Security Directory

N

Nemocnice Sedlčany

nemocnice-sedlcany.cz

53

Nemocnice Sedlčany is a regional healthcare provider in the Czech Republic offering a wide range of medical services including surgeries, rehabilitation, and various specialized ambulances. The hospital is part of the Group Mediterra, indicating a structured parent company relationship. The website is professionally designed using WordPress CMS, with modern technologies such as jQuery, Owl Carousel, and Google Tag Manager integrated for analytics and user experience. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy in Czech language. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though security headers could be improved. Overall, the site reflects a trustworthy and professional healthcare institution with active communication channels and social media presence.

G

Group Mediterra a.s.

mediterra.cz

49

Group Mediterra a.s. is a Czech healthcare group operating multiple hospitals, clinics, and a medical secondary school, providing comprehensive healthcare services including preventive, acute, and follow-up care. The group serves both domestic patients under public health insurance and international patients seeking specialized medical procedures. The website is professionally designed using WordPress CMS with modern technologies and offers multilingual support. It implements GDPR-compliant privacy and cookie policies with user consent mechanisms. Security posture is good with HTTPS and reCAPTCHA but lacks some advanced security headers and explicit security policies. WHOIS data is unavailable, which reduces domain transparency but the website content and business information appear legitimate and trustworthy.

E

EVENT Media a ontheSPOT

run-arena.cz

43

RUNaréna.cz is a Czech media website focused on running sports, providing a television magazine broadcast and an online archive of episodes and articles. The site targets running enthusiasts of all levels and operates as a niche media outlet under the parent company EVENT Media a ontheSPOT. The website is built on WordPress with modern front-end libraries and plugins, offering a good user experience and mobile optimization. However, it lacks key privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. WHOIS data is suspicious due to a future domain creation date and lack of registrant details, reducing trustworthiness. Overall, the site is professional and content-rich but requires improvements in privacy compliance and security transparency.

V

Visit Delco

visitdelcopa.com

60

Visit Delco is the official tourism promotion agency for Delaware County, Pennsylvania, providing comprehensive information on local attractions, events, dining, and accommodations. Positioned as a gateway between Philadelphia and the Brandywine region, it targets tourists, families, and event planners seeking cultural and recreational experiences. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, it leverages WordPress with modern plugins and frameworks, ensuring good mobile optimization and SEO. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements like DNSSEC and security headers are recommended. Privacy compliance is adequate with a clear privacy policy but lacks a cookie consent mechanism. Overall, the domain registration and website content are consistent and trustworthy, supporting a high business credibility score.

K

Krista Exhibitions

interpharma-indonesia.com

46

Indonesia Pharmaceutical Expo (IPEX) is a well-established event organized by Krista Exhibitions, focusing on the pharmaceutical industry and related sectors in Indonesia. The website serves as a platform for event information, exhibitor and visitor registration, and partnership details. The business model centers on event management and trade show facilitation, targeting pharmaceutical manufacturers, suppliers, and industry professionals. The domain age and WHOIS data support the legitimacy and maturity of the business. Technically, the website uses modern JavaScript libraries and frameworks such as Bootstrap, jQuery, and Owl Carousel, hosted on AWS infrastructure, providing a moderate performance and good mobile optimization. However, the site lacks a visible CMS and advanced accessibility features. Security posture is moderate with HTTPS enabled but missing critical security headers and no published privacy or cookie policies, indicating compliance gaps. No incident response or vulnerability disclosure information is provided. Overall, the website is professional and functional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

NETQUES . daten & diagnostik GmbH operates the NQAP platform, a GDPR-compliant online application management system designed primarily for public sector and educational institutions in Germany. The platform digitizes and automates application processes, reducing paperwork and accelerating decision-making. The company positions itself as a niche technology provider with a focus on secure, efficient, and user-friendly application workflows. The website is professionally designed, consistent in branding, and targets organizations requiring compliant digital application solutions. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and various UI enhancement libraries. Security is well considered with HTTPS, Content Security Policies, and secure form handling including CSRF tokens and honeypot anti-spam measures. However, some security headers could be improved, and no cookie consent mechanism was detected despite GDPR emphasis. The WHOIS data is unavailable due to registry restrictions common for .es domains, but the website content and business information indicate a legitimate and professional operation. Overall, the security posture is strong with good data protection practices and ISO-certified hosting claims. The absence of vulnerability disclosure and incident response contacts are areas for improvement. The website is safe for general audiences, with no adult or questionable content. The business credibility is high, supported by clear contact information and trust signals such as LinkedIn presence and ISO certifications. Strategically, NETQUES should enhance transparency by adding cookie consent, incident response information, and vulnerability disclosure policies. Improving accessibility and adding additional security headers would further strengthen their security posture and compliance. These steps will enhance trust and align with their GDPR-focused business model.

P

PI North America

io-link.us

59

IO-Link North America operates as a specialized information and community platform focused on IO-Link industrial automation technology within the North American region. The website serves as a hub for technology information, event announcements, news updates, and member directories, targeting professionals and organizations involved in industrial automation. The business model centers on community engagement and knowledge dissemination, positioning itself as a regional authority in the IO-Link space. The domain is registered under PI North America with consistent registration details and a stable history since 2017. Technically, the website is built on WordPress using the OceanWP theme and integrates several modern web technologies including jQuery, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Hosting is provided via Cloudflare, ensuring good SSL configuration and performance. The site demonstrates good mobile optimization and accessibility, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS and has domain transfer protections in place but lacks DNSSEC and security headers such as Content-Security-Policy. No direct contact emails or phone numbers are published, and no explicit security or incident response policies are found. Tracking and analytics tools are used extensively without visible user consent mechanisms, indicating partial privacy compliance. Overall, the website is professional, trustworthy, and well-maintained with a moderate security posture. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and regulatory adherence.

AV your day svatby&eventy is a specialized wedding and event planning agency based in Brno, Czech Republic, founded in 2014. The company offers a comprehensive range of services including turnkey wedding planning, partial services, coordination, floral arrangements, decoration rental, wedding cakes, and event organization. The website reflects a professional and well-established business with a strong local presence and international experience. The target audience primarily consists of couples planning weddings and clients organizing events in the Brno region. Technically, the website is built on WordPress with WooCommerce and Elementor, utilizing modern plugins and frameworks to deliver a responsive and user-friendly experience. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and privacy policies indicates room for improvement. Overall, the website is trustworthy and professional, but enhancing privacy compliance and security best practices would strengthen its position.

N

Ninetheme

ninetheme.com

66

Ninetheme is a specialized WordPress theme developer with a decade-long presence in the market, offering modern, responsive themes primarily sold through Envato marketplaces. Their business model focuses on theme sales, customer support, and continuous theme updates. Technically, the website is built on WordPress with Bootstrap and popular page builders like Elementor and WPBakery, supported by Cloudflare for DNS and CDN services. The site demonstrates moderate performance and good mobile optimization. Security posture is solid with HTTPS and security headers, though improvements like DNSSEC and published security policies are recommended. Privacy compliance is basic, lacking cookie consent mechanisms. Overall, the website is professional and trustworthy, with a good market position in the WordPress theme industry.

H

Happy Robots s.r.o.

chytrecallcentrum.cz

43

ChytreCallcentrum.cz is a Czech Republic based small technology company specializing in voicebot automation solutions for call centers. Their core offering includes AI-driven conversational robots that automate telephone interactions, replacing traditional IVR systems and improving customer experience. The company targets small to medium businesses seeking to reduce operational costs and improve call handling efficiency. The website presents a professional and consistent brand image with clear contact information and demo scenarios illustrating GDPR compliance in voicebot interactions. Technically, the site uses modern frontend frameworks such as Bootstrap and jQuery, with good mobile optimization and moderate performance. However, the site lacks explicit privacy and cookie policies, and security headers are not detected, indicating room for improvement in security posture and compliance. Analytics tracking is present but commented out, suggesting privacy considerations or incomplete implementation. Overall, the domain registration data aligns well with the business profile, supporting legitimacy. The website is safe for general audiences and does not contain any adult or questionable content.

G

Groupe EBRA

ebra.fr

63

Groupe EBRA is the leading French regional daily press group, publishing multiple well-known regional newspapers and offering advertising, audiovisual, and event services. The website reflects a professional media company with a strong market position in France. The technical infrastructure uses modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms, indicating digital maturity. Security posture is good with HTTPS and security headers, but lacks explicit published security policies or incident response information. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trust. Overall, the website is well-designed, content-rich, and trustworthy for its audience.

F

Ferrino

ferrino.cz

50

Ferrino.cz is a professional e-commerce website specializing in the retail of outdoor equipment such as tents, sleeping bags, backpacks, and apparel, primarily targeting customers in the Czech Republic and Slovakia. The site serves as the exclusive importer and retailer of Ferrino brand products in these markets, offering a comprehensive product catalog, rental services, and customer support. The website demonstrates a solid market position with a focus on outdoor enthusiasts and professionals. Technically, the site employs a modern tech stack including jQuery, Bootstrap, and various marketing and analytics tools, with good mobile optimization and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly detected. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the website content and branding appear legitimate and professional. Overall, the site is well-structured, privacy compliant, and trustworthy for its business domain.

NMO Brasil is a small Brazilian non-profit association dedicated to supporting patients with Neuromyelitis Optica and related diseases. Founded in 2014, it provides educational resources, awareness campaigns, and community engagement primarily targeting patients, families, and the medical community. The website reflects this mission with clear informational content and links to related partner organizations. Technically, the site uses a standard Bootstrap-based stack with common JavaScript libraries, hosted likely on AWS infrastructure. While the site is mobile-optimized and well-structured, it lacks advanced security headers and cookie consent mechanisms, which are important for compliance and user trust. No forms collecting personal data are evident on the main page, and no social media links are present, limiting direct engagement channels. The WHOIS data is consistent with the organization's profile and domain age aligns with the founding date, supporting legitimacy. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy compliance features.

G

G4 REALITY

g4reality.cz

49

G4 REALITY is a small regional real estate agency based in Rosice u Brna, Czech Republic, specializing in the sale and rental of houses and apartments primarily in the surrounding areas including Rosice, Ivančice, Moravský Krumlov, and Brno venkov. The company offers comprehensive real estate services including professional property valuation, legal services, and mortgage consulting through partnerships with recognized specialists. The website reflects a professional and trustworthy business presence with clear contact information and positive client testimonials. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Tag Manager, ensuring a responsive and user-friendly experience. However, the absence of WHOIS data and some security headers slightly reduce trustworthiness from a security perspective. Privacy compliance is partially addressed with a privacy policy but lacks a cookie consent mechanism. Overall, the site is well-designed, content-rich, and serves its target audience effectively.

I

ij-t.cz

digitalizujemevas.cz

44

The website www.digitalizujemevas.cz represents a Czech-based company specializing in digital transformation services for businesses. Their offerings include tailored digitalization solutions, corporate systems such as CRM and finance automation, web and online applications, and an interactive marketing platform called Zabavne.online. The company positions itself as experienced with over 18 years in the industry, targeting small to medium enterprises seeking to modernize and improve operational efficiency through technology. The site is professionally designed with clear navigation and relevant content in Czech language, supporting business credibility. Technically, the site employs a traditional tech stack including jQuery 1.12.4, Bootstrap, and various UI libraries. While functional and mobile-optimized, the use of outdated JavaScript libraries and lack of visible security headers indicate moderate technical maturity. No CMS or hosting provider details were identified. Performance is moderate with good mobile responsiveness but basic accessibility features. Security posture is moderate but could be improved. The site uses HTTPS (assumed), has a login form with password fields, but lacks explicit security headers and uses an outdated jQuery version that may expose vulnerabilities. No privacy, cookie, or terms policies are present, and no incident response or security contact information is provided. WHOIS data is unavailable, limiting domain legitimacy verification and reducing trust. Overall, the website is a functional and professional digitalization service platform with room for improvement in security, privacy compliance, and domain transparency. Strategic enhancements in these areas would strengthen trust and reduce risk for clients and visitors.

M

MIBO Scooters s.r.o.

mibokolobezky.cz

51

MIBO Scooters s.r.o. operates an e-commerce platform specializing in the sale of scooters, including folding, racing, and electric models, along with related accessories and apparel. The company targets consumers primarily in the Czech Republic, offering a niche product line with a focus on quality and variety. The website is professionally designed with good navigation and mobile responsiveness, supporting a positive user experience. Technically, the site employs modern JavaScript libraries and Google Tag Manager for marketing and analytics, although Google Analytics is currently disabled. Security posture is moderate with HTTPS enforced but lacks some recommended security headers. Privacy and terms policies are present but basic, with cookie consent mechanisms implemented. The absence of WHOIS data reduces domain trustworthiness, but the presence of clear company contact information and registration details supports legitimacy. Overall, the site presents a credible and functional retail platform with room for security and compliance enhancements.

A

ATEX

atexsport.cz

59

ATEX is a Czech-based manufacturer specializing in high-quality sportswear for professional and hobby athletes. With over 30 years of experience, the company produces custom and standard sports clothing including jerseys, vests, pants, and suits, primarily serving the Czech and Slovak markets with growing presence in other European countries. The website reflects a mature business with professional branding and a clear focus on quality and customer engagement through an e-shop and custom design services. Technically, the website employs modern analytics and tracking tools such as Google Analytics, Facebook Pixel, Hotjar, and Microsoft Clarity, indicating a data-driven approach to user experience and marketing. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and privacy policies are lacking, representing areas for improvement. Overall, the site is well-designed, mobile-optimized, and trustworthy, but the absence of WHOIS data and privacy documentation slightly reduces compliance confidence.

E

Reboots – Masážní nohavice pro úlevu a regeneraci nohou ❤️

e-reboots.cz

45

The website e-reboots.cz is an e-commerce platform specializing in massage pants designed to aid in leg recovery and muscle regeneration. The business targets athletes and individuals seeking enhanced physical recovery, positioning itself as a niche player in the wellness and sports retail sector within the Czech Republic. The site features product listings, video content, and endorsements from sports professionals, enhancing its market credibility. Technically, the site is built on WordPress with WooCommerce, leveraging common web technologies such as jQuery and various plugins for UI and marketing integrations. The site is mobile optimized and SEO friendly, with structured data implemented via Yoast SEO. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks advanced security headers and formal incident response information. Privacy compliance is weak due to missing privacy and cookie policies, which poses a risk for GDPR adherence. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security practices.

R

Revy Apps

revy.io

61

Revy Apps is a small Canadian-based company specializing in developing premium Shopify applications aimed at helping merchants grow their online stores. Their product portfolio includes apps such as Unlimited Bundles & Discounts and Unlimited Smart UpSell Offers, targeting Shopify store owners seeking to increase sales through automated and easy-to-use tools. The company has been operational since 2017 and serves thousands of merchants globally, positioning itself as a niche player in the e-commerce app market. Technically, the website employs a modern technology stack including Bootstrap for responsive design, jQuery, and several UI libraries like Owl Carousel and Slick Carousel. It integrates Google Analytics and Helpscout Beacon for analytics and customer support, respectively. The site is hosted behind Cloudflare DNS, ensuring reliable performance and security, although DNSSEC is not enabled. The website is mobile-optimized with good SEO practices and a clean, professional design. From a security perspective, the site enforces HTTPS and has domain status protections to prevent unauthorized changes. However, it lacks several security headers and does not implement a cookie consent mechanism, which may impact privacy compliance. No explicit security policies or incident response contacts are published, and no vulnerability disclosure program is evident. The WHOIS data is consistent with the business claims, showing a legitimate registration with no privacy protection, enhancing trust. Overall, Revy.io presents a trustworthy and professional online presence with a solid business model and technical foundation. To improve, the company should enhance privacy compliance by adding cookie consent, implement security headers, and publish security policies. These steps will strengthen their security posture and regulatory adherence, supporting continued growth and customer trust.

I

Integsoft, Inc.

integsoft.com

58

Integsoft, Inc. is a specialized technology company focused on Java-based system integration, API monitoring, and security solutions. Their offerings include custom Java development, system integration using Mule ESB, single sign-on with Keycloak, Big Data analytics, and their proprietary modular product Integration Eye®. The company targets enterprise clients across diverse sectors such as insurance, energy, banking, healthcare, automotive, and transportation. The website reflects a professional and consistent brand image with strong client testimonials and partnerships with MuleSoft and Red Hat, indicating a solid market position in their niche. Technically, the website employs a modern technology stack including JavaScript libraries like jQuery, Bootstrap framework, and various UI components such as LayerSlider and Owl Carousel. Integration with Google Analytics and Hotjar indicates moderate user tracking for analytics and user experience improvements. The site is mobile-optimized and accessible with good SEO practices. However, some security best practices like security headers are not evident, and privacy and cookie policies are missing, which could impact compliance. Security posture is moderate with HTTPS usage implied but lacking explicit security headers and incident response information. The absence of WHOIS data for the domain raises some legitimacy concerns, though the professional presentation and contact details mitigate this risk. Overall, the site is safe, trustworthy, and well-designed but would benefit from enhanced privacy and security disclosures. Strategic recommendations include implementing comprehensive privacy and cookie policies, publishing security and incident response contacts, adding security headers, and verifying domain registration details to improve trust and compliance.

O

Obec Trojanovice

trojanovice.cz

46

Obec Trojanovice is a small municipal government entity serving the Trojanovice community in the Czech Republic. The website provides comprehensive information about the municipality, including local administration, community services, tourism, and public notices. The site is built on WordPress with a modern tech stack and includes GDPR-compliant cookie consent mechanisms. Security posture is generally good with HTTPS enforced, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust verification but the official contact details and content quality support legitimacy. Overall, the website effectively serves its purpose as a municipal information portal with good technical and privacy compliance.

F

Freemium Kft.

huskroua-cbc.eu

40

The Hungary-Slovakia-Romania-Ukraine ENI CBC Programme website serves as an official information portal for a European Union cross-border cooperation initiative focused on regional development and collaboration between the four countries. The site provides comprehensive information on programme priorities, calls for proposals, project databases, news, and events targeted at government agencies, project applicants, and regional stakeholders. The business model is public sector driven, emphasizing transparency and accessibility of programme data. Technically, the website is built on Webolucio CMS and leverages a modern JavaScript stack including jQuery, Slick Carousel, and Google Analytics for tracking. It employs HTTPS with good SSL configuration and integrates security tools such as Google reCAPTCHA and Rollbar for error monitoring. The site is mobile optimized with good navigation and SEO practices, although accessibility features are basic. From a security perspective, the site demonstrates good practices with HTTPS enforcement and form protection but lacks explicit security headers and a published security policy or incident response contacts. Privacy compliance is basic with a privacy policy and cookie consent mechanism present, but GDPR compliance indicators could be improved. No contact emails or phone numbers are explicitly provided, which may impact user trust. Overall, the website is professional, trustworthy, and well-maintained, suitable for its government and non-profit audience. Strategic recommendations include enhancing security headers, publishing a security policy, improving GDPR compliance, and providing clearer contact information to strengthen user trust and compliance posture.

I

Integsoft s.r.o.

integsoft.cz

55

Integsoft s.r.o. is a specialized technology company focused on Java-based system integration, Big Data analytics, and secure single sign-on solutions. They offer custom software development, integration services using Mule ESB, and a proprietary product suite called Integration Eye® for monitoring and securing APIs. The company positions itself as a trusted partner with official alliances with MuleSoft and Red Hat, serving diverse sectors including banking, energy, and manufacturing. Their website reflects a mature digital presence with professional design and clear business messaging. Technically, the site uses modern web technologies and analytics tools, though some security best practices like security headers and explicit privacy policies are missing. The absence of WHOIS data reduces domain trust but does not negate the legitimacy suggested by the website content and partner relationships. Overall, the company demonstrates a solid business and technical foundation with room for improvement in security and compliance transparency.

M

MAS Brána Brněnska, z.s.

branabrnenska.cz

60

MAS Brána Brněnska, z.s. is a regional non-profit organization focused on rural development and facilitating EU and national funding for the Brněnsko region in the Czech Republic. The organization collaborates with citizens, non-profits, private sector, and public administration to improve quality of life and environment in rural areas. Their website provides information about their projects, funding opportunities, and community news, positioning them as a key regional development actor. Technically, the website uses a custom CMS platform provided by Obce na webu s.r.o., leveraging common web technologies such as Bootstrap, jQuery, and Google Analytics. The site is mobile-optimized with a moderate performance profile and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. Overall, the website is professional, trustworthy, and serves its target audience effectively.

S

STAREZ – SPORT, a.s.

starez.cz

72

STAREZ – SPORT, a.s. is a medium-sized company founded in 2004 and owned by the statutory city of Brno, Czech Republic. It manages 18 sports facilities in Brno and organizes various sports activities and events for the public, focusing on community engagement and public service. The company offers services such as facility management, event organization, and digital tools like a mobile app and chip watches for discounts. The website reflects a professional and well-maintained digital presence with clear branding and comprehensive content. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. WHOIS data is unavailable, likely due to registry policies, but the site shows no signs of illegitimacy. Overall, the risk is low, and the company appears credible and trustworthy.

C

Cosmos

marketing-digital-mexico.com

49

Marketing Digital México, operated by Cosmos, is a medium-sized company specializing in digital marketing services tailored for the industrial sector in Mexico. With over 60 years of experience in industrial media and 23 years in digital lead generation, the company offers a comprehensive suite of services including SEO, lead generation, campaign management, and website development. The website is professionally designed, mobile-optimized, and provides multiple contact channels including email, phone, social media, and forms with captcha protection. Technically, the site uses modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking. However, there are gaps in privacy and cookie policy disclosures, and security headers are not evident, which could impact compliance and security posture. The domain registration is consistent with the business claims, enhancing trustworthiness.

P

Přemysl Veselý

premyslvesely.cz

58

Přemysl Veselý is a Czech construction and engineering company specializing in the building, reconstruction, and repair of engineering networks and communications since 1991. The company serves key regional clients including municipal utilities and city infrastructure in Brno. Their services cover water supply and sewage systems, road and parking lot construction, industrial and civil construction, sports facilities, terrain modifications, and specialized operations such as recycling and road surface repairs. The website reflects a medium-sized, established business with a professional online presence and clear contact information. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for enhanced user experience. It is mobile-optimized and uses HTTPS with cookie consent mechanisms, indicating compliance with GDPR. However, some security headers are missing, and no explicit incident response or security policy information is provided. Security posture is generally good with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data due to privacy protection limits domain transparency but does not detract from the overall legitimacy of the business. The website is free from adult or questionable content and maintains a professional and trustworthy appearance. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a reliable digital asset for the company.

O

Obec Bílovice nad Svitavou

bilovickakrizovatka.cz

46

The website www.bilovickakrizovatka.cz represents a regional one-day multi-genre music festival organized by the municipality of Bílovice nad Svitavou in the Czech Republic. It features a variety of musical acts including folk ensembles, rock bands, and local personalities, targeting music fans and the local community. The business model revolves around event organization, ticket sales, and partnerships with local and regional sponsors. The site content is well-structured and consistent with the festival's cultural and community focus. Technically, the website uses common web technologies such as jQuery, Bootstrap, and Google Analytics for tracking. It is mobile responsive and provides a good user experience with clear navigation and relevant content. However, there is no detected CMS or hosting provider information, and performance is moderate. The site includes a cookie consent banner indicating some level of privacy compliance. From a security perspective, the site lacks visible security headers and does not provide privacy or terms of service pages, which are compliance gaps. The WHOIS data is unavailable, limiting domain legitimacy verification. No forms or sensitive data collection points were detected on the homepage, reducing immediate risk exposure. Overall, the security posture is moderate but could be improved with better header implementation and published policies. The overall risk assessment is moderate with recommendations to enhance privacy compliance, implement security best practices, and improve transparency regarding domain registration. The site appears legitimate and safe for general audiences, with no adult or questionable content detected.

R

Radim Marada

okolo-grafiky.cz

40

Radim Marada operates a small freelance graphic and advertising studio primarily serving clients in the Czech Republic. The business offers a broad range of services including web design, logo creation, advertising solutions such as vehicle wraps and signage, print materials, and photography. The website reflects a professional and consistent brand image targeting local businesses, municipalities, and organizations seeking personalized graphic services. The market position is that of a small, local studio emphasizing direct client relationships and local delivery. Technically, the website employs a modern JavaScript stack including jQuery, UIkit framework, and popular libraries for UI components and analytics such as Google Analytics and Facebook SDK. The site is mobile responsive with good navigation and content quality, though accessibility and SEO optimizations are basic. There is no detected CMS or hosting provider information. Performance is moderate with no critical technical issues observed. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are compliance gaps especially under GDPR. The WHOIS data is unavailable, which reduces domain transparency and trustworthiness. No incident response or security contact information is provided. The site uses HTTPS (implied by analytics scripts) but SSL configuration details are unknown. Overall security posture is moderate but could be improved with better headers, policies, and transparency. The overall risk is moderate with no signs of malicious content or vulnerabilities in the visible code. Strategic recommendations include adding privacy and cookie policies, improving security headers, verifying SSL configuration, and enhancing domain registration transparency. These steps will improve compliance, trust, and security posture.

D

Directorios Industriales

dirind.com

49

Directorios Industriales operates as a specialized industrial directory service primarily targeting Mexican industrial sectors such as electrical, lighting, automation, metalworking, and food industries. Established since 1963 with an online presence dating back to 1998, the company offers directory listings, company registrations, and exposition information to industrial suppliers and professionals. The website is designed with a focus on clear sector segmentation and provides comprehensive contact information including multiple phone numbers and a physical address in Mexico City. Technically, the website uses a traditional tech stack including Bootstrap, jQuery, and several JavaScript plugins for UI enhancements. While the site is mobile responsive and has a moderate performance profile, it lacks modern CMS integration and advanced SEO or accessibility features. Google Analytics is used for tracking, but no cookie consent mechanism is implemented, indicating partial privacy compliance. From a security perspective, the domain is well-established with clientTransferProhibited status, but lacks DNSSEC and security headers such as Content-Security-Policy or HSTS. No HTTPS enforcement details were provided, and no explicit security or incident response policies are published. These gaps suggest a moderate security posture with room for improvement. Overall, the website is functional and professional with a moderate trust level. Strategic improvements in security hardening, privacy compliance, and technical modernization would enhance the business credibility and user trust significantly.

The website www.oupetrovice.cz serves as the official online presence for the municipal government of Petrovice, a small community in the Czech Republic. It provides residents and visitors with access to local government services, news, event calendars, and community engagement tools such as participatory budgeting. The site is well-structured, multilingual, and offers various online forms and resources to facilitate communication and service delivery. The business model is focused on public service and information dissemination, targeting local citizens and stakeholders. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and various UI enhancement libraries. It uses a custom CMS platform named Progres, which supports modular content management. The site is mobile-optimized and features interactive elements such as calendars and virtual tours. However, performance is moderate and accessibility features are basic, indicating room for technical improvement. From a security perspective, the site uses HTTPS but lacks visible HTTP security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. No incident response or vulnerability disclosure information is publicly available. The absence of WHOIS data reduces domain trust slightly, but the presence of official contact details and consistent branding supports legitimacy. Overall, the website is a functional and trustworthy municipal portal with good content quality and user experience. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance its security posture and trustworthiness.

M

Město Rosice

rosice.cz

46

Město Rosice operates an official municipal website serving residents and visitors of the town Rosice in the Czech Republic. The site provides comprehensive information about the municipal office, local events, official announcements, and public services. It targets local citizens and stakeholders seeking government-related information and services. The business model is that of a government information portal, positioning itself as the authoritative source for municipal data and community engagement. Technically, the website employs a modern technology stack including Bootstrap 5, jQuery 3.6, and various JavaScript libraries for UI enhancements and calendar/event management. The site appears mobile-optimized and accessible, with good SEO practices evident in meta tags and structured content. The CMS appears to be a custom or proprietary system named Progres, indicating a tailored solution for municipal needs. From a security perspective, the site uses HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and security hardening. The absence of WHOIS data limits domain trust verification, though the website content and official contact details support legitimacy. No vulnerability disclosure or incident response information is published, which could be improved. Overall, the website is professionally designed and functional, with a strong focus on providing municipal services and information. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and improving domain registration transparency to strengthen trust and compliance.

O

Obec Zeleneč

zelenec.cz

47

Obec Zeleneč operates as the official municipal government website for the Zeleneč community in the Czech Republic, providing residents with comprehensive information about local governance, community events, public services, and contact details. The site targets local citizens and stakeholders, offering a centralized platform for municipal communication and service delivery. The business model is public service oriented, focusing on transparency and community engagement. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Tag Manager, and various JavaScript libraries for calendar and pagination functionalities. The site is mobile-optimized and demonstrates good design and navigation clarity, although some accessibility features could be enhanced. The CMS appears to be a custom or specialized platform named Progres, tailored for municipal websites. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating awareness of privacy regulations. However, the absence of a published privacy policy, security headers, and vulnerability disclosure reduces the overall security maturity. No critical vulnerabilities or exposed sensitive data were detected, but improvements in security best practices are recommended. Overall, the website is trustworthy and professional in appearance and function, serving its intended audience effectively. The lack of WHOIS data is a concern but likely due to privacy or registry restrictions rather than malicious intent. Strategic enhancements in privacy transparency and security hardening would further strengthen the site's posture.

Eurobags is a Czech Republic-based manufacturing company specializing in plastic packaging and industrial plastic films. The company offers a range of products including plastic bags, industrial films, and custom packaging solutions tailored to various industries such as construction, agriculture, and manufacturing. Their website reflects a medium-sized enterprise with a focus on sustainability and innovation, supported by partnerships with related industry players. The digital presence is professional with clear contact information and multilingual support, targeting industrial and commercial customers. Technically, the website employs modern frontend technologies including Bootstrap 5, jQuery, and various UI enhancement libraries, ensuring good mobile responsiveness and user experience. However, there is room for improvement in accessibility and SEO optimization. The site lacks visible analytics or tracking scripts, indicating minimal user tracking. From a security perspective, the site uses HTTPS but lacks important security headers and explicit security policies. No incident response or vulnerability disclosure information is published. Privacy and cookie policies exist but do not include active consent mechanisms. The absence of WHOIS data limits domain trust assessment, though the website content and contact details appear legitimate. Overall, Eurobags presents a credible business with a solid web presence but would benefit from enhanced security practices, improved privacy compliance, and transparency in domain registration to strengthen trust and compliance posture.

O

Origine solutions

origine.cz

44

Origine solutions is a Czech web design studio specializing in creating web and mobile applications primarily for municipalities, schools, companies, and entrepreneurs. The company positions itself as a reliable local provider with a portfolio of over 40 municipal clients and more than 100 completed projects. Their services include web design, development, hosting, and server management, with a focus on public sector clients and small to medium enterprises. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, Animate.css, AOS, Slick Carousel, and Magnific Popup. The site is mobile-optimized and uses HTTPS for secure communications. However, there is no evidence of advanced security headers or cookie consent mechanisms, and no CMS other than a custom publishing system named Progres is detected. From a security perspective, the site shows basic good practices such as HTTPS usage and no visible sensitive data exposure. However, the absence of WHOIS data and lack of privacy and cookie policies reduce transparency and compliance posture. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust. Overall, the website is professional and trustworthy in content and design but would benefit from improved privacy compliance, security headers, and transparency regarding domain registration. The missing WHOIS data is a notable gap that should be addressed to improve legitimacy and trustworthiness.

Filmová kancelář Ústeckého kraje is a regional government film office dedicated to promoting the Ústecký region in the Czech Republic as an attractive destination for film and television production. It serves as an intermediary between filmmakers and local authorities, providing location scouting, logistical support, and consultation services. The website reflects a government-supported entity with a clear mission to boost regional economic and tourism benefits through audiovisual productions. Technically, the website uses a range of older JavaScript libraries and standard web technologies, with moderate performance and basic mobile optimization. Security posture is moderate but could be improved by updating libraries and implementing security headers. Privacy compliance is weak due to the absence of privacy and cookie policies. Contact information is clearly presented with official emails and phone numbers, enhancing business credibility. WHOIS data is missing, limiting domain legitimacy verification, but the website content and official references support its authenticity.

M

Město Slavkov u Brna

slavkovak.cz

46

Slavkovak.cz is a local leisure and tourism portal operated by the city of Slavkov u Brna, Czech Republic. It provides residents and visitors with news, event listings, information on local associations, gastronomy, accommodation, and tourist destinations. The site serves as an official community resource with a focus on promoting local culture and tourism. The business model is informational and community-driven, supported by the city administration. The website is well-branded and consistent, targeting a general audience interested in local events and tourism. Technically, the site uses a modern tech stack including UIkit for UI components, jQuery, Google Tag Manager, Google Analytics, Facebook SDK, and mapping APIs from Mapy.cz and Leaflet. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. The presence of cookie consent and GDPR documentation indicates awareness of privacy compliance, though privacy policy details are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit vulnerability disclosure or incident response policies. No WHOIS data was found, which raises concerns about domain registration legitimacy, though the site content and footer indicate official city operation. Overall, the site is trustworthy but would benefit from improved transparency and security hardening. The risk assessment is moderate with recommendations to improve security headers, add terms of service and security policies, and verify domain registration status to enhance trust and compliance.

N

Nehoříme, konec cigaretám - nikotin zdravěji bez kouření

nehorime.cz

55

The website www.nehorime.cz is an independent Czech language online magazine focused on providing information about alternatives to smoking and healthier nicotine consumption methods. It covers topics such as nicotine pouches, heated tobacco products, e-cigarettes, and offers guidance on quitting smoking. The site targets adult smokers seeking less harmful alternatives and aims to educate and support them in their transition. Technically, the site is built on ASP.NET Web Forms with Bootstrap 3.4.1, jQuery, and other modern JavaScript libraries, ensuring good mobile responsiveness and user experience. Security-wise, the site uses HTTPS but lacks explicit security headers and privacy/cookie policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, but the professional content and partner links indicate legitimate operation. Overall, the site is a valuable resource in its niche but should enhance privacy compliance and security practices.

Brána do Čech is a regional tourism portal focused on promoting the Ústecký region of Czechia. It provides visitors with comprehensive information about local attractions, events, accommodations, and leisure activities. The website targets tourists and regional visitors seeking travel guidance and cultural experiences. The business model is informational and promotional, aiming to enhance regional tourism visibility. Technically, the website employs a range of JavaScript libraries including jQuery, bxSlider, and Magnific Popup, alongside Google Analytics and Facebook SDK for tracking. The site shows moderate performance and basic mobile optimization. However, the use of an outdated jQuery version and lack of modern security headers indicate areas for improvement in technical maturity. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. No forms or direct data collection mechanisms were detected, reducing immediate data exposure risks. The absence of WHOIS data limits domain trust verification, though the content and external links suggest legitimacy. Overall, the site is functional and content-rich but would benefit from enhanced security practices, privacy compliance, and domain transparency to improve trustworthiness and user confidence.

D

DMD GROUP, a.s

dmdgroup.eu

44

DMD GROUP, a.s is a Slovak defense manufacturing company specializing in research, development, and production of weapon systems. The company operates as a group with multiple subsidiaries focused on weapon design, ammunition lifecycle management, and production of barrels and cannons. Their website reflects a professional and consistent brand presence targeting defense industry stakeholders and government agencies. Technically, the site is built on WordPress with modern libraries and scripts, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response policies are absent. Privacy compliance is addressed with a GDPR privacy policy, but lacks a cookie consent mechanism. Overall, the website is trustworthy and well-maintained, supporting the company's credibility in the defense sector.

C

CRMT d.o.o.

crmt.si

43

CRMT d.o.o. is a well-established Slovenian technology company specializing in data-driven business transformation, controlling modernization, corporate performance management, and regulatory reporting solutions. With over 20 years of experience, CRMT serves business clients seeking to leverage advanced data management and analytics technologies to improve operational efficiency and compliance. The company maintains strong partnerships with leading technology providers such as Exasol, Qlik, and Wolters Kluwer, reinforcing its market position as a trusted consulting and solutions provider. Technically, the website is built on a modern WordPress CMS platform with common optimization and analytics tools including Google Tag Manager and Cookiebot for consent management. The site demonstrates good mobile optimization, clear navigation, and professional design, supporting a positive user experience. Performance is moderate, with opportunities for further optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence. Overall, CRMT's website reflects a mature, professional business with a solid digital presence and good security posture. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and considering a vulnerability disclosure program to further strengthen trust and compliance.

E

ELTON hodinářská, a.s.

eltonhodinarska.cz

40

ELTON hodinářská, a.s. is a Czech watch manufacturing company with a heritage dating back to 1949. The company specializes in producing PRIM brand wristwatches, as well as wall clocks, alarm clocks, and other measuring instruments. Their manufacturing process includes in-house production of mechanical movements and components, emphasizing traditional craftsmanship. The company distributes its products through branded stores in major Czech cities and selected partners. Technically, the website is built on ASP.NET with modern front-end libraries such as Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized and presents content professionally with clear navigation. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks visible security headers and explicit privacy or security policies. WHOIS data is unavailable, which reduces transparency but does not critically impact trust given the brand's established reputation. Overall, the website reflects a medium-sized manufacturing business with a solid digital presence but could improve in security and privacy transparency.

Acaballado® z.s. is a small Czech non-profit organization dedicated to organizing cultural and historical events, primarily focusing on historical reenactments and promoting historical awareness. The website serves as a platform to inform visitors about upcoming events, archives, and organizational information. The organization targets a general audience interested in cultural heritage and history, particularly within the Czech Republic. The business model is centered on event organization and community engagement without commercial sales evident on the site. Technically, the website is built on WordPress 6.5.7, utilizing popular plugins such as Yoast SEO and libraries including jQuery, Bootstrap, and Slick Carousel. It integrates Google Tag Manager, Google Analytics, and Facebook SDK for analytics and marketing purposes. The site is mobile-optimized with good navigation and SEO practices, although accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site uses HTTPS with an excellent SSL configuration but lacks visible security headers and formal security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is legitimate and professionally maintained for a small non-profit. The lack of WHOIS data is consistent with privacy protection common in such organizations. Strategic improvements in privacy compliance and security headers would enhance trust and regulatory adherence.

Z

Zámek Slavkov – Austerlitz

zamek-slavkov.cz

46

Zámek Slavkov – Austerlitz is a historic cultural heritage site in the Czech Republic, serving as a prominent regional landmark and event venue. The website presents the castle as a destination for guided tours, exhibitions, weddings, corporate events, and hospitality services including a café and restaurant. The site targets general audiences including tourists, families, and event organizers. Technically, the website is built on WordPress with modern front-end libraries and frameworks, providing a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though security headers and incident response information are lacking. The absence of WHOIS data limits domain legitimacy verification, but the website's content quality, social media presence, and privacy compliance indicate a trustworthy and professional operation. Overall, the site is well-maintained with room for security and transparency improvements.

E

eSol.cz s.r.o.

esol.cz

58

eSol.cz s.r.o. is a Czech-based software development studio specializing in custom mobile applications, web development, and comprehensive IT solutions with a strong focus on transportation and geolocation software. With over 25 years of experience in bespoke software development and more than 15 years in transportation solutions, eSol.cz holds a leading market position in this niche. Their key services include native and hybrid mobile app development for Android and iOS, custom web solutions, API-driven complex platforms, and IT infrastructure management including hosting in their own cloud environment. The company emphasizes long-term client relationships and tailored solutions. Technically, the website is built on modern frameworks such as Bootstrap and jQuery, uses secure HTTPS connections, and integrates Google reCAPTCHA for form security. However, the absence of privacy and cookie policies and missing WHOIS data slightly reduce the overall trust and compliance posture. Security practices are solid with encrypted communications and form protections, but could be improved by adding security headers and incident response disclosures. Overall, the website is professional, well-designed, and trustworthy, serving a specialized business audience effectively.

P

profi-people s.r.o

mstranka.cz

58

mSTRANKA.cz is a Czech service operated by profi-people s.r.o that offers free personal and business website creation with a paid subscription model for hosting and domain management. The service targets individuals, small businesses, craftsmen, and couples seeking wedding websites, providing a turnkey solution including website maintenance and editing. The website is professionally designed with clear navigation and good mobile optimization, leveraging common web technologies such as Bootstrap, jQuery, and Font Awesome. It integrates Google Analytics and Tag Manager for user tracking and employs a cookie consent mechanism to comply with privacy regulations. However, the absence of explicit privacy policy and terms of service pages is a gap in compliance. The WHOIS data for the domain is unavailable, which limits domain trust verification, but the website content and contact information appear legitimate and professional. Overall, the site demonstrates a good balance of usability, business credibility, and moderate security posture.

Tipito.cz is a Czech lifestyle magazine offering tips, ideas, and inspiration for better living, covering topics such as recipes, home, garden, health, beauty, and lifehacking. The website targets a general Czech-speaking audience interested in practical and creative lifestyle content. The business model appears to be content publishing monetized primarily through advertising, including Google Adsense. Technically, the site uses a modern front-end stack with Bootstrap, jQuery, Font Awesome, and integrates Google Analytics and Tag Manager for tracking. The site is mobile responsive and well-structured, though some accessibility features could be improved. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, but lacks some security headers and explicit privacy and cookie policies. WHOIS data is unavailable, limiting domain trust assessment, but the site content and external references suggest legitimacy. Overall, the site is professional and functional but could enhance privacy compliance and security transparency.

J

JAKO

jakojedenteam.cz

58

JAKOjedenteam.cz is the official Czech Republic importer and retailer of the JAKO sportswear brand, offering a comprehensive range of sports clothing and equipment tailored for various sports disciplines. The website serves sports clubs, teams, and individual athletes, providing both retail and team outfitting services with customization options. The site demonstrates a professional e-commerce platform with clear navigation, product categorization by sport and team lines, and integration of marketing and analytics tools such as Google Analytics and Facebook SDK. The technical infrastructure is modern, leveraging popular JavaScript libraries and ensuring mobile responsiveness. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though improvements in security headers and explicit security policies are recommended. The absence of WHOIS data for the domain is a notable concern, impacting trust and transparency. Overall, the website presents a legitimate and professional business presence with moderate risk, primarily due to domain registration opacity.

The website clubkodomo.fr is a small French-language blog focused on Kodomo-related content, including privacy policies, cookie policies, terms of service, and judo-related articles. The site uses WordPress CMS with a modern tech stack including Bootstrap and jQuery, and is optimized for mobile with basic SEO and accessibility features. The site is served over HTTPS with a valid SSL certificate, but lacks advanced security headers and explicit security or incident response policies. No contact information or business details are provided, and WHOIS data is unavailable, which raises concerns about domain legitimacy. Overall, the site provides basic informational content with moderate technical maturity but limited business credibility and security posture.