Security Directory

Z

O projektu - ZLÍN DESIGN

zlin-design.cz

0

Zlín Design Market is a well-established cultural event platform based in the Czech Republic, focusing on promoting local artists, designers, and craftsmen with an emphasis on sustainability and community engagement. The website serves as an informational and promotional tool for the event, targeting a broad audience including families, students, and professionals interested in art and design. The business model revolves around event organization and cultural promotion, with partnerships from local institutions enhancing its credibility. Technically, the website uses a traditional tech stack including jQuery and Google Analytics, likely running on ExpressionEngine CMS. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. Security posture is basic with HTTPS enabled but missing important security headers and explicit privacy and cookie policies, indicating room for improvement in compliance and protection. From a security perspective, the site shows no signs of blocking or WAF interference, but lacks comprehensive security best practices such as CSP and HSTS headers. The absence of privacy and cookie policies also suggests GDPR compliance gaps. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy measures to improve user trust and regulatory compliance. The domain WHOIS data aligns well with the website's claims, showing consistent registration details and appropriate domain age. No suspicious patterns or privacy protections are present, supporting the legitimacy of the site.

FOLDINA.cz is a professional freelance web development service operated by Lukáš Foldina, a developer with two decades of experience. The website showcases a portfolio of custom web and online system projects, targeting businesses needing tailored digital solutions. The business model is focused on freelance development with a strong emphasis on e-commerce and enterprise system integrations. The market position is niche, serving clients requiring bespoke software and web presence. Technically, the website employs modern front-end technologies including HTML5, CSS3, JavaScript, jQuery, and Bootstrap, with additional libraries for UI effects and galleries. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features and SEO optimization. No CMS or hosting provider details are evident. From a security perspective, the site lacks visible HTTPS confirmation and security headers, which are critical for protecting user data and ensuring trust. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. The absence of WHOIS data limits domain legitimacy verification, though the website content and business information appear professional and credible. Overall, the site presents a solid business offering but requires improvements in security posture, privacy compliance, and domain transparency to enhance trust and reduce risk.

G

GTS ALIVE s.r.o.

isic.cz

0

GTS ALIVE s.r.o. operates the ISIC.cz website, providing internationally recognized student and youth discount cards in the Czech Republic. The company has a strong market position with a history dating back to 2000, offering various card types including ISIC Scholar and teacher cards. The website is well-structured, targeting students and young people, and provides comprehensive information about its services and benefits. Technically, the site employs modern JavaScript libraries and is hosted on Amazon AWS, ensuring reliable performance and scalability. Privacy compliance is robust, with clear cookie consent mechanisms managed by Cookiebot and detailed privacy policies in Czech. Security posture is good, with HTTPS enforced and no critical vulnerabilities detected, although some security headers could be improved. Overall, the site demonstrates professionalism and trustworthiness, with transparent advertising and tracking practices. No contact emails or phone numbers were explicitly found in the analyzed content, and no terms of service or explicit security policies were detected.

K

Korálkárna Rooya

rooya.cz

0

Korálkárna Rooya is a Czech Republic based e-commerce retailer specializing in materials for beadwork, wirework, and jewelry crafting. Established since 2005, it serves hobbyists and crafters with a wide range of products including beads, jewelry components, crafting tools, and instructional content. The website is professionally designed with good navigation and mobile optimization, leveraging the Shoptet e-commerce platform and integrating multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook SDK. Security posture is adequate with HTTPS enforced and secure login forms, though improvements can be made by adding explicit security headers and updating legacy libraries. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data reduces domain trustworthiness, warranting further investigation. Overall, the site presents a trustworthy and professional online presence in its niche market.

Q

Qítko korálky

qitko-koralky.cz

0

The website www.qitko-koralky.cz operates as a Czech e-commerce platform specializing in beads, components, and materials for jewelry making. It targets hobbyists and crafters within the Czech Republic, offering a wide range of products including wooden beads, glass beads, metal components, and tools. The site is built on the BohemiaSoft e-commerce platform and uses a variety of JavaScript libraries, some of which are outdated, indicating a need for modernization. Contact information is clearly provided, including a Czech phone number and an email address linked to a related domain, suggesting a small but legitimate business presence. Technically, the site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices appear adequate with proper meta tags and structured navigation. However, the use of outdated jQuery versions introduces potential security vulnerabilities. The site implements a cookie consent banner with detailed cookie categorization, reflecting some level of privacy compliance, though no explicit privacy policy page was found. Security posture is moderate; while HTTPS and CSRF protections are implied, the absence of security headers and outdated libraries reduce the overall security score. WHOIS data is unavailable, which raises concerns about domain registration transparency but does not necessarily indicate malicious intent. Overall, the site is functional and serves its niche market but would benefit from technical and security improvements. Strategic recommendations include updating all JavaScript libraries to current secure versions, implementing comprehensive security headers, publishing a clear privacy policy, and conducting regular security audits. These steps will enhance trust, compliance, and resilience against potential threats.

E

eSports.cz s.r.o.

beranizlin.cz

0

RI OKNA Berani Zlín is a Czech ice hockey team with an official website managed by eSports.cz s.r.o. The site serves as a comprehensive platform for fans, providing news, match schedules, ticket sales, and multimedia content. The business model focuses on fan engagement, sponsorship promotion, and media distribution within the sports sector. The website is well-branded and consistent, targeting primarily Czech ice hockey enthusiasts and local supporters. Technically, the site uses modern JavaScript libraries such as jQuery and slick-carousel, is hosted likely by WEDOS, and implements HTTPS with cookie consent mechanisms. However, it lacks explicit privacy and terms of service pages, and no direct contact information is visible on the homepage. Security posture is moderate with HTTPS enabled but missing security headers and incident response details. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

Ú

Útulek pro zvířata v nouzi Vršava

utulekzlin.cz

0

Útulek pro zvířata v nouzi Vršava is a small non-profit animal shelter located in Zlín, Czech Republic, providing shelter and care primarily for lost, abandoned, and stray dogs and cats. The shelter also supports handicapped wild animals. The website serves as an information hub for the shelter's services, adoption opportunities, and ways to support through donations or virtual adoptions. It targets local community members, animal lovers, and potential donors or adopters. Technically, the website uses a mix of legacy and modern web technologies including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA for form security. The site is mobile optimized and has good SEO practices but lacks some modern security headers and a privacy policy page, which are important for GDPR compliance. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but updating libraries and adding security headers is recommended. WHOIS data is unavailable, which limits domain trust assessment, but the website content and contact information appear legitimate and consistent with a local non-profit organization. Overall, the site is functional, trustworthy, and serves its community purpose well, though improvements in privacy and security policies would enhance compliance and trust.

T

Tržiště Pod Kaštany

trzistepodkastany.cz

0

The website trzistepodkastany.cz represents a local marketplace called "Tržiště Pod Kaštany" located in Zlín, Czech Republic. It focuses on offering a diverse range of regional food products and hosting community events that foster direct interaction between sellers and buyers. The business model is centered around a physical and digital marketplace promoting local and healthy food options, targeting local residents and tourists. The website content is well-structured, with clear navigation and a consistent brand presence, supported by social media channels on Facebook and Instagram. From a technical perspective, the site employs a variety of modern JavaScript libraries and plugins such as jQuery, fullcalendar, select2, and Google services including reCAPTCHA and Tag Manager. The site enforces HTTPS and includes a Content-Security-Policy header, indicating a baseline security posture. Performance and mobile optimization are adequate, though accessibility features could be improved. SEO is supported by proper meta tags and Open Graph data. Security-wise, the website benefits from HTTPS and basic security headers but lacks comprehensive security policies such as privacy, cookie, or vulnerability disclosure statements. No critical vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies represents a compliance gap, especially under GDPR regulations. Contact information is clearly provided, enhancing business credibility. Overall, trzistepodkastany.cz is a legitimate, small-scale local marketplace website with good content quality and technical implementation. To improve security posture and compliance, it is recommended to implement privacy and cookie policies, enhance security headers, and consider a vulnerability disclosure mechanism. These steps will strengthen trust and regulatory adherence while maintaining a positive user experience.

W

Webwings s.r.o.

webwings.cz

0

Webwings s.r.o. is a Czech-based digital agency specializing in custom IT solutions including web applications, websites, and graphic design. Established in 2009, the company serves clients domestically and internationally, focusing on innovation and tailored digital products. Their market position is that of a trusted regional player with a portfolio of diverse projects and satisfied clients. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, hosted via WEDOS and utilizing Cloudflare DNS for reliability and security. The site is well-optimized for mobile and SEO, with good content quality and professional design. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy and cookie policies are present and GDPR compliant, but no explicit incident response or security policies are published. Overall, the site is professional, trustworthy, and business-focused with moderate user tracking via Google Analytics and Tag Manager.

D

DIGITREE CZ s.r.o.

digitree.cz

0

DIGITREE CZ s.r.o. is a Czech Republic-based IT service provider specializing in web development, IT infrastructure management, hosting, and cloud solutions primarily targeting small and medium-sized businesses. The company positions itself as a reliable IT partner helping clients grow through quality and connected IT services. Their website reflects a professional and modern digital presence with clear service offerings and strong customer testimonials, indicating a solid market position in their niche. Technically, the website leverages modern web technologies including the Astro framework, JavaScript analytics tools like Matomo and Facebook Pixel, and integrates a GDPR-compliant consent management platform (Usercentrics). The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. Security best practices are observed with HTTPS, security headers, and secure forms, although explicit security policies and incident response information are not publicly available. From a security and compliance perspective, the site demonstrates a mature posture with GDPR compliance and secure data collection mechanisms. However, the absence of WHOIS data limits domain trust assessment and raises questions about domain registration transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the risk profile is low, but improvements in transparency and security documentation are recommended. Strategically, DIGITREE should focus on enhancing their security and compliance disclosures, including publishing a security policy, incident response contacts, and vulnerability disclosure guidelines. This will strengthen trust and align with best practices. Continued investment in technical modernization and customer engagement will support sustained growth and market credibility.

P

PCpickup.cz

pcpickup.cz

0

PCpickup.cz is a small technology service provider based in the Czech Republic specializing in remote device repair services. Their business model centers on convenience, offering pick up, repair, and delivery of devices such as phones, laptops, Apple products, game consoles, and TVs. The company targets consumers and small businesses primarily in Brno and surrounding areas. The website is professionally designed and provides clear contact information and service descriptions, supporting a trustworthy customer experience. Technically, the website is built on the Webnode CMS platform, leveraging Amazon Cloudfront CDN for content delivery and Google Analytics for visitor tracking. The site is mobile-optimized and uses modern web technologies including HTML5, CSS3, and JavaScript. However, some technical improvements are recommended, such as implementing security headers and enhancing SEO and accessibility features. From a security perspective, the site enforces HTTPS and includes a cookie consent banner, indicating some privacy compliance. However, the absence of a privacy policy and security headers reduces the overall security posture. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses but limits domain trust verification. Overall, PCpickup.cz presents a legitimate and professional online presence for a local device repair business. Strategic recommendations include publishing privacy and terms of service documents, implementing security headers, and adding a security.txt file to improve vulnerability disclosure and trust. These steps will enhance compliance, security posture, and customer confidence.

G

Gransy, s.r.o.

pavlovec.net

0

Pavlovec.net is a small Czech-based web development service specializing in WordPress websites, boasting 15 years of coding experience. The website targets Czech-speaking clients seeking professional WordPress and WooCommerce development services. The business operates under the legal entity Gransy, s.r.o., with domain registration consistent with the claimed business history and location. Technically, the website employs a modern but straightforward tech stack including HTML5, CSS3, JavaScript, jQuery, Vue.js, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized with good design and navigation, though accessibility and SEO optimizations are basic. Hosting appears to be managed via the registrar's DNS and hosting services. From a security perspective, the website lacks visible security headers and does not implement DNSSEC, which could be improved. No privacy or cookie policies are present, indicating compliance gaps with GDPR. The site does not provide incident response or security contact information, limiting transparency. However, no critical vulnerabilities or suspicious content were detected. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures to improve trust and regulatory adherence.

B

Bonami

bonami.cz

0

Bonami.cz is a well-established e-commerce platform specializing in home furnishings, decor, kitchenware, textiles, and garden products primarily serving the Czech Republic and several neighboring countries through localized sister sites. The website demonstrates a mature digital presence with a modern React and Next.js technology stack, optimized for mobile and desktop users alike. It offers a comprehensive product catalog with detailed navigation and user-friendly design. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not published. Privacy compliance is evident through the presence of a cookie consent mechanism and a comprehensive privacy policy. Overall, Bonami.cz presents a professional, trustworthy, and user-centric online retail experience.

K

KARPEX.cz

karpex.cz

0

KARPEX.cz is a Czech-based e-commerce retailer specializing in the manufacture, import, distribution, and online sales of photo albums, photo frames, clip frames, and related accessories. Established in 2007, the company targets general consumers interested in photo storage and display solutions, positioning itself as a specialized provider within the Czech market. The website is professionally designed with clear navigation and product categorization, supporting a positive user experience and effective e-commerce operations. Technically, the site runs on the PrestaShop platform and integrates modern JavaScript libraries and marketing tools such as Google Analytics, Facebook Pixel, and Microsoft Clarity, indicating a mature digital marketing strategy. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though improvements in security headers and explicit incident response policies are recommended. Privacy compliance is basic, with cookie consent mechanisms present but lacking detailed GDPR disclosures. Overall, the website demonstrates a moderate to good level of trustworthiness and technical maturity suitable for its business scope.

W

WoodHouse Lounge

wood-house.cz

0

WoodHouse Lounge is a small hospitality business located in Prague, Czech Republic, offering a unique lounge and restaurant experience with cocktails, shisha, and Chinese home kitchen cuisine. The website presents a professional and consistent brand image with clear contact details and social media presence, targeting locals and travelers seeking a cozy and authentic atmosphere. Technically, the site is built on WordPress using the Flatsome theme and integrates modern tools such as Google Tag Manager and Yoast SEO, providing good SEO and mobile optimization. Security posture is adequate with HTTPS enabled but lacks some security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance. The absence of WHOIS data reduces domain trustworthiness, but the website content and contact information appear legitimate. Overall, the site scores well in business credibility and content quality but should address privacy and security enhancements to strengthen its compliance and trust profile.

Č

Český svaz ochránců přírody

csop.cz

0

Český svaz ochránců přírody (ČSOP) is a well-established Czech non-governmental non-profit organization dedicated to nature and landscape protection, founded in 1979. The organization engages professionals, amateurs, and volunteers in a wide range of conservation activities, education, and public awareness. The website reflects a mature digital presence with comprehensive content about their programs, projects, and partnerships, targeting environmentally conscious individuals and groups in the Czech Republic. Technically, the site is built on WordPress with modern SEO and analytics tools, hosted on a Czech hosting provider, and demonstrates good mobile optimization and user experience. Security posture is solid with HTTPS, consent management, and no visible vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

H

Hanácký Večerník

hanackyvecernik.cz

0

Hanácký Večerník is a regional news media outlet focused on delivering news, interviews, cultural, sports, and societal information primarily for the Olomouc region in the Czech Republic. The website presents a well-structured and categorized content layout, targeting local residents and readers interested in regional affairs. The business model is based on online news publication supported by advertising, with evident partnerships for event promotion and ticketing. Technically, the site uses modern web technologies including Google Tag Manager for analytics, CookieYes for cookie consent management, and Google Fonts for typography. Hosting is provided by WEDOS, a Czech hosting provider, consistent with the domain registration data. The website is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and detailed security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with GDPR-aligned cookie consent and a basic privacy policy. Business credibility is supported by consistent branding, structured content, and social media presence. Overall, the website scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy regional news source.

M

M+MP spol. s r.o.

infodnes.cz

0

InfoDnes.cz is a Czech regional media portal network operated by M+MP spol. s r.o., providing regional news, business directories, job listings, classifieds, and event calendars. The website serves a broad Czech audience interested in local information and services, positioning itself as a key regional media aggregator. The business model relies on advertising, affiliate marketing, and providing a platform for regional content and classifieds. Technically, the site uses modern web standards, Google Fonts, Google Analytics, and Google Adsense for monetization and analytics. The site is mobile optimized and includes privacy and cookie consent mechanisms in compliance with GDPR. Security posture is good with HTTPS and basic security headers, though some improvements are recommended. The absence of WHOIS data is a concern for domain legitimacy verification but does not detract from the site's apparent operational legitimacy. Overall, InfoDnes.cz is a well-established regional media portal with a solid digital presence and compliance posture.

N

NEJLEPŠÍ ADRESA a.s.

olomouc.cz

0

The website www.olomouc.cz serves as a commercial information portal dedicated to the Olomouc region in the Czech Republic. Operated by NEJLEPŠÍ ADRESA a.s., it provides local news, business directories, event calendars, weather updates, and advertising services. The portal targets residents and visitors seeking regional information and commercial offers. Established since 1997, it holds a solid position as a regional media outlet with consistent branding and a good content quality level. Technically, the site employs a range of JavaScript libraries including jQuery, SlidesJS, and Fancybox, alongside marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is served over HTTPS, ensuring encrypted communication, and includes a cookie consent mechanism compliant with GDPR principles. Mobile optimization and SEO practices are good, though accessibility features are basic. No CMS or hosting provider details were explicitly detected. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers like CSP or HSTS, which could enhance protection. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of WHOIS data for the domain is a concern, as it limits verification of domain legitimacy and registrant information, impacting trustworthiness. Overall, the website is a professionally maintained regional media portal with moderate technical maturity and a reasonable security posture. The main risk lies in the lack of transparent domain registration data, which should be addressed to improve trust and compliance. Strategic recommendations include implementing security headers, publishing clear security and privacy policies, and providing direct contact information for incident response.

R

Radio Haná s.r.o.

radiohana.cz

0

Radio Haná s.r.o. operates a regional radio station broadcasting on 92.3 FM, serving the Olomouc region and surrounding areas in the Czech Republic. The website offers live streaming, podcasts, local news, event information, and advertising services, positioning itself as a key local media outlet. The company targets local listeners interested in music and community events, leveraging digital platforms to extend reach. Technically, the website employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and Facebook SDK, ensuring a responsive and engaging user experience. Security posture is solid with HTTPS enforcement and standard security headers, though no explicit security or incident response policies are published. Privacy compliance is evident with GDPR and cookie consent mechanisms in place. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its professional presentation and content. Overall, the site is well-structured, content-rich, and trustworthy for its audience.

T

TADRA TRADE ON s.r.o.

qitko-hobby.cz

0

Qítko hobby is a Czech Republic based small retail business specializing in beads, jewelry components, and creative crafting supplies. The company also offers creative courses, jewelry repair services, and tool rentals, targeting hobbyists and craft enthusiasts. The website serves as an informational portal with links to an external e-shop and social media presence, positioning itself as a regional player in the hobby retail market. Technically, the site uses legacy JavaScript libraries such as jQuery 1.9.1 and integrates Google Analytics and Facebook SDK for tracking. The website is mobile optimized with a good user experience but lacks modern CMS identification and advanced accessibility features. Security posture is moderate with no visible security headers and use of outdated libraries, but HTTPS is implied though not explicitly confirmed. Privacy compliance is basic with a cookie consent banner and GDPR-related newsletter consent text, but no dedicated privacy or terms pages are found. WHOIS data is unavailable, which raises concerns about domain registration transparency, though the business content and contact information suggest legitimacy. Overall, the site is functional and professional but would benefit from improved security practices and clearer compliance documentation.

B

BOHEMIA DIGITAL

bohemiadigital.eu

0

BOHEMIA DIGITAL is a small Czech technology services company specializing in comprehensive IT solutions for small businesses and individual entrepreneurs. Their offerings include PC servicing and maintenance, professional web design and management, and continuous PC support. The website is professionally designed using modern frameworks such as Bootstrap and includes clear contact information and partner references, indicating a stable local market presence. Technically, the site uses standard libraries and is mobile optimized but lacks advanced security headers and privacy policies, which are areas for improvement. Security posture is moderate with no detected vulnerabilities but missing key compliance documents and security best practices. Overall, the website is safe, trustworthy, and functional but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

G

G-AGENCY s.r.o.

g-agency.eu

0

G-AGENCY s.r.o. is a Czech-based company specializing in organizing professional educational events in the healthcare sector, particularly targeting medical professionals and pharmaceutical companies. The company offers comprehensive event logistics, participant registration, and opportunities for pharmaceutical presentations, positioning itself as a key player in healthcare education within the Czech Republic and Slovakia. The website is well-structured, professionally designed, and optimized for SEO, reflecting a mature digital presence. Technically, the website is built on WordPress with modern technologies such as Tailwind CSS, Swiper.js, and jQuery. It employs the Yoast SEO plugin and a GDPR-compliant cookie consent mechanism via the Complianz plugin. The site is mobile-optimized and performs moderately well, though some accessibility features could be enhanced. No hosting provider details were identified, but HTTPS is enforced, ensuring secure communications. From a security perspective, the site uses HTTPS and cookie consent best practices but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable due to privacy protection, but the website provides detailed business registration and contact information, supporting legitimacy. Overall, the security posture is good but could be improved with additional headers and documented policies. The overall risk assessment is low, with the website demonstrating strong compliance with GDPR and professional standards. Strategic recommendations include implementing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to enhance security and trust further.

N

Nadační fond dětské onkologie KRTEK

krtek-nf.cz

0

Nadační fond dětské onkologie KRTEK is a well-established Czech non-profit foundation dedicated to supporting children with cancer. The foundation focuses on funding research, education, personalized treatment, and improving the quality of life for patients and their families. The website reflects a professional and consistent brand image, targeting donors, families, and volunteers. The technical infrastructure is based on WordPress with modern SEO and analytics tools, hosted behind Cloudflare DNS. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is trustworthy and provides clear pathways for engagement and support.

Š

Šance Olomouc o.p.s

sanceolomouc.cz

0

Šance Olomouc o.p.s is a small non-profit organization based in the Czech Republic, focused on social or community services. The website is built on WordPress using the Divi theme and incorporates Google Analytics for visitor tracking. The content is primarily in Czech and targets local community members. The technical infrastructure is moderate with basic mobile optimization and SEO features. Security posture is basic with HTTPS enabled but lacking security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional but could improve in transparency and security practices.

HAIMA Ostrava, z.s. is a Czech non-profit organization established in 1996, dedicated to supporting seriously ill children at the pediatric hemato-oncology department of the Faculty Hospital Ostrava. The organization focuses on improving care conditions and facilitating integration of affected children into normal life. The website serves as an information hub for donors, parents, and the community, featuring donation options, news updates, and stories from families. Technically, the site uses a modern but basic tech stack including Bootstrap and jQuery, with embedded social media and donation widgets. While the site is accessible and well-structured, it lacks explicit privacy and cookie policies, and no WHOIS data is available to verify domain registration details, which slightly impacts trustworthiness. Security headers are not detected, though HTTPS is implied. Overall, the site presents a professional and trustworthy image for a small non-profit entity.

C

CURSOR.cz

cursor.cz

0

CURSOR.cz is a small Czech Republic-based company specializing in web design and graphic services primarily for business clients. The company has been operating since 2004, offering services such as website creation, SEO optimization, domain registration, hosting, and various graphic design works including logos and print advertising. The website is professionally designed with good navigation and content relevance, targeting local businesses seeking digital presence and branding solutions. Technically, the site uses modern JavaScript libraries like jQuery and Slippry slider, integrates Google Tag Manager and Google Analytics for tracking, and is hosted likely by Active24. The site is mobile optimized and implements a comprehensive cookie consent mechanism in compliance with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. No contact emails or phone numbers are directly visible, and no terms of service or incident response policies are published, which could be improved for better trust and compliance. Overall, the website is safe, professional, and trustworthy with room for enhancements in security documentation and contact transparency.

O

OBORA OBELISK s.r.o.

oboraobelisk.cz

0

Obora Obelisk is a small Czech company focused on a unique landscape restoration and wildlife conservation project. The website presents a well-structured and content-rich platform describing the mission, history, and current activities including hunting and educational programs. The company is led by Ing. František Fabičovic and provides clear contact information and legal registration details, enhancing business credibility. Technically, the site uses Joomla CMS with modern front-end libraries and is optimized for mobile devices. Security posture is good with HTTPS and cookie consent mechanisms implemented, though security headers and incident response information are lacking. Privacy compliance is well addressed with a cookie policy and GDPR-aligned consent. Overall, the site is professional, trustworthy, and safe for general audiences.

H

Hotel U Pramenů ****

upramenu.cz

0

Hotel U Pramenů is a four-star hospitality business located in Plzeň, Czech Republic, offering accommodation, restaurant services, event hosting, weddings, and business conferences. The website presents a professional image with clear navigation and comprehensive service descriptions, targeting tourists, business travelers, and local customers. The company maintains an active social media presence and partners with recognized platforms such as Booking.com and Tripadvisor. Technically, the website is built on WordPress using Elementor, with modern web technologies and GDPR-compliant cookie and privacy policies. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and incident response information are absent. Overall, the site is trustworthy and well-maintained, supporting the business's credibility and customer engagement.

B

Baťa region

batuvregion.cz

0

Baťa region is a culturally focused regional tourism website dedicated to promoting the Baťa region in the Czech Republic, highlighting its architectural heritage, historical sites, and cultural landmarks. The site targets tourists and locals interested in exploring the region's unique offerings through interactive maps, curated content, and social media engagement. The business model is informational and promotional, aiming to increase awareness and visitation to the Baťa region. Technically, the website employs a modern tech stack including jQuery, Swiper.js for sliders, Google Maps API for interactive location markers, Google Tag Manager for analytics, and Google reCAPTCHA v3 for form security. The site is hosted likely by Active24, with a responsive design optimized for mobile devices and good SEO practices. Cookie consent and GDPR compliance mechanisms are implemented, reflecting a mature digital infrastructure. From a security perspective, the website uses HTTPS with good SSL configuration, integrates reCAPTCHA to prevent spam, and employs cookie consent management. However, it lacks explicit security headers like CSP and security.txt for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. The site would benefit from enhanced security policies and incident response information. Overall, the website presents a professional and trustworthy front for regional tourism promotion with good content quality and technical implementation. The risk profile is low, with recommendations focusing on improving security headers, publishing security policies, and enhancing transparency around incident response and vulnerability disclosures.

P

Památník Tomáše Bati

pamatnikbata.eu

0

Památník Tomáše Bati is a cultural heritage and museum website dedicated to the memorial of Tomáš Baťa, a prominent figure in Zlín's history and architecture. The site targets visitors interested in architecture, history, and cultural tourism, offering guided tours, ticket sales, and event hosting. The website is professionally designed with clear navigation, multilingual support, and strong branding consistency. Technically, it is built on WordPress with modern plugins for SEO, GDPR compliance, and user experience enhancements. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The domain registration is consistent with the business's Czech origin, enhancing trustworthiness. Overall, the site presents a secure, compliant, and user-friendly platform for cultural engagement.

F

Filharmonie Bohuslava Martinů

filharmonie-zlin.cz

0

Filharmonie Bohuslava Martinů is a cultural institution based in the Czech Republic, focused on delivering classical music concerts and cultural events to the local community and classical music enthusiasts. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern web technologies such as Google Tag Manager and Font Awesome, with HTTPS enabled, but lacks advanced security headers and privacy compliance features. The absence of WHOIS data due to privacy protection limits the ability to fully verify domain ownership and legitimacy. Overall, the security posture is moderate with room for improvement in privacy policies and security best practices. Strategic recommendations include implementing privacy and cookie policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

D

Divadlo Zlín

divadlozlin.cz

0

Divadlo Zlín is a publicly funded cultural institution based in the Czech Republic, operating since 2007. It offers theatrical performances, educational events, and cultural projects primarily targeting the general public interested in arts and theater. The institution is supported financially by the statutory city of Zlín, the Zlín Region, and the Ministry of Culture of the Czech Republic, positioning it as a key regional cultural entity. The website reflects a professional and well-maintained digital presence with clear navigation, comprehensive content, and strong branding consistency. Technically, the website is built on WordPress using modern plugins and frameworks such as Bricks theme builder, Fluent Forms, and PixelYourSite for marketing. It employs best practices in SEO, mobile optimization, and accessibility, ensuring a fast and user-friendly experience. Hosting and domain registration are consistent and reliable, with Active24 as the registrar and likely hosting provider. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent management compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No critical vulnerabilities or suspicious content were detected. Overall, Divadlo Zlín's website demonstrates a mature digital infrastructure suitable for its cultural mission, with strong compliance and user experience. Strategic improvements in security transparency and incident response readiness would further strengthen its posture.

S

Statutární město Zlín

zlin.eu

0

The website https://zlin.eu/ serves as the official online presence of the statutory city of Zlín in the Czech Republic. It provides comprehensive information about the city's administration, culture, events, public services, and citizen engagement platforms. The site targets residents, local businesses, and visitors, offering services such as an official citizen portal, public notices, event calendars, and contact information for municipal departments. The business model is that of a government entity providing transparent and accessible information and services to its constituents. Technically, the website employs a modern technology stack including jQuery, Google Analytics, Google Tag Manager, Google reCAPTCHA, OneSignal push notifications, and various UI libraries such as Slick Carousel and SweetAlert2. It is hosted by Media4web, s.r.o., a Czech hosting provider. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured navigation. Cookie consent and privacy policies are implemented with high confidence in GDPR compliance. From a security perspective, the site enforces HTTPS with a Content Security Policy header and uses Google reCAPTCHA to protect forms. While no critical vulnerabilities or exposed sensitive data were detected, additional security headers could enhance protection. There is no explicit security incident response or vulnerability disclosure information published, which could be improved to strengthen trust and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively serves its role as a municipal information hub with a strong digital presence. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clear incident response contacts to further improve security posture and stakeholder confidence.

The website visitzlin.eu serves as the official tourist information portal for the city of Zlín, Czech Republic. It provides comprehensive information about the city, including cultural events, historical background, practical visitor information, and local attractions. The portal targets tourists, local residents, and visitors interested in exploring Zlín and its surroundings. The business model is a government-operated informational service aimed at promoting tourism and local culture. Technically, the site employs a custom CMS with a modern JavaScript technology stack including jQuery and various UI libraries such as Slick Carousel and FullCalendar. It integrates Google services like Maps API, Analytics, Tag Manager, and reCAPTCHA for security and tracking. The site is hosted by Media4web, s.r.o., a Czech hosting provider, and uses HTTPS with a Content-Security-Policy header, indicating a good security baseline. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CAPTCHA protection on forms. However, it lacks some additional security headers and a visible cookie consent mechanism, which are important for GDPR compliance. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is transparent and consistent with the website's official city affiliation, supporting its legitimacy. Overall, the website is a well-maintained, regionally focused government portal with good content quality and technical implementation. It could improve privacy compliance and security posture by adding cookie consent, security policies, and additional headers. The risk level is low, with no critical issues detected.

I

Idealab

archizoom.cz

0

ARCHIZOOM.CZ is a Czech online magazine specializing in architecture, interiors, and design, publishing daily content including articles, podcasts, and newsletters. The site is operated by Idealab, a Czech media and publishing company, and maintains a strong market position within the Czech architectural media niche. The website features a modern WordPress infrastructure with Elementor and Yoast SEO, ensuring good technical maturity and SEO optimization. Hosting is provided by a Czech hosting provider with valid SSL certificates, contributing to a secure browsing experience. However, the site lacks explicit privacy policy and terms of service pages, which are important for full GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms but could be improved by adding security headers and incident response information. Overall, the website is professional, trustworthy, and well-maintained, targeting Czech-speaking architecture and design enthusiasts.

Z

Zlínský zámek

zlinskyzamek.cz

0

The website zlinskyzamek.cz represents a cultural and historical institution centered around the Zlínský zámek castle in the Czech Republic. It serves as an informational portal for visitors interested in cultural exhibitions, galleries, and design market events. The site is modest in scale, targeting local and regional audiences interested in heritage and cultural activities. The business model appears to be non-profit or publicly funded, supported by partnerships with local government and cultural organizations. The domain age and registration data align well with the site's purpose and location, supporting its legitimacy. Technically, the website uses a basic technology stack including jQuery 1.7.1, Google Analytics, and Google Tag Manager for tracking. The site is hosted under Czech domain registration with name servers from forpsi.net. The site shows moderate performance and basic mobile optimization but lacks modern frameworks or CMS indications. Accessibility and SEO optimizations are minimal. The site does not implement modern security headers or explicit privacy and cookie policies, which limits its compliance posture. From a security perspective, the site uses HTTPS (implied by Google Analytics scripts), but no explicit security headers were detected. The use of an outdated jQuery version introduces potential vulnerabilities. No forms or user input mechanisms were found, reducing attack surface but also limiting interactivity. Privacy compliance is weak due to absence of privacy and cookie policies and no GDPR consent mechanisms. No incident response or vulnerability disclosure information is provided. Overall, the site is a basic cultural informational portal with moderate trustworthiness but limited security and privacy maturity. Strategic improvements in updating technology, implementing security best practices, and adding privacy compliance mechanisms would enhance the site's security posture and user trust.

N

Nadační fond Zikmundova vila

zikmundovavila.cz

0

Zikmundova vila is a cultural heritage site located in Zlín, Czech Republic, managed by the Nadační fond Zikmundova vila, a non-profit organization founded in 2020. The website provides rich historical and cultural information about the villa, its notable past residents, and ongoing cultural programs. It targets a broad audience including tourists, cultural enthusiasts, and the general public interested in history and architecture. The organization positions itself as a key cultural institution in the region, offering guided tours, educational events, and long-term projects supported by regional and international partners.

N

Nadace Tomáše Bati

nadacetomasebati.cz

0

Nadace Tomáše Bati is a Czech non-profit foundation focused on preserving the legacy of the Baťa family and supporting social, cultural, and educational initiatives primarily in the Zlín region. The foundation operates from the historically significant Baťa villa and offers a variety of community events, educational programs, and an e-commerce platform for branded merchandise. The website is professionally designed with consistent branding and clear navigation, targeting a general audience interested in culture and community development. Technically, the website employs a modern JavaScript stack including jQuery, Vue.js, and various UI libraries, ensuring good mobile optimization and user experience. The site uses HTTPS with valid SSL certificates and incorporates Google reCAPTCHA and cookie consent mechanisms, reflecting a reasonable security posture. However, the absence of explicit security headers and incident response information suggests room for improvement. From a security perspective, the site shows good practices such as encrypted connections and form protections but lacks detailed security policies and vulnerability disclosure mechanisms. The missing WHOIS data for the domain is a concern for trust and legitimacy, although the website content and external partnerships support its authenticity. Overall, the website presents a trustworthy and professional front for the foundation but should address WHOIS transparency and enhance security disclosures to improve credibility and compliance.

F

FYZIO GARDEN s.r.o.

fyziogarden.cz

0

FYZIO GARDEN s.r.o. operates a specialized physiotherapy and rehabilitation center located in Zlín, Czech Republic. The company offers professional healthcare services including physiotherapy, rehabilitation, massages, and gift vouchers. The website targets local clients seeking quality body care and rehabilitation services. The business model is service-oriented with a focus on healthcare and wellness. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager, Google Analytics, and a cookie consent framework. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, no CMS or hosting provider details were detected, and some security headers appear to be missing. From a security perspective, the site uses HTTPS and has a comprehensive cookie consent mechanism, indicating good privacy compliance. The absence of WHOIS data is a notable gap, reducing domain transparency and trustworthiness. No critical vulnerabilities or exposed sensitive data were found, but improvements in security headers and incident response information are recommended. Overall, the website is professional and trustworthy in content and presentation, but the lack of WHOIS data and some security best practices slightly reduce its security posture and domain legitimacy score.

Z

ZM - TECH s.r.o.

hotel-tomasov.cz

0

Hotel Tomášov is a premium 4-star hospitality business located in Zlín, Czech Republic, offering luxury accommodation, wellness, restaurant services, and event hosting. The hotel leverages its historical connection to the Baťa brand and regional tourism partnerships to position itself as a boutique destination for both leisure and business travelers. The website is professionally designed, multilingual, and rich in content, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data limits domain trust verification but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving incident response visibility to strengthen trust and compliance.

V

Vila Jiřinka

vilajirinka.cz

0

Vila Jiřinka is a small wellness hotel and pension located in the center of the spa town Luhačovice, Czech Republic. The business offers accommodation, wellness services including whirlpool, sauna, salt cave, massages, and cosmetic procedures. The website is built on WordPress with a moderate technical infrastructure and basic mobile optimization. Security posture is good with HTTPS enabled but lacks advanced security headers and incident response information. Privacy and cookie policies exist but are basic and not fully GDPR compliant. The domain WHOIS data is missing, which reduces trustworthiness, but the website content and customer reviews indicate a legitimate and reputable business. Overall, the site provides a professional user experience with clear contact information and trust signals such as certifications and customer ratings.

Z

Zámek Wichterle

zamekwichterle.cz

0

Zámek Wichterle is a hospitality business based in the Czech Republic offering hotel accommodation and unique wellness services including a beer spa. The website presents a professional and modern design built on WordPress with the Divi theme, enhanced by SEO optimizations via Yoast and user consent management through Cookiebot. The technical infrastructure is solid with HTTPS enabled and integration of Google Tag Manager for analytics. However, the site lacks explicit privacy and terms of service policies, and no direct contact information is readily available, which may impact user trust and compliance. Security posture is moderate with SSL in place but missing security headers and vulnerability disclosure mechanisms. Overall, the business appears legitimate and consistent with its domain registration data, but improvements in compliance and security transparency are recommended.

K

KOMA Modular

pavilon-expo2015.cz

0

The website pavilon-expo2015.cz is dedicated to the Czech pavilion at EXPO2015 in Milan, showcasing modular architecture by KOMA Modular. It serves as an informational and promotional platform for the pavilion's history, design, and current use as a cultural and exhibition center in Vizovice, Czech Republic. The site is well-structured, professionally designed, and targets a general audience interested in architecture and cultural exhibitions. Technically, it uses modern JavaScript libraries, the Bolt CMS platform, and integrates Piwik analytics for visitor tracking. However, it lacks visible privacy and cookie policies, and no contact information is explicitly provided on the main pages, which are areas for improvement. Security-wise, the site uses HTTPS but does not show advanced security headers or policies in the HTML content, indicating moderate security posture. WHOIS data confirms the domain's legitimacy and consistency with the business purpose. Overall, the site is trustworthy, informative, and professionally maintained but could enhance privacy compliance and security transparency.

M

Městys Pozlovice

pozlovice.cz

0

Městys Pozlovice operates an official municipal website serving the local community and visitors with comprehensive information about local news, events, public notices, and services. The website targets residents, local organizations, and tourists, providing a centralized platform for community engagement and municipal communication. The business model is government/public service with a focus on transparency and accessibility. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Swiper.js, and Leaflet for interactive maps, supported by a Nette PHP framework backend. The site is hosted by REG-ZONER and uses HTTPS with a valid SSL certificate, ensuring secure communications. The design is responsive and accessible, with good SEO practices and clear navigation. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and use of reCAPTCHA to protect forms. However, it lacks some security headers and a formal incident response or vulnerability disclosure page. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. The WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with the municipal nature of the site. Overall, the website is trustworthy, professionally maintained, and suitable for its intended audience. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance.

H

Hotel VEGA, s.r.o.

hotelvega.cz

0

Hotel VEGA, s.r.o. operates a hospitality business located in Luhačovice, Czech Republic, offering accommodation, wellness, sports facilities, and event hosting services. The website targets tourists, families, seniors, and corporate clients, positioning itself as a regional hotel with a focus on wellness and family-friendly amenities. The business model centers on providing comprehensive hospitality services including lodging, wellness treatments, and recreational activities. Technically, the website employs a moderately modern technology stack including MooTools JavaScript framework, Google Fonts, Google Analytics, and Pikaday datepicker. The site is mobile-optimized with good SEO and basic accessibility features. Performance is moderate, and the site uses HTTPS with cookie consent mechanisms, indicating a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent with categorized options. However, it lacks explicit security headers and a dedicated security policy or incident response contact information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is missing, which slightly reduces trustworthiness but does not significantly impact the overall security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations such as GDPR. The absence of WHOIS data and security policy details are areas for improvement. Strategic recommendations include implementing security headers, publishing a security policy, and providing incident response contacts to enhance trust and security posture.

Z

ZÁLESÍ a.s.

pohoda-luhacovice.cz

0

Wellness Hotel Pohoda is a medium-sized hospitality business located in Luhačovice, Czech Republic, offering wellness, accommodation, and family-friendly services. The hotel is positioned as a reputable regional player with strong customer ratings and partnerships with local tourism and wellness platforms. Technically, the website uses a modern tech stack including jQuery, Google Analytics, and Facebook Pixel, with a CMS likely provided by Previo. The site is well-structured, mobile-optimized, and SEO-friendly, though some accessibility and security header improvements are possible. Security posture is solid with HTTPS and secure forms, but lacks explicit security headers and a dedicated security policy. Privacy compliance is strong with a comprehensive GDPR privacy policy and cookie consent mechanism. The absence of WHOIS data reduces domain trustworthiness, but the business information and certifications support legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences.

S

Sdružení obcí mikroregionu Valašské Klobucko

valasskeklobucko.cz

0

The website valasskeklobucko.cz serves as the official online portal for the Valašské Klobucko microregion, providing comprehensive information on tourism, local traditions, events, history, nature, accommodation, and gastronomy. It targets tourists and local residents interested in exploring or learning about the region. The business model is informational and promotional, typical for a government or non-profit regional entity. The site maintains a consistent brand presence and offers social media engagement channels to extend its reach. Technically, the website is built on the vismo CMS platform, utilizing standard web technologies including HTML5, CSS, JavaScript, and integrates Google Analytics and Tag Manager for visitor tracking. It supports mobile optimization and basic accessibility features. The site includes a cookie consent mechanism compliant with GDPR requirements, enhancing user privacy controls. From a security perspective, the site enforces HTTPS and employs cookie consent with granular options. However, it lacks visible security headers such as CSP or HSTS, and does not provide explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is moderate but could be improved with additional headers and documented policies. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing security headers, publishing security and incident response policies, and continuous monitoring of third-party scripts. These steps will enhance the site's security maturity and user trust.

L

Lázně Luhačovice, a.s.

lazneluhacovice.cz

0

Lázně Luhačovice, a.s. is a well-established spa and wellness company based in the Czech Republic, offering a broad range of medical spa treatments, wellness stays, and leisure activities. The company targets health-conscious individuals, families, and patients seeking both insurance-covered and self-paid services. Their market position is strong within the Moravian spa sector, supported by multiple certifications and positive customer reviews. Technically, the website is built on a custom CMS by Emersion Software, utilizing modern JavaScript libraries like jQuery and Splide for UI components, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS and cookie consent mechanisms, but lacks some recommended security headers and a public security policy. WHOIS data is unavailable, which slightly reduces domain trust but the overall business credibility remains high due to transparent contact information and external trust signals. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to improve trust and compliance.