Security Directory

A

AQUAFORUM s.r.o.

aquaforum-frantiskovylazne.cz

64

Aquaforum Františkovy Lázně operates as a prominent aquapark and spa facility in the Czech spa region, offering a wide range of leisure and wellness services including water attractions, spa clinic treatments, accommodation, and group offers. The website targets families, tourists, and local residents, positioning itself as a leading hospitality provider in the area. The business has been established since 2016, with a consistent online presence and clear branding. Technically, the website employs modern web technologies such as Google Analytics, reCAPTCHA, and Cookiebot for compliance and user experience. The infrastructure suggests a Ruby on Rails backend with custom CMS elements, hosted likely via Czech hosting providers.

F

Fix Software

kladenskymesic.cz

51

Kladenský měsíc is a local monthly news publication serving the residents of Kladno and its surrounding areas in the Czech Republic. The website provides current news, cultural, sports, health, and societal information relevant to the local community. The business operates as a small media outlet with a focus on regional content and community engagement. The website is developed and maintained by Fix Software, a Czech software company, indicating a professional backing for the digital platform. Technically, the website employs modern web technologies including Bootstrap for responsive design, jQuery for scripting, FontAwesome for icons, and Google Analytics for visitor tracking. Hosting is provided by Active24, a known Czech hosting provider, and the domain registration is consistent with the website's regional focus. The site demonstrates good design quality, clear navigation, and mobile optimization, although accessibility features are basic. From a security perspective, the site uses HTTPS, but lacks visible security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No direct contact emails or phone numbers are present on the main page, limiting immediate user contact options. The absence of a vulnerability disclosure policy or security.txt file suggests limited formal security communication. Overall, the security posture is moderate but could be improved with better compliance and security best practices. The overall risk is low given the nature of the content and business, but strategic improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and regulatory adherence.

C

C.E.I.S. CZ

ceis.cz

46

C.E.I.S. CZ is a Czech Republic-based company specializing in energy consulting, project design, and engineering services with over 20 years of experience. Their offerings include energy audits, building energy performance certifications, emission measurements, and comprehensive project management services including subsidy and public procurement management. The website targets businesses and public entities seeking to improve energy efficiency and comply with regulatory requirements. Technically, the website employs modern frontend technologies such as Bootstrap and Google Fonts, and integrates Google Analytics for visitor tracking. The site is mobile-optimized with a clear navigation structure and a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, but lacks explicit security headers and detailed security policies. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but does not detract significantly from the professional presentation. Overall, the website is functional, professional, and provides relevant business information with moderate privacy compliance and security measures.

J

JC TRANS, s.r.o.

jctrans.cz

43

JC TRANS, s.r.o. is a Czech-based transportation company specializing in international freight and bus transport services across Europe. Established since 1999, the company positions itself as a reliable and experienced provider with a focus on speed, quality, and customer satisfaction. The website clearly communicates its services and contact information, targeting businesses and individuals requiring transport solutions within the European Union. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Owl Carousel, with a moderate performance profile and good mobile optimization. The site uses HTTPS and standard web technologies but lacks advanced security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security posture. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data, but the absence of privacy policies and incident response information suggests gaps in governance and compliance. The WHOIS data is unavailable, which reduces domain trustworthiness, although the website content and business information appear legitimate and professional. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and transparency to improve trust and regulatory adherence.

E

Erima GFL

gfl.info

52

Erima GFL is the official website for the German Football League, providing comprehensive information about American football in Germany including live game updates, team details, schedules, and ticket sales. The website targets fans and stakeholders of the sport within Germany and operates as a medium-sized sports league information platform. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies such as jQuery and Swiper.js for interactive content. The site is mobile optimized and demonstrates good SEO practices with structured data and meta tags. Security posture is solid with HTTPS enabled and domain transfer protections in place, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is strong, featuring a detailed GDPR-compliant privacy policy and cookie consent mechanism. No critical vulnerabilities or suspicious content were detected, and the site maintains a high level of professionalism and trustworthiness.

F

Florbalová škola Bohemians

fbsbohemians.cz

55

Florbalová škola Bohemians is a prominent floorball sports club based in Prague, Czech Republic, catering to a wide age range from children to adults. The club organizes teams, training, and various leisure activities including camps and school clubs, positioning itself as one of the largest floorball organizations in the country. The website reflects a professional digital presence with a focus on youth sports and community engagement. Technically, the site employs modern frontend technologies such as jQuery, Bootstrap, and various tracking and analytics tools, ensuring a responsive and user-friendly experience. However, the absence of visible privacy and cookie policies, along with missing contact information, indicates gaps in compliance and transparency. Security posture is moderate with HTTPS enforced but lacking security headers and explicit data protection disclosures. The WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and branding appear consistent and legitimate. Overall, the site is functional and well-designed but would benefit from enhanced privacy compliance and security best practices.

P

ParaOstrava2019

paraostrava2019.cz

52

ParaOstrava2019 is a small-scale event website dedicated to the 2019 Para Ice Hockey World Championship held in Ostrava, Czech Republic. The site provides event information, team details, ticketing, media resources, and fan engagement content primarily targeting para ice hockey enthusiasts and the general public interested in disability sports. The website is built on WordPress and leverages several plugins such as Essential Grid, Revolution Slider, and Sportspress Pro to manage and display content effectively. It uses Cloudflare for DNS and CDN services, ensuring good SSL coverage and moderate performance. Security posture is adequate with HTTPS enabled and Cloudflare protection, but lacks advanced security headers and formal security policies. Privacy compliance is minimal with no visible privacy or terms of service pages, though cookie consent is implemented. Contact information is sparse, limiting direct communication channels. Overall, the site is professional and consistent in branding but could improve in privacy and security transparency.

The website www.marchthayaauen.at serves as the official regional government portal for the March-Thaya-Auen area in Austria. It provides comprehensive information and services including news, events, tourism, and community resources targeted at residents and visitors. The site promotes a mobile app (GEM2GO) to facilitate easy access to municipal information. The market position is that of a trusted regional government information source with a focus on community engagement and regional promotion. Technically, the site is built on a custom RIS CMS platform utilizing established web technologies such as jQuery, Bootstrap, and LayerSlider. It incorporates responsive design and accessibility features, ensuring usability across devices. Analytics are implemented via Matomo and Google Analytics with a clear cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs form validation and cookie consent to protect user data. However, some security headers are not explicitly present, and the jQuery version is outdated, which could pose risks. No incident response or vulnerability disclosure information is provided, indicating areas for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR, but the absence of WHOIS data limits domain legitimacy verification. Strategic recommendations include enhancing security headers, updating libraries, and publishing incident response contacts to strengthen security posture and trust.

H

Hotel Opava

hotel-opava.cz

45

Hotel Opava is a small hospitality business located in Opava, Czech Republic, offering accommodation, restaurant and salon rental, and private wellness services. The website is professionally designed using WordPress and Elementor, providing clear information on services, pricing, and contact details. The technical infrastructure is modern and includes common web technologies such as jQuery and Swiper for UI components. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers and policies could enhance protection. No critical vulnerabilities or suspicious content were detected, and the domain registration is consistent with the business history, indicating legitimacy.

In-Chorvatsko.eu is a Czech-language travel website focused on providing information, articles, and guides about vacations in Croatia, particularly the Adriatic coast and its islands. The site targets Czech-speaking tourists seeking travel inspiration and practical tips for Croatian destinations. It operates primarily as a content and affiliate marketing platform, linking to accommodation and travel services. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, Google Analytics, and Facebook SDK for social integration and tracking. Hosting is provided by WEDOS Internet, a reputable Czech hosting provider. The website demonstrates moderate performance and basic mobile optimization, with a consistent and professional design. However, it lacks important privacy and cookie policies, which poses GDPR compliance risks. Security posture is basic, with HTTPS enabled but missing key security headers and no visible vulnerability disclosure mechanisms. Contact information is limited to a single email address in the footer, with no phone or physical address provided. Overall, the site is legitimate and consistent with its stated purpose but would benefit from enhanced security and privacy compliance measures.

T

TLAČOVÁ A INFORMAČNÁ KANCELÁRIA ZÁHORIE

ozahori.sk

40

The website ozahori.sk operates as a regional eMagazín providing news, cultural, historical, and event information focused on the Záhorie region and Myjavské kopanice area in Slovakia. It serves a local audience interested in regional developments and cultural heritage, positioning itself as a small but important media outlet within its niche. The business model centers on content publishing and regional information dissemination, supported by partnerships with related regional sites. Technically, the site is built on WordPress CMS with a modern tech stack including Bootstrap, jQuery, and various UI libraries. It is hosted on vaswebhosting.sk and uses HTTPS for secure communication. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in speed and technical modernization. From a security perspective, the site benefits from HTTPS and up-to-date WordPress core but lacks important security headers such as Content-Security-Policy and HSTS. No cookie consent mechanism is present despite GDPR compliance documentation, indicating a compliance gap. No critical vulnerabilities or exposed sensitive data were detected, but security posture could be enhanced by implementing recommended headers and consent mechanisms. Overall, the site is trustworthy and professional with clear contact information and a consistent brand presence. The domain registration is stable and consistent with the business history. Strategic recommendations include adding cookie consent, improving security headers, and enhancing accessibility to strengthen compliance and security posture.

V

VÚRUP, a.s.

petroleum.sk

67

VÚRUP, a.s. operates as the Slovak national committee for WPC Energy, representing Slovakia in a globally recognized energy organization focused on sustainable and low-carbon energy transitions. The website provides comprehensive information about the organization's mission, vision, values, and activities, targeting energy sector professionals, research institutions, and governmental bodies. The business model is non-profit and focuses on fostering dialogue, research, and collaboration in the energy industry. Technically, the website is built on WordPress with modern libraries and frameworks such as UIkit, jQuery, and Cookiebot for compliance and user experience. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable source for stakeholders in the energy sector.

T

T-MAPY spol. s r.o.

gisplan.sk

53

T-MAPY spol. s r.o. is a Slovak company specializing in information technology and geoinformation systems, serving primarily public administration entities such as municipalities, regions, and state organizations, as well as commercial companies and integrated rescue system units. With over 24 years of market presence and a solid customer base exceeding 1100 clients, T-MAPY holds a strong regional position. Their website reflects a professional digital presence built on WordPress, leveraging modern web technologies and analytics tools. However, the absence of explicit privacy and cookie policies indicates a compliance gap that should be addressed. Security measures include HTTPS and reCAPTCHA, but additional security headers and incident response information are lacking. Overall, the company demonstrates a mature business and technical infrastructure with room for improvement in privacy compliance and security transparency.

L

Ltd. "heise marketing"

zl.lv

57

ZL.LV is a leading Latvian business directory and information portal operated by Ltd. "heise marketing" since 1996. It provides comprehensive company search, product and service information, industry categorization, and relevant news and advice articles targeted at Latvian businesses and consumers. The website enjoys a strong market position as the number one business information portal in Latvia. Technically, the site uses a custom CMS with modern frontend technologies including Bootstrap, jQuery, FontAwesome, and integrates Google Analytics, Matomo, and Setupad advertising networks. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA and cookie consent mechanisms, though it lacks some advanced security headers such as CSP and X-Frame-Options. Overall, the security posture is good but could be improved with additional headers and regular audits. The domain WHOIS data is consistent with the business claims, showing a long-standing registration and no privacy protection, which supports legitimacy. No critical vulnerabilities or suspicious patterns were detected. The site is safe for general audiences and complies with GDPR requirements through its privacy and cookie policies.

O

Obec Smolenice

smolenice.com

67

Obec Smolenice operates an official municipal website serving residents, visitors, and local government stakeholders in Slovakia. The site provides comprehensive local news, event calendars, citizen engagement tools, and tourism information. It supports multiple languages and offers mobile applications for Android and iOS platforms, reflecting a moderate level of digital maturity. The technical infrastructure leverages modern JavaScript frameworks, Google reCAPTCHA for security, and cookie consent mechanisms to comply with privacy regulations. Security posture is strong with HTTPS enforcement and minimal vulnerabilities detected, though explicit security headers could be enhanced. Overall, the website is professional, trustworthy, and well-aligned with its public service mission.

F

FrieslandCampina Ingredients

frieslandcampinaingredients.com

69

FrieslandCampina Ingredients is a globally recognized supplier of dairy-based ingredients, serving the food and beverage manufacturing sectors with a strong emphasis on innovation and sustainability. The website reflects a mature digital presence built on WordPress with modern technologies such as Gravity Forms and WP Rocket, ensuring good performance and mobile optimization. Security measures including HTTPS and multiple security headers are properly implemented, contributing to a robust security posture. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which should be further investigated to confirm authenticity. Privacy and cookie policies are comprehensive and GDPR compliant, supporting strong privacy practices. Overall, the website demonstrates professionalism and trustworthiness, with minor areas for improvement in security transparency and domain registration verification.

DECOLAB BY G. BENEDIKT GROUP is a specialized business offering high-quality digital printing on hard porcelain, positioning itself as an innovative player in the porcelain manufacturing industry. The website presents a professional and creative brand image focused on enabling customers to design their own porcelain collections using advanced digital printing technology. The technical infrastructure is based on the Pixieset platform, utilizing modern web technologies and tracking tools such as Google Tag Manager and Facebook Pixel. However, the absence of WHOIS data raises concerns about domain registration legitimacy. Security posture is moderate with HTTPS implied but lacks explicit security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies, and no contact or incident response information is provided, which could impact trust and regulatory compliance. Overall, the website is functional and visually appealing but requires improvements in transparency, security, and compliance to enhance credibility and user trust.

J

Ještědská stavební společnost, spol. s r.o.

jss.cz

57

Ještědská stavební společnost, spol. s r.o. is a well-established Czech construction company specializing in building and water management projects with over 30 years of experience and more than 790 completed projects. The company targets clients in the Liberec region and broader Czech Republic, offering comprehensive construction services including new builds, reconstructions, and ecological water infrastructure. The website reflects a professional and consistent brand presence with clear service descriptions and references. Technically, the site uses modern JavaScript libraries and Google analytics tools, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial due to missing privacy and terms documents. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the site is trustworthy and functional with room for improvement in compliance and security best practices.

Č

Čermák a Hrachovec a.s.

cerhra.cz

50

Čermák a Hrachovec a.s. is a well-established Czech company specializing in construction and infrastructure services, particularly in water supply, sewage systems, trenchless technologies, and road reconstruction. Founded in 1998, it serves business clients primarily in the energy and transportation sectors. The website reflects a professional and consistent brand image with clear presentation of services, leadership, and references. Technically, the site uses modern JavaScript libraries and analytics tools, with good mobile optimization and basic SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and incident response contacts could be improved. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

N

NaWycieczke.pl: Atrakcje turystyczne i ciekawe miejsca w Polsce

nawycieczke.pl

9

NaWycieczke.pl is a Polish tourism information website providing users with ideas and details about tourist attractions and interesting places across Poland. The site targets general audiences interested in planning trips and vacations, offering categorized listings and map-based navigation. Technically, the site uses modern web technologies including Ruby on Rails, Turbolinks, Google Analytics, and Google Adsense for monetization. It is hosted with CDN support and employs HTTPS for secure connections. Security posture is moderate with standard protections but lacks advanced security headers and explicit security policies. Privacy compliance is limited, with no visible privacy or terms of service pages, though a cookie consent mechanism is present. WHOIS data is not publicly available, which reduces transparency but the site content and infrastructure indicate a legitimate operation. Overall, the site is functional, user-friendly, and professionally designed but could improve in privacy and security disclosures.

N

NBCUNIVERSAL MEDIA

peacock.com

67

NBCUniversal Media is a leading global media and entertainment company specializing in the development, production, and marketing of entertainment, news, and information to a worldwide audience. As a subsidiary of Comcast Corporation, NBCUniversal operates multiple subsidiaries including Peacock streaming service, Universal Pictures, and NBC Sports, positioning itself as a dominant player in the media industry. The website reflects a mature digital presence with professional design, rich multimedia content, and consistent branding aligned with its corporate identity. Technically, the site is built on Drupal 10, leveraging modern analytics and consent management tools, indicating a high level of digital maturity. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a high level of professionalism and trustworthiness, though the lack of WHOIS data limits domain registration transparency. Strategic recommendations include publishing detailed security and incident response information and establishing a vulnerability disclosure program to enhance trust and compliance.

N

NVSK s.r.o.

navylet.cz

60

NaVylet.cz is a Czech Republic-based tourism information portal operated by NVSK s.r.o., providing comprehensive tips and guides for tourist attractions across Czech regions. The website targets local and visiting tourists seeking family-friendly and regional travel ideas. Technically, the site uses modern web technologies including Ruby on Rails, Turbolinks, Google Analytics, and Google Adsense for analytics and monetization. The site is well-designed, mobile-optimized, and offers good user experience with clear navigation and relevant content. Security posture is solid with HTTPS, CSRF protection, and script nonce usage, though explicit privacy and terms policies are missing. WHOIS data is unavailable, which reduces domain trustworthiness, but the site content and technical setup appear legitimate and professional. Overall, the site is a useful resource for Czech tourism with moderate risk due to lack of transparency in domain registration and privacy documentation.

G

GASTRO MACH, s. r. o.

bezkuchyne.cz

43

Bez kuchyně.cz is a Czech Republic based small business project by GASTRO MACH, s. r. o., specializing in innovative kitchenless gastronomy solutions. The company leverages modern technologies and ergonomic design to enable fresh, healthy food preparation without traditional kitchen infrastructure, targeting gastronomy businesses seeking to expand offerings without heavy investment. The website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and Google Analytics, showing moderate digital maturity and good mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though lacking explicit security policies and some HTTP security headers. Privacy compliance is basic but present with cookie consent and GDPR-aligned privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

W

WorkingDay

workingday.lv

46

WorkingDay is a Latvian recruitment agency specializing in high-level personnel selection and job vacancy services primarily targeting managers and specialists in Riga. The website is professionally designed using WordPress with modern SEO and cookie consent implementations, reflecting a mature digital presence. The technical infrastructure includes common industry tools such as Google Tag Manager, CookieYes for GDPR compliance, and Bootstrap for responsive design. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though security headers and explicit security policies are absent. Overall, the site demonstrates a trustworthy and professional business presence with moderate tracking and good privacy compliance.

B

Bohemsca

bohemsca.cz

9

Bohemsca is a Czech-based company specializing in the production and e-commerce sale of BIO and CRAFT beverages including lemonades, vitamin waters, premium tonics, mixers, and juices. The company targets the Czech market with a focus on premium, locally made products. The website is built on WordPress using the Divi theme, incorporating modern marketing and tracking technologies such as Google Tag Manager and Facebook Pixel. The technical infrastructure is moderate in performance and mobile optimized, but lacks some advanced accessibility features. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

T

Tyger.sk

tyger.sk

56

Tyger.sk is a Slovak-language outdoor equipment review and project blog focused on hiking, climbing, ski mountaineering, and running. Established in 2013, it serves a niche audience of outdoor enthusiasts in Slovakia and surrounding regions. The website offers detailed reviews and trip reports, positioning itself as a trusted source for outdoor gear and adventure content. Technically, the site is built on WordPress with common plugins like Yoast SEO and NextGen Gallery, hosted by Websupport with DNSSEC enabled and HTTPS enforced, reflecting a solid digital infrastructure. Security posture is good with standard protections, though explicit security headers and privacy policies are missing. The site integrates Google Analytics and Facebook Pixel for user tracking, but lacks visible cookie consent mechanisms and privacy disclosures, which are areas for compliance improvement. Overall, the website is professional, content-rich, and trustworthy, but would benefit from enhanced privacy and security transparency to improve user trust and regulatory compliance.

N

NET -SITE:IT s.r.o.

narodnyzdravotnyregister.sk

41

Modernylekar.sk is a Slovak healthcare portal operated by NET -SITE:IT s.r.o., providing a comprehensive directory of doctors and medical offices across Slovakia since 2009. The platform offers various services including appointment booking, newsletters, and a medical marketplace, targeting patients and healthcare providers. The website is professionally designed with good content quality and clear navigation, supporting Slovak language users effectively. Technically, it uses modern web technologies such as Bootstrap, jQuery, and integrates third-party services like Google Analytics and Smartlook for analytics and user behavior tracking. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. The domain registration details align well with the business claims, indicating legitimacy and trustworthiness. Overall, the site presents a reliable and professional healthcare service platform with moderate tracking and good privacy compliance.

S

Second Century Ventures

secondcenturyventures.com

48

Second Century Ventures is a strategic venture capital firm focused on accelerating innovation in the real estate technology sector. Backed by the National Association of REALTORS®, it provides investment funding and strategic partnerships to portfolio companies operating in real estate, financial, insurance, and home service verticals. The firm leverages a unique network of industry executives and entrepreneurs to maximize growth opportunities for its investments. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses SEO and marketing plugins such as Yoast SEO and HubSpot. The site is mobile optimized and presents a professional design with clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the business credibility is high given the backing entity and professional presentation.

DPDgroup UK Ltd. operates the website www.dpd.co.uk, presenting itself as a leading parcel delivery and logistics provider in the United Kingdom. The company offers extensive UK parcel delivery services, international shipping including Europe and Air Express worldwide, and additional services such as fulfilment and public sector delivery. The website is professionally designed with consistent branding and clear navigation, targeting both business and consumer audiences seeking parcel delivery solutions. The presence of multiple subdomains and partner links indicates a mature business ecosystem under the DPDgroup umbrella. Technically, the website employs modern web technologies including the Foundation CSS framework, jQuery, Google reCAPTCHA for form security, and custom analytics scripts. The site is mobile responsive and optimized for user experience, though accessibility features are basic. SEO optimization is present but could be enhanced with richer metadata and structured data. Hosting appears to be on Google Cloud Platform, supporting scalability and performance. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms from abuse. However, no explicit security headers were detected in the HTML content, and no cookie consent mechanism was found, which may impact GDPR compliance. The WHOIS lookup for the exact queried domain failed due to it being a subdomain, but the overall domain and website content strongly indicate legitimacy and a well-established business. No vulnerabilities or suspicious content were identified. Overall, the website demonstrates a solid business presence with good technical implementation and a generally positive security posture. Improvements in privacy compliance, security headers, and accessibility would further enhance trust and compliance. The lack of direct contact emails or phone numbers on the main site suggests reliance on internal customer portals or partner sites for direct communication.

C

Chronopost

chronopost.fr

61

Chronopost is a leading French express parcel delivery company serving both individual and professional customers. The website offers comprehensive information about their services, including parcel tracking, online postage, and specialized delivery options such as Shop2Shop. The company is part of the Geopost group, which is reflected in the website branding and footer links. Technically, the website is built on Drupal 10 with modern libraries and includes cookie consent and tracking mechanisms. Security posture is good with HTTPS and secure forms, though explicit security headers and incident response contacts are not published. The absence of WHOIS data limits domain trust assessment but the website content and branding strongly indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with privacy regulations.

N

NET -SITE:IT s.r.o.

modernylekar.sk

41

Modernylekar.sk is a Slovak healthcare portal operated by NET -SITE:IT s.r.o., established in 2007. The website provides a comprehensive directory of doctors and medical clinics across Slovakia, along with additional services such as online appointment booking, document management, and patient newsletters. The platform is well-established with over 1700 doctors registered, serving both patients and healthcare providers. The website content is primarily in Slovak and is professionally designed with good navigation and mobile optimization. Technically, it uses modern web technologies including jQuery, Bootstrap, and FontAwesome, with analytics tools like Google Analytics and Smartlook integrated for user behavior tracking. Security posture is good with HTTPS enforced and cookie consent implemented, though some advanced security headers and explicit security policies are missing. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site is trustworthy, safe, and compliant with GDPR requirements, serving as a valuable resource in the Slovak healthcare sector.

B

Business Upturn

businessupturn.com

63

Business Upturn is an online media publication specializing in business, finance, stock market, and industry news with a focus on Indian and global markets. The website provides timely news articles, financial analysis, and market updates targeting a general audience interested in business and economic affairs. The site is built on WordPress using WPBakery Page Builder and integrates modern web technologies including Google Fonts, FontAwesome, and embedded financial widgets from TradingView. Analytics are handled via Microsoft Clarity, indicating a moderate level of user tracking. From a security perspective, the website employs HTTPS ensuring encrypted communications, but lacks visible security headers and formal privacy or cookie policies, which are important for compliance and user trust. No WHOIS registrant data is available, which reduces transparency and trustworthiness, though the active and professional content suggests legitimate operation. There is no evidence of security incident response or vulnerability disclosure policies. Overall, the website demonstrates a good level of technical maturity and content quality but would benefit from enhanced privacy compliance, clearer contact information, and improved security best practices to strengthen user trust and regulatory adherence.

C

Cyklo dresy SÝKORA sportwear s.r.o

cyklodresy.cz

55

Cyklo dresy SÝKORA sportwear s.r.o. is a well-established Czech company specializing in the manufacturing and retail of custom cycling apparel and accessories. With over 20 years of experience, the company holds a strong market position as a leading Czech producer of cycling clothing, serving both professional teams and individual cyclists. Their business model focuses on custom production, supported by an in-house design studio and e-commerce platform. The website reflects a professional and trustworthy brand image, with comprehensive business and contact information.

A

Abplanalp Baltic

abplanalp.lv

62

Abplanalp Baltic operates a professional e-commerce platform specializing in metalworking machinery, industrial equipment, and automation solutions primarily targeting B2B customers in Latvia and surrounding regions. The company offers a broad range of CNC machines, tools, and technical support services, positioning itself as a knowledgeable and experienced regional player with strong partnerships with leading manufacturers such as Haas and Nakamura-Tome. The website is well-structured, with clear navigation and product categorization, supporting an effective user experience for industrial clients. Technically, the website is built on the Magento Commerce platform, leveraging modern web technologies including jQuery, Knockout.js, and Google Tag Manager for analytics and marketing. The site is mobile-optimized and implements cookie consent mechanisms aligned with GDPR requirements, although a dedicated privacy policy page is not found. HTTPS is enforced, and security best practices such as CSRF protection are observed, but additional security headers could enhance the security posture. From a security perspective, the site shows a good baseline with no detected vulnerabilities or WAF blocking. The WHOIS data indicates an active domain registered to a natural person in Latvia, consistent with the website's regional focus. However, the lack of detailed registrant organization information and absence of explicit privacy and security policies suggest areas for improvement in transparency and compliance. Overall, the website presents a credible and professional business front with moderate to good technical and security maturity. Strategic enhancements in privacy disclosures, security headers, and incident response information would strengthen trust and compliance, supporting the company's market position and customer confidence.

S

Střední odborná škola, Bruntál

sosbruntal.cz

47

Střední odborná škola Bruntál is a vocational secondary school located in the Czech Republic, offering a variety of practical study programs such as catering, care services, construction trades, and technical fields. The school is regionally supported by the Moravskoslezský kraj and targets students and their parents seeking vocational education. The website reflects a medium-sized educational institution with a clear focus on regional vocational training and community engagement. Technically, the site is built on Joomla CMS with modern frameworks and libraries, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with GDPR-related content and cookie management. Overall, the site is professional, trustworthy, and well-aligned with its educational mission.

V

Via Aurea, s.r.o.

spilberk.cz

45

The website www.spilberk.cz serves as the official online presence for Špilberk Castle, a prominent cultural and historical museum located in Brno, Czech Republic. Operated under the auspices of Via Aurea, s.r.o., the site provides comprehensive visitor information, including guided tours, exhibitions, events, and ticketing options. The target audience includes tourists, families, school groups, and the general public interested in cultural heritage. The business model is primarily government or municipal supported, focusing on cultural preservation and public engagement. Technically, the website employs a modern technology stack featuring jQuery, Bootstrap, FontAwesome, and Google services such as Fonts and Analytics. It uses the Nette Framework for AJAX and form handling, with performance and mobile optimization rated as good. Security measures include HTTPS enforcement, Google reCAPTCHA v3 integration for spam protection, and a robust cookie consent mechanism compliant with GDPR. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear cookie policies and consent banners. Contact information is transparent and includes phone, email, and physical address details. The lack of WHOIS data reduces domain transparency but does not detract from the website's professional appearance and trustworthiness. Overall, the website is well-designed, user-friendly, and secure, serving its purpose effectively as a cultural institution's digital platform. Strategic recommendations include enhancing security headers and maintaining regular audits of third-party libraries to sustain security and compliance standards.

A

Amatérská meteorologická společnost, z.s.

amsos.cz

67

Amatérská meteorologická společnost, z.s. is a Czech non-profit organization dedicated to amateur meteorology and weather phenomena education. The website serves as a platform for publishing meteorological articles, maintaining databases of weather events, and fostering a community of enthusiasts. It holds a stable market position within the Czech meteorological community and partners with recognized meteorological institutions such as ČHMÚ and SHMÚ. The organization was founded in 2013 and maintains a consistent brand presence with active social media channels.

F

F01 s.r.o.

websnadno.cz

45

The website www.websnadno.cz is operated by F01 s.r.o. and offers services focused on the creation of websites and e-shops using templates and an intuitive system. The target audience appears to be general users in the Czech Republic seeking easy-to-use web development solutions. The business model is based on providing template-driven website and e-commerce platform creation tools. The website uses common web technologies including Bootstrap 4.5, jQuery UI, and FontAwesome, indicating a moderate level of technical maturity. However, the absence of WHOIS data and lack of visible privacy or cookie policies suggest gaps in compliance and transparency. Security posture is limited with no detected security headers and unknown SSL configuration. Overall, the site is functional but lacks several trust and compliance indicators.

Żarskie Rowery is a localized urban bike rental service operating in Żary, Poland, managed by ROOVEE S.A. The service offers modern city bikes accessible via a dedicated mobile application and web panel, enabling users to rent and park bikes flexibly within designated zones. The business targets urban commuters and visitors seeking convenient, technology-enabled transportation solutions. The website reflects a consistent brand identity and provides clear user guidance, contact information, and partner affiliations, positioning it as a trustworthy local mobility provider. Technically, the website employs a modern tech stack including Bootstrap, jQuery, FontAwesome, and Google Maps API for interactive mapping. Hosting is managed via home.pl with standard performance and mobile optimization. However, the site lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance and security hardening. The WHOIS data confirms domain legitimacy and alignment with the business entity, supporting trustworthiness. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but the absence of security headers and incident response information reduces the overall security maturity. Privacy compliance is partial, with a privacy policy available but no cookie consent or explicit GDPR compliance indicators. Overall, the site is functional and professional but would benefit from enhanced security and privacy practices. Strategically, the business should prioritize implementing security headers, cookie consent, and publishing security policies to improve compliance and user trust. Enhancing analytics and marketing transparency could also support growth. The current risk level is moderate with no critical issues detected.

Śremski Rower Miejski (ŚRM) is a localized urban bike rental service operating in Śrem, Poland, managed by ROOVEE S.A. The service offers modern city bikes accessible via a dedicated mobile application or SMS, providing flexible rental and parking options within a defined service zone. The business targets urban commuters and visitors seeking convenient, eco-friendly transportation. The website is professionally designed with clear navigation and multilingual support, reflecting a focused and user-friendly digital presence. Technically, the site uses standard web technologies including Bootstrap, jQuery, FontAwesome, and Google Maps API, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website and domain registration data align well, indicating a legitimate and operational business.

M

Muzeum města Brna

muzeumbrna.cz

45

Muzeum města Brna is a well-established cultural institution dedicated to preserving and showcasing the history and heritage of Brno, Czech Republic. The website reflects a medium-sized government/non-profit entity with a strong focus on exhibitions, educational programs, and cultural events. It serves a broad audience including tourists, local citizens, and educational institutions. The digital presence is supported by a modern tech stack including jQuery, Bootstrap, and Google services, with good mobile optimization and user experience. Privacy and cookie compliance are well implemented with clear consent mechanisms and GDPR adherence. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements in security headers and explicit policies are recommended. The absence of WHOIS data limits domain trust assessment but the website's professional presentation and official partnerships indicate legitimacy.

A

Arval

myarval.com

65

My Arval is a corporate login portal associated with Arval, a major player in vehicle leasing and fleet management services, part of the BNP Paribas group. The website serves existing customers across multiple countries, providing access to contract management and related services. The branding and content align with a professional transportation services business model targeting B2B and B2C clients. The platform is built using the OutSystems low-code framework, integrating common web technologies such as jQuery and Google Analytics for tracking and performance monitoring. Technically, the site demonstrates moderate digital maturity with HTTPS enforced and basic mobile optimization. However, it lacks visible security headers and comprehensive privacy or terms of service documentation, which are important for compliance and user trust. The absence of WHOIS registration data is a notable anomaly, potentially indicating privacy protection or technical issues with domain registration visibility. From a security perspective, the site uses secure forms with validation and cookie consent mechanisms, but it does not expose detailed security policies or incident response contacts. No vulnerabilities or malicious content were detected in the provided data. Overall, the security posture is moderate but could be improved by adding security headers, publishing privacy and terms policies, and providing clear contact information for security incidents. The overall risk is moderate due to the lack of WHOIS transparency and incomplete privacy documentation. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, adding vulnerability disclosure information, and improving accessibility and contact transparency to strengthen trust and compliance.

SatysfakcjaKlienta.pl is a Polish online platform specializing in customer satisfaction surveys, primarily targeting healthcare and hospitality sectors such as hotels, hospitals, medical points, and pharmacies. The service offers a professional survey creator with a user-friendly management panel, automated reporting, and features like personalized graphic surveys and emotion analysis of respondents. The business operates as a small-sized entity founded in 2018 and is managed by MTD Consulting Marcin Król, with clear contact details and GDPR-compliant privacy policies. The website is professionally designed with consistent branding and good content relevance, supporting its niche market position. Technically, the website uses a modern but straightforward tech stack including Bootstrap, jQuery, FontAwesome, and Google Fonts. It is mobile-optimized and SEO-friendly, though no CMS or advanced platforms are detected. Hosting is likely provided by home.pl S.A., the domain registrar. Performance is moderate with basic accessibility features. No analytics or advertising scripts are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS (implied by URL), but lacks visible security headers and DNSSEC is not enabled. The privacy policy is comprehensive and GDPR-compliant, but no explicit security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business profile, showing a domain age appropriate for the company’s founding date. Overall, the website presents a trustworthy and professional image with good privacy compliance and moderate security posture. Strategic improvements in security headers, DNSSEC, and incident response transparency would enhance its security maturity and trustworthiness.

E

EUROTOPIA.CZ, o.p.s.

eurotopiacz.cz

41

EUROTOPIA.CZ, o.p.s. is a Czech non-profit organization dedicated to providing social services, support for foster families, and community programs targeting children, youth, adults, and families. The organization operates multiple social programs including counseling, educational initiatives, and cultural events, positioning itself as a key regional player in social welfare and community support. The website reflects a medium-sized organization with a clear mission and active engagement through social media channels. Technically, the website is built on WordPress using modern plugins such as Elementor and Modern Events Calendar Lite, with integration of Google reCAPTCHA and Google Analytics. The site is mobile-optimized, uses HTTPS, and implements a comprehensive cookie consent mechanism, indicating a good level of digital maturity and privacy compliance. From a security perspective, the site uses HTTPS and reCAPTCHA to protect forms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration is consistent with the organization's profile and location, supporting legitimacy. Overall, the website presents a professional and trustworthy digital presence for a non-profit social service organization. Strategic improvements in security headers, incident response transparency, and terms of service publication would enhance the security posture and compliance further.

Q

QCM s.r.o.

manazer-vz.cz

54

QCM s.r.o. operates the Manažer veřejných zakázek platform, a web-based tool designed to provide managers with comprehensive oversight and analytics of public procurement processes. The company is a recognized leader in the electronization of public procurement in the Czech Republic, offering both software solutions and professional training services. The website reflects a mature digital presence with a focus on usability and clear communication of services. Technically, the site is built on WordPress with modern JavaScript libraries and is mobile-optimized, though there is room for improvement in security headers and privacy compliance mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and incident response contacts. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

M

Muzeum T.G.M. Rakovník

muzeumtgm.cz

48

Muzeum T.G.M. Rakovník is a regional museum organization operating multiple branches and cultural programs in the Central Bohemian Region of the Czech Republic. The institution focuses on preserving and presenting historical and cultural heritage through exhibitions, educational programs, and events targeted at the general public, schools, and tourists. The website reflects a government-affiliated public cultural entity with a clear mission and regional presence. Technically, the website employs a traditional tech stack including jQuery 1.7.2, Google Fonts, FontAwesome, Google Maps API, and a proprietary CMS (nnx CMS). It features a cookie consent mechanism and integrates Google Analytics for user tracking. The site is moderately optimized for mobile devices and has a good design and navigation structure, though some technologies like jQuery are outdated, which may pose security risks. From a security perspective, the site lacks visible security headers and published security policies. The cookie consent banner indicates some privacy awareness, but no dedicated privacy policy or terms of service pages were found. WHOIS data is missing, which reduces trust in domain legitimacy, although the website content and government affiliation suggest a legitimate operation. No adult or questionable content is present, and no WAF or blocking mechanisms were detected. Overall, the website is functional, professional, and trustworthy for its intended audience but would benefit from improved security practices, updated technologies, and clearer privacy documentation to enhance compliance and user trust.

Ř

Římskokatolická farnost Nový Jičín

fnj.cz

50

Římskokatolická farnost Nový Jičín operates as a local Roman Catholic parish serving the Nový Jičín area and nearby communities. The website provides information about parish activities, spiritual services, community events, and religious education. It targets local parishioners and Christian community members, positioning itself as a trusted religious institution with a history dating back to 2008. The business model is non-profit, focusing on community and spiritual engagement rather than commercial activities. Technically, the website is built on WordPress with a modern but typical plugin and library stack including Bootstrap, jQuery, and Google Analytics. The site is hosted likely by WEDOS, consistent with the registrar data. Performance and mobile optimization are adequate, though some technical improvements could enhance security and performance, such as consolidating JavaScript libraries and adding security headers. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and overall security posture. No critical vulnerabilities or malicious indicators were found. The WHOIS data supports legitimacy with consistent registration details and domain age appropriate for the business. Overall, the website is a well-maintained, trustworthy platform for its community purpose but could benefit from enhanced security practices and privacy compliance features to strengthen its posture and user trust.

P

ProSenior | Nový Jičín

psnj.cz

44

ProSenior | Nový Jičín is a Czech non-profit organization focused on providing senior care and social support services including home care, day care, and respite care. The organization serves the local community of Nový Jičín, targeting seniors and their caregivers with personalized and community-oriented services. The website reflects a well-established entity with a domain age since 2010, consistent with its operational history. Technically, the site is built on WordPress, leveraging modern web technologies and third-party integrations such as Google Analytics and social media platforms, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with clear GDPR policies and cookie declarations. Overall, the site is professional, trustworthy, and well-aligned with its business mission.

C

CFI Group

cfigroup.com

58

CFI Group is a well-established company specializing in customer, citizen, and employee satisfaction measurement, leveraging proprietary methodologies such as the American Customer Satisfaction Index (ACSI®). They serve both government agencies and private businesses, positioning themselves as a trusted leader with over three decades of experience. Their website reflects a professional and content-rich platform that supports their consulting and research services. Technically, the site is built on WordPress with modern plugins and uses Cloudflare DNS, providing a moderate to good performance and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is evident with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness.