS and integrates multiple communication channels such as live chat and social media. Security posture is generally good with HTTPS and Let’s Encrypt SSL usage; however, the absence of explicit privacy and cookie policies indicates compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

H

HBF Textiles

hbftextiles.com

50

HBF Textiles is a professional textile manufacturing company specializing in woven upholstery, wrapped panels, wallcoverings, coated fabrics, leather, and drapery products. The company targets designers, furniture manufacturers, and commercial and residential clients, positioning itself as a medium-sized player in the manufacturing sector. The website is built on a modern Drupal 10 CMS with e-commerce capabilities, integrating advanced technologies such as Google Tag Manager and Adobe DTM for analytics and marketing. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security posture is strong with HTTPS enforcement and security headers, though the absence of a published security policy and incident response information suggests room for improvement. The lack of WHOIS registration data is a notable concern, potentially indicating privacy protection or domain registration issues, which should be further investigated. Overall, the website is professional, well-structured, and trustworthy, with a good balance of business and technical maturity.

R

Rhenus

aktenvernichtung.de

72

Rhenus operates a professional German-language website focused on secure destruction and disposal services for documents, data carriers, and hard drives. The company positions itself as a leading provider in Germany with over 40 years of experience and multiple security locations. The website is built on TYPO3 CMS and integrates modern technologies including Google Tag Manager and Usercentrics for consent management. The site is well-structured, mobile-optimized, and SEO-friendly, targeting both business and private customers. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and published policies are lacking. Contact is primarily via a contact form with no direct emails or phone numbers visible. Overall, the domain and website appear legitimate and consistent with the Rhenus Group brand.

K

Kandersteg International Scout Centre

kisc.ch

56

Kandersteg International Scout Centre (KISC) operates as the World Centre of the World Organisation of the Scout Movement (WOSM), providing accommodation, adventure programs, and volunteering opportunities primarily for scouts and youth organizations globally. The website reflects a well-established non-profit entity with a clear mission to support scouting activities and community engagement. The site is professionally designed with consistent branding and clear navigation, targeting a global scouting audience. Technically, the site is built on Drupal 7 with a range of JavaScript libraries enhancing user experience and interactivity. Mobile optimization and SEO practices are adequately implemented, though some accessibility features could be improved. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks visible security headers and published security policies. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site is trustworthy, functional, and compliant with privacy regulations.

F

FPT Software

fpt-software.com

79

FPT Software is a well-established global technology solutions provider headquartered in Vietnam, specializing in digital transformation and IT consulting services. The company offers a broad portfolio of services including AI, IoT, cloud computing, smart factories, and RPA, targeting enterprise clients worldwide. Their market position is strong, supported by a long domain history and a consistent brand presence across multiple localized domains. Technically, the website employs modern frameworks and analytics tools, indicating a mature digital infrastructure. However, some gaps exist in privacy compliance and security headers implementation. The security posture is generally good with HTTPS and domain transfer protections, but enabling DNSSEC and publishing security policies would enhance trust. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

F

FPT Software

fptsoftware.com

79

FPT Software is a well-established global technology solutions provider headquartered in Vietnam, specializing in AI-powered digital transformation and IT consulting services. The company offers a broad portfolio of services including smart factories, cloud, RPA, AI, IoT, and product engineering, targeting enterprises seeking next-level digital transformation. The website reflects a mature digital presence with excellent design, mobile optimization, and clear navigation, supporting its enterprise market positioning. Technically, the site leverages modern frameworks such as Bootstrap 5 and integrates multiple analytics and marketing tools including Google Analytics, Hotjar, Microsoft Clarity, and LinkedIn Insight Tag. Hosting and DNS services are managed via Cloudflare, ensuring good performance and security. However, the absence of DNSSEC and security headers indicates room for improvement in technical security hardening. From a security perspective, the website uses HTTPS and has domain transfer protections in place, but lacks visible privacy and cookie policies, consent mechanisms, and incident response contacts. No vulnerability disclosure or security.txt files were found, which are recommended for enterprise-grade security transparency. The WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website demonstrates strong business credibility and technical maturity but requires enhancements in privacy compliance and security best practices to align with modern enterprise security standards.

Infosys Limited is a globally recognized leader in next-generation digital services and consulting, offering a broad portfolio of IT services including digital transformation, consulting, data analytics, and digital marketing. The company targets enterprise clients seeking to navigate complex digital landscapes and enhance operational efficiency. The website reflects Infosys's strong market position and commitment to innovation and client success. Technically, the website is built on a robust infrastructure leveraging Adobe Experience Manager as its CMS, integrated with modern technologies such as Adobe Launch for tag management, OneTrust for privacy compliance, and Vidyard for video content. The site is optimized for performance, mobile responsiveness, and accessibility, demonstrating a mature digital presence. From a security perspective, Infosys employs strong HTTPS encryption, comprehensive security headers, and cookie consent mechanisms aligned with GDPR requirements. The presence of certifications like ISO 27001 and SOC 2 further underscores their commitment to security and compliance. No significant vulnerabilities or suspicious indicators were detected. Overall, the website presents a professional, trustworthy, and secure digital front for Infosys, supporting their enterprise business model and global operations. Strategic recommendations include continuous monitoring of third-party dependencies, enhancing incident response visibility, and maintaining rigorous security practices to uphold their strong security posture.

The Secession website represents a well-established Austrian non-profit cultural institution dedicated to contemporary art exhibitions and events. It holds a strong market position as one of the oldest independent art exhibition houses globally, with a rich history dating back to 1897. The site targets art enthusiasts, visitors, and the contemporary art community, offering detailed information about exhibitions, events, and the institution's mission. The business model is non-commercial, focusing on cultural promotion and education. The website content is rich, professionally designed, and consistent with the institution's branding and reputation. Technically, the website employs a mix of legacy and modern JavaScript libraries, including jQuery 1.11.3, GSAP, and Slick Carousel, with no explicit CMS detected, suggesting a custom-built platform. Performance is moderate with good mobile optimization and accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. Hosting details are not explicitly identified. From a security perspective, the site enforces HTTPS and uses Google Analytics with consent mechanisms denying ad and analytics storage by default, indicating good privacy awareness. However, the use of outdated jQuery versions and missing explicit security headers like Content Security Policy and X-Frame-Options present moderate risks. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. Overall, the website is trustworthy, professional, and safe for general audiences. It demonstrates a mature digital presence suitable for a cultural institution, with minor technical and security improvements recommended to enhance resilience and compliance.