Security Directory

A

Acro Jarmila Podzemská

acro-farm.cz

52

ACRO FARM is a small family-operated breeder specializing in colorful miniature horses and Irish cobs, emphasizing healthy animals with excellent character and active participation in driving, jumping, and therapy activities. The website showcases champion horses and provides detailed descriptions of their breeding goals and achievements. Technically, the site is built on the Webnode CMS platform, uses Cloudfront CDN, and integrates Google Analytics for visitor tracking. The site is accessible without WAF or blocking mechanisms but lacks advanced security headers and privacy compliance features. No WHOIS data is available, limiting domain legitimacy verification. Overall, the site serves a niche equestrian audience with basic but functional digital infrastructure.

N

Národní hřebčín Kladruby nad Labem, s.p.o.

nhkladruby.cz

56

Národní hřebčín Kladruby nad Labem, s.p.o. is a historic government-owned stud farm in the Czech Republic, specializing in the breeding and preservation of the Old Kladruber horse, the oldest original Czech horse breed. The website serves as an informational and promotional platform targeting visitors interested in cultural heritage, horse breeding, and tourism. It offers visitor tours, horse breeding services, events, publications, and online ticket sales. The company maintains an active presence on major social media platforms and provides clear contact information and GDPR-compliant privacy and cookie policies. Technically, the website is built on a custom CMS with modern web technologies including HTML5, CSS3, JavaScript, and libraries such as RoyalSlider and Vanilla LazyLoad. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some broken lazyload images and missing explicit security headers were noted, which could be improved. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No critical vulnerabilities were detected in the provided content. The absence of WHOIS data limits domain trust analysis, but the website's content and official contact details support its legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, but could enhance its security posture and domain transparency to improve trust and resilience.

A

AFM-Téléthon

telethon.fr

66

AFM-Téléthon is a prominent French non-profit organization dedicated to funding research and supporting patients affected by neuromuscular and rare diseases. The website serves as a secure platform for online donations, offering multiple payment options and clear information about the impact of donations. The organization maintains a strong market position in the charitable sector with transparent financial reporting and recognized certifications such as Bureau Veritas. Technically, the website is built on a modern stack with Drupal CMS, integrates advanced analytics and consent management tools, and is optimized for mobile and accessibility. Security practices include TLS 1.2 encryption and consent frameworks, though explicit security headers should be verified. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR regulations.

E

ExpiredDomains.com

mariestumpfova.com

71

ExpiredDomains.com operates as a specialized online platform aggregating expired and expiring domain listings from multiple TLDs, providing domain investors, SEOs, and marketers with comprehensive data and filtering tools. The platform does not directly sell domains but facilitates purchases through trusted partners like GoDaddy, positioning itself as a valuable resource in the domain aftermarket space. Technically, the website employs modern web standards with responsive design and integrates SVG icons and JavaScript for enhanced user experience. Hosting and DNS are managed via reputable providers including Cloudflare and GoDaddy, ensuring reliable uptime and performance. Security posture is adequate with HTTPS enforced and CSRF protections in place, though additional security headers and explicit policies could improve resilience. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Business credibility is supported by consistent branding, user testimonials, and active social media engagement. Overall, the site is accessible, professional, and trustworthy with no indications of malicious or adult content.

The website peaksys.com is currently a parked domain with no original business content, serving primarily as a domain sale landing page. The domain is registered since 2005 with Megazone Corp., a Korean registrar, but the website content is generic and lacks any company or product information. The site embeds multiple third-party advertising and tracking scripts and an iframe redirecting to an external URL, indicating monetization through ads rather than active business operations. Technically, the site uses basic HTML, CSS, and JavaScript with no detected CMS or modern frameworks. There is no evidence of HTTPS enforcement or security headers, and no privacy or cookie policies are present, indicating poor compliance with privacy regulations. No contact information or business credentials are provided, reducing trust and credibility.

V

Vumedi

vumedi.com

61

Vumedi is a specialized video education platform designed for doctors and clinicians, offering over 50,000 peer-to-peer videos across 25 medical specialties. The platform is trusted by over 500,000 clinicians, including partnerships with 16 of the top 20 US hospitals, positioning it as a leading resource in medical education. The business model focuses on providing accessible, expert-driven medical content to improve patient care and support professional growth. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates Google Tag Manager for analytics, and uses Sentry for error monitoring. The site is mobile-optimized, fast-loading, and well-structured for SEO and accessibility. Security posture is solid with HTTPS enforced and monitoring tools in place, though explicit security headers and incident response information are absent. Privacy and terms of service policies are comprehensive and publicly accessible, indicating a commitment to compliance. However, the lack of WHOIS data reduces transparency regarding domain ownership, which slightly impacts trust. Overall, Vumedi presents a professional, trustworthy, and technically mature platform with room for improvement in security disclosures and contact transparency.

I

iRights.Lab

irights-lab.de

44

iRights.Lab is a German non-profit organization dedicated to promoting digital rights, digital literacy, and digital ethics. The organization provides educational resources, workshops, and advocacy initiatives aimed at civil society, educators, and public administration. Their digital presence includes projects like the Enter-Award and the iRights.Lab Academy, positioning them as a recognized entity in the digital rights and education sector in Germany. The website is professionally designed, mobile-optimized, and offers content primarily in German with English support.

F

Friedrich-Althoff-Konsortium e.V.

althoff-konsortium.de

54

The Friedrich-Althoff-Konsortium e.V. is a regional non-profit consortium serving scientific institutions in Berlin and Brandenburg, providing access to licensed electronic publications and scientific information. The website is hosted on WordPress.com, leveraging WordPress CMS and Jetpack for content management and analytics. The site is well-structured, primarily in German, with an English version available, targeting academic and research institutions. Security posture is moderate with HTTPS enabled but lacking explicit security headers and incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and compliance transparency.

J

Jacob Stoy

jacobstoy.de

50

Jacob Stoy's website serves as a personal portfolio for a German musician and graphic designer, showcasing artistic projects including performances, books, installations, and websites. The business operates in a niche creative market with a small scale and targets a general audience interested in arts and culture. The website is built using modern technologies such as SvelteKit and Sanity CMS, indicating a contemporary digital infrastructure with moderate performance and good mobile optimization. However, the site lacks advanced SEO and accessibility features. Security posture is minimal with no detected HTTPS confirmation or security headers, and privacy compliance is basic with only a privacy policy page present but no cookie consent mechanism. No contact information or social media links are provided, limiting direct engagement and trust signals. Overall, the site is functional and professionally designed but requires improvements in security, privacy, and contact transparency to enhance credibility and compliance.

P

Panství Bechyně s.r.o.

panstvi-bechyne.cz

56

Panství Bechyně s.r.o. is a well-established hospitality and cultural tourism company based in the Czech Republic, offering accommodation, cultural experiences, golf, and art exhibitions primarily in the South Bohemian region. The company operates multiple related domains representing different facets of its business, including forest management, castle tourism, resort services, golf, and art. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency. It targets tourists and visitors interested in cultural heritage and leisure activities in the region. Technically, the website employs modern frontend technologies such as StimulusJS and Tailwind CSS, with Google Tag Manager for analytics and tracking. The site is mobile-optimized and performs moderately well. Hosting is provided by Webglobe, consistent with the domain's nameservers. Privacy compliance is well addressed with accessible privacy and cookie policies and a consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and public security policies or incident response contacts. The WHOIS data confirms the domain's legitimacy and long-standing registration since 1999, matching the business's claimed history. Overall, the website presents a trustworthy, professional, and user-friendly digital presence for Panství Bechyně s.r.o., with minor recommendations to enhance security transparency and incident response readiness.

P

Pražská paroplavební společnost a.s.

paroplavba.cz

63

Pražská paroplavební společnost a.s. is a historic Czech company established in 1865, specializing in passenger water transport and leisure cruises on the Vltava river in Prague and surrounding areas. The company operates two culturally significant paddle steamers and offers a range of services including sightseeing cruises, gastronomic events, and boat rentals for private and corporate occasions. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with HTTPS enforced and cookie consent mechanisms in place. Security posture is good but could be improved by adding explicit security headers and publishing a security policy. The absence of WHOIS data limits domain trust assessment, but the business information and content quality strongly indicate legitimacy. Overall, the site is well-positioned for its target audience of tourists and event clients, with a strong brand and consistent messaging.

P

PRAGUE BOATS s.r.o.

prague-boats.cz

61

Prague Boats s.r.o. is a well-established company specializing in river cruises and boat rental services on the Vltava River in Prague. With over 30 years of experience, the company emphasizes sustainable and eco-friendly boating, operating a modern fleet including fully electric boats. Their market position is strong locally, targeting tourists and event organizers seeking sightseeing, dining, and private event cruises. The website is professionally designed, mobile-optimized, and offers multilingual support with online booking capabilities. Technically, the website employs modern JavaScript libraries such as Swiper.js and Glide.js for interactive content, integrates multiple marketing and analytics tools including Facebook Pixel and Bing UET, and uses Google Tag Manager for tag management. The site is served over HTTPS with good performance and accessibility features, though some security headers are missing. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies, vulnerability disclosure, and incident response contacts. WHOIS data is unavailable, which reduces trustworthiness slightly but is mitigated by clear business registration info and professional web presence. Overall, the website and business demonstrate a mature digital presence with room for improvement in transparency of privacy and security policies. Strategic recommendations include publishing privacy and terms of service pages, enhancing security headers, and providing vulnerability disclosure information to strengthen trust and compliance.

E

EOPSA

eopsa.eu

54

EOPSA is an industry association serving as the unified voice of the European Onshore Power Supply sector, promoting collaboration and sustainable prosperity. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies. The technical infrastructure is moderate in performance and mobile optimization but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. The absence of privacy, cookie, and terms of service policies, as well as contact information, limits compliance and trust. Overall, the website is safe and professional but would benefit from enhanced security and compliance measures.

The website ska.fr is a domain sales landing page operated by Safenames LTD, a domain brokerage and escrow service provider. The site offers the domain for sale with a secure transfer process facilitated by professional brokers and an ICANN accredited registrar. The business model focuses on domain sales and transfer services targeting domain investors and buyers. The website is professionally designed using modern frontend technologies such as Bootstrap and Font Awesome, with moderate performance and good mobile optimization. Analytics are implemented via a proprietary StatsTracker service. Security posture is adequate with HTTPS implied and secure escrow services, but lacks visible security headers and published security policies. Privacy compliance is basic with a privacy policy linked on the partner site but no cookie consent mechanism. WHOIS data confirms domain legitimacy with consistent registration details and a long domain age. Overall, the site is trustworthy but could improve privacy and security transparency.

A

America250PADelco

america250padelco.org

56

The website america250padelco.org serves as the official online presence for the Delaware County, Pennsylvania committee dedicated to celebrating America's 250th birthday. The site provides informational content about the committee's activities and events, targeting a general audience interested in local government and community celebrations. The website is professionally designed with consistent branding and good content relevance, though it lacks detailed business information and contact data. Technically, the site uses modern web fonts and JavaScript libraries, hosted on a platform associated with f-static.com, but does not reveal advanced frameworks or CMS details. Security posture is moderate; HTTPS is implied but no security headers or policies are detected, and WHOIS data is unavailable, limiting domain trust assessment. Privacy and cookie policies are absent, which impacts compliance and user trust. Overall, the site is functional and informative but would benefit from enhanced security and compliance features.

The website bicis.com is a parked domain page primarily used for domain resale through the Sedo platform. The domain is registered to Soluciones Corporativas IP, SL, a company specializing in domain management and resale. The site contains minimal content, mostly advertising the domain for sale, with no original business or product information. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with embedded Sedo and Google advertising scripts. There is no evidence of a CMS or advanced frameworks. Security posture is limited; no HTTPS or security headers are evident from the provided data, and no security or incident response policies are published. Privacy compliance is minimal but includes a basic cookie consent mechanism and a link to Sedo's privacy policy. Overall, the site serves as a domain parking page with low business credibility and limited user engagement.

I

Ifor Williams Trailers Benelux

iforwilliams.net

51

Ifor Williams Trailers Benelux operates a website focused on the sale and distribution of trailers, including livestock, horse, and general-purpose trailers. The company positions itself as a market leader in the UK and serves a Belgian audience with Dutch and French language options. The website provides product catalogs, dealer information, and company background, targeting general consumers and businesses needing trailers. Technically, the site uses standard web technologies including JavaScript, jQuery, and Google Analytics for tracking. The hosting is provided by european-server.com, and the domain is well-established since 2003, indicating a mature business presence. Security posture is moderate; while HTTPS is implied, no advanced security headers or DNSSEC are enabled, and no explicit security policies are published. Privacy compliance is basic with a cookie consent banner and a privacy/cookie policy page present. Overall, the site is professional and functional but could improve in security and privacy transparency.

E

EquiRadar - The EquiRadar platform has been discontinued

equiradar.com

47

EquiRadar was a digital platform aimed at the equestrian community, designed to provide next-generation services for equestrians. The website currently displays a clear notice that the platform has been discontinued, indicating that the business is no longer operational. The site content is minimal and primarily serves as an informational placeholder with a contact email for inquiries. Technically, the website uses standard HTML, CSS, and JavaScript without any detected advanced frameworks or CMS. The site is mobile optimized and loads with moderate performance but lacks comprehensive SEO and accessibility features. Security posture is weak due to absence of security headers and no visible SSL configuration details. No privacy or cookie policies are present, indicating poor privacy compliance. The WHOIS data is missing, suggesting the domain may be unregistered or expired, which severely impacts the trustworthiness and legitimacy of the domain. Overall, the site is safe with no adult or explicit content but offers limited business credibility and technical sophistication.

A

Asociace chovatelů miniaturních koní

achmk.cz

54

The website www.achmk.cz represents the official online presence of the Asociace chovatelů miniaturních koní, a Czech association dedicated to miniature horse breeding. It serves a niche community of breeders and enthusiasts by providing detailed information on breeding standards, events such as shows and seminars, membership details, and sponsorships. The site is well-structured with clear navigation and relevant content tailored to its target audience. The business model is that of a non-profit association focused on community engagement and promotion of miniature horses within the Czech Republic. Technically, the website is built on the Webnode CMS platform and leverages AWS Cloudfront CDN for content delivery. It uses Google Analytics with IP anonymization for visitor tracking. The site is served over HTTPS with a valid SSL configuration, ensuring secure data transmission. However, it lacks advanced security headers and privacy-related policies, which are areas for improvement. The site shows basic mobile optimization and accessibility features but could benefit from enhancements to improve user experience on mobile devices. From a security perspective, the site demonstrates a moderate posture with HTTPS enabled and minimal tracking practices. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be a risk factor. The WHOIS data is unavailable or privacy protected, limiting transparency about domain ownership, but the website content and contact details support its legitimacy. Overall, the site is functional and serves its community well but should prioritize implementing privacy policies, security headers, and incident response information to enhance trust and compliance. Strategic recommendations include improving security best practices, enhancing mobile responsiveness, and increasing transparency around data protection.

S

Smarty.cz

tigo.cz

61

Smarty.cz operates a specialized e-commerce platform focused on gaming computers under the TIGO brand. The website showcases multiple product lines tailored to different gamer profiles, emphasizing quality components, in-house assembly, and extended warranties. The company targets Czech gamers and technology enthusiasts with a medium-sized market presence. Technically, the website employs modern JavaScript libraries and tracking tools, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and formal privacy policies. WHOIS data is unavailable, indicating privacy protection, which slightly reduces transparency but is common for commercial sites. Overall, the site is professional and trustworthy with room for improvement in compliance and security transparency.

C

CMO Paris

cmoparis.com

56

CMO Paris is a niche luxury brand specializing in artisanal natural fiber textiles and wall coverings. Established in 2005, the company emphasizes craftsmanship and unique materials sourced globally. Their website showcases collections of textiles, wallcoverings, plaids, and rugs, targeting interior designers, architects, and luxury retailers. The business model revolves around curated collections and sample requests, supported by a reseller network. Technically, the website is built on modern frameworks such as Nuxt.js with server-side rendering and integrates WordPress components for form handling. The site employs GDPR-compliant cookie consent mechanisms and Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and no exposed sensitive data, though DNSSEC is not enabled and security headers are not explicitly detected. Overall, the site is professional, well-branded, and trustworthy, with good privacy compliance but lacks explicit security policies or incident response contacts.

T

triangl web

triangl-web.cz

37

The website triangl-web.cz represents a small Czech web design and development company offering services including website creation, e-commerce solutions, CMS integration, SEO optimization, and custom internet applications. The business appears to be established since 2007 and targets local businesses and individuals seeking professional web services. The site content is primarily in Czech and provides a clear overview of services but lacks detailed contact information and compliance documentation. Technically, the website uses basic HTML, CSS, and JavaScript without modern frameworks or CMS platforms detected. The site performance and mobile optimization are basic, and no advanced accessibility features are evident. Google Analytics is used for visitor tracking, but no privacy or cookie policies are present, indicating potential compliance gaps. From a security perspective, the site lacks HTTPS enforcement and security headers, which significantly lowers its security posture. The partner login form is present but no visible security measures are implemented. The absence of WHOIS data reduces domain trustworthiness, although the website content itself appears legitimate and professional. Overall, the site scores moderately on content and business credibility but poorly on security and privacy compliance. Strategic improvements in HTTPS implementation, privacy policies, and contact transparency are recommended to enhance trust and compliance.

The website www.zoominfo.com/chat is currently inaccessible due to a bot mitigation security challenge implemented by PerimeterX. This challenge blocks automated access and requires human verification before content can be viewed. As a result, no substantive website content, metadata, or business information is available for analysis. The domain WHOIS data is also unavailable, with the registry returning a 'No match for domain' response, which limits the ability to verify domain registration details and legitimacy. The visible page only contains a CAPTCHA challenge interface with no contact information, privacy policies, or business descriptions. This indicates a strong security posture against automated threats but prevents comprehensive external analysis. From a technical perspective, the site uses PerimeterX for bot mitigation and includes Google Fonts for styling. No CMS or hosting provider information is discernible. The lack of accessible content and metadata results in poor scores for content quality, technical implementation, security posture, privacy compliance, and business credibility. Security-wise, the presence of a WAF challenge is a positive indicator of proactive defense against bots and scraping but also limits transparency. The absence of visible security headers or policies and the lack of WHOIS data reduce trustworthiness. Overall, the site is secure against automated threats but currently inaccessible for detailed external review. Strategically, the site owners should consider providing accessible security and privacy information post-verification and ensure WHOIS data is properly published to enhance trust and compliance visibility.

L

La Boge

laboge.fr

58

La Boge is a French government-supported digital platform dedicated to providing young people aged 13 to 29 in Saint-Étienne with access to discounts, event information, and social support resources. The website offers a comprehensive guide to aids, events, and youth services, positioning itself as a trusted local resource. Technically, the site is built on Drupal 9, leveraging modern web technologies and analytics tools such as Matomo and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements in security headers are recommended. The absence of WHOIS data slightly impacts trust but is likely due to registry restrictions common in French domains. Overall, the site is professional, content-rich, and serves its target audience effectively.

P

Prodej ledu Vysočina

prodej-ledu.cz

42

Prodej ledu Vysočina is a small Czech company specializing in the production and distribution of packaged ice, including cube and crushed ice, primarily serving the Vysočina region with additional branches in Prague, Brno, and Havlíčkův Brod. Their business model focuses on both B2B and B2C markets, providing ice products and rental of cooling and freezing equipment for gastronomy, private events, and large cultural occasions. The company emphasizes quality and customer service, with a production capacity of approximately 5,000 kg of ice daily and a portfolio that includes ice art and custom ice products. Technically, the website is built with standard web technologies including HTML5, CSS, and JavaScript, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site is mobile-optimized and SEO-friendly with structured data markup enhancing search engine visibility. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and includes spam protection on contact forms, but lacks visible security headers such as Content Security Policy or HSTS. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with cookie consent and a privacy policy present, but no explicit incident response or security policy pages. WHOIS data is unavailable, which reduces domain trustworthiness, though the website content and contact information support legitimacy. Overall, the website presents a professional and trustworthy business front with good content quality and technical implementation. Strategic improvements in security headers, privacy transparency, and WHOIS data availability would enhance trust and compliance.

A

Absolutum Group

absolutumgroup.com

64

Absolutum Group is a hospitality business operating a portfolio of wellness hotels, resorts, restaurants, and villas primarily in the Czech Republic, Slovakia, and Seychelles. The company positions itself as a provider of original and unique locations with high-quality services and stylish facilities. The website reflects a medium-sized hospitality group with multiple subsidiaries, targeting general consumers seeking wellness and leisure experiences. Technically, the website uses modern web technologies such as lazy loading for images and Google Fonts, hosted likely on a Czech hosting provider. However, it lacks advanced SEO and accessibility features and does not use structured data or Open Graph tags. Security posture is minimal with no visible security headers or privacy policies, and no cookie consent mechanisms are present. The domain registration is consistent with the business profile, registered since 2021 without privacy protection, indicating transparency. Overall, the website is functional and professional but lacks critical compliance and security features.

C

COMPLET a.s.

complet.cz

48

COMPLET a.s. is a well-established Czech company specializing in the sale, service, and system solutions for office printing and copying equipment. Founded in 1992, it serves primarily the Czech Republic, Slovakia, Austria, and neighboring countries. The company is an official distributor and service partner for notable brands such as Olivetti, Kyocera, Kodak Moments, and Pantum. It is part of the Ovision Group, a larger conglomerate with several subsidiaries in related sectors. The website reflects a professional business presence with detailed contact information and references to its partnerships and services.

W

WEBHOUSE, s.r.o.

mkcvotice.cz

45

The website mkcvotice.cz serves as the official municipal information center for the town of Votice in the Czech Republic. It provides residents and tourists with comprehensive information about local culture, events, accommodation, and news. The site is well-structured, professionally designed, and targets a local audience seeking municipal and tourist information. The business model is public service-oriented, focusing on community engagement and information dissemination. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies such as HTML5, CSS, and JavaScript. It incorporates Google reCAPTCHA for form security and Google Maps for location embedding. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some modern security headers are missing. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, indicating a reasonable security posture. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious activities were detected. Overall, mkcvotice.cz is a trustworthy, well-maintained municipal website with a solid foundation in content quality and technical implementation. Strategic improvements in security policies and headers would further strengthen its security posture and compliance standing.

P

PRO-DOMA

pro-doma.cz

62

PRO-DOMA is a traditional Czech family-owned business specializing in the retail and wholesale of building materials, roofing, and metal products. It operates the largest network of building material stores and rental services in the Czech Republic, targeting construction professionals and retail customers. The website reflects a professional and consistent brand presence with clear contact information and a broad product catalog. Technically, the site uses modern web technologies and integrates multiple analytics and marketing tools, including Google Tag Manager, Microsoft Clarity, Smartlook, and Facebook Pixel. Security posture is solid with HTTPS enforced and a Content-Security-Policy header present, though additional security headers could enhance protection. Privacy compliance is weak due to the absence of visible privacy and cookie policies, which is a notable gap given the extensive tracking scripts in use. WHOIS data is unavailable, which raises concerns about domain registration legitimacy and should be investigated further. Overall, the website is functional, professional, and secure but would benefit from improved privacy transparency and WHOIS data clarity.

B

BESPO | Výrobce sportovního oblečení a vlastních kolekcí

bespo.cz

57

The website www.bespo.cz is a small business site hosted on the Wix platform, with limited visible content and no accessible WHOIS registration data. The site uses HTTPS and standard Wix hosting technologies but lacks critical business and security information such as privacy policies, terms of service, and contact details. The absence of WHOIS data reduces trustworthiness and makes it difficult to verify the legitimacy of the domain ownership. Technically, the site is built with modern web standards but shows only basic content quality and SEO optimization. Security posture is moderate due to HTTPS usage but lacks advanced security headers and policies. Overall, the site appears functional but minimalistic, with room for improvement in transparency and compliance.

S

Status301

status301.net

62

Status301.net operates as the root site of the Permanently Moving Network, specializing in WordPress-related development services and plugin offerings. The business targets WordPress users and developers, providing both free and premium plugins alongside internet services such as VPS management and e-commerce site building. The website is built on WordPress CMS, hosted on o2switch.net, and uses modern web technologies including jQuery and LiteSpeed caching for performance optimization. The site demonstrates good mobile optimization and SEO practices, though accessibility is basic. From a security perspective, the website benefits from HTTPS encryption and domain transfer protection but lacks DNSSEC and security headers, which are recommended for enhanced protection. No explicit privacy policy or terms of service are published, though a cookie consent mechanism compliant with EU regulations is present. Contact is available via a dedicated contact page with a form, but no direct emails or phone numbers are listed. The domain is well aged and registered consistently, supporting the legitimacy of the business. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and security best practices. The business model is clear and niche-focused, with a consistent brand and good content quality. Strategic recommendations include publishing comprehensive privacy and security policies, enabling DNSSEC, and implementing security headers to strengthen the security posture.

Chetan Gole's website is a personal professional blog focused on software engineering topics, primarily Java, AWS, and automation. The site serves as a platform for sharing technical knowledge and experiences, targeting software developers and technology enthusiasts. The business model is personal branding and knowledge sharing, with no commercial transactions or services directly offered on the site. The domain is mature, registered since 2009, indicating a stable online presence. Technically, the website is built using the Hugo static site generator with the PaperMod theme, delivering fast performance and good mobile optimization. The site uses modern web standards with valid HTML and CSS, and includes SEO-friendly metadata and social media integration. Hosting details are not explicit, but the domain is registered with Dynadot Inc. No analytics or advertising scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and has domain transfer protection enabled. However, DNSSEC is not enabled, and no security headers were detected in the HTML content, which could be improved. There are no forms collecting user data, reducing attack surface. Privacy and cookie policies are absent, which is a compliance gap. No vulnerability disclosure or incident response information is provided. Overall, the website is trustworthy, professional, and safe for general audiences. The main risks relate to privacy compliance and security hardening. Strategic recommendations include adding privacy and cookie policies, enabling DNSSEC, implementing security headers, and publishing vulnerability disclosure information to enhance trust and compliance.

P

Pavel Hilšer - studio R3D

r3d.cz

47

R3D.cz is a small, established web design studio based in Olomouc, Czech Republic, led by Pavel Hilšer. The company offers custom web design, SEO, and online marketing services with over 25 years of experience. The website presents a professional image with clear service offerings and client references, targeting small to medium businesses in the Czech market. Technically, the site uses a custom CMS and common JavaScript libraries, delivering a moderate performance and good mobile optimization. Security posture is adequate with GDPR compliance and secure form practices, but lacks advanced security headers and incident response information. WHOIS data is missing, which impacts domain trustworthiness, but the business information on the site is consistent and credible. Overall, the site is functional, professional, and trustworthy with room for security improvements.

4

4networks SK&CZ (C) 2015-2023

beremese.cz

64

Beremese.cz is a leading Czech wedding portal operated by 4networks SK&CZ, s.r.o., offering a comprehensive platform for future brides, married women, and grooms. The site provides a rich mix of content including wedding magazines, forums, photo blogs, bazaars, and professional listings, positioning itself as the largest wedding portal in the Czech Republic. The business model revolves around advertising, professional service listings, and community engagement. Technically, the site leverages modern web technologies such as Django, StimulusJS, Turbo (Hotwire), and integrates analytics and advertising platforms like Google Tag Manager, Gemius, and InMobi. The website is mobile-optimized with good SEO and basic accessibility features. Security posture is moderate with HTTPS usage and GDPR-compliant consent management, though security headers are not visibly present. The absence of WHOIS data limits domain trust verification but the site branding and content suggest legitimacy. Overall, the site scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a professional and trustworthy media portal.

L

Loyal

loyalhealth.com

62

Loyal is a mature healthcare technology company founded in 2015, offering an end-to-end digital healthcare platform focused on patient engagement and data management. The company targets healthcare organizations and health systems, providing modular solutions such as provider data management, digital engagement, CRM, reputation management, and scheduling. The website is professionally designed using WordPress and Elementor, hosted on Azure DNS infrastructure, and integrates analytics tools like Google Analytics and MonsterInsights. Security posture is strong with HIPAA and SOC 2 Type 2 compliance claims, HTTPS enforcement, and domain registration protections. However, the site lacks visible privacy and cookie policies, as well as explicit incident response or vulnerability disclosure information, which are areas for improvement. Overall, the website is trustworthy, content-rich, and well-positioned in the healthcare technology market.

W

Wall&decò

wallanddeco.com

66

Wall&decò operates as a contemporary wallpaper and wall decoration retailer, targeting interior designers, homeowners, and businesses seeking stylish wall coverings. The website demonstrates a professional design with good content quality and clear navigation, supported by modern web technologies and multiple marketing and analytics tools. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the presence of comprehensive privacy and cookie policies indicates compliance with GDPR standards. Overall, the website presents a moderate risk profile with room for improvement in transparency and security documentation.

É

Élitis

elitis.fr

57

Élitis is a French company specializing in the design and publishing of high-end fabrics, wallpapers, and wallcoverings for interior decoration. Established in 1998, the company targets interior designers, decorators, architects, and consumers seeking premium decorative materials. The website reflects a professional and consistent brand image with good design quality and user experience. Technically, the site uses modern JavaScript frameworks such as Vue.js and integrates Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security-wise, the site benefits from HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the domain's WHOIS data confirms a legitimate and longstanding business presence in France, supporting business credibility. Strategic enhancements in privacy compliance and security best practices would strengthen the company's digital trustworthiness and regulatory adherence.

M

Mosaic

mosaicbuilder.com

59

Mosaic is a specialized technology company offering an advanced WordPress theme builder and design system aimed at enhancing website design, speed, and functionality. The company targets WordPress users, developers, and designers seeking to overcome design limitations inherent in standard WordPress page builders. The website presents a professional and modern digital presence with excellent design quality and SEO optimization, leveraging WordPress CMS and Yoast SEO plugin technologies. Hosting and domain registration are managed via Cloudflare, ensuring reliable infrastructure and security. Security posture is solid with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and security headers are absent. Privacy and cookie policies are not found, indicating compliance gaps. No contact information or incident response details are published, limiting direct communication channels. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency.

N

Nextend

nextendweb.com

59

Nextend is a well-established software company specializing in WordPress and Joomla plugins, powering over one million websites globally. Their product portfolio includes innovative tools such as Mosaic, Smart Slider 3, and Social Login, targeting web developers and site owners seeking advanced, lightweight, and engaging solutions. The company demonstrates strong market presence with positive user reviews and a consistent brand identity. Technically, the website is built on WordPress with a custom Mosaic framework, leveraging modern web technologies and optimized for performance and mobile responsiveness. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though there is room for improvement in DNSSEC and security headers. Privacy compliance is good, featuring a cookie consent mechanism and a comprehensive privacy policy. However, explicit contact and security policy information are limited on the homepage. Overall, the site is professional, trustworthy, and technically mature.

H

HFO Health Facility Operations Services GmbH

vamed-care.com

45

VAMED care operates a network of over 60 healthcare facilities across Germany, Austria, Switzerland, and the Czech Republic, specializing in acute medical care, rehabilitation, nursing, and prevention. With a workforce exceeding 13,000 employees, the organization emphasizes medical and therapeutic excellence, aiming to improve patient well-being and quality of life. The website reflects a professional healthcare provider targeting patients, medical professionals, and potential employees, offering detailed information about services and career opportunities. Technically, the website employs modern web technologies including jQuery 3.6.0 and custom JavaScript for interactive features such as cookie consent management and image sliders. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, no CMS or hosting provider details are evident, and no advanced frameworks are detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks visible security headers and explicit incident response or security policy disclosures. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and business information appear consistent and professional. Overall, the website presents a trustworthy and professional healthcare service provider but would benefit from enhanced transparency in domain registration, improved security headers, and clearer contact information for security and compliance inquiries.

Demcon is a technology company focused on attracting and recruiting technology professionals through its careers website. The site is designed to showcase career opportunities and engage talent interested in technology sectors. The company appears to be medium-sized and founded in 2018, with a consistent domain registration and hosting setup. The technical infrastructure leverages modern JavaScript frameworks such as Nuxt.js, integrates Google Tag Manager and YouTube APIs, and uses Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service in the provided content. Overall, the website is professional and functional, but could improve transparency and security practices to enhance trust and compliance.

B

BK Instal

bk-instal.cz

38

BK Instal is a small Czech Republic-based company specializing in photovoltaic power plant projects, installations, servicing, and energy savings solutions. The website presents a professional and modern approach to energy solutions, targeting owners and operators of photovoltaic systems and energy-conscious consumers. The company positions itself as a regional energy service provider with a focus on sustainable energy savings. Technically, the website is built on WordPress with Elementor, utilizing modern web technologies including Google Tag Manager and Facebook Pixel for marketing and analytics. Security posture is moderate with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and privacy compliance mechanisms. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the website is functional and professional but would benefit from improved privacy compliance and verified domain registration information.

P

Profigrass s.r.o.

profigrass.cz

56

Profigrass s.r.o. is a Czech-based company specializing in the retail and service of irrigation and garden equipment, established in 1996. The company represents the American brand Toro in the Czech and Slovak markets, leveraging extensive experience in sales, service, and marketing. Their website serves both B2B and B2C customers, offering a broad range of products including control units, valves, pumps, and accessories for irrigation systems. The company targets private gardens, commercial parks, sports fields, and agricultural sectors. Technically, the website is built on the Shoptet e-commerce platform, utilizing standard web technologies and tracking tools such as Google Analytics and Microsoft Clarity. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers and updated libraries are recommended. The absence of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site demonstrates a solid digital presence with room for security and compliance enhancements.

Č

Čarovné-Slovensko.sk

carovne-slovensko.sk

58

Čarovné-Slovensko.sk operates a well-established e-commerce platform specializing in unique Slovak regional products including books, maps, and functional clothing. With over 23 years of experience, the company positions itself as a leading publisher and retailer in Slovakia, emphasizing Slovak production and fast delivery. The website is professionally designed with clear navigation and strong trust signals such as customer reviews, free shipping, and a 100-day return policy. Technically, the site leverages modern analytics and marketing tools including Google Analytics 4, Microsoft Clarity, Smartlook, and Tawk.to live chat, built on the Shoptet e-commerce platform. Security posture is solid with HTTPS enforced and CSRF protections on forms, though some security headers could be improved and a formal security policy is absent. Privacy compliance is robust with comprehensive cookie consent and privacy policies aligned with GDPR. Overall, the site is trustworthy and well-maintained, serving a general audience interested in Slovak cultural and regional products.

S

supsallanches

supsallanches.com

50

Supsallanches is a small French educational institution specializing in higher education and training in commerce, tourism, and marketing, offering BTS and Bachelor programs. The website is built on WordPress using the Divi theme and integrates HubSpot analytics and cookie consent mechanisms, indicating a moderate level of digital maturity. The domain registration is consistent with the business profile, created in 2020 and hosted with Scaleway SAS and o2switch.net. Security posture is adequate with HTTPS enabled and clientTransferProhibited status on the domain, but lacks DNSSEC and security headers. Privacy compliance is limited due to absence of a privacy policy and terms of service pages. Overall, the website is professional and functional but could improve in privacy and security transparency.

Coworking Příbram z.s. is a small local business providing coworking spaces, meeting rooms, and office rentals in the center of Příbram, Czech Republic. The company targets freelancers, remote workers, and small businesses seeking flexible office solutions with amenities such as fast WiFi, coffee, and 3D printing. Their business model is membership and rental-based with tiered pricing plans and daily access options. The website is professionally designed with clear navigation and relevant content, supporting their market position as a community-focused coworking provider. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, and Owl Carousel, with Google Tag Manager for analytics. The site is mobile-optimized and performs moderately well, though accessibility and SEO optimizations are basic. No CMS or hosting provider details are evident. Security practices are minimal with no detected security headers or privacy policies, indicating room for improvement in compliance and protection. Security posture is moderate; HTTPS is assumed but no explicit security headers or privacy policies are present. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is consistent with the business claims, showing domain registration in 2021, appropriate for a small startup. Contact information is clear and trustworthy, with no suspicious external links or content detected. Overall, the website is functional and professional but lacks critical privacy and security policies. Strategic improvements in security headers, privacy compliance, and incident response readiness are recommended to enhance trust and regulatory adherence.

S

Sportovní zařízení města Příbram

juniorklubpribram.cz

39

Junior Klub Příbram is a local multi-genre cultural club located in Příbram, Czech Republic, offering a variety of events including concerts, lectures, theatre, and children's activities. The club also provides venue rental services for corporate and private events. The website reflects a community-focused business model targeting a broad audience including families and local residents. The site is professionally designed with good content quality and clear navigation, supporting mobile responsiveness and basic accessibility. Technically, the site uses jQuery and custom JavaScript with CSS styling, served over HTTPS with a valid SSL certificate, but lacks advanced security headers and detailed security policies. Privacy compliance is addressed with a cookie consent mechanism and a basic privacy policy page, indicating awareness of GDPR requirements. However, the absence of WHOIS data and explicit company contact emails or phone numbers slightly reduces business credibility. Overall, the site is trustworthy and functional but could improve in security posture and transparency.

B

Bc. Jiří Trnka

musicgate.cz

44

MUSICGATE.cz is a Czech Republic-based media portal specializing in music-related content including news, event invitations, press releases, photo and video reports, interviews, and reviews. Founded in 2016 and operated by Bc. Jiří Trnka, the site targets music enthusiasts primarily within the Czech Republic. The business model revolves around content publishing supported by advertising partnerships and sponsored banners. The portal maintains a consistent brand presence and offers a comprehensive range of music-related services, positioning itself as a niche leader in the Czech music media space. Technically, the website employs a custom CMS with a technology stack including jQuery, jQuery UI, Google Fonts, and standard web technologies. Hosting is linked to the registrar REG-GRANSY and nameserver svethostingu.eu. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Advertising is managed primarily through the Sklik network, with transparent ad placements and cookie consent mechanisms in place. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers such as CSP or HSTS. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, the site lacks a formal security policy or vulnerability disclosure mechanism. Overall, the security posture is adequate but could be improved with additional headers and incident response documentation. The overall risk assessment is low, with no signs of malicious content or blocking mechanisms. The site is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic recommendations include enhancing security headers, implementing a security.txt file, and formalizing incident response policies to further strengthen the security posture and user trust.

E-solutions, s.r.o. is a Czech-based technology company specializing in custom internet projects including web development, internet applications, mobile apps, and price monitoring services. With over 21 years of market presence and a solid client base, the company positions itself as a professional and experienced service provider in the Czech Republic. The website reflects a modern and professional digital presence with good design and user experience, supporting both Czech and English languages. Technically, the site uses modern JavaScript libraries, Google Analytics, Tag Manager, and Google Maps API, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers and formal privacy policies are missing. The absence of WHOIS data limits domain trust verification, but the detailed contact information and business presentation support legitimacy. Overall, the website is a reliable representation of a small technology service company with room for improvement in privacy and security transparency.

C

Cestovní kancelář CAPRO

capro.cz

55

Cestovní kancelář CAPRO is a Czech travel agency specializing in active holidays and various travel packages including last minute and first minute offers. The company targets Czech-speaking travelers seeking both domestic and international active vacations. The website is professionally designed, mobile-optimized, and provides clear contact information, supporting a medium-sized business profile in the hospitality sector. Technically, the site employs modern JavaScript libraries, tracking tools like Google Analytics and Facebook Pixel, and enforces HTTPS with appropriate security headers, indicating a mature digital infrastructure. However, the absence of WHOIS data and explicit privacy and cookie policies suggests areas for improvement in transparency and compliance. Overall, the security posture is strong with no evident vulnerabilities, but the lack of formal security and incident response disclosures limits full security maturity assessment. Strategic recommendations include publishing comprehensive privacy and cookie policies, establishing a vulnerability disclosure process, and enhancing accessibility features to improve compliance and user trust.