Security Directory

O

Opera PLUS

operaplus.cz

53

Opera PLUS is a Czech media portal established in 2009, specializing in classical music, opera, and dance. It provides news, reviews, interviews, and multimedia content targeting enthusiasts and professionals in the performing arts sector. The website maintains a consistent brand presence with active social media channels and a newsletter service, positioning itself as a reputable source in its niche market. Technically, the site is built on WordPress with modern plugins for SEO, advertising, and structured data, hosted via REG-WEDOS with Cloudflare DNS services. The site is mobile-optimized and performs moderately well, with room for accessibility improvements. Security practices include HTTPS enforcement and use of reCAPTCHA, though additional HTTP security headers could enhance protection. Privacy and cookie policies are present and GDPR compliant, but no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and content-rich, with minor technical and security enhancements recommended.

K

KatMedia s.r.o.

katyd.cz

44

Katolický týdeník is a Czech Catholic weekly news publication operated by KatMedia s.r.o., providing news and cultural content related to the Catholic Church in the Czech Republic and abroad. The website is professionally designed with a clear structure, offering subscription services and advertising opportunities. It targets Czech-speaking audiences interested in religious and societal news. Technically, the site uses modern web technologies including Google reCAPTCHA, Facebook SDK, and a custom or unknown CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding indicate a legitimate media entity. Overall, the site is safe, compliant with GDPR, and provides a positive user experience.

Obec Hejtmánkovice is a small municipal government entity serving the local community in the Náchod district of the Czech Republic. The website provides comprehensive information about local administration, community news, events, and historical background. It targets residents and visitors seeking official information and services related to the municipality. The business model is typical of a local government, focusing on public service and community engagement. Technically, the website uses a combination of jQuery, jQuery UI, Matomo analytics, and Google reCAPTCHA integrated within the IPO CMS platform. The site is mobile responsive with good navigation and content structure. Performance is moderate, and SEO practices are adequately implemented. Privacy compliance is supported by a cookie consent banner and use of privacy-respecting analytics. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks advanced security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust analysis, but the presence of official contact information and consistent branding supports legitimacy. Overall, the website is a well-maintained municipal portal with good content quality and moderate technical sophistication. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

M

Mopos Communications, a.s.

mopos.cz

58

Mopos Communications, a.s. is a Czech technology company specializing in data communications and security solutions, primarily targeting municipalities and local governments. The company presents itself as a provider of technology services for cities and communities, with a professional and well-structured website built on WordPress using the Avada theme and several popular plugins. The website is optimized for SEO and includes GDPR-compliant cookie consent mechanisms, indicating awareness of privacy regulations. However, the absence of a visible privacy policy and terms of service pages limits full compliance transparency. The WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and trustworthiness, although the website content and design suggest a legitimate business presence.

A

ASIANA, spol. s r. o.

asiana.cz

56

ASIANA, spol. s r. o. is a well-established Czech travel agency founded in 1993, offering a comprehensive portfolio of travel services including flight tickets, hotels, car rentals, visa assistance, and corporate travel solutions. The company operates multiple branded subsidiaries targeting both individual and corporate clients, positioning itself as a leader in the Czech travel market. The website reflects a professional and consistent brand image with clear service offerings and a focus on technology-enabled travel solutions. Technically, the site is built on the Webflow platform, leveraging modern web technologies such as Google Fonts and reCAPTCHA for spam protection. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. Security posture is solid with HTTPS enforced and use of reCAPTCHA, but lacks advanced security headers and incident response information. The absence of WHOIS data limits domain trust verification, but the business information and certifications like IATA support legitimacy. Overall, the site is safe, professional, and trustworthy for general audiences.

A

Art D – Grafický ateliér Černý s.r.o.

art-d.cz

45

Art D – Grafický ateliér Černý s.r.o. is a Czech family-owned printing company with over 28 years of experience, specializing in both small and large format printing, finishing, and packaging services. The company targets business clients primarily in the Czech Republic and Slovakia, offering comprehensive printing project services from design to delivery. The website is built on the Webflow platform, integrating Google Tag Manager and reCAPTCHA for analytics and security. While the site is professionally designed and content-rich, it lacks explicit privacy and cookie policies, and no WHOIS domain registration data is available, which raises concerns about domain legitimacy. Security posture is moderate with HTTPS and form protections but missing security headers and incident response information. Overall, the site presents a credible business front but requires improvements in compliance and domain registration transparency.

M

Město Broumov

broumov.net

38

Město Broumov operates an official municipal website serving residents and visitors with comprehensive local government information, news, cultural events, and public services. The site is positioned as the authoritative digital presence for the city of Broumov in the Czech Republic, targeting local citizens and tourists. Key services include municipal updates, event calendars, contact details for city offices, and online forms for administrative requests. The business model is typical for a government entity, focusing on public information dissemination and community engagement. Technically, the website employs a modern CMS platform (vismoWeb5) with integration of Google services such as Analytics, reCAPTCHA, and Translate. The site is HTTPS secured and includes cookie consent mechanisms compliant with GDPR. The design is responsive and accessible, with good SEO practices and clear navigation. However, some security best practices like HTTP security headers are not visibly implemented. From a security perspective, the site demonstrates a moderate security posture with HTTPS enforcement and form protections via reCAPTCHA. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of a published security policy, incident response contacts, or vulnerability disclosure reduces transparency and preparedness. The missing WHOIS data for the domain is a concern for domain legitimacy verification, though the official content and contact details support authenticity. Overall, the website is a well-maintained municipal portal with good content quality and user experience. The main risks relate to incomplete domain registration transparency and minor security hardening opportunities. Strategic recommendations include improving security headers, publishing security policies, and verifying domain registration details to enhance trust and compliance.

M

Město Broumov

broumov-mesto.cz

48

The website www.broumov-mesto.cz serves as the official digital presence of the town of Broumov, Czech Republic. It provides residents and visitors with municipal news, cultural event information, public service announcements, and contact details for various city departments. The site is well-structured, accessible, and includes features such as a search function, event calendar, and subscription form for newsletters. Social media integration with Facebook and YouTube enhances community engagement. Technically, the site uses the Vismo CMS platform, integrates Google Analytics for visitor insights, and employs Google reCAPTCHA to protect forms from abuse. The presence of a cookie consent mechanism and a detailed privacy policy indicates good privacy compliance. However, the absence of WHOIS data for the domain raises questions about domain registration transparency, which slightly impacts trustworthiness. No explicit security policy or incident response information is published, which could be improved to enhance security posture. Overall, the site is professional, secure, and serves its governmental function effectively.

E

Entered

entered.be

44

Entered is a small Dutch company specializing in immersive real-life horror games that provide intense, interactive storytelling experiences. Their website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. The technical infrastructure is based on WordPress with modern plugins and performance optimizations, ensuring fast and mobile-friendly user experience. Security posture is good with HTTPS and reCAPTCHA implemented, though explicit security policies and incident response contacts are absent. Overall, the website is trustworthy and well-positioned in its niche market, targeting adult audiences seeking unique horror entertainment.

E

EXIT19.PL - Escape Room Wrocław

exit19.pl

47

EXIT19.PL is a small hospitality business operating an escape room entertainment service in Wrocław, Poland. The company offers thrilling escape room games targeting a general audience seeking fun and team-building activities. The website is built on WordPress and integrates modern technologies such as Google Tag Manager, Google Analytics, reCAPTCHA, and Cookiebot for consent management. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service pages found. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

CTM Academy is a well-established Czech non-profit organization focused on providing individualized academic programs and international education preparation for children and students from early school age through high school graduation. The organization offers a comprehensive suite of services including online courses, Advanced Placement exam preparation, and study abroad support, positioning itself as a leader in talent development within the Czech educational landscape. The website reflects a professional and consistent brand image with strong trust signals such as testimonials and reputable partner logos. Technically, the website employs a mature technology stack including jQuery, Google Analytics, Facebook Pixel, and Hotjar, integrated with cookie consent mechanisms and reCAPTCHA for form security. While the site is mobile-optimized and SEO-friendly, some legacy JavaScript libraries pose potential security risks. The site uses HTTPS and standard security headers but lacks a published security policy or incident response information. From a security perspective, the site demonstrates good baseline practices such as encrypted connections and consent-based tracking but would benefit from modernizing its JavaScript dependencies and enhancing transparency around security policies. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the organization's profile, supporting legitimacy. Overall, CTM Academy's website is a secure, professional, and content-rich platform that effectively supports its educational mission. Strategic improvements in security policy publication and technical updates would further strengthen its security posture and trustworthiness.

A

ASTRON group

astron.cz

57

ASTRON group is a large, established printing and advertising manufacturing company based in the Czech Republic, offering a wide range of polygrafické services including printing, light advertising production, and material processing. The company operates two production facilities with a significant machine park and serves a broad client base with a strong market presence. The website is built on WordPress using the Enfold theme and includes modern plugins such as Slider Revolution and Google Analytics for tracking. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is not publicly available, indicating privacy protection, which slightly reduces transparency but is common for businesses. Overall, the website is professional, content-rich, and trustworthy with room for improvement in security and privacy transparency.

G

Galen Clinic

galenclinic.cz

59

Galen Clinic is a premium healthcare provider based in the Czech Republic offering comprehensive medical services tailored to families and individuals. The clinic emphasizes personalized care, rapid diagnostics, and a broad range of specialties including pediatrics, internal medicine, cardiology, rehabilitation, surgery, gynecology, psychology, and more. Their business model focuses on delivering high-quality, accessible healthcare with a strong patient-centric approach. Technically, the website is built on WordPress with Elementor and integrates modern SEO and user experience practices. Security measures include HTTPS, Google reCAPTCHA, and cookie consent mechanisms, although explicit security headers could be improved. The absence of WHOIS data is a concern but does not detract significantly from the site's professionalism and trust signals. Overall, the site is well-designed, accessible, and compliant with GDPR requirements.

A

ADELANTE, s.r.o.

bsqr.co

56

bysquare.com is a Slovakian business website operated by ADELANTE, s.r.o., offering modern QR code-based payment and invoicing solutions primarily targeting Slovak banks, businesses, and e-commerce platforms. The company is well-positioned in the Slovak financial technology sector, with endorsements from key industry bodies such as the Slovak Banking Association and the Slovak Chamber of Certified Accountants. Their services include QR payment codes (PAY by square), QR invoices (INVOICE by square), and related software products like plugins, web services, and mobile applications. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization.

M

MailPoet

mailpoet.com

68

MailPoet is a well-established email marketing plugin designed specifically for WordPress-powered websites, trusted by over 600,000 sites globally. It offers comprehensive email marketing services including newsletters, post notifications, and WooCommerce marketing automation. The company operates under the parent company Automattic, which adds significant credibility and market presence. The website demonstrates a high level of professionalism with excellent content quality, user experience, and SEO optimization. Technically, it leverages WordPress CMS with modern JavaScript libraries and integrates Google services for analytics and marketing. Security posture is solid with HTTPS and reCAPTCHA usage, though there is room for improvement in security headers and incident response transparency. Privacy compliance is strong, with clear GDPR-aligned policies and cookie consent mechanisms. Overall, MailPoet presents a trustworthy and mature digital presence suitable for its target audience of WordPress site owners and marketers.

Slůně - svět jazyků, s.r.o. is a well-established Czech language school and translation agency operating since 1998, specializing in corporate language training, translation, interpretation, and soft skills development. The company serves businesses and individuals, with multiple branches in major Czech cities including Prague, Brno, Ostrava, and Plzeň. Their website reflects a professional and comprehensive presentation of their services, targeting a business audience seeking language solutions. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager. Security measures include HTTPS, Google reCAPTCHA, and a detailed cookie consent mechanism, although some security headers and explicit policies are not detected. The absence of WHOIS data limits domain registration trust analysis, but the website content and business information appear legitimate and professional. Overall, the site demonstrates good digital maturity and compliance with privacy regulations.

A

Amtest-TM s.r.o.

amtest-tm.com

49

Amtest-TM s.r.o. is a Czech Republic-based company specializing in the supply of precise measuring technology for calibration, testing, and diagnostics of electrical and non-electrical quantities in laboratory and industrial environments. The company emphasizes nearly 48 years of tradition and operates internationally with a broad product catalog and partnerships across Europe. Their target audience includes industrial and laboratory customers requiring high-precision measurement instruments and calibration services. The business model is primarily B2B, focusing on supplying and reselling specialized equipment and software. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, FontAwesome, and integrates Google Analytics and Google Tag Manager for tracking. The site is mobile responsive and offers a good user experience with clear navigation and relevant content. However, some SEO and accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS and Google reCAPTCHA for form protection but lacks visible security headers like CSP or HSTS. No privacy or cookie policies are present, and GDPR compliance indicators are missing. The WHOIS data for the domain is unavailable, raising concerns about domain registration legitimacy despite the professional appearance of the website. Overall, the site presents a moderate risk profile with good business credibility but requires improvements in security practices, privacy compliance, and domain registration transparency to enhance trust and reduce potential vulnerabilities.

A

ASData group s.r.o.

asdatagroup.com

64

ASData group s.r.o. is a Slovak technology company specializing in custom e-commerce platforms, web applications, and digital marketing services including PPC and SEO. Positioned as a leading Google and Microsoft Channel Partner in Central Eastern Europe, the company offers a comprehensive suite of services from software development to graphic design and marketing automation. Their website reflects a professional and modern digital presence built on WordPress with advanced marketing integrations. Security posture is strong with HTTPS and security headers, though privacy and cookie policies are absent, representing a compliance gap. The lack of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the business content and branding are consistent and trustworthy. Strategic recommendations include publishing privacy and cookie policies, improving transparency on security and incident response, and verifying domain registration details.

A

Asociácia znalcov cestnej dopravy SR

znalci.sk

52

Asociácia znalcov cestnej dopravy SR is a Slovak association specializing in road transport expertise, providing workshops, publications, and member services. The website serves as an information hub for professionals in this niche, with a focus on education and expert knowledge sharing. The domain is well-established since 2003, indicating a mature presence in the Slovak transportation sector. Technically, the site is built on WordPress with common plugins and uses Google Analytics for tracking. It is hosted on a Slovak hosting provider, Websupport, and employs HTTPS with Google reCAPTCHA for form security. However, the site lacks explicit privacy and cookie policies, as well as security incident response information, which are important for compliance and trust. Overall, the site is professional and trustworthy but could improve its privacy and security transparency.

F

Funlife Trading, s.r.o.

funlife.cz

43

Funlife Trading, s.r.o. is a Czech Republic-based technology company specializing in software development, electronic marketing, signmaking, and design services. Established in 1998, the company has evolved from simple web development to providing comprehensive ICT solutions and long-term client support. Their market position is that of a small but experienced player with a focus on B2B services and client retention. Technically, the website employs modern tracking tools such as Google Analytics and reCAPTCHA, with a moderate performance and good mobile optimization. However, the absence of explicit security headers and privacy policies indicates room for improvement in security and compliance. The missing WHOIS data raises concerns about domain legitimacy, although the website content and business information appear professional and trustworthy. Overall, the company presents a solid business front but should enhance its security posture and transparency to increase trust and compliance.

V

Vzdělávání lékařů

vzdelavanilekaru.cz

75

The website 'Vzdělávání lékařů' serves as an educational platform primarily targeting medical professionals in the Czech Republic. It is associated with the Czech Medical Chamber and offers online courses and continuing professional development resources. The platform uses modern web technologies including Vue.js and Vuetify, and integrates third-party services such as Google reCAPTCHA and Zoom for enhanced functionality. The domain is registered with REG-ZONER since 2020, consistent with the platform's profile as a relatively new educational service. Security measures include HTTPS and a Content-Security-Policy header, though additional security headers could improve the overall posture. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information is minimal, with no explicit emails or phone numbers found in the content. Overall, the site is professionally designed, mobile-optimized, and trustworthy for its intended audience.

N

Nexus Exit

nexus-exit.de

62

Nexus Exit is a specialized entertainment provider offering next-level escape room experiences in Gelnhausen, Germany. The company holds a strong market position as the highest-rated escape room provider in the Hessen region, supported by excellent customer reviews on Tripadvisor, Facebook, and Google. Their services include a variety of escape rooms, outdoor adventures, online games, group offers for companies, schools, bachelor parties, and consulting services under Nexus Creations. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, enhancing user experience and trust. Technically, the website is built on the Webflow CMS platform, utilizing modern web technologies such as Google Fonts, Matomo analytics, and Google reCAPTCHA for security. Hosting is provided by a reputable German provider (Netcup), and the site employs HTTPS with good SSL configuration. While security headers are not explicitly detected, the site follows good security practices including cookie consent and bot protection. Analytics usage is moderate with privacy compliance considered good. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, there is room for improvement by implementing additional security headers and publishing a security policy or incident response contact. The absence of terms of service and vulnerability disclosure pages are minor gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The overall risk assessment is low, with the site presenting a professional and secure front to customers. Strategic recommendations include enhancing security headers, formalizing security policies, and maintaining up-to-date software to sustain and improve security posture.

S

Skurrilum St. Pauli

skurrilum.de

52

Skurrilum St. Pauli is a well-established, award-winning escape room business located in Hamburg, Germany, operated by the creative team behind the Hamburger Schmidt Theater. The company offers five uniquely themed escape rooms targeting families, friends, and corporate groups for events and team building. The website is professionally designed, mobile-optimized, and provides comprehensive information about the business and its offerings. Technically, the site is built on WordPress with modern plugins and integrates third-party services such as Vimeo, Google Analytics, and Facebook Pixel. Security posture is solid with HTTPS enforced, cookie consent management, and use of reCAPTCHA, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site reflects a credible and trustworthy business with a good digital presence.

I

Inštitút znalostného pôdohospodárstva a inovácií

agroinstitut.sk

62

Inštitút znalostného pôdohospodárstva a inovácií (IZPI) is a Slovak government-affiliated institute focused on agricultural knowledge, innovation, and education. It operates under the Ministry of Agriculture and Rural Development of Slovakia, providing advisory services, accredited training, conference facilities, and hotel accommodations. The website reflects a well-structured government entity with clear communication channels and a strong partnership ecosystem. The target audience includes agricultural professionals, government stakeholders, and educators. The business model is primarily government-funded with service offerings in education and event hosting.

I

INPORTANTE s.r.o.

ihygiena.sk

54

INPORTANTE s.r.o. operates the ihygiena.sk website, a professional B2B e-commerce platform specializing in hygiene and cleaning products for businesses in Slovakia. The company offers a wide range of dispensers, refills, cleaning chemicals, protective equipment, and packaging materials, targeting hospitality, horeca, and industrial sectors. The website is well-structured, with clear navigation and product categorization, supporting an online shop powered by WooCommerce. Technical infrastructure is based on WordPress with modern plugins including Yoast SEO, WPBakery, and Slider Revolution, indicating a mature digital presence. Security posture is adequate with HTTPS, reCAPTCHA, and cookie consent mechanisms, though improvements in security headers and explicit policies are recommended. Privacy compliance is basic but present, with GDPR considerations evident. Overall, the website reflects a legitimate, trustworthy business with good user experience and professional content.

A

ARICOMA

autocont.cz

68

ARICOMA is a leading enterprise IT service provider based in the Czech Republic, offering a broad range of end-to-end IT solutions and digital transformation services primarily targeting commercial firms and the public sector across Europe. The company positions itself as the number one player in its market segment, supported by a large professional workforce and extensive certifications. Technically, the website is built on a modern stack including Kentico CMS, Bootstrap, jQuery, and integrates multiple analytics and marketing tools such as Microsoft Clarity, Google Tag Manager, and Facebook Pixel. The site is well-optimized for mobile and SEO, with a professional design and clear navigation. Security-wise, the site enforces HTTPS, uses reCAPTCHA for forms, and implements cookie consent mechanisms, though it lacks some security headers and explicit incident response contacts. The absence of WHOIS data for the domain is a notable anomaly but does not detract significantly from the overall legitimacy given the strong business presence and certifications. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving direct contact availability.

I

Immersive Technologies s.r.o.

imm-tech.eu

47

Immersive Technologies s.r.o. is a Czech Republic-based company specializing in Extended Reality (XR) solutions aimed at enhancing business efficiency and innovation. Their services include consulting, testing, and deploying XR technologies across various business sectors such as service and maintenance, training, marketing, production, and communication. The company targets businesses seeking to leverage XR for operational improvements and competitive advantage. The website presents a professional image with clear service offerings and customer testimonials, positioning the company as a specialized XR solutions provider. Technically, the website employs a combination of legacy and modern technologies including jQuery 1.11.1, GSAP, Google Tag Manager, and reCAPTCHA, managed via a CMS named HAPPY admin. The site is served over HTTPS with cookie consent mechanisms in place, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility and SEO could be improved. From a security perspective, the site benefits from HTTPS and bot protection but lacks visible security headers and published security policies. The use of an outdated jQuery version presents a potential risk. No privacy policy or terms of service are found, which impacts compliance posture. Contact information is clearly provided, and social media presence adds to credibility. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, updated security practices, and improved accessibility. Strategic recommendations include publishing privacy and security policies, updating libraries, and implementing security headers to strengthen the security posture and regulatory compliance.

T

TITANS freelancers

titans.sk

71

TITANS freelancers is a Slovak-based IT outsourcing company specializing in providing reliable IT freelancers for various projects. With over a decade of experience, they position themselves as a leader in the Slovak IT outsourcing market, targeting both IT specialists seeking freelance work and companies needing skilled IT professionals. The website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and integrates multiple analytics and marketing tools such as Google Tag Manager, Hotjar, and Cookiebot for GDPR-compliant cookie consent. Security measures include HTTPS, Google reCAPTCHA, and cookie consent mechanisms, though explicit security policies and headers could be enhanced. Overall, the site demonstrates a good balance of professional design, usability, and compliance, though lacks visible contact information and formal privacy or terms of service pages in the analyzed content.

A

AVANTI FLOORS s.r.o.

orac-dekorace.cz

62

AVANTI FLOORS s.r.o. operates avanti-dekorace.cz, an e-commerce website specializing in decorative interior products such as ceiling, floor, and lighting moldings, as well as decorative elements and accessories. The company targets homeowners, interior decorators, and construction professionals primarily in the Czech Republic. The website presents a professional and consistent brand image with clear navigation and relevant content focused on luxury interior decoration. The business is newly founded in 2024, with domain registration consistent with this timeline. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, Google Analytics, and Google reCAPTCHA for security and marketing purposes. The platform appears custom-built without a major CMS, using Bootstrap for responsive design. Performance and mobile optimization are good, though some security headers are missing. Privacy compliance is well addressed with cookie consent mechanisms and a GDPR policy. Security posture is moderate with HTTPS enforced and reCAPTCHA protecting forms, but lacks explicit security policies and incident response contacts. No critical vulnerabilities or suspicious content were detected. WHOIS data supports the legitimacy of the domain and business, showing no privacy protection or suspicious registration patterns. Overall, the website is a trustworthy and professional retail platform with good privacy and marketing practices but could improve security headers and incident response transparency.

P

PETROF, spol. s r.o.

muzeumpetrof.cz

45

PETROF, spol. s r.o. operates a museum and manufacturing facility specializing in pianos and musical instruments in Hradec Králové, Czech Republic. The website serves as a portal for visitors to learn about the company's history, book tours of the factory and museum, and purchase gift vouchers. The company has a strong market position with a heritage of over 160 years and offers cultural tourism experiences alongside its manufacturing business. Technically, the website is built on WordPress with modern JavaScript libraries, Google Maps integration, and tracking tools such as Google Tag Manager and Facebook Pixel. Security measures include HTTPS, reCAPTCHA on forms, and a cookie consent mechanism compliant with GDPR. However, there is room for improvement in security headers and explicit security policies. Overall, the website is professional, well-structured, and trustworthy, with a good balance of content quality and technical implementation.

P

PETROF, spol. s r.o.

petrofgallery.cz

45

PETROF Gallery is a cultural venue and showroom operated by PETROF, spol. s r.o., offering event spaces, a cafe, and a showroom primarily targeting visitors interested in music and cultural events. The website is professionally designed with consistent branding and provides comprehensive information about its services and event calendar. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, and reCAPTCHA for security. The site demonstrates good privacy compliance with cookie consent mechanisms and GDPR-aligned privacy policies. Security posture is solid with HTTPS and anti-bot measures, though some improvements in security headers and library updates are recommended. The absence of WHOIS data is a concern for domain legitimacy verification but the website content and branding suggest a legitimate business presence. Overall, the site is well-maintained and trustworthy for its audience.

盈

盈科泛利股份有限公司

accupass.com

60

ACCUPASS is a Taiwan-based technology company operating an online event registration and ticketing platform, positioning itself as Asia's leading event social platform. The website offers services including event discovery, hosting, online registration, ticket sales, and payment processing, targeting a general audience interested in various events such as forums, exhibitions, and lectures. The platform is branded consistently and professionally, with a medium-sized business profile under the parent company Accuvally Inc. Technically, the website employs modern web technologies such as React, Moment.js, and Cropper.js, with integration of Google Fonts, Google reCAPTCHA, Facebook Pixel, and Google Tag Manager for analytics and marketing. The site is mobile optimized and performs moderately well, though accessibility features are basic. Security practices include HTTPS enforcement and bot protection via reCAPTCHA, but lack explicit security headers and published security policies. Security posture is generally good but could be improved by adding security headers, publishing privacy and cookie policies, and establishing vulnerability disclosure mechanisms. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, though the website content and branding suggest a legitimate business. Overall, the site is safe, professional, and trustworthy, with room for enhanced privacy compliance and security transparency. Recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, establishing incident response and vulnerability disclosure channels, and improving accessibility and privacy compliance to strengthen user trust and regulatory adherence.

P

PETROF, spol. s r.o.

petrof.cz

66

PETROF, spol. s r.o. is a leading European manufacturer of acoustic pianos and pianinas, operating globally with exports to over 65 countries. The company maintains a strong market position as the largest manufacturer in Europe, supported by a well-structured website that highlights its products, dealer network, and corporate information. The website is multilingual and professionally designed, targeting piano buyers, music professionals, and dealers worldwide. Technically, the site employs modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager, alongside security measures like HTTPS and Google reCAPTCHA to protect user interactions. However, the absence of WHOIS data limits transparency regarding domain registration details.

D

Dr. Müller Pharma s.r.o.

muller-pharma.cz

43

Dr. Müller Pharma s.r.o. is a prominent Czech manufacturer specializing in pharmaceuticals, medical devices, cosmetics, and dietary supplements. The company maintains a professional online presence with a well-structured website offering product information and an e-commerce platform. Their market position is strong within the Czech healthcare sector, targeting general consumers and healthcare professionals. The website demonstrates consistent branding and provides essential business information, including company registration details and social media links. From a technical perspective, the website employs standard web technologies such as jQuery and Google reCAPTCHA, ensuring basic security and user interaction features. The site is mobile-optimized and includes cookie consent mechanisms aligned with GDPR requirements. However, there is room for improvement in accessibility and security headers implementation to enhance overall resilience. Security posture is adequate with HTTPS enforced and consent management in place, but the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms indicates a moderate maturity level. The missing WHOIS data for the domain is a notable concern, potentially impacting trustworthiness and legitimacy perceptions. Overall, the website is functional, professional, and compliant with privacy norms but would benefit from enhanced transparency in security practices and verification of domain registration details to strengthen stakeholder confidence.

E

Epson

epson.sk

64

Epson Slovakia operates as a localized branch of the global Epson brand, providing a wide range of printing and imaging products including inkjet, laser, dot matrix printers, scanners, and projectors. The website targets both consumers and business customers in Slovakia, offering product information, support, and promotional content. The business model focuses on manufacturing and distributing technology products with a strong emphasis on brand consistency and customer support. Technically, the website leverages modern web technologies including Adobe DTM for tag management, Google reCAPTCHA for bot protection, and OneTrust for GDPR cookie consent management. The site is built on a CMS platform likely SAP Commerce (Hybris), ensuring structured content delivery and e-commerce capabilities. Security posture is solid with HTTPS enforced and basic security best practices in place, though additional security headers and explicit security policies could enhance trust. The absence of direct contact information and security incident channels is a minor gap. Overall, the website is professional, well-branded, and compliant with GDPR cookie consent requirements, reflecting a mature digital presence for an enterprise technology company.

I

Ingénieurs et Scientifiques de France (IESF)

iesf.fr

42

Ingénieurs et Scientifiques de France (IESF) is a French non-profit professional association representing engineers and scientists through regional and technical associations. The organization promotes engineering professions, conducts national surveys, offers digital diploma certification, and organizes national events. The website is professionally designed, well-structured, and targets engineers, scientists, and related stakeholders in France. Technically, the site uses a specialized CMS (aiw-asso), modern JavaScript libraries, Google Analytics, and reCAPTCHA for security and tracking. Security posture is good with HTTPS and secure forms, but lacks some security headers and explicit privacy/cookie consent mechanisms. WHOIS data is missing, which slightly reduces trust but the website content and contact information support legitimacy. Overall, the site is a credible and professional platform for the association's activities.

Eesti Inseneride Liit MTÜ is a non-profit organization uniting engineering associations, educators, and companies in Estonia. The organization focuses on promoting engineering education, professional development, and technological innovation within Estonia. Their website serves as a portal for engineers, students, and educators, providing resources, news, and event information. The organization holds a credible position within the Estonian engineering community, supported by consistent branding and clear business information. Technically, the website is built on WordPress using the Enfold theme and integrates modern tools such as Google Analytics and reCAPTCHA, ensuring a functional and user-friendly experience. Security measures include HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the site is well-maintained, GDPR compliant, and trustworthy, with no signs of malicious activity or content blocking.

V

Vzdelávanie 21. storočia

vzdelavanie21.sk

55

Vzdelávanie 21. storočia is a Slovak government-supported educational portal focused on curriculum reform and modernization of primary education. It provides comprehensive resources, online courses, and communication tools for educators, parents, and schools. The website is well-positioned as an official information hub backed by the Ministry of Education and related institutions. Technically, the site uses WordPress with Elementor and Yoast SEO, ensuring good SEO and user experience. Security posture is solid with HTTPS, GDPR-compliant cookie consent, and use of reCAPTCHA, though some security headers could be improved. Overall, the site is trustworthy, professional, and compliant with relevant regulations.

S

SULKO s.r.o.

sulko.cz

39

SULKO s.r.o. is a well-established Czech manufacturer specializing in plastic, aluminum, and wooden windows and doors, along with shading technology and photovoltaic systems. Founded in 1993, the company has built a strong market presence with over 30 years of experience and thousands of customers domestically and internationally. Their business model focuses on manufacturing high-quality products and providing comprehensive services including free price calculations and support. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting residential and commercial customers. Technically, the website employs a traditional tech stack with jQuery, Google Tag Manager, Hotjar, and other common libraries. While the site is mobile-optimized and SEO-friendly, some outdated libraries like jQuery 1.7.2 present potential security risks. The site uses HTTPS and integrates Google reCAPTCHA for form security. Cookie consent mechanisms are robust and GDPR compliant, enhancing privacy transparency. From a security perspective, the site demonstrates good practices such as encrypted connections and consent management but lacks advanced security headers and explicit incident response policies. The absence of a vulnerability disclosure policy and use of outdated JavaScript libraries are areas for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. The overall risk profile is moderate with recommendations to upgrade libraries, implement security headers, and publish incident response information to strengthen security posture and trustworthiness.

O

OneHope

onehope.net

62

OneHope is a well-established non-profit organization dedicated to spreading the Christian Gospel to children and youth worldwide through scripture engagement programs. Founded in 1987, it has reached over 2 billion children in 148 languages, partnering with churches, ministries, and donors globally. The website reflects a mature digital presence with modern technologies such as React, WordPress with Elementor, and integrated fundraising tools like Fundraise Up and Virtuous Software. The organization maintains a professional and consistent brand image with clear calls to action for donations, prayer, and engagement. Security posture is solid with HTTPS, reCAPTCHA Enterprise, and Cloudflare DNS, though explicit security headers and cookie consent mechanisms could be improved. Contact information is transparent and comprehensive, supporting trust and credibility.

T

TWR International

twr.org

70

TWR International operates as a well-established Christian media and missions organization with a focus on Christian radio broadcasting and international outreach. The website reflects a professional and consistent brand presence targeting Christian communities, donors, and volunteers globally. The business model is non-profit, relying on donations and volunteer engagement, supported by a mature domain registered since 1995. Technically, the website employs a modern technology stack including jQuery, ExtJS, Google reCAPTCHA, and various front-end libraries. Hosting and DNS are managed through reputable providers including GoDaddy and Cloudflare, with HTTPS enforced site-wide. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses reCAPTCHA and CSRF tokens to protect forms. However, it lacks DNSSEC, security headers, and published security or incident response policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. WHOIS data shows privacy protection consistent with the organization's profile and a long domain history, supporting legitimacy. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy disclosures, security policies, and DNS security improvements to strengthen compliance and user trust.

Die-Bibel.de is the official online portal of the Deutsche Bibelgesellschaft, a German non-profit organization dedicated to translating, distributing, and educating about the Bible. The website offers a wide range of Bible translations, scholarly resources, reading plans, and educational content aimed at both the general public and theological professionals. It also supports global Bible distribution projects through its World Bible Aid initiative. The organization holds a strong market position as a leading Bible society in Germany with a clear mission and trusted brand presence. Technically, the website is built on a modern Angular framework with robust integrations including Google reCAPTCHA, Google Tag Manager, and various analytics and marketing tools. It is hosted on reliable cloud infrastructure, optimized for performance, mobile responsiveness, and accessibility. The site employs security best practices such as HTTPS and Content Security Policy, though there is room for improvement in additional security headers and incident response transparency. From a security perspective, the site demonstrates a mature posture with no critical vulnerabilities detected. Privacy compliance is well addressed with comprehensive privacy and cookie policies aligned with GDPR requirements. Contact information is clearly provided, enhancing business credibility and user trust. Overall, Die-Bibel.de is a professionally managed, secure, and user-friendly platform that effectively serves its mission and audience. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving incident response contact visibility to further strengthen trust and resilience.

M

Město Vsetín

mestovsetin.cz

48

Město Vsetín operates an official municipal website serving residents and visitors with comprehensive information and public services. The site offers online appointment booking, citizen portals, news updates, event information, and contact details, positioning itself as a key digital interface for local government communication. The website is well-branded with consistent use of the city emblem and maintains a professional appearance with good content quality and navigation. Technically, the site uses a modern tech stack including HTML5, CSS3, JavaScript, Google Fonts, Google Analytics, and reCAPTCHA, built on the Vismo CMS platform. It demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers like Content-Security-Policy could be improved. The site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. Security posture is solid with no visible vulnerabilities, secure forms with reCAPTCHA, and no exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies. The domain is longstanding and consistent with the official city identity, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers and continuous monitoring of third-party scripts to maintain security and privacy standards.

O

Obec Hovězí

obec-hovezi.cz

48

Obec Hovězí operates an official municipal website serving the local community of Hovězí in the Czech Republic. The site provides comprehensive information about local government, community events, public notices, and services. It targets residents and visitors seeking official information and municipal resources. The business model is a government public service portal with a focus on transparency and community engagement. The website is well-branded with consistent use of official logos and symbols, and it maintains a good level of content quality and navigation clarity. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. No major technical issues or vulnerabilities were detected in the content. From a security perspective, the website enforces HTTPS and uses Google reCAPTCHA to protect its contact form from spam and abuse. However, it lacks explicit security headers and does not provide dedicated security or incident response policies. Privacy policies and cookie policies are present but lack active consent mechanisms. There is no vulnerability disclosure or security.txt file, which could enhance transparency and security posture. Overall, the website is trustworthy and professional, reflecting its role as an official municipal portal. The domain registration is consistent with the municipality's history, and no suspicious patterns were found. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing security policies, and considering a vulnerability disclosure program to strengthen security and compliance.

O

Obec Huslenky

huslenky.cz

48

Obec Huslenky operates an official municipal website serving the residents and visitors of the Huslenky municipality in the Czech Republic. The site provides local government information, public notices, event calendars, and community services, positioning itself as a trusted source for municipal communication. The business model is governmental public service with a focus on transparency and community engagement. The website is well-established, with a domain age dating back to 2000, reflecting a stable online presence. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google services like reCAPTCHA for form security and Google Translate for language accessibility. Hosting and domain registration are managed by WEDOS, a reputable Czech provider. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to mitigate spam on forms. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. No vulnerabilities or exposed sensitive data were detected in the content. Privacy policies are present and GDPR compliance is indicated, though the cookie consent mechanism is absent. Overall, the website is a reliable and legitimate municipal portal with a good trust profile. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and enhancing accessibility and SEO to improve user experience and compliance. These improvements will strengthen the site's security posture and regulatory adherence while maintaining its role as a key community resource.

O

Obec Zděchov

zdechov.cz

45

Obec Zděchov is a small municipal government entity serving the local community in the Czech Republic. The website provides information about the municipality, local services, tourism opportunities, and community events. It targets residents and visitors interested in the region. The business model is typical for a local government, focusing on public service and community engagement. The website is well-branded and consistent with its official purpose. Technically, the website uses a CMS platform (vismo), standard web technologies (HTML5, CSS, JavaScript), and integrates Google services such as reCAPTCHA and Translate. Hosting is provided by Wedos, a known Czech hosting provider. The site is moderately optimized for performance and mobile use, with basic accessibility features. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect its contact form from spam. However, it lacks advanced security headers and explicit incident response or security policy disclosures. Privacy policies are present but basic, and cookie consent mechanisms are not implemented. No vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and suitable for its purpose but could improve security posture and privacy compliance to align with best practices and regulatory requirements.

D

Dexus

dexusplace.com

72

Dexus is a leading Australian real estate company specializing in premium commercial leasing and flexible workspace solutions under the Dexus Place brand. Their website showcases a comprehensive offering of meeting rooms, dynamic desks, virtual offices, and private suites across major Australian CBDs, targeting businesses seeking flexible and professional work environments. The company emphasizes state-of-the-art technology and exceptional service to support business growth. Technically, the website is built on Adobe Experience Manager with integrations including Microsoft Application Insights for telemetry, Google reCAPTCHA for form security, and various modern web technologies ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement, form protections, and no visible vulnerabilities, though some security headers could be explicitly confirmed. Privacy compliance is well addressed with clear policies and consent mechanisms. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the professional presentation and consistent branding. Overall, the website reflects a mature digital presence aligned with a large enterprise real estate business.

G

GUARANT International spol. s r.o.

wec2023.com

48

The website www.wec2023.com serves as the official platform for the 7th World Engineers Convention held in Prague, Czech Republic in October 2023. It targets engineers, academics, students, sponsors, and government stakeholders interested in engineering innovations aligned with the United Nations Sustainable Development Goals. The site provides event information, registration, scientific programs, and partner details, positioning itself as a niche but reputable international engineering event. Technically, the site uses modern web technologies including Material Design Lite, Google Fonts, Font Awesome, and integrates Google reCAPTCHA and Google Tag Manager for security and analytics. The site is mobile optimized and performs moderately well, though accessibility and SEO could be improved. Security posture is solid with HTTPS and CSRF protections, but lacks some security headers and formal security policies. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service. Business credibility is supported by consistent branding, official partnerships, and WHOIS data matching the business entity GUARANT International spol. s r.o. Overall, the site is professional and trustworthy but could enhance privacy and security transparency.

F

Forbo Holding AG

forbo.com

69

Forbo Holding AG operates as a global leader in the manufacturing and distribution of flooring solutions, construction adhesives, and conveyor belt systems. The company serves a broad business audience including investors, partners, and commercial customers, maintaining a strong market position with its divisions Forbo Flooring Systems and Forbo Movement Systems. The website reflects a professional corporate presence with comprehensive information on investor relations, sustainability, media releases, and contact details. Technically, the website employs modern web technologies including jQuery, Google reCAPTCHA, Microsoft Clarity for analytics, and integrates external services such as YouTube and Google Maps APIs. Hosting is supported by Azure CDN, ensuring reliable content delivery. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in accessibility and security headers are recommended. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place. However, explicit security headers are not detected, and no public security or incident response policies are published. The absence of WHOIS data reduces domain trust slightly, though the website content and branding strongly indicate a legitimate and professional business entity. Overall, the website is well-designed, content-rich, and trustworthy, with room for improvement in security transparency and technical hardening to enhance compliance and resilience.