Security Directory

W

Wohnraumkarte GmbH

wohnraumkarte.de

48

Wohnraumkarte GmbH is a German software company specializing in providing software solutions for the real estate industry, primarily through widgets and mapping tools integrated with OpenStreetMap and Mapbox. The website serves as a platform for property listings with filtering and mapping capabilities, targeting real estate professionals and clients in Germany. The business model is focused on Software as a Service (SaaS) offerings tailored to the real estate sector. Technically, the website employs modern JavaScript libraries such as Leaflet.js and Mapbox GL JS for interactive mapping, alongside jQuery and other UI libraries like Slick Carousel and PhotoSwipe. Hosting is managed via Amazon AWS infrastructure, as indicated by the DNS nameservers. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO practices. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML. However, it lacks visible security headers, privacy and cookie policies, and contact information for incident response, which are important for compliance and trust. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, the website is professionally designed and functional but would benefit from enhanced privacy compliance, security hardening, and clearer contact channels to improve trust and regulatory adherence.

C

CASELAND

caseland.ba

51

CASELAND is an e-commerce business specializing in mobile phone cases and accessories, primarily targeting customers in Bosnia and Herzegovina. The website offers a variety of popular designs, including a custom case designer and integration with Instagram for shopping. The business operates as a small regional player in the mobile accessories market, leveraging social media channels for marketing and customer engagement. The website is professionally designed with good navigation and mobile optimization, providing a positive user experience.

I

InterWay, a. s.

interway.sk

66

InterWay, a. s. is a well-established Slovak IT company with over 26 years of experience providing comprehensive IT infrastructure support, cloud services, cybersecurity consulting, and web application development. The company targets both private and public sector clients, including government ministries, banks, and healthcare institutions, positioning itself as a leading IT solutions provider in Slovakia. Their business model combines service delivery with proprietary products under the WebJET and IwayCloud brands. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and Google Tag Manager, with a proprietary CMS platform (WebJET). The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms. Performance is moderate, with room for improvement in accessibility and security headers. Analytics usage is moderate and privacy-conscious. From a security perspective, the site uses HTTPS with good SSL configuration and employs CSRF tokens in forms. However, it lacks explicit security policies and incident response contact information, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data aligns well with the company's claims, supporting legitimacy. Overall, InterWay's website demonstrates a strong business presence and technical maturity with good privacy compliance. Strategic improvements in security policy transparency and accessibility would further enhance their security posture and user trust.

V

Výskumný ústav geodézie a kartografie v Bratislave

vugk.sk

60

Výskumný ústav geodézie a kartografie v Bratislave is a Slovak government research institute specializing in geodesy, cartography, and cadastral data services. The website serves as an official portal providing access to various cadastral and geodetic services, including electronic portals and data provision. The target audience includes government entities, professionals in geodesy, and the general public seeking cadastral information. The business model is focused on government research and public service provision, positioning the institute as an authoritative source in its sector. Technically, the website uses a custom CMS (WebJET) with common JavaScript libraries such as jQuery and Bootstrap. The site is moderately optimized for performance and mobile devices, with good accessibility and basic SEO practices. The cookie consent mechanism is implemented, reflecting awareness of GDPR requirements, although no explicit privacy policy or terms of service pages were found. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and published security policies. No incident response or vulnerability disclosure information is available. The absence of privacy and terms policies represents a compliance gap. Overall, the security posture is moderate but could be improved with standard best practices. The website is trustworthy and professional, with no adult or questionable content. Contact information is clearly provided, including phone numbers and a physical address. No social media or email contacts were found. The site is not blocked by WAF or security challenges, allowing full content access for analysis.

G

Geodetický a kartografický ústav Bratislava

gku.sk

59

Geodetický a kartografický ústav Bratislava is a Slovak government institution specializing in geodetic and cartographic services. It provides key national services including cadastral data management, electronic portals for real estate information, and spatial observation services. The website serves government agencies, municipalities, and geospatial professionals with authoritative data and services. The institution holds a strong market position as the official geodetic authority in Slovakia. Technically, the website is built on a custom CMS (WebJET) and uses common JavaScript libraries such as jQuery and Bootstrap. It is mobile-optimized and accessible, with moderate performance. SEO is basic but functional. Cookie consent and GDPR compliance mechanisms are implemented effectively, reflecting good digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, the absence of security headers and vulnerability disclosure policies indicates room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the legitimacy of the domain as a government entity with consistent registration details. Overall, the website is professional, trustworthy, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security posture and trustworthiness further.

N

NAFTA

nafta.sk

64

NAFTA is a leading Slovak international company specializing in the storage and development of underground natural gas reservoirs, as well as exploration and production of hydrocarbons. It holds a significant market position as the 6th largest gas storage operator in Europe, with operations extending beyond Slovakia into the Czech Republic, Germany, Austria, and Ukraine. The company offers a range of services including gas storage, innovative development projects, and support services in the energy sector. The website reflects a mature digital presence built on Drupal 10, featuring modern technologies and a professional design that supports business stakeholders and customers. Security measures such as HTTPS and security headers are well implemented, although some privacy compliance aspects like explicit cookie consent and incident response information could be improved. Overall, NAFTA demonstrates a strong security posture and credible business representation with comprehensive contact information and transparency.

I

Investor Strategy News

ioandc.com

59

Investor Strategy News (ISN) is a specialized online publication launched in 2012, targeting institutional investors, managers, and their service providers. The website provides news, insights, podcasts, and video content tailored to the institutional investment community, positioning itself as a niche media outlet with a consistent brand and professional content quality. The business model revolves around digital media publishing with advertising and sponsored content as likely revenue streams. The site maintains a focused market position serving a specialized audience in the finance sector.

D

Dresden Marketing GmbH

dresden-magazin.com

62

Dresden Magazin is the official city magazine for the Dresden Elbland region, published by Dresden Marketing GmbH. It provides rich content focused on culture, events, gastronomy, family, and leisure activities, targeting residents and visitors interested in the region. The website is well-branded, professionally designed, and consistently maintained, reflecting a strong regional marketing presence supported by public funds. The business model centers on content publishing and regional promotion, leveraging digital media and social channels to engage its audience. Technically, the website runs on WordPress 6.8.1 with modern plugins such as Yoast SEO Premium and Borlabs Cookie for SEO and privacy compliance. It uses jQuery and Slick Carousel for interactive elements and integrates Google Analytics and Google Tag Manager for user tracking. The site is mobile-optimized with good navigation and accessibility features, although some accessibility aspects could be improved. Hosting details are not explicit but DNS servers suggest a reputable provider. From a security perspective, the site enforces HTTPS with a good SSL configuration and employs cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data is transparent and consistent with the business, showing a domain age appropriate for the company's history. Overall, Dresden Magazin presents a trustworthy, professional, and secure online presence with strong compliance to privacy regulations. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and establishing a vulnerability disclosure process to further enhance security posture and trust.

Slovenská agentúra životného prostredia (SAŽP) is a Slovak government agency under the Ministry of Environment, established in 1993, focused on environmental care and sustainable landscape development across Slovakia. It holds a strong national position as an authoritative body providing environmental services, education, and project management. The agency maintains a professional web presence with comprehensive content targeting public sector stakeholders and the general public. Technically, the website uses modern web technologies including React components, jQuery, and a specialized CMS (ScoreCMS), with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the website reflects a mature digital infrastructure aligned with its governmental role.

A

AVANT investiční společnost, a.s.

avantfunds.cz

50

AVANT investiční společnost, a.s. is a Czech investment company specializing in the establishment, management, and administration of funds for qualified investors. Positioned as a market leader in the Czech Republic, the company offers a broad portfolio of investment opportunities tailored to qualified investors, including asset management, investment advisory, and fund structuring services. The website reflects a professional and trustworthy brand image with clear communication of services and company credentials. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and Google Tag Manager, complemented by a comprehensive cookie consent mechanism ensuring GDPR compliance. The site demonstrates good mobile optimization, SEO practices, and moderate performance, supporting a positive user experience. From a security perspective, the site enforces HTTPS and employs cookie consent management but lacks explicit security headers and publicly available security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust assessment, but the professional presentation and compliance measures mitigate concerns. Overall, AVANT's digital presence is solid, with room for improvement in security header implementation and transparency around security policies. The company should consider publishing incident response information and conducting regular security audits to enhance trust and resilience.

B

Bayerischer Rundfunk

ardalpha.de

60

ARD alpha is an educational media platform operated by Bayerischer Rundfunk, a reputable public broadcaster in Germany. The website offers a wide range of learning resources including articles, videos, and podcasts targeting students, young adults, and the general public interested in education and knowledge. The content is professionally curated and presented with consistent branding and high-quality media assets. Technically, the site uses modern JavaScript libraries and tracking tools with some consent mechanisms, though explicit privacy and cookie policies are not clearly published on the main page. Security posture is moderate with no visible security headers or incident response information, but no critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy, well-maintained, and serves as a valuable educational resource.

Z

Zdravotní pojišťovna ministerstva vnitra České republiky

zdravijakovasen.cz

42

The website zdravijakovasen.cz is a health information portal operated by the Health Insurance Company of the Ministry of the Interior of the Czech Republic. It offers a wide range of health-related content including articles, videos, and seasonal health topics aimed at promoting healthy lifestyles, prevention, and wellness for a general audience including families and individuals with chronic conditions. The site is professionally designed using Drupal 10 CMS and integrates modern web technologies such as jQuery, Slick Carousel, and embedded YouTube videos to enhance user engagement. It also employs Google Tag Manager and Facebook Pixel for analytics and marketing purposes. The website demonstrates strong GDPR and cookie compliance with a clear cookie consent mechanism and a dedicated privacy policy page. However, no direct contact emails or phone numbers are found on the main pages, and there is no explicit security.txt or incident response information available. The WHOIS data for the domain is unavailable, likely due to registry privacy policies, which slightly reduces trust but does not detract from the overall professionalism and legitimacy of the site. Security posture is good with HTTPS enforced, but the absence of explicit security headers is noted as an area for improvement. Overall, the site is a trustworthy and valuable resource for health information in the Czech Republic.

T

The Conexus Institute

theconexusinstitute.org.au

73

The Conexus Institute is an Australian independent think tank dedicated to improving retirement outcomes through high-quality research and collaboration with industry, regulators, and policymakers. The organization positions itself as a key contributor to retirement policy and superannuation research in Australia, targeting stakeholders in the financial and non-profit sectors. The website reflects a professional and consistent brand image with a focus on delivering relevant content to its audience. Technically, the site is built on WordPress with modern plugins and frameworks, hosted behind Cloudflare, and employs HTTPS with a good SSL configuration. Security posture is solid but could be improved by enabling DNSSEC and adding more security headers. Privacy compliance is partial, with a cookie consent mechanism in place but no explicit privacy policy or terms of service pages found. Contact information is limited but includes a verified company email and a contact form. Overall, the website is trustworthy, content-rich, and professionally maintained, with room for improvement in privacy and security disclosures.

A

Altclub

altclub.com

47

Altclub is an established Czech online education platform specializing in cryptocurrency and trading courses. Founded in 2009, it offers a range of courses from beginner to master levels, including a comprehensive Trader Challenge program. The platform targets individuals interested in learning about cryptocurrencies and trading, providing video lessons, tips, and practical trading education. It positions itself as the leading online academy in its niche within the Czech market, supported by endorsements from educational authorities and positive student testimonials. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Facebook Pixel, Hotjar, and Google reCAPTCHA, ensuring interactive and trackable user experiences. However, some security best practices such as DNSSEC and security headers are missing, and no cookie consent mechanism is present despite GDPR compliance claims. Overall, the site is professionally designed, mobile-optimized, and trustworthy, with a good balance of content quality and business credibility.

S

Silniční konference

silnicnikonference.eu

47

Silniční konference is a professional event organizer focused on hosting an annual road conference in the Czech Republic, targeting transportation professionals and industry delegates. The website presents detailed information about the upcoming 32nd conference scheduled for September 2025 in Brno, highlighting significant participation metrics from previous years. The business model centers on event management, exhibitor engagement, and providing a platform for industry knowledge exchange. The site is built on WordPress and employs common web technologies including jQuery and Google Analytics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and visible privacy compliance documentation. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

L

Latvijas Fizioterapeitu asociācija

fizioterapeitiem.lv

43

Latvijas Fizioterapeitu asociācija (LFA) is a Latvian professional association dedicated to physiotherapists, providing certification, education, and resources to its members and the public. The website serves as an information hub for physiotherapy-related news, events, and professional development opportunities, positioning itself as a key national body in the healthcare sector. The target audience includes physiotherapists, healthcare professionals, and the Latvian public interested in physiotherapy services. Technically, the website is built on Drupal 10, utilizing modern web technologies such as jQuery, Slick Carousel, and lazy loading for images, hosted on DigitalOcean infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Analytics are implemented via Google Tag Manager, indicating a moderate level of user tracking. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and formal security policies such as vulnerability disclosure or incident response contacts. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap given GDPR requirements. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security policy disclosures to improve compliance and user trust. Strategic improvements in security headers and incident response readiness are recommended to strengthen the security posture.

B

BERNET COMMUNICATION GMBH

kliemt.blog

59

Kliemt.blog is a specialized German labor law blog operated by BERNET COMMUNICATION GMBH, providing comprehensive legal insights, articles, and podcasts focused on labor law topics such as compliance, restructuring, and ESG. The website targets legal professionals and business decision makers interested in labor law developments. Technically, the site is built on WordPress with modern plugins and frameworks, delivering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS and domain protection flags, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but should improve privacy and security practices.

B

Berliner Erklärung

berlinererklaerung.de

58

The Berliner Erklärung website represents a well-established non-profit coalition of 23 women's organizations in Germany advocating for gender equality across political, economic, and social spheres. The organization actively engages in political dialogue, public campaigns, and coalition building to influence legislation and promote equal participation of women. The website content is professionally presented in German, targeting politically engaged citizens and equality advocates. The business model is focused on advocacy and policy influence rather than commercial activities. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, incorporating modern web technologies such as jQuery and Slick Carousel. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. No major technical debts or vulnerabilities are evident from the provided data. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No incident response or vulnerability disclosure policies are publicly available, indicating room for improvement in security transparency. Overall, the website is trustworthy and professional, with a strong alignment between domain registration data and business claims. The absence of tracking scripts and minimal user data collection reflects a privacy-conscious approach. Strategic recommendations include implementing cookie consent, adding security headers, and publishing security policies to strengthen compliance and trust.

S

Szkoła Mistrzostwa Sportowego Polskiego Związku Piłki Siatkowej

smspzps.pl

47

Szkoła Mistrzostwa Sportowego Polskiego Związku Piłki Siatkowej is a specialized educational institution focused on volleyball sports training and general education for youth in Poland. The school operates under the auspices of the Polish Volleyball Federation and offers a comprehensive program combining academic studies with athletic development. The website reflects a medium-sized organization with a clear target audience of students, parents, and sports professionals. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and slick carousel, providing a responsive and accessible user experience with WCAG features. Security posture is moderate with HTTPS implied but lacking visible security headers and explicit security policies. Privacy compliance is basic with a privacy policy document available but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in transparency and security best practices.

V

VisitOpolskie

visitopolskie.pl

43

VisitOpolskie is a regional tourism promotion website dedicated to the Opolskie region of Poland, providing visitors with comprehensive information on attractions, events, accommodations, culinary traditions, and cultural heritage. The site targets tourists and visitors interested in exploring this Polish region, positioning itself as a key regional tourism portal. The business model focuses on information dissemination and tourism promotion, supported by partnerships such as with orot.pl. Founded in 2009, the website has a mature domain and consistent branding.

W

WebsiteNI

websiteni.com

72

WebsiteNI is a well-established Northern Ireland-based digital agency specializing in bespoke web design, eCommerce solutions, and digital marketing services. With nearly two decades of experience, the company serves businesses primarily in Belfast and Dungannon, focusing on delivering creative, user-friendly websites and effective marketing strategies. Their portfolio spans multiple sectors including construction, healthcare, agriculture, and hospitality, demonstrating a broad industry reach. Technically, the website is built on WordPress and leverages a modern technology stack including Google Analytics, Matomo, Hotjar, and various marketing and tracking tools. The site is mobile-optimized, accessible, and uses Cloudflare for DNS and CDN services, ensuring reliable performance and security. Multiple forms are protected by hCaptcha, indicating attention to spam prevention and user data security. From a security perspective, the site enforces HTTPS and employs domain status protections to prevent unauthorized transfers or updates. However, DNSSEC is not enabled and security headers are not explicitly detected, suggesting room for improvement. No explicit security policy or incident response information is published, which could enhance trust and compliance. Privacy and cookie policies are present and appear GDPR compliant, supporting responsible data handling. Overall, WebsiteNI presents a professional, trustworthy digital presence with strong business credibility and technical maturity. Strategic enhancements in security policy transparency and DNS security would further strengthen their posture. The website is safe for general audiences and does not contain any adult or questionable content.

jugendschutz.net is a German non-profit organization dedicated to youth protection on the internet. The website provides comprehensive educational content, awareness campaigns, and mechanisms for reporting violations related to youth safety online. It targets parents, educators, and professionals involved in child and youth protection. The organization holds a leading position in Germany for internet youth protection and operates with a professional and consistent brand presence. Technically, the website is built on TYPO3 CMS and leverages modern front-end technologies such as Bootstrap, jQuery, and Slick Carousel. It is optimized for mobile devices and provides a good user experience with clear navigation and rich content. The site uses HTTPS and Matomo analytics, indicating a focus on privacy and security. From a security perspective, the site enforces HTTPS and uses secure forms but lacks some advanced security headers and a published security.txt file. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence. However, no explicit incident response or security contact information is published. Overall, the website is trustworthy, professionally maintained, and safe for general audiences. The missing WHOIS data is a concern but does not outweigh the legitimacy signals from the website content and imprint. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving incident response transparency.

ADC Slovakia is a professional club dedicated to connecting and promoting the most awarded creatives in the Slovak advertising industry. Founded in 2018, it serves as a membership-based organization that fosters discussion, raises advertising standards, and supports young creatives. The website reflects a clear focus on the Slovak market with relevant content and active promotion of top advertising works. Technically, the site uses modern web technologies including HTTPS, DNSSEC, and popular JavaScript libraries, hosted on a reputable Slovak hosting provider. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS and DNSSEC enabled, but lacks some standard security headers and privacy compliance documentation. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

Śląskie. Informacja Turystyczna Województwa Śląskiego

slaskie.travel

47

The website slaskie.travel serves as the official tourism information portal for the Silesian Voivodeship in Poland. It provides comprehensive information on regional attractions, cultural heritage, nature, events, accommodation, and gastronomy, targeting tourists and visitors interested in this region. The site is well-structured with multiple language options and accessibility features, indicating a mature digital presence. Technically, it employs modern web technologies including Bootstrap, jQuery, and various analytics and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy policy or terms of service detected. Overall, the domain age and country alignment support the legitimacy of the site as a regional government-affiliated portal.

A

APRA - Asociace Public Relations

cenapr.cz

56

The website cenapr.cz represents the Czech Public Relations Award (Lemur), organized by APRA - Asociace Public Relations, a non-profit association focused on recognizing excellence in PR projects within the Czech Republic. The site provides information about the competition categories, judging process, results, and partners. It targets PR professionals, agencies, and organizations interested in public relations achievements. The business model revolves around organizing an annual event supported by sponsors and media partners, with a well-established market presence since 2006. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI libraries, hosted on Czech-based infrastructure. The site is mobile-optimized and uses tracking technologies such as Google Analytics and Facebook Pixel for marketing insights. However, it lacks some advanced accessibility features and comprehensive SEO structured data. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers and published security or incident response policies. There is no privacy or cookie policy, which poses GDPR compliance risks. No forms were detected in the analyzed content, reducing immediate data input risks. The domain WHOIS data is consistent with the business claims, showing a long-established presence and legitimate registration. Overall, the website is professional and trustworthy but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence.

E

Elite Solutions

elitesolutions.cz

42

Elite Solutions is a Czech-based creative agency specializing in content marketing, creative campaigns, and digital marketing services. With over 13 years of experience, the company serves a diverse client base including banks, energy companies, and media brands. Their service portfolio includes content creation, copywriting, video production, mobile app development, and social media management. The website reflects a mature and professional business with a strong market presence in the Czech Republic and Slovakia. Technically, the site is built on October CMS and leverages modern web technologies such as Google Analytics, Facebook Pixel, and Google Tag Manager, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. Overall, the site is well-designed, mobile-optimized, and provides clear contact information, supporting a trustworthy user experience.

V

Vysoká škola logistiky o.p.s

vslg.cz

56

Vysoká škola logistiky o.p.s is a specialized higher education institution based in the Czech Republic, focusing on logistics education. Founded in 2004, it offers bachelor's, master's, and MBA programs with a strong emphasis on logistics and sustainable transport. The institution maintains a solid market position as a niche university with multiple campuses and active partnerships, including participation in logistics conferences. The website reflects a professional and consistent brand image targeting prospective and current students interested in logistics studies. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Hotjar. It supports multilingual content and provides a cookie consent mechanism aligned with GDPR requirements. Security posture is good with HTTPS, reCAPTCHA, and cookie consent, though it lacks explicit security policies and advanced security headers. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, making it a reliable digital presence for the institution.

V

Vysoká škola hotelová a ekonomická

vshe.cz

52

Vysoká škola hotelová a ekonomická (VŠHE) is a specialized higher education institution in the Czech Republic focusing on hotel management, economics, and related fields. The website reflects a medium-sized educational entity with a clear market position and a transition to University College Prague (UCP) as its parent organization. The site offers bachelor's and master's programs, including English-language options, targeting prospective and current students. The content is professionally presented with good navigation and multilingual support. Technically, the website is built on WordPress with modern libraries and SEO tools, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers are missing and no explicit incident response or security policies are published. Overall, the site is trustworthy, compliant with GDPR, and well-maintained, with active social media engagement and clear business legitimacy.

Z

Zwiazek Gmin i Powiatow Subregionu Zachodniego Wojewodztwa Slaskeigo z siedziba w Rybniku

krainagornejodry.travel

45

Kraina Górnej Odry is a regional tourism website focused on promoting the Upper Odra region in Poland, managed by the Zwiazek Gmin i Powiatow Subregionu Zachodniego Wojewodztwa Slaskeigo z siedziba w Rybniku. The site offers comprehensive information on thematic trails, cultural heritage, events, accommodation, gastronomy, and multimedia resources to attract tourists and visitors interested in the Silesian region. The website is professionally designed with good navigation and mobile optimization, supporting multiple languages including Polish, English, German, and Czech. Technically, it uses a modern tech stack including jQuery, Bootstrap, Font Awesome, and integrates analytics and user behavior tracking tools such as Google Tag Manager and Hotjar. The site is hosted by OVH SAS and uses HTTPS with domain status protections, though DNSSEC is not enabled.

S

Slaska Organizacja Turystyczna

beskidy.travel

48

The website beskidy.travel serves as a regional tourism portal for the Beskidy and Silesian Cieszyn regions in Poland, operated by the Slaska Organizacja Turystyczna. It provides comprehensive information on cultural heritage, tourist trails, events, accommodations, gastronomy, and multimedia content aimed at tourists and visitors interested in exploring the region. The business model focuses on regional tourism promotion and information dissemination, positioning itself as an important regional authority in hospitality and tourism sectors. Technically, the site employs a modern tech stack including Bootstrap, jQuery, Google Tag Manager, and Hotjar, with good mobile optimization and accessibility features. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is limited due to absence of a visible privacy policy, though cookie consent is implemented. Overall, the site is professional and trustworthy with room for improvement in security and privacy transparency.

D

Domain Protection Services, Inc.

slaskcieszynski.travel

45

The website slaskcieszynski.travel serves as a regional tourism portal focused on the Beskidy and Śląsk Cieszyński areas in Poland. It provides comprehensive travel information including thematic and tourist routes, cultural heritage sites, events, accommodation, gastronomy, and multimedia content such as galleries and virtual tours. The platform targets tourists and travelers interested in exploring these regions, positioning itself as a key regional information provider with a small-scale business model. The domain is relatively new, registered in 2019, and uses privacy protection services typical for such websites. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Font Awesome, Google Tag Manager, Google Analytics, and Hotjar for analytics and user behavior tracking. The site is mobile optimized with good accessibility and SEO practices. It uses the SonataCore CMS framework, indicating a structured content management approach. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options, which are recommended to enhance security posture. No exposed sensitive data or vulnerable libraries were detected. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service found in the analyzed content. Overall, the website is safe, professional, and trustworthy for general audiences interested in regional tourism. Strategic improvements include enabling DNSSEC, adding security headers, publishing comprehensive privacy and security policies, and enhancing incident response transparency to strengthen trust and compliance.

B

bonprix

bonprix.at

74

bonprix.at is an established e-commerce platform specializing in fashion and home products, targeting primarily the Austrian market with a broad offering including women's, men's, and children's clothing, shoes, and furniture. The site is part of the larger bonprix brand under the Otto Group umbrella, indicating a strong market position in European retail. The website demonstrates a mature digital infrastructure with modern technologies such as React and Contentful CMS, ensuring a responsive and user-friendly experience. Security measures are robust, with HTTPS enforced and multiple security headers implemented, though there is room for improvement in publicizing incident response and vulnerability disclosure policies. Privacy compliance is well addressed with comprehensive GDPR-aligned policies and cookie consent mechanisms. Overall, bonprix.at presents a trustworthy and professional online retail presence with a good balance of business credibility and technical sophistication.

S

statutární město Karviná

karvina.cz

59

The website www.karvina.cz serves as the official online portal for the statutory city of Karviná, Czech Republic. It provides comprehensive information about the city administration, municipal police, cultural events, tourism, and online services such as reservations and citizen portals. The site targets residents, visitors, and local businesses, positioning itself as a key municipal government resource. The business model is that of a government information portal, offering public services and community engagement tools. Technically, the site is built on the Marwel CMS platform and leverages modern web technologies including jQuery, Bootstrap, and Font Awesome. It integrates Google Analytics and Facebook SDK for tracking and social engagement. The site is mobile-optimized with responsive design and includes accessibility features, although these could be enhanced. Performance is moderate, with a well-structured navigation system and SEO-friendly metadata. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security headers such as Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. The absence of WHOIS data for the domain is a notable gap, limiting full verification of domain legitimacy. No vulnerabilities or exposed sensitive data were detected in the content analysis. Overall, the website demonstrates a solid digital presence for a municipal government entity with good content quality and user experience. Strategic improvements in security headers, WHOIS transparency, and incident response disclosures would strengthen its security posture and trustworthiness.

V

Vysoká škola mezinárodních a veřejných vztahů Praha

vsmvv.cz

53

Vysoká škola mezinárodních a veřejných vztahů Praha (VŠMVV) is a private higher education institution specializing in international and public relations studies. Established in 2010, it operates under the parent entity University College Prague (UCP) alongside sister institutions. The website reflects a well-structured, multilingual platform targeting prospective and current students with comprehensive program information and institutional news. Technically, the site is built on WordPress with modern libraries and plugins, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is well addressed with a dedicated GDPR page and cookie management. Overall, the site demonstrates a professional and trustworthy online presence suitable for its educational mission.

P

PROEBIZ s.r.o.

eprocurement.tv

53

eprocurement.tv is a Czech media platform operated by PROEBIZ s.r.o., specializing in content related to electronic procurement. The platform offers live streaming, video archives, podcasts, and industry-related information targeting professionals and businesses interested in procurement processes. The company is relatively new, founded in 2022, and maintains a small but focused presence in the niche media market. The website is built on WordPress using Elementor and WooCommerce, indicating a modern but basic digital infrastructure. The site is accessible, mobile-optimized, and integrates common third-party analytics and marketing tools. Security posture is adequate with HTTPS enabled, but lacks advanced DNS security and security headers. Privacy and cookie policies are present but basic, with no explicit consent mechanisms. Contact information and company registration details are clearly provided, enhancing business credibility.

M

Moravskoslezský automobilový klastr, z.s.

autoklastr.cz

47

Moravskoslezský automobilový klastr, z.s. is a well-established automotive cluster based in Ostrava, Czech Republic, founded in 2007. It supports over 90 members in the automotive industry by fostering collaboration in research, development, education, and business relations. The cluster positions itself as a key regional player facilitating innovation and sustainable growth in the automotive sector. The website reflects a professional and comprehensive digital presence with clear navigation, multilingual support, and active social media engagement. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Superfly Menu, and integrates Google Analytics and Google Tag Manager for analytics. It uses HTTPS with good SSL configuration and includes reCAPTCHA for form security. The site is moderately performant and mobile-optimized, though accessibility could be improved. SEO practices are well implemented with proper meta tags and structured data. From a security perspective, the site employs HTTPS and reCAPTCHA, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a comprehensive privacy policy and GDPR consent on forms, but lacks a cookie consent banner. Incident response and security policies are not publicly documented. Overall, the website is trustworthy, professional, and secure with minor areas for improvement in security headers and privacy compliance. The domain WHOIS data is consistent with the business claims, showing a long-standing registration since 2007, enhancing legitimacy. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security policies to further strengthen trust and compliance.

K

Karlovy Vary International Film Festival

kviff.com

68

The Karlovy Vary International Film Festival website represents a well-established cultural event in the Czech Republic, serving as the largest and most prestigious film festival in the region. The site offers extensive information about the festival, including program details, industry accreditation, press resources, and live streaming via its partner platform kviff.tv. The target audience includes film enthusiasts, industry professionals, media, and the general public interested in film culture. The business model revolves around event organization, media broadcasting, and related services.

L

Letiště Ostrava, a.s.

airport-ostrava.cz

52

Letiště Ostrava, a.s. operates as a regional airport in the Czech Republic, providing air transport connectivity and related services. The website offers comprehensive flight information, ticket reservations, VIP and business lounge services, and passenger amenities. The company is positioned as a key transportation hub for the Ostrava region with a medium-sized operational scale and a founding date consistent with its domain registration in 1999. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, Microsoft Clarity, and reCAPTCHA, ensuring a functional and user-friendly experience with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and form protections, though improvements in security headers and explicit policies are recommended. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

S

Svaz zakládání a údržby zeleně (SZÚZ)

szuz.cz

52

Svaz zakládání a údržby zeleně (SZÚZ) is a Czech non-profit association dedicated to gardening, landscaping, and maintenance of green spaces. Established in 2001, it serves professionals and companies in the landscaping sector by organizing educational programs, competitions, and providing networking opportunities. The website reflects a well-established organization with a clear focus on promoting green infrastructure and professional development within its industry. The site is primarily in Czech and targets local professionals and enthusiasts. Technically, the website uses common web technologies including jQuery, Google Analytics, Facebook SDK, and CookieScript for cookie consent management. It is hosted by WEDOS, a known Czech hosting provider, and uses HTTPS with a good SSL configuration. However, the site lacks some modern security headers and explicit security policies, which could be improved. Privacy compliance is addressed with a GDPR policy and cookie consent banner, indicating awareness of regulatory requirements. Overall, the website is professional, trustworthy, and provides relevant content for its audience, though there is room for technical and security enhancements.

D

DAV, a.s.

dav-ova.cz

60

DAV, a.s. is a Czech construction and demolition company with over 30 years of experience, providing comprehensive services including demolition, construction of new buildings, reconstruction, and earthworks. The company employs approximately 100 staff and operates with its own machinery and technical equipment, positioning itself as a reliable general contractor in the Czech market. The website reflects a professional and consistent brand image with clear contact information and references to certifications, enhancing trustworthiness. Technically, the website uses a modern but standard tech stack including jQuery, jQuery UI, Slick Carousel, and Lightbox. It is mobile optimized and provides a good user experience with clear navigation and relevant content. SEO and accessibility are adequately addressed, though some improvements could be made in accessibility features and performance optimization. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, security headers are not explicitly detected in the HTML content, and there is no visible incident response or vulnerability disclosure information. The site does not expose sensitive data and uses common analytics and marketing tools responsibly. Overall, the website is secure, compliant, and professionally maintained, supporting the company's credibility. Recommendations include enhancing security headers, publishing incident response contacts, and considering a security.txt file to improve transparency and security posture.

T

Trojhalí Karolina

trojhali.cz

53

Trojhalí Karolina is a multifunctional venue located in Ostrava, Czech Republic, offering a unique space composed of two heritage-protected buildings. The site serves a broad audience including sports enthusiasts, cultural event organizers, and the general public. It provides facilities for sports, cultural, social, and commercial events, positioning itself as a key local venue with historical significance. The business model revolves around venue rental and event hosting, supported by partnerships with local organizations and a clear focus on community engagement. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and Slick Carousel, with integration of Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation. However, some accessibility features are basic, and no CMS is explicitly identified, suggesting a custom or less common platform. From a security perspective, the site uses HTTPS and includes consent mechanisms for data privacy, but lacks visible advanced security headers and explicit security policies. No vulnerability disclosure or incident response information is provided, indicating room for improvement in security transparency and maturity. Overall, the website is trustworthy and professionally maintained, with a good balance of content quality and technical implementation. Strategic enhancements in security policies, incident response readiness, and accessibility could further strengthen its posture and compliance.

C

CENOVÁMAPA.CZ

cenovamapa.cz

44

CENOVÁMAPA.CZ operates an online platform specializing in real estate price mapping and property valuation services across the Czech Republic. The website offers users access to real-time market data and detailed property price estimates, targeting individuals and professionals involved in real estate transactions. The business model is based on providing both free and paid subscription services, with a focus on transparency and accuracy in real estate pricing. The company appears to be a small-sized entity founded around 2014, with a consistent and professional online presence. Technically, the website is built on WordPress and leverages common web technologies such as jQuery, Slick Carousel, and FancyBox. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and SEO-friendly, with a cookie consent mechanism and GDPR compliance clearly implemented. However, some security best practices such as security headers are missing, and the use of an outdated jQuery version could pose risks. From a security perspective, the site enforces HTTPS and has implemented cookie consent, but lacks visible security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data reduces transparency and slightly impacts trustworthiness, but the professional presentation and compliance measures mitigate this concern. Overall, the website presents a moderate risk profile with good business credibility and privacy compliance. Strategic improvements in security headers, updated libraries, and enhanced incident response documentation would strengthen the security posture and trustworthiness of the platform.

I

iMi Partner a.s.

imi.eu

44

iMi Partner a.s. operates a comprehensive e-commerce platform specializing in promotional products and advertising gifts. The website offers a wide catalog of over 30,000 items including apparel, office supplies, household goods, leisure and outdoor products, and eco-friendly options. The company targets businesses and organizations seeking customized promotional items with online ordering and logo visualization features. The site demonstrates a solid market position as a trusted supplier with a personalized approach and fast shipping services. Technically, the website uses modern JavaScript libraries such as jQuery, Bootstrap, and Slick Carousel, and integrates marketing and tracking tools like Google Tag Manager and Ecomail. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced, but the absence of security headers and explicit privacy and cookie policies indicates room for improvement. No WHOIS registrant data is available due to EURid privacy policies, which is typical for .eu domains, but this limits direct verification of domain ownership. Overall, the website is legitimate, professional, and functional but would benefit from enhanced privacy compliance and security best practices.

F

Federal Agency for Cartography and Geodesy

gdi-de.org

69

The website www.gdi-de.org represents the Spatial Data Infrastructure Germany (SDI Germany), a governmental initiative coordinated by the Federal Agency for Cartography and Geodesy. It serves as a central platform to provide standardized access to geospatial data from federal, state, and local authorities, integrated within the European INSPIRE Directive framework. The site targets government entities, researchers, and public users interested in geodata services. The business model is focused on public sector data provision and infrastructure coordination, positioning itself as a key national spatial data authority. Technically, the website is built on Drupal 10 CMS with Bootstrap 3 and FontAwesome, delivering a responsive and professionally designed user experience. The site includes structured navigation, multilingual support, and integration with external official geoportals. Performance is moderate with good mobile optimization, though accessibility features are basic. From a security perspective, HTTPS is implied but no explicit security headers were detected in the provided data. No vulnerabilities or exposed sensitive data were found in the HTML content. However, the absence of a cookie consent mechanism and explicit privacy compliance features is noted. The WHOIS data is incomplete and malformed, limiting domain trust verification, but the official government branding and content strongly support legitimacy. Overall, the website is a credible, professional government resource with good content quality and technical implementation. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security policies, improving accessibility, and addressing WHOIS data transparency to strengthen trust and compliance.

The website digitale-verwaltung.de serves as the official digital administration portal for the German federal government, specifically under the Bundesministerium für Digitales und Staatsmodernisierung (BMDS). It provides comprehensive information and resources related to digital transformation initiatives such as the Onlinezugangsgesetz, digital identities, register modernization, and transformation projects. The portal targets citizens, businesses, and public administration entities, offering news, events, and access to digital services. The site is well-branded, professionally designed, and consistent with government standards, reinforcing its authoritative position in the market. Technically, the site is built on the Government Site Builder CMS, utilizing modern web technologies including HTML5, CSS3, JavaScript, and accessibility tools like ReadSpeaker. The site is mobile-optimized and incorporates SEO best practices. Performance is moderate, with room for optimization. Analytics are handled via Matomo, reflecting a privacy-conscious approach. However, explicit cookie consent mechanisms are not evident. From a security perspective, the site enforces HTTPS and employs secure form input validation. While no explicit security headers were detected in the HTML content, no vulnerabilities or exposed sensitive data were found. The WHOIS data aligns with a legitimate government domain, with consistent DNS and hosting configurations. Contact information is transparent, including official phone numbers and a contact form, enhancing trust. Overall, the website demonstrates a strong security posture, excellent content quality, and high business credibility. Minor improvements could include implementing explicit security headers and a cookie consent mechanism to enhance privacy compliance. The site is safe for general audiences and free from any adult or questionable content.

F

Federal Office for Migration and Refugees

germany4ukraine.de

67

The Germany4Ukraine website is an official federal government portal managed by the Federal Office for Migration and Refugees. It provides comprehensive, multilingual information and services to support refugees from Ukraine, covering topics such as entry, residence, accommodation, healthcare, labor, integration, mobility, education, family support, and networking. The site is well-positioned as a trusted government resource with EU funding and partner institution endorsements. Technically, the site uses the Government Site Builder CMS and integrates Matomo analytics with privacy-conscious configurations. The website demonstrates good performance, accessibility, and SEO practices, with a clear and professional design optimized for mobile devices. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious elements were detected. Overall, the site is highly trustworthy and serves its target audience effectively.

Realitní kancelář Dachi is a well-established real estate agency operating primarily in Olomouc and the surrounding Czech regions, boasting 34 years of experience. The company offers a broad portfolio of real estate services including sales, rentals, new development projects, and client advisory, positioning itself as a leading local player with a strong market presence. The website reflects a professional business with comprehensive property listings, a dedicated team, and client testimonials, supporting its credibility and trustworthiness. Technically, the site employs modern web technologies such as Google Analytics, Google Tag Manager, and CookieFirst for consent management, and is mobile optimized with good SEO practices. However, the absence of WHOIS data and privacy policy pages slightly detracts from transparency and compliance. Security posture is adequate with HTTPS and consent mechanisms but lacks visible security headers and formal security policies. Overall, the site is safe, professional, and user-friendly, serving a general audience interested in real estate.

G

Golf Club Olomouc, z.s.

golfolomouc.cz

43

Golf Resort Olomouc is a professional golf club and hospitality business located in the Czech Republic, offering a championship golf course, hotel accommodations, restaurant services, and event hosting including weddings and corporate functions. The resort targets golf enthusiasts, tourists, families, and event organizers, positioning itself as a regional leader in golf and hospitality services. The website is well-structured, visually appealing, and provides comprehensive information about the resort's offerings and partners. Technically, the website employs a mature technology stack including jQuery, Bootstrap, Leaflet.js for mapping, and integrates Google Tag Manager for analytics. It is mobile-optimized and includes cookie consent mechanisms, reflecting a moderate level of digital maturity. However, some security best practices such as security headers are not explicitly observed, and no incident response or vulnerability disclosure information is present. The security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS data reduces transparency and trust. Privacy compliance is addressed with GDPR policy and cookie consent, but terms of service and explicit security policies are missing. Overall, the site is professional and trustworthy but could improve in security transparency and policy disclosures. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving WHOIS transparency to strengthen trust and compliance.

I

iMi Partner, a.s.

imi.cz

41

iMi Partner, a.s. is a Czech Republic based company specializing in the supply and manufacture of promotional and gift items with custom printing. With a claimed 30 years of experience, the company targets B2B customers seeking a wide range of promotional products including textiles, office supplies, household items, and eco-friendly products. The website offers an extensive online catalog and ordering system, supported by modern web technologies and marketing tools. The company demonstrates a solid market position with reputable client references and a professional online presence. Technically, the site uses popular JavaScript libraries and frameworks such as jQuery and Bootstrap, and integrates tracking and live chat services to enhance customer engagement. Security posture is adequate with HTTPS and cookie consent implemented, though improvements are recommended in security headers and explicit privacy and terms documentation. The absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective, warranting further verification. Overall, the website is professional, user-friendly, and well-structured for its business purpose.

P

PSN s.r.o.

psn.cz

58

PSN s.r.o. is a well-established real estate company operating primarily in the Czech Republic, focusing on the sale and rental of residential and commercial properties. With a domain age dating back to 1997 and multiple regional offices, PSN demonstrates a strong market presence and a comprehensive portfolio of exclusive properties. Their website reflects a professional and user-friendly design, targeting property buyers, renters, and investors with detailed project information and services including financing and legal support. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA, ensuring a secure and interactive user experience. Security measures include HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, PSN maintains a high level of trustworthiness and compliance, with GDPR adherence and transparent contact information.