Security Directory

C

Charter Hall

charterhall.com.au

72

Charter Hall is a leading Australian property investment and funds management group with over 32 years of experience. The company operates diversified property portfolios across office, industrial, retail, and social infrastructure sectors. Their website reflects a mature corporate presence with extensive investor resources, property leasing options, and detailed corporate governance information. The business targets investors, tenants, and financial advisers, positioning itself as a trusted market leader in real estate investment in Australia. Technically, the website is built on the Sitefinity CMS platform and integrates a variety of modern analytics and marketing technologies including Google Tag Manager, Microsoft Clarity, Hotjar, and several advertising networks. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, along with cookie consent mechanisms. However, explicit security headers and published security policies or incident response contacts are not evident, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. The lack of WHOIS data is due to AU domain privacy policies and does not detract from the legitimacy of the site. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and adding a vulnerability disclosure program to further strengthen trust and security posture.

AudienceORB is a Poland-based technology company specializing in data management and customer data platforms, offering advanced audience segmentation, predictive analytics, and marketing automation solutions. Their business model focuses on providing B2B data-driven marketing tools and analytics services to marketers and firms aiming to optimize programmatic campaigns and business intelligence. The company is a subsidiary of LastLevel ltd., with a professional web presence and partnerships with several technology firms. Technically, the website employs modern frameworks like Bootstrap, integrates Google Tag Manager and reCAPTCHA for analytics and security, and uses Cloudflare DNS. While the site is well-designed and mobile-optimized, it lacks some advanced security headers and explicit cookie policy documentation. Security posture is moderate with good SSL usage and spam protection but could be improved with additional headers and incident response information. Overall, the website is trustworthy, professional, and compliant with GDPR, though some enhancements in security and privacy transparency are recommended.

H

Hvězdný bazar

hvezdnybazar.cz

42

Hvězdný bazar is a Czech non-profit organization operating a charitable secondhand retail and training workplace for wheelchair users. Established in 2012 and affiliated with the Czech Association of Paraplegics (CZEPA), it offers a mix of physical and online retail through an e-shop and social media channels. The organization focuses on social inclusion, community building, and supporting local producers. Technically, the website is built on WordPress with WooCommerce, employing modern web technologies and standard security measures such as HTTPS and Google reCAPTCHA. While security headers are not explicitly detected, the site shows good security hygiene with no exposed sensitive data. Privacy compliance is mostly addressed with a comprehensive privacy policy and terms of service, though a cookie consent mechanism is absent. Overall, the site is trustworthy, professionally maintained, and serves a clear social mission.

G

GASAG DEALS

gasagdeals.de

66

GASAG DEALS operates a discount and partner deals platform primarily targeting GASAG customers in Germany. The website offers a variety of deals with over 50 partners and discounts up to 50%, positioning itself as a value-added service for energy customers. The business model focuses on customer retention and engagement through exclusive offers. The company appears to be medium-sized with a market presence since 2020, leveraging digital channels and social media for outreach. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Borlabs Cookie for cookie consent management. Hosting is supported by Microsoft Azure DNS infrastructure, indicating a reliable and scalable environment. The site demonstrates good mobile optimization and SEO practices, though performance is moderate and accessibility is basic. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA and Facebook Pixel with consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are missing, and there is no visible security policy or incident response information. Cookie consent is properly implemented, but privacy policy and terms of service are not found, which may impact compliance. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to incomplete privacy and security documentation. Strategic improvements in security headers, privacy disclosures, and incident response readiness would enhance the site's security posture and compliance standing.

Tinexta Infocert international website represents a large digital trust services provider and certification authority, positioned as a market leader in digital trust for businesses, professionals, and individuals. The company operates under the Tinexta group and has been established since 2016. The website is professionally designed using WordPress with modern SEO and page builder tools, targeting an international audience with multilingual support. The technical infrastructure includes AWS DNS hosting and integration with Google Analytics and Tag Manager for analytics and marketing purposes. Security posture is moderate with HTTPS enabled and domain transfer protections, but lacks DNSSEC and explicit security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the site is trustworthy and professional but could improve transparency and security practices.

M

Miele Centar Elda Lux

mielecentar-eldalux.com

37

Miele Centar Elda Lux is a specialized retailer based in Banja Luka, Bosnia and Herzegovina, focusing on the sale of Miele branded household appliances including kitchen, laundry, cooling, and cleaning products. The website serves as an e-commerce platform providing detailed product categories and online shopping capabilities. The business targets local consumers seeking premium home appliances. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern plugins and libraries for enhanced user experience and functionality. The site is hosted via NameCheap and uses HTTPS, ensuring secure communications. Security posture is solid with HTTPS and clientTransferProhibited domain status, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, with clear contact information and branding consistent with Miele standards.

N

Netia SA

netiaonline.pl

57

Netia SA operates a secure online login portal for its telecommunications services under the domain zaloguj.netia.pl. The website serves residential and business customers in Poland, providing access to account management and service information. The platform uses modern web technologies including Bootstrap, jQuery, and Google reCAPTCHA to ensure usability and security. The presence of a GeoTrust SSL certificate indicates a secure HTTPS environment, essential for protecting user credentials during login. However, the absence of visible privacy and cookie policies on this login page suggests room for improvement in privacy compliance. The WHOIS data for the subdomain is not publicly available, consistent with .pl registry privacy norms, but the website branding and content strongly align with the legitimate Netia SA brand. Overall, the site demonstrates a moderate level of technical maturity and security posture appropriate for a large telecommunications provider.

P

Progresio Solutions s. r. o.

progresio.sk

58

Progresio Solutions s. r. o. is a Slovak-based technology service provider specializing in professional web development, custom web applications, e-commerce solutions, and online marketing. Established in 2016, the company targets businesses and individuals seeking tailored digital solutions to enhance their online presence and operational efficiency. Their portfolio and client references indicate a stable market position within Slovakia's digital services sector. Technically, the website is built on WordPress CMS with modern technologies including Bootstrap, jQuery, and Google reCAPTCHA for security. Hosting is provided by Wedos, a reputable provider. The site demonstrates good mobile optimization, SEO practices, and moderate performance, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some HTTP security headers are not detected and could be improved. The site integrates Google Analytics with user consent, aligning with GDPR requirements. No critical vulnerabilities or exposed sensitive data were found. Overall, the website presents a professional and trustworthy digital front with strong privacy compliance and business credibility. Strategic recommendations include enhancing HTTP security headers, maintaining up-to-date software, and conducting regular security audits to sustain and improve security posture.

N

Netia

netia.pl

63

Netia is a major Polish telecommunications company offering a range of services including fiber-optic internet up to 2 Gb/s, mobile 5G internet, television packages, and fixed and mobile telephony. The website targets individual customers, small to large businesses, public institutions, and operators, reflecting a broad market presence. The company positions itself as a competitive provider with attractive pricing and bundled offers. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, reCAPTCHA, and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly with structured data and rich metadata. Security-wise, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS data from the .pl registry reduces transparency but does not necessarily indicate illegitimacy given the professional site presentation. Overall, the website is well-designed and trustworthy but could improve transparency and security posture by publishing privacy policies, terms of service, and security headers.

Z

Zeta Global

zetaglobal.net

71

Zeta Global is a leading enterprise AI-powered marketing cloud platform that integrates identity, intelligence, and activation to help businesses acquire, grow, and retain customers efficiently. The company positions itself as the largest omnichannel marketing platform with a strong focus on AI and data-driven personalization. Their services include a customer data platform, email service provider, omnichannel activation, and AI agents that automate marketing workflows. The website reflects a mature, enterprise-grade digital presence with excellent content quality, modern technology stack, and strong branding consistency. Technically, the site is built on WordPress with Elementor and integrates advanced marketing tools such as Marketo, Wistia, and Google Tag Manager. Security posture is good with HTTPS enforced and form validation to prevent disposable email abuse, though explicit security headers and policies could be improved. Privacy compliance is evident with a comprehensive privacy and cookie policy and GDPR adherence. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

A

Altclub

altclub.com

47

Altclub is an established Czech online education platform specializing in cryptocurrency and trading courses. Founded in 2009, it offers a range of courses from beginner to master levels, including a comprehensive Trader Challenge program. The platform targets individuals interested in learning about cryptocurrencies and trading, providing video lessons, tips, and practical trading education. It positions itself as the leading online academy in its niche within the Czech market, supported by endorsements from educational authorities and positive student testimonials. Technically, the website employs a modern tech stack including jQuery, Google Analytics, Facebook Pixel, Hotjar, and Google reCAPTCHA, ensuring interactive and trackable user experiences. However, some security best practices such as DNSSEC and security headers are missing, and no cookie consent mechanism is present despite GDPR compliance claims. Overall, the site is professionally designed, mobile-optimized, and trustworthy, with a good balance of content quality and business credibility.

A

ATICO

aticontrol.cz

65

ATICO is a Czech energy company specializing in the design, production, and management of energy control systems, including visualization and monitoring of energy centers. The company serves a broad range of clients from large enterprises to smaller firms, leveraging over 30 years of industry experience. Their key offerings include PLC-based energy management, SCADA visualization, and 24/7 monitoring services, positioning them as a trusted partner in the Czech and Slovak energy sectors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to business clients. Technically, the site uses modern web technologies, enforces HTTPS, and integrates Google Analytics and reCAPTCHA for security and analytics purposes. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. However, the absence of WHOIS data limits domain trust verification, and no explicit security policy or incident response contacts are published. Overall, the site demonstrates a solid security posture with room for improvement in security headers and transparency around vulnerability disclosure.

K

Kovárna VIVA

viva.cz

63

Kovárna VIVA is a modern forging company based in the Czech Republic specializing in high-quality forged steel components for leading industrial and automotive clients such as Bosch, Scania, ZF, and Linde. The company operates as a B2B manufacturer with a strong market position in Central Europe, supported by its parent company Moravia Steel. The website reflects a professional and consistent brand image, targeting industrial manufacturers and engineering firms. Technically, the site employs modern tracking and marketing technologies including Google Analytics, Facebook Pixel, and Adform, alongside a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS and bot protection via reCAPTCHA, though it lacks explicit security headers and published security policies. The absence of WHOIS data reduces transparency but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to strengthen trust and compliance.

A

ABAPO TRADE

abapo-trade.cz

41

ABAPO TRADE is a Czech Republic based small business specializing in the rental of electric adjustable beds and other healthcare equipment. The website presents a professional and consistent brand focused on serving individuals requiring medical aids. The technical infrastructure is built on WordPress with the Divi theme, leveraging common web technologies such as jQuery and Google reCAPTCHA for form security. Privacy compliance is addressed with a GDPR page and cookie consent mechanism. However, the absence of WHOIS registration data and lack of advanced security headers like Content-Security-Policy indicate areas for improvement in trust and security posture. Overall, the site is functional and well-structured but would benefit from enhanced security practices and clearer contact information.

S

Safer Sex Berlin

safersexberlin.com

58

Safer Sex Berlin is a grassroots non-profit organization dedicated to improving sexual healthcare access for women and genderqueer individuals in Germany. The organization focuses on advocacy, community programming, pop-up STI testing, and research to address systemic barriers and promote sexual health justice. The website is professionally designed using Squarespace, featuring clear navigation, mobile optimization, and a cookie consent mechanism. However, it lacks explicit privacy policy and terms of service pages, and no direct contact information is provided. The domain WHOIS data is unavailable, raising concerns about domain registration transparency. Overall, the digital presence is solid but would benefit from enhanced compliance documentation and verified contact details.

A

ATICO

atico.cz

67

ATICO is a medium-sized Czech energy company specializing in high-voltage and low-voltage electrical distribution systems, energy centers, and manufacturing of low-voltage switchboards including control systems. The company emphasizes innovation, professional approach, and over 30 years of industry experience, targeting business clients primarily in the Czech Republic and Slovakia. Their service portfolio includes consulting, manufacturing, installation, monitoring (ATICONTROL), and 24/7 maintenance services. The website is professionally designed, bilingual (Czech and English), and provides clear navigation and relevant business content. Technically, the site uses modern web technologies including Google Analytics, reCAPTCHA, and cookie consent mechanisms, ensuring compliance with GDPR and privacy standards. Security posture is strong with HTTPS and bot protection, though some security headers are not explicitly detected. WHOIS data is unavailable, which slightly impacts trust but the overall digital presence and business information support legitimacy. No direct contact emails or phone numbers are found on the site, which could be improved for better customer engagement.

M

Městská knihovna Český Těšín

knihovnatesin.cz

48

Městská knihovna Český Těšín is a municipal library serving the city of Český Těšín in the Czech Republic. The website provides access to library services including book lending, electronic databases, event information, and cultural programs. It targets a broad audience including children, seniors, handicapped individuals, schools, and parents. The library operates as a public service institution with a local community focus. The website is well-branded and consistent with municipal identity, featuring multilingual support via Google Translate and active social media channels.

F

Flexoprint

flexoprint.cz

41

Flexoprint is a Czech manufacturing company specializing in printing and production of packaging materials, labels, and related services. Founded in 2000, the company has a long-standing presence in the food and pharmaceutical packaging sectors, offering flexographic and digital printing technologies. Their website reflects a professional business with a focus on quality, evidenced by their ISO 9001 certification. The site is built on WordPress using the LayersWP theme and includes modern web technologies such as Google reCAPTCHA for form security. While the website is well-structured and content-rich, it lacks explicit contact emails and phone numbers, relying primarily on a contact form for communication. Security posture is adequate with HTTPS and CAPTCHA but could be improved with additional security headers and incident response information. Privacy and cookie policies are present and GDPR compliant. Overall, the website is trustworthy and suitable for its business purpose, with room for technical and security enhancements.

V

VITAR, s.r.o.

vitar.cz

43

VITAR, s.r.o. is a traditional Czech manufacturer of vitamin and dietary supplements with a history dating back to 1990. The company operates a professional website built on the Magento platform, offering a wide range of health-related products and serving customers primarily in the Czech Republic and Slovakia, with exports abroad. The website demonstrates good content quality, clear navigation, and consistent branding, targeting general consumers interested in health and wellness products. Technically, the site uses a mature e-commerce stack with integrations for analytics, marketing, and cookie consent management, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though some security headers are missing and no explicit security or incident response policies are published. The absence of WHOIS data reduces transparency and trust in domain registration, but the website content and business information appear legitimate and professional. Overall, the site is safe, compliant with GDPR, and well-positioned in its market segment.

G

Gewerkschaft Erziehung und Wissenschaft (GEW)

gew.de

53

The Gewerkschaft Erziehung und Wissenschaft (GEW) is a prominent educational trade union in Germany representing approximately 280,000 professionals in education and science sectors. The website serves as a comprehensive platform offering information on union activities, collective bargaining, member services, publications, and events. It targets educators, researchers, students, and unemployed pedagogues, positioning itself as a key player in the German education labor market. The business model is non-profit, focusing on advocacy and support for its members.

M

Młodzieżowa Akademia Siatkówki

mlodziezowasiatkowka.pl

44

The website 'Młodzieżowa Akademia Siatkówki' serves as a comprehensive platform dedicated to youth volleyball training and education in Poland. It offers a wide range of resources including training programs, educational materials, event updates, and a directory of training bases and schools. The site targets youth players, coaches, and sports educators, positioning itself as a key national resource for volleyball development. Technically, the site employs a variety of modern web technologies such as jQuery, Google Maps API, Facebook SDK, and media players, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security-wise, the site uses HTTPS and includes reCAPTCHA for forms, but lacks some security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data reduces domain trustworthiness, though the site content and structure appear professional and legitimate. Overall, the site is a valuable educational resource with moderate security and privacy compliance, suitable for its audience.

M

MTX Group a.s.

mtxgroup.cz

48

MTX Group a.s. is a prominent industrial and trading holding company based in the Czech Republic, established in 2013. The company manages a diversified portfolio of subsidiaries operating in metals, energy commodities, packaging, trading, and industrial services sectors. It holds a strong market position in Central Europe, particularly in commodity trading and manufacturing. The website presents detailed information about its subsidiaries and business areas, targeting industrial partners, investors, and commercial clients. Technically, the website employs modern JavaScript frameworks (likely Vue.js), integrates Google Analytics and Tag Manager for tracking, and uses Google reCAPTCHA for bot protection. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR requirements. However, it lacks explicit privacy and terms of service pages, and security headers are not detected. From a security perspective, the site uses HTTPS and standard Google services for analytics and bot mitigation, but could improve by implementing security headers, publishing a security policy, and providing vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, MTX Group's website is professional, trustworthy, and business-focused, with room for improvement in privacy transparency and security best practices to enhance compliance and user trust.

M

Mondial Assistance

mondial-assistance.pl

64

Mondial Assistance Poland operates as a well-established provider of assistance and insurance services, focusing on travel, automotive, medical, home, and business assistance. The company emphasizes its nearly 60 years of experience in delivering specialized help to clients both domestically and internationally. The website is professionally designed, targeting individual and business customers seeking reliable assistance solutions. Technically, the site employs modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and integrates Google services for analytics and security, reflecting a moderate to good digital maturity level. Security posture is generally sound with HTTPS enforced and reCAPTCHA implemented; however, the absence of security headers and explicit cookie consent mechanisms indicates room for improvement. The lack of WHOIS data limits domain trust verification, though the website content and branding suggest legitimacy. Overall, the site presents a professional and trustworthy front but should enhance transparency and security practices to strengthen compliance and user trust.

T

TechnologyRegion Karlsruhe

trk.de

62

TechnologyRegion Karlsruhe (TRK) is a regional innovation and technology promotion organization based in Germany, focusing on fostering economic strength and networking within the Karlsruhe TechnologyRegion. The website serves as a comprehensive portal for business location information, core competencies, projects, events, and welcome center services, targeting businesses, researchers, investors, and regional stakeholders. The site is professionally designed using WordPress and Elementor, with multilingual support via Weglot, and optimized for SEO and accessibility. Security measures include HTTPS, security headers, Google reCAPTCHA, and a detailed cookie consent mechanism, reflecting a mature security posture. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is trustworthy, compliant with GDPR, and provides a good user experience with clear navigation and relevant content.

F

FARE

fare.cz

58

FARE is a Czech footwear manufacturer specializing primarily in children's shoes but also offering men's and women's footwear. The company positions itself as a traditional Czech brand with over 30 years of market presence, emphasizing quality, health-conscious design, and direct sales through its e-commerce platform. The website is professionally designed with a clear product catalog, multilingual support, and active social media integration, targeting parents and individuals seeking quality footwear. Technically, the site employs modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Snowplow Analytics, hosted likely on AWS CloudFront, ensuring moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks explicit security policies and some recommended security headers. Privacy compliance is partially addressed with a cookie consent mechanism, though no clear privacy or terms of service pages were found in the provided content. The WHOIS data is not publicly available, indicating privacy protection, which is common but reduces transparency. Overall, the site is trustworthy and professional but could improve transparency and security documentation.

P

Pivovar Nová Paka a.s.

novopackepivo.cz

52

Pivovar Nová Paka a.s. is a medium-sized independent brewery based in the Czech Republic with a long-standing tradition dating back to 1872. The company produces traditional bottom-fermented beers (lagers) with a characteristic full bread-like taste and offers brewery tours including tastings of specialty beers. The website reflects a well-established business with a focus on heritage and quality. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities, enhanced by popular plugins such as WPBakery and Slider Revolution. The site is mobile-optimized and uses HTTPS with Google Analytics and reCAPTCHA for security and tracking. However, explicit privacy and cookie policies are not clearly found, and WHOIS data is unavailable, limiting transparency. Security headers are not detected, suggesting room for improvement in security hardening. Overall, the site presents a professional and trustworthy image but could enhance compliance and security posture.

N

Nordic Telecom

nordictelecom.cz

69

Nordic Telecom is a Czech telecommunications provider offering high-speed internet, digital TV, and calling services, covering over 90% of Czech addresses. The company positions itself as a flexible and modern alternative in the telecom market, emphasizing freedom from contracts and limitations. The website is professionally designed, mobile-optimized, and uses modern analytics and tracking technologies including Google Tag Manager and CookieHub for cookie consent management. Security measures include HTTPS, reCAPTCHA integration, and standard security headers, reflecting a good security posture. However, the absence of explicit privacy and terms of service policies and limited contact information represent compliance and trust gaps. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website is functional and trustworthy but could improve privacy transparency and contact accessibility.

The website tessinineurope.eu represents a municipal project called Český Těšín/Cieszyn INEurope, focused on strengthening cross-border cooperation between the Polish and Czech parts of the Těšín Silesia Euroregion. It is funded by the European Union and managed by the City Office of Cieszyn. The site provides information about the project, news updates, partner organizations, and contact options. The target audience includes local residents, regional institutions, NGOs, and tourists interested in the region's cultural and social integration. The business model is a public sector initiative supported by EU funds, emphasizing regional development and cooperation. Technically, the website uses a custom CMS with modern frontend technologies such as Bootstrap, jQuery, Owl Carousel, and Google services including Analytics and reCAPTCHA. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security measures include HTTPS enforcement and spam protection on forms, though some HTTP security headers are missing. From a security perspective, the site demonstrates a good baseline posture with no critical vulnerabilities detected. However, it lacks explicit security policies, incident response contacts, and advanced security headers. Privacy compliance is basic, with GDPR consent on the contact form and a privacy policy page, but no cookie consent mechanism is present. No terms of service or vulnerability disclosure policies are found. Overall, the website is trustworthy, professionally maintained, and serves its public sector purpose well. Strategic improvements in security headers, privacy transparency, and incident response readiness would enhance its security posture and compliance. The domain registration is consistent with the business history, and no suspicious patterns are identified.

N

NMS Market Research

nms.cz

58

NMS Market Research is a Czech-based market research agency founded in 2019, providing comprehensive market research services including customer experience management, brand and market analysis, product development, and political and social research. The company leverages proprietary digital platforms and advanced technologies to collect and analyze data, helping clients grow and make informed decisions. The website is professionally designed, SEO optimized, and multilingual, targeting businesses and organizations seeking market insights primarily in the Czech Republic and surrounding regions. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Google reCAPTCHA, and integrates marketing tools like Facebook Pixel and HubSpot. The site is mobile optimized and performs moderately well, though some improvements in accessibility and security headers are recommended. The domain is registered transparently with consistent WHOIS data matching the business identity. Security posture is good with HTTPS enforced and anti-bot measures in place, but lacks some advanced security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service found on the site. No incident response or vulnerability disclosure information is available. Overall, the website and business present a trustworthy and professional image with room for improvement in privacy transparency and security hardening to enhance compliance and user trust.

D

DigiDay

uredni-deska.eu

46

DigiDay Czech, s.r.o. operates the website uredni-deska.eu, specializing in manufacturing and servicing electronic official notice boards primarily targeted at municipalities and local governments in the Czech Republic and Slovakia. The company positions itself as a market leader with over nine years of experience, offering high-quality, CE-certified digital signage solutions with advanced LEDWARE software for automated content management. They provide flexible financing options including 0% interest installment plans, and emphasize customer support with 24/7 monitoring and maintenance services. Technically, the website is built on a modern WordPress platform using Bootstrap for responsive design, jQuery, and Swiper for interactive elements. It integrates Google Tag Manager, Google Analytics, and reCAPTCHA for security and analytics, alongside a GDPR-compliant cookie consent mechanism via the Complianz plugin. The site demonstrates good SEO practices, mobile optimization, and accessibility at a basic level. From a security perspective, the site uses HTTPS with proper SSL configuration and employs standard security practices such as CAPTCHA on forms and cookie consent management. However, it lacks advanced security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, providing a positive user experience and clear business information. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and improving accessibility features to further strengthen compliance and trust.

F

FLO Lokalizace netěsností s.r.o.

flo-lokalizace.cz

68

FLO Lokalizace netěsností s.r.o. is a specialized service provider in the Czech Republic focusing on leak localization, tightness testing, and flat roof inspections. The company positions itself as a trusted specialist with a long-standing tradition in the energy/building maintenance sector. Their website reflects a professional service-oriented business model targeting property owners and construction professionals seeking reliable roof inspection services. Technically, the website is built on WordPress using the Avada theme, enhanced with SEO and analytics tools such as Yoast SEO and Google Tag Manager. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enabled and Google reCAPTCHA is implemented, but the absence of security headers and explicit privacy policies indicates room for improvement. The lack of WHOIS data reduces transparency and trust, although the social media presence and structured data support legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security disclosures.

F

FLORA URBANICA, s.r.o.

floraurbanica.com

45

Flora Urbanica is a Czech company specializing since 2013 in sustainable green infrastructure solutions including green roofs, green walls, and interior green walls. The company targets urban developers, architects, and environmentally conscious customers, offering both services and products through an e-commerce platform. Their market position is that of an established niche provider focused on ecological urban solutions. Technically, the website is built on WordPress with WooCommerce and uses modern tools like Google Tag Manager and reCAPTCHA, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS and anti-bot measures, though some security headers and DNSSEC are missing. Privacy compliance is good with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the site is professional, trustworthy, and well-structured, supporting business credibility and user engagement.

Optigrün international AG is a well-established European leader in green roofing and roof garden solutions, boasting 50 years of expertise. The company offers a comprehensive range of innovative products and services aimed at enhancing urban ecological balance and sustainability. Their target audience includes architects, project planners, and specialized firms seeking professional green roof systems and consulting services. Technically, the website is built on TYPO3 CMS with Bootstrap framework, incorporating modern analytics and bot protection tools such as Matomo and Google reCAPTCHA. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, HTTPS is enforced and cookie consent mechanisms are in place, though explicit security policies and vulnerability disclosures are absent, suggesting room for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, but the lack of WHOIS data and domain registration transparency slightly reduces trust from a domain legitimacy perspective.

N

NMS Market Research

nms.global

58

NMS Market Research is a Czech Republic based market research agency founded in 2019, offering comprehensive market research services that combine proprietary digital platforms and years of industry experience. Their services target businesses seeking customer experience management, brand growth, retail analytics, product success tools, and societal research. The company maintains a professional online presence with a well-structured website, active social media profiles, and client testimonials indicating a strong market position in their region. Technically, the website is built on WordPress with modern plugins and marketing tools such as Google Tag Manager, Facebook Pixel, and HubSpot, hosted on Websupport.cz. Security posture is good with HTTPS and reCAPTCHA implemented, but lacks some security headers and published security policies. Privacy compliance is partial due to absence of a privacy policy page, though cookie consent is implemented. WHOIS data confirms legitimacy and consistency with the business claims. Overall, the website is professional, trustworthy, and technically sound with room for improvement in privacy and security transparency.

A

Asociace public relations, z. s. (APRA)

akceapra.cz

53

The website www.akceapra.cz represents Asociace public relations, z. s. (APRA), a Czech non-profit association focused on education, networking, and events in the public relations sector. The site targets PR professionals and organizations seeking educational opportunities and industry events. The business model is centered on providing value through events and community engagement rather than commercial sales. The website content is primarily in Czech and reflects a small-sized organization with a niche market position in the Czech Republic. Technically, the website is built on WordPress and employs modern web technologies including jQuery, Google reCAPTCHA for bot protection, and Microsoft Clarity for user behavior analytics. The site is served over HTTPS with a valid SSL certificate, ensuring secure communications. Performance and mobile optimization are moderate to good, with basic accessibility features implemented. SEO practices are adequate with proper meta tags and structured data. From a security perspective, the site demonstrates good baseline security with HTTPS and bot mitigation. However, it lacks important security headers and explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. No WHOIS data was retrievable, which reduces domain trustworthiness but the website content and contact information appear legitimate and professional. No forms or sensitive data exposure were detected, and no vulnerabilities were apparent from the content analysis. Overall, the website presents a moderate risk profile with good business credibility but gaps in privacy compliance and domain registration transparency. Strategic improvements in privacy policy publication, security headers, and WHOIS data transparency would enhance trust and compliance.

V

Vysoká škola hotelová a ekonomická

vshe.cz

52

Vysoká škola hotelová a ekonomická (VŠHE) is a specialized higher education institution in the Czech Republic focusing on hotel management, economics, and related fields. The website reflects a medium-sized educational entity with a clear market position and a transition to University College Prague (UCP) as its parent organization. The site offers bachelor's and master's programs, including English-language options, targeting prospective and current students. The content is professionally presented with good navigation and multilingual support. Technically, the website is built on WordPress with modern libraries and SEO tools, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers are missing and no explicit incident response or security policies are published. Overall, the site is trustworthy, compliant with GDPR, and well-maintained, with active social media engagement and clear business legitimacy.

D

DigiDay Czech, s.r.o.

digitalni-panely.cz

44

DigiDay Czech, s.r.o. operates the website digitalni-panely.cz, specializing in the sale, rental, and servicing of electronic official notice boards and digital signage solutions primarily for Czech and Slovak markets. The company positions itself as a market leader in electronic official notice boards, offering a range of products including LED panels, navigational kiosks, digital A-boards, and contactless disinfection panels. Their business model focuses on providing hardware integrated with proprietary software (LEDWARE) and 24/7 monitoring services, targeting municipalities, offices, retail, and commercial spaces. Technically, the website is built on WordPress 6.8.1 with common plugins such as Contact Form 7 and integrates Google Tag Manager and reCAPTCHA for analytics and security. Hosting is provided by Active24, consistent with the domain registrar data. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features. Cookie consent is implemented in compliance with GDPR, and contact forms are protected by reCAPTCHA. From a security perspective, the site uses HTTPS with a good SSL configuration and employs standard security practices such as spam protection on forms and cookie consent. However, some security headers are not explicitly detected, and there is no published security policy or incident response contact. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website is professional, trustworthy, and well-aligned with the company's business claims. The domain registration data supports legitimacy, and no blocking or WAF challenges were detected. Strategic recommendations include enhancing security headers, publishing formal security and incident response policies, and maintaining up-to-date software to improve security posture further.

L

Life4us.cz

life4us.cz

51

Life4us.cz is a Czech family lifestyle magazine offering content across categories such as lifestyle, travel, gastronomy, health, events, and animals. The website targets a general audience interested in family and lifestyle topics, positioning itself as a niche media outlet in the Czech Republic. The business model revolves around content publishing with potential monetization through advertising and partnerships. Technically, the site is built on WordPress using modern plugins like Yoast SEO, Contact Form 7, and YouTube Embed Plus, with Google Analytics and Facebook SDK integrated for analytics and marketing. The site is mobile-optimized and has good SEO practices but lacks some accessibility features and security headers. Security posture is solid with HTTPS and reCAPTCHA, but missing security headers and privacy policies reduce compliance and security scores. WHOIS data is unavailable, likely due to privacy protection, which is common for small media sites. Overall, the site is professional and trustworthy but should improve privacy compliance and security headers to enhance trust and regulatory adherence.

P

Pivo Proud | Moderní český ležák z Prazdroje

pivoproud.cz

68

The website pivoproud.cz serves as a professional marketing platform for the Czech beer brand 'Proud', associated with Prazdroj brewery. It targets adult consumers with a focus on promoting a modern Czech lager characterized by light taste and lower bitterness. The site features rich multimedia content including videos, photo galleries, and a merchandise collection, enhancing brand engagement. The presence of an age verification gate aligns with regulatory compliance for alcohol promotion. Technically, the site employs modern web technologies such as Google Tag Manager, reCAPTCHA, and Swiper.js, ensuring a responsive and interactive user experience. Security posture is solid with HTTPS enforced and basic protections in place, though explicit security headers and detailed privacy policies are lacking. The absence of WHOIS data limits domain trust assessment but the overall site professionalism and branding consistency suggest legitimacy. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

E

Elektrárna – Pivo z Plzně

pivozelektrarny.cz

60

Elektrárna – Pivo z Plzně is a small, newly founded craft brewery operating under the umbrella of Plzeňský Prazdroj and parent company Asahi CE & Europe Services s.r.o. The business specializes in producing experimental and specialty beers, including custom corporate gifts and brewery tours. The website reflects a professional and consistent brand image targeting adult consumers, with clear age verification mechanisms to comply with alcohol regulations. The company maintains active social media channels and provides multiple contact points for customer engagement. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential plugins for cookie consent, multilingual support, and contact forms. It employs Google Analytics and Facebook Pixel for analytics and marketing, with a well-implemented cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, delivering a good user experience. From a security perspective, the site uses HTTPS and includes Google reCAPTCHA to prevent spam. However, explicit security headers are not detected, and no formal security policy or incident response information is published. No vulnerabilities or suspicious content were found. Overall, the security posture is good but could be improved by adding explicit security headers and incident response details. The domain registration data is consistent with the business claims, showing a recent registration date matching the company's founding year. No privacy protection is used in WHOIS, which is appropriate for this business type. The website content is safe for adults only, reflecting the nature of alcohol sales with proper age gating. The overall risk is low, with recommendations focusing on enhancing security headers and transparency around security policies.

B

BrickHouse a.s.

brick-house.cz

55

BrickHouse a.s. operates a unique multi-genre event center located in the former coal mine Důl Hlubina within the industrial area of Dolní Vítkovice, Ostrava. The company offers venue rental, event organization including corporate events and weddings, catering services, and technical event support. Their market position is that of a prominent local player in the hospitality and event management sector, targeting corporate clients and cultural event organizers. The website presents a professional and consistent brand image with clear contact details and social media presence. Technically, the website employs modern web technologies such as jQuery, Google reCAPTCHA, Google Fonts, and Owl Carousel. It uses HTTPS with excellent SSL configuration and includes a cookie consent mechanism compliant with GDPR. The site performance is moderate with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms. However, it lacks several recommended security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a concern, reducing domain trustworthiness, but the website content and business information indicate a legitimate operation. Overall, the website is professional, secure, and privacy compliant, with minor improvements recommended in security headers and transparency policies. The domain registration opacity warrants monitoring but does not currently indicate malicious intent.

Č

Česká aliance kineziologie

cakin.cz

48

Česká aliance kineziologie is a Czech non-profit professional organization dedicated to promoting kinesiology as a recognized profession within the country. The website serves as an informational and membership platform, offering resources such as webinars, partnerships, and membership opportunities for kinesiologists. The organization positions itself as a national alliance supporting healthcare professionals and the general public interested in kinesiology. Technically, the website is built using WEDOS website builder technologies with Bootstrap and Google Fonts, hosted by WEDOS, and includes standard security measures like HTTPS and Google reCAPTCHA on its contact form. However, it lacks advanced security headers and privacy compliance documentation such as privacy or cookie policies. The site is accessible without WAF or blocking mechanisms and maintains a moderate security posture. Overall, the website is professional and trustworthy but could improve in privacy compliance and security best practices.

Senátorský klub Starostové a Nezávislí operates as a political organization representing a senatorial club in the Czech Republic. Their website serves as an official platform to disseminate news, media outputs, and information about their activities and principles. The site targets Czech citizens interested in political and governmental affairs, providing updates, press releases, and social media engagement. The business model is focused on public service and political representation, with a clear market position as an official senatorial club website. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Google reCAPTCHA, and third-party widgets from Elfsight. Hosting is provided via DigitalOcean's infrastructure, ensuring reliable content delivery. The site is mobile-optimized and demonstrates good SEO practices, although no explicit CMS was detected. Performance is moderate with good user experience and navigation clarity. From a security perspective, the website enforces HTTPS and uses CSRF tokens and Google reCAPTCHA to protect forms. However, it lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no formal privacy policy or terms of service pages. Overall, the website is trustworthy and professionally maintained, with a strong social media presence and consistent branding. Recommendations include adding security headers, publishing privacy and security policies, and implementing vulnerability disclosure mechanisms to enhance trust and compliance.

iStockphoto LP operates a globally recognized digital media platform providing royalty-free stock images, videos, and illustrations primarily targeting creative professionals and businesses. The website analyzed is a bot verification page in Finnish, indicating regional localization and bot protection mechanisms. The technical infrastructure leverages modern JavaScript frameworks (AngularJS), Google services including reCAPTCHA and Tag Manager, and cookie consent management via OneTrust, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and bot mitigation in place, though explicit security headers and published security policies are absent. WHOIS data is unavailable, likely due to privacy or registry restrictions, but the brand and content legitimacy are high given the known parent company Getty Images. Overall, the site is professionally maintained with moderate technical sophistication and good security hygiene, though improvements in transparency and policy disclosures are recommended.

GHH-BONATRANS is a leading global manufacturer specializing in wheelsets, wheels, axles, and related components for rolling stock including high-speed trains, metros, trams, locomotives, and freight wagons. The company serves over 80 countries worldwide and is recognized for its technological innovation, comprehensive product portfolio, and commitment to quality and customer service. The website reflects a mature business with a professional online presence, showcasing news, certifications, and career opportunities. Technically, the website employs a modern but somewhat dated technology stack including jQuery, Bootstrap, and Font Awesome, with integrations for Google Analytics, reCAPTCHA, and social sharing tools. The site is mobile optimized and provides a good user experience with clear navigation and structured content. However, some improvements could be made in accessibility and security headers to enhance overall robustness. From a security perspective, the site uses HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. The presence of Google reCAPTCHA on forms adds protection against automated abuse. No critical vulnerabilities or exposed sensitive data were detected, but the absence of explicit security headers and incident response information suggests room for improvement in security posture. Overall, the website is trustworthy and professional, though the lack of WHOIS registration data introduces some uncertainty regarding domain legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to strengthen trust and compliance.

E

Endevel s. r. o.

endevel.cz

55

Endevel s. r. o. is a Czech-based small technology company specializing in custom development of web applications, websites, and e-shops. Founded in 2018, the company emphasizes modern technology and agile management processes to deliver quality software products efficiently. Their market position is that of a niche provider focusing on tailored software solutions for businesses requiring robust and user-friendly online systems. The website reflects a professional and consistent brand image with clear contact information and partner affiliations. Technically, the website employs a modern technology stack including Django, Python, Vue.js, and Angular frameworks, hosted on DigitalOcean infrastructure. It integrates Google services such as reCAPTCHA for bot protection, Google Tag Manager for analytics, and Google Maps API for location display. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with strong SSL configuration and implements Google reCAPTCHA on its contact form to prevent spam. Cookie consent is managed with granular user controls and Google Consent Mode is configured to restrict ad personalization and analytics by default, indicating a privacy-aware approach. However, the absence of explicit security headers and published security or privacy policies suggests room for enhancement in security posture and compliance transparency. Overall, the website is safe, professional, and trustworthy with no signs of malicious content or blocking mechanisms. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include publishing privacy and security policies, adding security headers, and considering a vulnerability disclosure mechanism to further strengthen trust and compliance.

J

Jack Wolfskin

jack-wolfskin.de

63

Jack Wolfskin is a well-established German outdoor apparel and equipment retailer with a strong market presence in Germany and Europe. The company operates a comprehensive e-commerce platform offering a wide range of outdoor clothing, shoes, and gear, targeting outdoor enthusiasts and general consumers. The website demonstrates a high level of professionalism, with excellent content quality, clear navigation, and strong branding consistency. The business is part of the Callaway Golf Company, indicating solid corporate backing and market positioning. Technically, the website leverages a modern technology stack centered around Salesforce Commerce Cloud, enhanced with advanced marketing, analytics, and performance optimization tools such as Google Tag Manager, Usercentrics CMP, Bazaarvoice, Kameleoon, and Baqend SpeedKit. The site is mobile-optimized, fast-loading, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs reCAPTCHA for form protection, and uses consent management to comply with GDPR. While explicit security policies and incident response information are not published, the overall security posture is strong with no visible vulnerabilities or exposed sensitive data. WHOIS data confirms domain legitimacy and transparency. Overall, the website scores highly on content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and professional online presence for Jack Wolfskin.

F

FreeDivision

freedivision.com

60

FreeDivision is a specialized company focusing on hardware and software data security with over 15 years of experience, primarily serving the Czech, Slovak, and Brazilian markets. They represent several globally recognized manufacturers of security technologies and emphasize GDPR compliance and advanced data security analysis. The website reflects a professional B2B service provider with a clear focus on security solutions and data protection. Technically, the site uses modern frontend frameworks and libraries, including Bootstrap, FontAwesome, and Cookiebot for consent management, hosted on AWS Cloudfront CDN, ensuring moderate performance and good mobile responsiveness. Security posture is solid with HTTPS and bot protection via Google reCAPTCHA, but lacks visible security headers and explicit incident response contacts. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the absence of WHOIS data and domain registration information raises concerns about domain legitimacy and consistency with the claimed business history. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security best practices.

S

Svoboda & Williams

svoboda-williams.com

53

Svoboda & Williams is a well-established real estate agency operating primarily in Prague and Brno, Czech Republic, with a business history dating back to 2006. The company offers a range of services including property sales, rentals, property management, and shared office spaces. Their website reflects a professional and consistent brand image, targeting individuals and businesses interested in real estate within the Czech Republic and select international markets. The site integrates modern web technologies such as Alpine.js and Laravel Livewire, providing a responsive and user-friendly experience with advanced search and filtering capabilities. Security measures include HTTPS enforcement and Google reCAPTCHA for form protection, although some enhancements like DNSSEC and additional security headers could improve their posture. Privacy compliance is partially addressed through a cookie consent mechanism, but lacks a visible privacy policy or terms of service. Overall, the website demonstrates a solid digital presence with room for improvement in security transparency and privacy documentation.

Realitní tržnice, s.r.o. operates a comprehensive real estate portal focused on property sales, rentals, auctions, and insolvency listings primarily in the Czech Republic with some international offerings. The company has established a strong market presence since its founding in 2011, offering a variety of services including anonymous listings and specialist sales support. The website is professionally designed with good content quality, clear navigation, and mobile optimization, supporting a positive user experience. Technically, the site leverages modern JavaScript libraries such as Leaflet for mapping, Google Analytics and Tag Manager for tracking, and integrates Google reCAPTCHA for bot protection. Advertising is managed via Google Adsense and retargeting through Seznam, with a cookie consent mechanism in place to comply with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of a dedicated security policy or incident response contact is noted. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the site is trustworthy, compliant, and well-positioned in its market niche.