Security Directory

Z

Zlínský krajský fotbalový svaz

kfszlin.cz

46

Zlínský krajský fotbalový svaz operates as the regional football association for the Zlín region in the Czech Republic, providing official communications, competition results, referee delegations, and contact information for clubs and commissions. The website serves as an information hub for football stakeholders in the region, including clubs, referees, coaches, and fans. It maintains partnerships with national and regional sports organizations, enhancing its credibility and reach. Technically, the website is built on Joomla CMS with the Gantry 5 framework, utilizing common JavaScript libraries such as jQuery and MooTools. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and consistent branding. However, it lacks advanced SEO and accessibility features, and no analytics or tracking scripts were detected. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks visible security headers and a vulnerability disclosure policy. No privacy or cookie policies were found, indicating potential compliance gaps with GDPR. The absence of WHOIS data limits domain trust assessment, though the website content and external official links support legitimacy. Overall, the site is functional and professional for its purpose but would benefit from enhanced security measures, privacy compliance, and technical optimizations to improve trust and user experience.

ČAK CZ s.r.o. is a small Czech construction and trading company specializing in water management, engineering networks, transport construction, and earthworks. Founded in 1998 and based in Kroměříž, the company serves municipalities, private companies, and individuals, emphasizing quality and compliance with ISO standards. Their website reflects a professional presence with detailed business descriptions and references to certifications but lacks modern privacy and security features. Technically, the site uses legacy JavaScript libraries and lacks HTTPS enforcement, which poses security risks. No privacy or cookie policies are present, indicating compliance gaps with GDPR. Overall, the security posture is moderate but requires improvements in HTTPS adoption and security headers. The website is safe for general audiences and does not contain adult or questionable content.

5

56255 Allputz Baugesellschaft m.b.H

allputz.com

59

The website www.allputz.com represents a small Austrian construction company specializing in thermal insulation systems and plastering services. The company targets local clients in Oberndorf in Tirol and offers services such as Wärmedämmverbundsystem, Innenputz, and Außenputz. The website is built on the Wix platform, indicating a moderate level of digital maturity with standard web technologies and a basic but functional design. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS usage but lacks advanced security headers and privacy policies. Overall, the site is functional but requires improvements in compliance and security to enhance trust and professionalism.

A

APU AG

apu.ch

51

APU AG is a Swiss-based manufacturer specializing in the development, production, and distribution of high-quality plastic plaster connection profiles for interior plaster, exterior plaster, and thermal insulation composite systems. The company targets primarily B2B customers in the construction and building materials sector, offering innovative and reliable system solutions with a longstanding market presence. The website reflects a professional and consistent brand image with clear business information and accessible legal documentation. Technically, the site is built on TYPO3 CMS with custom JavaScript and CSS, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

SK Hanácká Slavia Kroměříž, z. s.

hanackaslavia.cz

42

SK Hanácká Slavia Kroměříž is a Czech football club providing comprehensive information about its teams, matches, news, and partners. The website serves local football fans and community members with up-to-date content on club activities and events. The club competes in the Chance Národní Liga and maintains a professional online presence with clear branding and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap 5 and jQuery, hosted likely via WEDOS, a Czech hosting provider. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and basic security headers, but lacks advanced security policies and explicit privacy or terms of service documents. Cookie consent is implemented, indicating some GDPR awareness. Overall, the website is legitimate, trustworthy, and serves its intended audience effectively.

M

Město Nový Bor

novy-bor.cz

53

Město Nový Bor operates an official municipal website serving as a comprehensive information portal for residents, visitors, and stakeholders. The site highlights the city's identity as a historic glassmaking center in the Liberec region, providing access to administrative services, event calendars, and local news. The website is well-structured with multilingual support and integrates modern web technologies such as Google reCAPTCHA and Google Translate to enhance usability and security. Hosting is managed via a Czech provider with domain registration dating back to 1998, indicating a mature digital presence. Security posture is solid with HTTPS enforcement and form protections, though additional security headers could improve resilience. Privacy compliance is basic but present, with GDPR-related information accessible. Overall, the site demonstrates a professional and trustworthy digital footprint appropriate for a government entity.

P

PB trans s.r.o.

pbtrans.cz

57

PB trans s.r.o. is a small Czech energy company specializing in the sale and distribution of propane-butane fuel and related LPG services. Their website highlights key offerings such as propane-butane bottles for cooking and heating, LPG filling stations, and industrial and agricultural fuel applications. The company targets both consumers and business clients within the Czech Republic, positioning itself as a local supplier of clean energy fuel solutions. The website is built on the Webnode platform and hosted via AWS Cloudfront CDN, reflecting a moderate level of digital maturity with basic SEO and mobile optimization. From a security perspective, the website uses HTTPS but lacks advanced security headers and visible privacy or terms of service policies, indicating room for improvement in compliance and security posture. No WHOIS registration data is publicly available, suggesting privacy protection or registration issues, which slightly reduces trustworthiness. Contact information is clearly provided, enhancing business credibility. Analytics are implemented via Google Tag Manager, with moderate user tracking. Overall, the website is functional, safe, and professionally presented but would benefit from enhanced security practices, transparent privacy policies, and improved WHOIS data availability to strengthen trust and compliance. The business appears legitimate and focused on its niche market with clear service offerings and contact channels.

O

Odbory KOVO MB

odborykovomb.cz

48

Odbory KOVO MB is a regional trade union organization based in the Czech Republic, primarily serving manufacturing workers in areas such as Mladá Boleslav, Vrchlabí, and Kvasiny. The website provides members with news, event information, benefit programs, and contact details. It positions itself as a trusted local union with a medium-sized membership base and a focus on member services and advocacy. Technically, the website is built on the vismo CMS platform, employs modern web technologies including Google Analytics and reCAPTCHA, and offers multilingual support via Google Translate. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies with user consent mechanisms. Security posture is solid with HTTPS and form protections, though it lacks explicit security policy and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting its role as a credible union resource.

Automotoklub Škoda is a regional non-profit organization dedicated to serving motorists and motor enthusiasts primarily in the Mladá Boleslav region of the Czech Republic. The club offers a variety of services including motorist information, event organization such as rallies and minikart races, and support for specialized interest groups. It is affiliated with the central automotoklub of the Czech Republic and maintains partnerships with related event sites. The website is built on Joomla! CMS and uses MooTools JavaScript libraries, hosted likely on SiteGround. The site content is primarily in Czech and targets local motorist communities and families interested in motor sports and related activities.

M

Marissa Ypsilon a.s.

bondycentrum.cz

54

Nákupní centrum Bondy is a medium-sized retail shopping center located in Mladá Boleslav, Czech Republic, operated by Marissa Ypsilon a.s. The center offers a wide range of retail shops, dining options, a cinema, and parking facilities, targeting general consumers and families. The website is professionally designed with good content quality and clear navigation, supporting the business's market position as a regional shopping hub. Technically, the site uses modern JavaScript libraries, Google Analytics, and consent management tools, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and detailed security policies. The absence of WHOIS data is a notable concern for domain transparency and trust. Overall, the site is safe, user-friendly, and aligned with its business goals, but could improve in security and compliance documentation.

A

Autoklub Bohemia Sport

autoklubbohemiasport.cz

40

Autoklub Bohemia Sport is a small Czech sports club specializing in automotive racing and rally events, prominently featuring Rally Bohemia and a racing series. The website is minimalistic, providing basic information and links to related motorsport events. The technical infrastructure is simple, relying on standard HTML, CSS, and JavaScript, hosted likely by a Czech hosting provider (Forpsi). The site lacks advanced CMS or analytics tools, reflecting a modest digital maturity level. Security posture is minimal with no detected security headers or privacy policies, and no HTTPS status was confirmed from the data provided. The absence of contact information and compliance documentation limits trust and regulatory adherence. Overall, the site is functional but basic, suitable for a small niche sports club but requiring improvements in security and privacy compliance to enhance credibility and user trust.

S

SUDOP PRAHA a.s.

sudop.cz

58

SUDOP PRAHA a.s. is a specialist company focused on transport infrastructure, providing engineering and consulting services primarily in the Czech Republic. The company targets professionals and organizations involved in transport infrastructure projects such as railways, bridges, and roads. The website reflects a professional presence with a consistent brand and good content quality, supporting their market position as an established player in the transportation sector. Technically, the website employs modern JavaScript libraries and tracking tools including Google Tag Manager, Facebook Pixel, Mapbox GL JS, and others. The site uses a CMS platform (Movisio) and demonstrates moderate performance with good mobile optimization. SEO and accessibility are basic but functional. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and explicit incident response or vulnerability disclosure policies. No WHOIS data was found, likely due to privacy protection, which slightly reduces trustworthiness. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website presents a moderate risk profile with good business credibility but could improve transparency and security practices to enhance trust and compliance.

U Tonka is a small hospitality business operating a restaurant and bar in Vizovice, Czech Republic. The website presents a clear overview of their food and beverage offerings, accommodation services, and event catering. The business targets local residents and visitors interested in traditional Czech cuisine and regional specialties. The site is professionally designed with good navigation and content relevance, though it lacks comprehensive privacy and cookie policies. Technically, the site uses basic web technologies and Google Analytics for tracking but lacks advanced security headers and visible HTTPS confirmation in the provided data. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact phone number support legitimacy. Overall, the site is functional and informative but would benefit from improved security and privacy compliance.

WTA e.V. is an international non-profit association dedicated to promoting research and practical application in the field of building preservation and monument care. The organization provides technical guidelines, professional training, and organizes events to support practitioners and experts in this sector. The website is professionally designed using TYPO3 CMS, offering clear navigation and multilingual support (German and English). Contact information is transparent and accessible, enhancing business credibility. Technically, the website employs modern CMS technology and standard web technologies, with good mobile optimization and accessibility. However, there is room for improvement in security practices, such as implementing security headers and publishing privacy and terms policies. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Security posture is solid with HTTPS enforced and secure form handling, but the absence of WHOIS data transparency and missing security headers slightly reduce trust. The website content is safe for general audiences, focusing on professional and educational material without any adult or questionable content. Overall, the site presents a trustworthy and professional front for WTA e.V., but enhancing transparency in domain registration and formalizing privacy and security policies would strengthen its security and compliance posture.

Č

Český svaz plníren propan-butanu

csppb.cz

45

Český svaz plníren propan-butanu is a Czech Republic-based voluntary association representing businesses and professionals in the liquefied petroleum gas (LPG) filling sector. The organization focuses on supporting its members through legal representation, certification assistance, and technical consultancy, aiming to foster business development and maintain fair industry practices. The website reflects a professional and consistent brand image, targeting industry stakeholders within the Czech energy sector. Technically, the website employs modern frontend technologies such as UIkit and jQuery, providing a responsive and user-friendly experience. The site includes a cookie consent mechanism aligned with GDPR requirements but lacks explicit privacy and terms of service pages. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and published security policies. The absence of WHOIS data for the domain is a notable concern, limiting the ability to fully verify domain legitimacy. However, the website content and contact information suggest a legitimate and trustworthy organization. Overall, the website presents a solid business presence with room for improvement in security best practices and compliance documentation. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

P

Projekty LK s.r.o.

projekty-lk.cz

48

Projekty LK s.r.o. is a small Czech Republic-based company specializing in architectural project documentation, construction supervision, and consulting services primarily in the Česká Lípa and Liberec regions. The company offers services including project documentation, technical supervision, property purchase consulting, and building passports. The website presents a professional and consistent brand image with clear contact information and customer testimonials, positioning itself as a trusted local service provider in the real estate and construction sector. Technically, the website uses modern frontend technologies such as UIkit and jQuery, with responsive design and good SEO practices. The site includes a cookie consent mechanism indicating some level of privacy compliance, though no explicit privacy policy page was found. Security headers and detailed SSL configuration could not be verified but HTTPS is used. No analytics or tracking services were detected, suggesting minimal user tracking. From a security perspective, the site shows basic good practices but lacks advanced security headers and explicit incident response or data protection officer information. The WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness, although the website content itself appears legitimate and professional. Overall, Projekty LK s.r.o. demonstrates a solid business presence with a well-structured website suitable for its target audience. However, improvements in privacy policy transparency, security header implementation, and domain registration clarity are recommended to enhance trust and compliance.

Henry SYSTEM is a Czech-based technology platform developed by WebConsult.cz - Internet & Marketing s.r.o., offering integrated business case and data management solutions. The platform centralizes project lifecycle management, calculations, document control, planning, production visualization, and CRM functionalities, targeting businesses seeking digital transformation and process efficiency. The website is professionally designed with clear navigation and relevant business content, primarily in Czech with English language support. Technically, it uses jQuery and custom JavaScript but lacks advanced security headers and privacy compliance features. No WHOIS data is available, which limits domain trust verification. Contact information and company registration details are clearly provided, enhancing business credibility.

D

DF Partner

dfpartner.cz

37

DF Partner is a Czech-based company specializing in the manufacturing and distribution of automotive chemicals and cosmetics, serving primarily Czech and Slovak markets. The company positions itself as a trusted leader with well-known brands such as SHERON, offering a broad product range including oils, lubricants, operational fluids, and automotive accessories. Their business model targets both B2B and B2C customers including gas stations, transport companies, auto service providers, and individual motorists. The website reflects a professional and consistent brand image with clear communication channels and social media presence. Technically, the website is built on the Kentico CMS platform, utilizing modern web technologies such as Google Tag Manager for analytics and tracking. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is strong with HTTPS enforced and secure form handling, though some security headers are missing. Privacy compliance is evident with GDPR policy and cookie consent mechanisms in place. The WHOIS data is unavailable due to privacy protection, which is common and justified for commercial entities in the EU. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a mature digital presence with good security and privacy practices, supporting the company's market position as a reliable automotive chemical supplier.

G

Georg Fritzmeier GmbH & Co. KG

fritzmeier.de

47

The Fritzmeier Group is a large German manufacturing company specializing in the production of customized vehicle components and environmental technology solutions for the Off-Highway and On-Highway industries. With approximately 2,200 employees, the company operates through four main business units: CABS, COMPOSITE, TECHNOLOGIE, and UMWELTTECHNIK, serving sectors such as construction machinery, agriculture, automotive, and municipal vehicles. The website reflects a professional corporate presence with detailed product and service descriptions, targeting B2B customers in specialized manufacturing sectors. Technically, the website is built on TYPO3 CMS, utilizing modern JavaScript libraries and responsive design techniques to ensure good mobile optimization and user experience. The site loads with moderate performance and includes structured navigation and SEO-friendly metadata. Analytics are implemented via Umami, indicating a privacy-conscious approach with minimal user tracking. From a security perspective, the site uses HTTPS (implied though not explicitly confirmed in HTML), but lacks visible security headers and cookie consent mechanisms. No incident response or vulnerability disclosure information is provided, which could be improved. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data shows standard domain registration with no privacy protection, consistent with a legitimate business. Overall, the Fritzmeier Group website demonstrates a solid business and technical foundation with room for improvement in security best practices and privacy compliance. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

A

Acme Information Technology

acmeit.org

57

Acme Information Technology Pvt. Ltd. (AcmeIT) is a global creative digital agency specializing in WordPress product development and website services. They offer a broad portfolio of WordPress themes and plugins, alongside services such as website design, maintenance, security, e-commerce solutions, and consulting. The company targets startups, designers, agencies, and businesses seeking quality WordPress solutions. Their market position is that of an established WordPress product developer with a global reach and a focus on quality and support. Technically, the website is built on WordPress using modern technologies including PHP, JavaScript, React, and REST API. They utilize frameworks such as Gutentor and CosmosWP for enhanced functionality and design. The site is mobile optimized with good SEO practices and moderate performance. Security measures include HTTPS and Google reCAPTCHA integration, though some security headers and policies are not explicitly published. The security posture is solid with encrypted communications and secure forms, but lacks published security policies and incident response information. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is privacy protected, which is common for this business type, and does not raise immediate concerns given the professional website content. Overall, the website presents a professional and trustworthy digital presence with room for improvement in security transparency and privacy compliance. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and implementing cookie consent mechanisms to improve compliance and user trust.

The website represents a small Czech non-profit organization named Asociace rozvoje invencí a duševního vlastnictví o.s., focused on the development of inventions and intellectual property. It provides services such as news updates, research, consulting, training, and cooperation primarily targeting inventors and intellectual property professionals within the Czech Republic. The site content is primarily in Czech and links to reputable intellectual property and regional government organizations, indicating a niche but credible market position. Technically, the website is built using basic HTML, CSS, and JavaScript without modern frameworks or CMS. It is hosted by Active24, a known Czech hosting provider. The site lacks mobile optimization and accessibility features, and the performance is moderate. No advanced analytics, tracking, or advertising technologies are detected, indicating a low digital maturity level. From a security perspective, the site lacks HTTPS enforcement and security headers, which are critical for protecting user data and ensuring trust. There are no privacy or cookie policies, no contact information, and no incident response or vulnerability disclosure mechanisms, which are significant compliance and security gaps. The absence of forms reduces attack surface but also limits user engagement. Overall, the website is functional but basic, with moderate trustworthiness due to its association with reputable partners and domain age. However, it requires urgent improvements in security, privacy compliance, and technical modernization to reduce risk and enhance user trust.

Z

Zomato™ Ltd.

zomato.com

68

Zomato™ Ltd. operates India’s largest food delivery, dining, and restaurant discovery platform, positioning itself as the market leader in the Indian food tech space. The company offers a comprehensive suite of services including online food ordering, restaurant discovery, and partnerships with restaurants and delivery personnel. Its digital presence is supported by a modern, mobile-optimized website built on the Astro framework, complemented by dedicated mobile applications for Android and iOS. The website demonstrates excellent content quality, clear navigation, and strong branding consistency, targeting general consumers across India. From a technical perspective, Zomato employs a contemporary tech stack with client-side hydration and performance optimizations, ensuring fast load times and a seamless user experience on both desktop and mobile devices. Security best practices are evident with enforced HTTPS, presence of key security headers, and a dedicated security policy page. However, the absence of explicit incident response contacts and vulnerability disclosure mechanisms suggests room for improvement in transparency and security communication. The WHOIS data for the domain www.zomato.com is notably absent, which is unusual for a large enterprise and may indicate privacy protection or technical issues with the registrar. Despite this, the website’s extensive branding, linked subsidiaries, and external references strongly support its legitimacy. No adult or explicit content is present, making the site safe for general audiences. Overall, Zomato exhibits a mature digital infrastructure with a strong security posture and comprehensive privacy compliance, though it could enhance its incident response and vulnerability disclosure transparency.

T

Trend

etrend.sk

58

TREND.sk is a leading Slovak media portal specializing in economic and business news, offering comprehensive news, commentaries, blogs, and analyses. It targets a general audience interested in finance and business, operating a subscription-based business model complemented by advertising revenue. The website demonstrates a mature market position with multiple subsidiary and partner domains, reflecting a diversified media presence in Slovakia. Technically, the site employs modern web technologies including responsive design, lazy loading, and integrates Google Analytics and advertising services. Security posture is strong with HTTPS and security headers implemented, though explicit cookie consent and security policies are not prominently visible. Overall, the site is professional, trustworthy, and content-rich, with moderate tracking and advertising practices.

Jiří Pytela operates a small-scale IT service business based in the Czech Republic, specializing in computer and network management, web design, and training services. The website presents clear service offerings and contact information, targeting individuals and small businesses seeking IT support and education. The digital presence is basic but functional, with moderate mobile optimization and use of Google Analytics for visitor tracking. However, the absence of privacy and cookie policies, as well as missing WHOIS registration data, indicates gaps in compliance and trustworthiness. Security posture is limited, with no detected security headers and unknown SSL status, suggesting room for improvement in protecting user data and enhancing site security. Overall, the website serves its purpose as a local IT service portal but would benefit from enhanced security and compliance measures.

Základní škola a Mateřská škola Vyškov, Letní pole, příspěvková organizace is a well-established educational institution in Vyškov, Czech Republic, providing primary and preschool education services. The website serves as an informational portal for parents and the local community, offering details about school activities, contact information, and organizational structure. The domain has been active since 1998, reflecting a stable and credible presence in the education sector. Technically, the website uses traditional web technologies including HTML5, CSS, and JavaScript libraries such as jQuery, Prototype.js, and Scriptaculous. While functional, the technology stack is somewhat dated, and the site shows basic mobile optimization and accessibility features. SEO is basic but sufficient for the target audience. The site is hosted securely with HTTPS enabled, but lacks modern security headers and cookie consent mechanisms. From a security perspective, the site demonstrates a moderate posture with HTTPS enforced but missing key security headers and no visible incident response or vulnerability disclosure policies. There is no cookie consent banner, which is a compliance gap under GDPR. No tracking or advertising scripts are present, minimizing privacy risks. Contact information is clearly provided, enhancing trust. Overall, the website is safe, professional, and trustworthy, serving its educational purpose well. Strategic improvements in security headers, privacy compliance, and modernization of the technology stack would enhance its security posture and user experience.

A

Agrostis Trávníky, s.r.o.

agrostis.cz

48

Agrostis Trávníky, s.r.o. is a well-established Czech company specializing in the production and distribution of grass seed mixtures, fertilizers, and related consulting services. Founded in 2002, it holds a leading position in the Czech and Slovak markets, serving both professional and consumer segments. The company emphasizes scientific research collaborations and offers a broad catalog of products tailored to various landscaping and agricultural needs. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics, with a custom CMS platform. The site is well-structured, mobile-optimized, and provides multiple contact channels, including a secure contact form. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are absent. Overall, the website reflects a professional and trustworthy business presence with moderate tracking and good privacy compliance.

MoneyLion Technologies Inc. operates a leading fintech platform in the United States, providing a comprehensive suite of personal finance products including loans, credit cards, cash advances, banking, investing, and financial education. With over 18 million customers and partnerships with more than 1,200 entities, MoneyLion has established a strong market position as a trusted financial services provider. The website is professionally designed, mobile-optimized, and offers clear navigation and rich content tailored to consumers seeking financial empowerment. Technically, the website leverages modern web technologies such as React and Next.js, ensuring fast performance and good accessibility. The platform integrates video content and lazy loading for enhanced user experience. Security best practices are observed with HTTPS enforcement and multiple security headers, contributing to a robust security posture. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. The security posture is strong with no evident vulnerabilities or exposed sensitive data. However, the absence of publicly available WHOIS data for the domain introduces some uncertainty regarding domain registration transparency. Despite this, the overall trustworthiness of the business and website remains high based on content quality, business information, and trust indicators. Strategically, MoneyLion should consider enhancing its incident response visibility and establishing a public vulnerability disclosure program to further strengthen security culture and compliance. Continuous monitoring of third-party scripts and maintaining updated certifications will help mitigate emerging risks. Overall, MoneyLion presents a mature fintech digital presence with solid security and privacy foundations.

D

Dwandy

gamesites.cz

51

Gamesites.cz is a Czech-based gaming community platform primarily focused on popular multiplayer games such as Counter-Strike 1.6, CS:GO, Minecraft, and Team Fortress 2. The site offers free game downloads, server listings, gaming articles, forums, and VIP activation services. It targets Czech-speaking gamers seeking community engagement and game resources. The business operates on a community-driven model supplemented by advertising and VIP services. Technically, the website uses AngularJS framework, integrates Google Analytics and Adsense for tracking and monetization, and includes Facebook SDK for social engagement. The site is served over HTTPS with basic security headers but lacks advanced security policies such as CSP and visible CSRF protections on forms. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is unavailable, which limits domain trust verification, but the active community and content suggest legitimate operation. Overall, the site is functional with moderate technical and security maturity but could improve privacy and security practices.

T

TRASKO Nemovitosti, s.r.o.

traskonemovitosti.cz

55

TRASKO Nemovitosti, s.r.o. is a Czech Republic-based real estate development company focused on projects in the Vyškov district. The website serves as a corporate presence showcasing their development activities. Technically, the site is built on WordPress using the Divi theme and incorporates modern web technologies including lazy loading scripts and integration with Google Tag Manager for analytics. The site is accessible without any WAF or security challenges, indicating good availability. However, the absence of WHOIS data and registrant information limits the ability to fully verify domain legitimacy. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal privacy or cookie policies. Overall, the site is professionally designed and functional but would benefit from enhanced transparency and compliance documentation.

Bazeny Kopecký is a Czech-based small business specializing in the construction and manufacturing of high-quality swimming pools, including outdoor garden pools and indoor pools. The company emphasizes the use of original, durable materials such as heavy DLW-DW foil and offers a comprehensive range of services including pool filtration, water treatment, heating solutions, coverings, and repair services. With over 30 years of experience and multiple certifications, the company positions itself as a trusted local expert in the pool construction market. Technically, the website is built on classic HTML and CSS with minimal modern frameworks, and it uses Google Analytics for visitor tracking. However, the site lacks modern mobile optimization and accessibility features. Security-wise, the site does not implement key security headers or privacy policies, and no cookie consent mechanism is present despite the use of analytics. The domain registration data is consistent and transparent, supporting the legitimacy of the business. Overall, the website provides good business information but requires improvements in security, privacy compliance, and technical modernization.

Z

Zdeněk Lukeš

zdeneklukes.eu

44

The website zdeneklukes.eu serves as a personal professional platform for Zdeněk Lukeš, an architectural historian primarily focused on Czech architectural history. It provides visitors with access to his biography, publications, exhibitions, media appearances, and lectures. The site targets individuals interested in architectural history and Czech cultural heritage, operating as an informational and branding tool rather than a commercial business. Technically, the site uses basic web technologies including HTML, CSS, JavaScript with jQuery 1.7.2, and Lightbox.js for image display. Google Analytics and Google Tag Manager are implemented for visitor tracking, though privacy compliance is minimal with no visible cookie or privacy policies. The site appears to be hosted under a Czech registrar, INTERNET CZ, a.s., consistent with the domain and content focus. Security posture is moderate; no forms or user input are present reducing attack surface, but the use of an outdated jQuery version and lack of security headers are notable weaknesses. Overall, the site is functional and professional but would benefit from improved privacy compliance and security hardening.

The website www.mfantasy.cz operates as an online magazine primarily targeting Slovak-speaking audiences interested in home improvement, energy solutions, finance, and lifestyle topics. It offers a variety of articles categorized under relevant themes such as 'Domácnosť', 'Energetika', and 'Financie'. The site uses WordPress CMS with standard SEO optimizations and is accessible over HTTPS, ensuring basic security for visitors. However, the absence of privacy, cookie, and terms of service pages indicates a gap in compliance and transparency. No explicit contact information or social media presence was found, which may limit user trust and engagement. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy and registration transparency.

G

Gediman.cz - homepage RPG Void

gediman.cz

45

Gediman.cz is a niche Czech website dedicated to RPG projects, game mods, and media reviews, serving a community of RPG enthusiasts. The site offers content such as game mod downloads, film and game reviews, and community features including user login, registration, and guestbook comments. The website has been active since 2009, indicating a stable presence in its niche market. Technically, the site uses a custom CMS named FoxAxe, with a technology stack including HTML, CSS, JavaScript, and jQuery. Performance is good with fast page load times, though mobile optimization and accessibility are basic. Security posture is limited, with no detected security headers or published policies, and no HTTPS status confirmed from the provided data. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is safe for general audiences and maintains consistent branding and content quality appropriate for its niche.

Z

Zaklínači - Mistři meče

zaklinaci-mistrimece.cz

52

Zaklínači - Mistři meče is a Czech-language online text-based role-playing game inspired by the works of Andrzej Sapkowski, focusing on players becoming witchers and fighting monsters. The site targets fans of fantasy RPGs within the Czech community and operates as a niche, community-driven platform with a long history dating back to 2006. The business model centers on user registration and gameplay features without commercial e-commerce elements. Technically, the site uses basic HTML and CSS with PHP backend implied, hosted behind Cloudflare DNS and CDN services. The design is simple and not optimized for mobile devices, with limited SEO and accessibility features. Security posture is moderate but lacks HTTPS enforcement visible in the HTML, security headers, and advanced form protections. Privacy and cookie policies are absent, indicating compliance gaps with GDPR. Contact information is limited to multiple email addresses of site administrators without phone or physical address details. Overall, the site is safe for general audiences but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

U

UNESCO World Heritage Centre

visitworldheritage.com

55

The website 'World Heritage Journeys' is an informational and promotional platform presented by UNESCO in collaboration with National Geographic. It focuses on guiding travelers to World Heritage sites with an emphasis on sustainable tourism and heritage conservation. The platform offers curated travel guides, educational content, and insider tips to help visitors experience these sites responsibly. The business model is non-commercial, supporting cultural preservation and awareness, targeting travelers and heritage enthusiasts globally. Technically, the website employs modern web technologies including Vue.js and uses Cloudflare for DNS services. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some accessibility features appear basic, and no CMS is explicitly detected, suggesting a custom-built solution. From a security perspective, the site uses HTTPS and has domain transfer protections in place but lacks DNSSEC and visible security headers in the HTML content. There is no cookie consent mechanism or explicit privacy compliance features visible, which could be improved to meet GDPR standards. No contact information or incident response policies are provided, limiting direct communication channels. Overall, the website is professional, trustworthy, and well-branded with authoritative backing. The risk profile is low, but improvements in privacy compliance and security headers would enhance its posture. The absence of contact details and cookie consent are notable gaps. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing clear contact and incident response information.

The website bkralik.cz is a personal portfolio and informational site belonging to an individual who identifies as a student, programmer, and photographer based in the Czech Republic. The site serves primarily as a hub for various subdomains and personal projects rather than a commercial business. The technical infrastructure is basic, relying on simple HTML and CSS with hosting provided by Active24. There is no evidence of modern CMS or advanced web technologies, and the site lacks HTTPS enforcement and security headers, which are critical for protecting visitor data and ensuring trust. From a security perspective, the site shows minimal maturity. There are no visible security policies, privacy or cookie notices, or incident response contacts. The absence of HTTPS and security headers exposes the site to potential risks, although the content itself is low risk and non-commercial. The WHOIS data is consistent and indicates a long-standing domain registration, which supports legitimacy but does not compensate for the lack of security best practices. Overall, the site is safe in terms of content but falls short in technical and security implementations. The lack of privacy and cookie policies also indicates non-compliance with GDPR requirements, which could be a concern if the site collects any user data in the future. Strategic improvements should focus on implementing HTTPS, adding security headers, and publishing privacy and cookie policies to enhance trust and compliance.

T

Tomáš Martínek

er.cz

52

ER.cz is a small Czech-based service providing free third-level domain redirection under the er.cz domain. The service targets Czech internet users who want to simplify or mask their website URLs by offering free domain aliases, email aliases, and visitor statistics. The business appears to be operated by Tomáš Martínek since at least 2004, positioning itself as a niche provider in the Czech internet domain redirection market. The website content is primarily in Czech and offers basic navigation and support features including a discussion forum and FAQ. Technically, the site uses standard HTML, CSS, and JavaScript with Matomo analytics for visitor tracking, but lacks modern security features such as HTTPS enforcement and security headers. The absence of WHOIS data is typical for .cz domains but limits independent verification of domain ownership and age. Contact information is limited to an email address and a contact page, with no phone numbers or social media presence. Overall, the site serves a specialized function with modest technical sophistication and limited security and privacy compliance.

Z

Zdenek Pletka

darkelf.sk

48

Dark Elf is a niche online fantasy strategy game operated by Zdenek Pletka since 2001, targeting Czech and Slovak gamers interested in multiplayer strategic gameplay. The website provides game information, community news, and links to related resources. Technically, the site uses standard web technologies (HTML, CSS, JavaScript) with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is partial with a GDPR policy present but no cookie consent mechanism. Contact information is limited to an email address, and no phone or physical address is provided. Overall, the site is functional and trustworthy but could improve in security and privacy transparency.

A

Účetní programy AdmWin

admwin.cz

47

The website www.admwin.cz represents a Czech-based software provider specializing in accounting and economic software solutions tailored for small to medium-sized businesses and non-profit organizations. Their product suite includes tax evidence accounting, double-entry accounting, autoservice management, hotel reservation systems, and e-commerce applications. The company claims a long operational history since 1990 with a user base exceeding 2,200 clients, primarily in the Czech Republic. The website content is comprehensive regarding product offerings, changelogs, and user support materials, but lacks explicit contact details and privacy-related policies. From a technical perspective, the site uses basic HTML/XHTML with CSS and older JavaScript libraries such as jQuery 1.7.2 and Lightbox. The platform targets Windows desktop applications, and the website itself shows moderate performance and basic mobile optimization. SEO practices are adequate with proper meta tags and structured navigation. Security posture is limited based on available data; no security headers or advanced protections are evident, and the WHOIS data for the domain is missing, which raises concerns about domain registration transparency. No privacy or cookie policies are found, which impacts compliance with GDPR and general privacy best practices. Overall, the website is functional and informative but would benefit from improved security measures, transparency in domain registration, and explicit privacy and contact information to enhance trust and compliance.

C

CZIN.sk

czin.sk

49

CZIN.sk is a Slovak internet portal established in 2005, offering a comprehensive suite of services including internet search, web directory, email, news aggregation, TV program listings, and weather forecasts. The portal targets Slovak-speaking internet users seeking a centralized platform for various online services. It operates primarily on an advertising-supported business model, leveraging multiple ad networks and affiliate programs to generate revenue. The website maintains a consistent brand presence and provides a good user experience with clear navigation and relevant content.

Z

Zdeněk Pletka

darkelf.cz

49

Dark Elf is a niche Czech/Slovak online fantasy strategy game operated by an individual, Zdeněk Pletka, since 2001. The website serves as a portal for the game, providing news, community links, and game information. The technical infrastructure is basic but functional, relying on standard web technologies and Google Analytics for tracking. Security posture is moderate with no advanced protections or security headers detected, and privacy compliance is partial with a GDPR page but no cookie consent mechanism. The missing WHOIS data is a concern for domain legitimacy but does not directly impact the user experience. Overall, the site is safe and suitable for general audiences.

W

WEDOS Internet, a.s.

pridat.eu

58

Přidat.eu is a Czech and Slovak focused free online service that facilitates easy and fast social bookmarking and RSS feed sharing. It offers website owners and internet users tools such as sharing buttons and browser plugins to add bookmarks and RSS sources to various social and bookmarking platforms. The service emphasizes privacy by not collecting user data or using cookies in its sharing buttons, aligning with GDPR and ePrivacy regulations. The website is hosted by WEDOS Internet, a.s., a reputable Czech registrar and hosting provider, and has been operational since 2007. Technical infrastructure is straightforward, relying on standard web technologies and Matomo analytics configured to disable cookies, ensuring minimal user tracking.

I

Insolvenční kancelář Uherský Brod

insolvencni-kancelar.cz

52

The website insolvencni-kancelar.cz represents a small, regionally focused insolvency legal service provider based in Uherský Brod, Czech Republic. The business specializes in insolvency administration, debt relief, and bankruptcy services, with a strong emphasis on personal approach and experience since 2001. The website content is primarily in Czech and targets local clients including debtors and creditors in the Zlínský, Jihomoravský, and Vysočina regions. The business model revolves around providing expert insolvency management and legal advisory services. The site includes structured data confirming contact details and business scope, enhancing search engine understanding and trust.

Jak psát web is a Czech language educational website dedicated to teaching web development, including HTML, CSS, JavaScript, SEO, and related topics. The site targets both beginners and professionals interested in creating and maintaining websites. It offers tutorials, articles, and a discussion forum to support its audience. The website is authored by Dušan Janovský and includes an ISSN number, indicating a formal publication status. Technically, the site uses standard web technologies such as HTML5, CSS, JavaScript, and integrates Google services for search and analytics. The design is basic but functional, with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The WHOIS data is missing, which raises concerns about domain registration legitimacy and reduces trustworthiness. Overall, the site is safe, content-rich, and serves a niche educational purpose but would benefit from enhanced security and privacy compliance measures.

JAHHO.cz is a Czech internet portal providing a categorized web directory, entertainment content such as wallpapers and GIFs, and additional services like TV program listings and search functionality. The site targets a general Czech-speaking audience seeking online entertainment and curated web resources. The business model revolves around advertising revenue, primarily through Google Adsense, and providing a free portal service. The website appears to be a small-scale operation managed by the JAHHO team since 2003, with a basic but functional online presence. Technically, the site uses standard web technologies including HTML, CSS, and JavaScript, with integrations of Google Adsense for advertising and Piwik (Matomo) for analytics. The site is served over HTTPS, ensuring basic transport security, but lacks advanced security headers and modern CMS or frameworks. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO best practices. From a security perspective, the site has a basic posture with HTTPS enabled but no evident security policies, privacy or cookie notices, or incident response contacts. The absence of WHOIS data for the domain raises concerns about domain legitimacy and transparency. No critical vulnerabilities or adult content were detected, but the site would benefit from enhanced security headers, privacy compliance measures, and clearer contact information. Overall, JAHHO.cz is a modest, general-audience web portal with basic technical and security implementations. Strategic improvements in privacy compliance, security hardening, and domain registration transparency are recommended to enhance trust and compliance.

S

EOS ZUŠ | Soutěže základních uměleckých škol

soutezezus.cz

48

The website www.soutezezus.cz serves as an informational portal dedicated to competitions for basic art schools in the Czech Republic, specifically for the 2024/2025 school year. It provides detailed competition categories, age groups, schedules, and locations, targeting students, educators, and administrators involved in these art schools. The platform supports user login functionality and integrates social media via Facebook SDK. Technically, the site employs XHTML, CSS, JavaScript with libraries such as jQuery, i18next for localization, and Photoswipe for image handling, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured content. Security-wise, the site enforces HTTPS and includes a Content-Security-Policy header, with secure login form features like password visibility toggle and Caps Lock warnings. However, the absence of additional security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. The WHOIS data is unavailable, which reduces domain trustworthiness, but the site content and technical setup suggest legitimate and professional use. Overall, the site is a niche educational resource with moderate technical and security maturity, requiring enhancements in privacy compliance and domain transparency.

S

Sentia

sentiagruppen.no

69

Sentia is a leading Nordic construction group formed by merging prominent companies HENT, SSEA, Vestia, and Målbygg, employing over 1,400 people. The company specializes in complex and sustainable building projects for public and commercial clients primarily in Norway and Sweden. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site uses modern web technologies and implements HTTPS with a cookie consent mechanism, indicating good privacy practices. However, the absence of visible security headers and incident response information suggests room for improvement in security posture. The lack of WHOIS data limits domain registration verification, but the professional content and business information support legitimacy. Overall, Sentia presents a credible and trustworthy corporate website with a strong focus on sustainability and large-scale construction projects.

Pelikanletenky.cz is an online travel service platform focused on providing affordable flight tickets, hotel bookings, car rentals, and travel insurance primarily targeting customers in the Czech Republic. The website acts mainly as an aggregator or affiliate portal linking to numerous related travel and transportation domains. The business appears to be relatively new, with domain registration dating back to mid-2022, and operates in the transportation sector with a small business scale. Technical infrastructure is basic, with minimal content and no advanced technologies or CMS detected. The site lacks critical compliance elements such as privacy and cookie policies, contact information, and security best practices, which limits its trustworthiness and user confidence. No security challenges or WAF blocks were detected, allowing full content access for analysis.

S

Sentia ASA

sentiagruppen.com

67

Sentia ASA is a leading Nordic construction group specializing in complex and sustainable building projects across Norway and Sweden. The company consolidates several contractors including HENT, SSEA, Vestia, and Målbygg, employing over 1,400 people. The website highlights their focus on public and commercial sector projects, with expertise in project management and sustainable construction methods such as cross-laminated timber. The company recently announced a listing on the Oslo Stock Exchange, indicating a significant market presence and growth trajectory. Technically, the website is well-structured with modern HTML5 and JavaScript usage, including a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, no explicit CMS or hosting provider information is detected, and security headers are not visibly present in the provided data. From a security perspective, the site uses HTTPS and implements cookie consent, but lacks visible security policies or incident response contacts. The absence of WHOIS data and the domain's apparent newness raise questions about domain registration legitimacy, although the website content is professional and consistent with a legitimate business. Overall, Sentia ASA's website presents a credible and professional business front with good privacy compliance and user experience. The main risk lies in the lack of WHOIS transparency and security policy disclosures, which should be addressed to enhance trust and compliance.