Security Directory

TESMA Jaroměřice s.r.o. is a small, municipally founded company established in 1999, providing technical services primarily to the town of Jaroměřice nad Rokytnou and surrounding entities. Their key services include city maintenance, property management, waste handling, swimming pool operations, cemetery management, and equipment rental. The company operates a professionally designed website that is mobile responsive and provides clear navigation and relevant content for its target audience. The technical infrastructure leverages established JavaScript libraries, a proprietary CMS (IPO CMS by ANTEE s.r.o.), and privacy-conscious analytics via Matomo. Security measures include HTTPS enforcement and Google reCAPTCHA integration, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data is a notable gap, slightly impacting trustworthiness but not detracting from the evident legitimacy of the business based on website content and contact information.

V

Via Aurea, s.r.o.

spilberk.cz

0

The website www.spilberk.cz serves as the official online presence for Špilberk Castle, a prominent cultural and historical museum located in Brno, Czech Republic. Operated under the auspices of Via Aurea, s.r.o., the site provides comprehensive visitor information, including guided tours, exhibitions, events, and ticketing options. The target audience includes tourists, families, school groups, and the general public interested in cultural heritage. The business model is primarily government or municipal supported, focusing on cultural preservation and public engagement. Technically, the website employs a modern technology stack featuring jQuery, Bootstrap, FontAwesome, and Google services such as Fonts and Analytics. It uses the Nette Framework for AJAX and form handling, with performance and mobile optimization rated as good. Security measures include HTTPS enforcement, Google reCAPTCHA v3 integration for spam protection, and a robust cookie consent mechanism compliant with GDPR. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear cookie policies and consent banners. Contact information is transparent and includes phone, email, and physical address details. The lack of WHOIS data reduces domain transparency but does not detract from the website's professional appearance and trustworthiness. Overall, the website is well-designed, user-friendly, and secure, serving its purpose effectively as a cultural institution's digital platform. Strategic recommendations include enhancing security headers and maintaining regular audits of third-party libraries to sustain security and compliance standards.

V

Vojenský historický ústav Praha

vhu.cz

0

Vojenský historický ústav Praha is a well-established Czech government institution dedicated to military history preservation, research, and public education. The website serves as a portal for multiple museums, archives, exhibitions, and educational programs, targeting historians, researchers, students, and the general public interested in military history. It holds a strong market position as a national military historical institute with a medium organizational size and a founding date consistent with its domain registration in 2005. The site content is rich, professionally presented, and consistent with the institution's mission. Technically, the website is built on WordPress 6.4.5, utilizing common libraries such as jQuery and Bootstrap for responsive design and user experience. Google Analytics and Google Tag Manager are used for visitor tracking, indicating moderate user tracking levels. The site is served over HTTPS with good SSL configuration, but lacks some advanced security headers and cookie consent mechanisms, which are recommended for enhanced security and privacy compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible sensitive data exposure. However, it lacks published security policies, incident response contacts, and GDPR cookie consent banners, which are areas for improvement. No vulnerabilities or suspicious domains were detected, and the WHOIS data confirms domain legitimacy and consistency with the institution's identity. Overall, the website is trustworthy, professionally maintained, and serves its audience effectively. Strategic improvements in privacy compliance and security policy transparency would further enhance its security posture and user trust.

MTD Consulting is a Polish consulting firm specializing in assisting clients with acquiring European Union grants and funding. The company positions itself as an expert in the field, providing real data on funds obtained for clients, emphasizing transparency and trust. The website is professionally designed using WordPress and integrates common web technologies such as Bootstrap, jQuery, and Google Maps API. Security measures include HTTPS and Google reCAPTCHA to protect forms, but the site lacks advanced security headers and formal privacy or cookie policies, indicating areas for compliance improvement. Contact information is clearly presented, enhancing business credibility. Overall, the website is accessible, well-structured, and targets Polish businesses seeking EU funding.

U

Urząd Miejski w Wągrowcu

wagrowiec.eu

0

The website wagrowiec.eu serves as the official online portal for the city government of Wągrowiec, Poland. It provides comprehensive information and services targeted at residents, tourists, and investors, including news updates, event calendars, municipal services, cultural and sports activities, and investment opportunities. The site is well-structured with clear navigation and multilingual support, reflecting a mature digital presence for a municipal government entity. Technically, the site employs modern JavaScript libraries such as jQuery and Flexslider, uses Google Fonts, and integrates Google Analytics for visitor tracking. Performance optimizations via PageSpeed are evident, and the site is served over HTTPS with good loading speed and mobile optimization. Security posture is solid with HTTPS and privacy mechanisms in place, though security headers could be enhanced and explicit incident response contacts are absent. Privacy and cookie policies are present and GDPR compliant, supporting user consent and transparency. Overall, the site demonstrates a professional and trustworthy government web presence with room for incremental security improvements.

R

Rosické TS, příspěvková organizace

rosickets.cz

0

Rosické TS is a municipal contributory organization established by the city of Rosice in 2007 to provide essential public services such as city cleaning, waste management, public lighting maintenance, and road upkeep. The organization serves the local community and operates under the governance of the city council. The website reflects this public service role with clear contact information and descriptions of services offered. Technically, the website uses legacy JavaScript libraries like jQuery and MooTools, with a moderate performance profile and basic mobile optimization. Security posture is moderate with HTTPS usage implied but lacks advanced security headers and published privacy policies. The absence of WHOIS data reduces domain trust, but the website content and contact details support legitimacy. Overall, the site is functional and informative but could improve in privacy compliance and security best practices.

M

Město Žatec

mesto-zatec.cz

0

Město Žatec operates an official municipal website serving residents and visitors with comprehensive information about city governance, events, institutions, and public services. The site positions itself as the authoritative source for local news, administrative details, and cultural activities in Žatec, Czech Republic. It targets a broad audience including citizens, tourists, and local organizations. The business model is typical for government entities, focusing on transparency and public engagement. Technically, the website employs a custom CMS platform with a modern frontend stack including jQuery, Bootstrap, Swiper, and PhotoSwipe for interactive content and media presentation. The site is mobile-optimized and accessible, with a clear navigation structure and SEO-friendly metadata. Cookie consent mechanisms are implemented to comply with privacy regulations, although no explicit privacy policy page was detected. From a security perspective, the site uses HTTPS and includes cookie consent scripts, but lacks visible security headers and formal security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data reduces confidence in domain registration transparency but does not detract significantly from the site's legitimacy given its official nature and extensive content. Overall, the website presents a professional and trustworthy digital presence for the city of Žatec, with recommendations to enhance privacy disclosures and security headers to improve compliance and protection.

F

Federal Chief Information Officers Council

cio.gov

0

The website www.cio.gov serves as the official online presence of the Federal Chief Information Officers Council, a U.S. government entity focused on improving IT practices across federal agencies. It provides authoritative resources including policies, guides, and news relevant to federal IT leadership. The site targets government IT professionals and stakeholders, positioning itself as a trusted source for federal IT governance and management. Technically, the site employs modern web technologies such as the U.S. Web Design System (USWDS), jQuery, and integrates Google Analytics and the Digital Analytics Program for user tracking. The site is mobile-optimized, accessible, and uses HTTPS to secure communications. Security posture is strong with encrypted connections and anonymized analytics, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Overall, the site is highly trustworthy, consistent with official government branding and content, and shows no signs of malicious activity or suspicious behavior.

Plainlanguage.gov is an official U.S. government website managed by the Plain Language Action and Information Network (PLAIN), a community of federal employees promoting clear and accessible government communications. The site provides comprehensive resources including guidelines, training, examples, and events to support the use of plain language across federal agencies. It is affiliated with the U.S. General Services Administration (GSA), reinforcing its authoritative position in the government sector. Technically, the website leverages modern web standards and the U.S. Web Design System (USWDS) to ensure accessibility, mobile optimization, and fast performance. It integrates Google Analytics and DigitalGov analytics for user tracking and measurement, while maintaining a clean and professional design with clear navigation and structured content. From a security perspective, the site enforces HTTPS and follows good practices by not exposing sensitive data. However, it lacks some advanced security headers and a formal security policy or incident response contact, which could be areas for improvement. Privacy compliance is moderate, with a clear privacy policy but no cookie consent mechanism detected. Overall, the website demonstrates a high level of professionalism, trustworthiness, and usability, making it a reliable resource for its target audience. The domain's WHOIS data is limited due to .gov domain policies but the affiliation with GSA and consistent branding strongly support legitimacy and trust.

M

Muzeum města Brna

muzeumbrna.cz

0

Muzeum města Brna is a well-established cultural institution dedicated to preserving and showcasing the history and heritage of Brno, Czech Republic. The website reflects a medium-sized government/non-profit entity with a strong focus on exhibitions, educational programs, and cultural events. It serves a broad audience including tourists, local citizens, and educational institutions. The digital presence is supported by a modern tech stack including jQuery, Bootstrap, and Google services, with good mobile optimization and user experience. Privacy and cookie compliance are well implemented with clear consent mechanisms and GDPR adherence. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements in security headers and explicit policies are recommended. The absence of WHOIS data limits domain trust assessment but the website's professional presentation and official partnerships indicate legitimacy.

V

Výskumný ústav vodného hospodárstva

vuvh.sk

0

Výskumný ústav vodného hospodárstva (VÚVH) is a well-established Slovak government research institute specializing in sustainable water management, environmental protection, and water quality improvement. With over 70 years of history, it offers a broad range of services including hydrological research, river morphology, water protection, laboratory services, and professional training. The website reflects a mature digital presence with comprehensive content targeting professionals, researchers, students, and the general public interested in water management. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering good performance and mobile responsiveness. Security posture is solid with HTTPS, cookie consent, and some security best practices, though explicit security headers could be improved. Privacy compliance is strong with clear cookie and privacy policies. Overall, the site projects high trustworthiness and professionalism.

Konsultacje Społeczne is a Polish online platform and application designed to facilitate transparent public consultations and dialogue between local government authorities and residents. The service is primarily targeted at Polish local government units (JST) and their citizens, providing a unique tool to support social consultations. The business is operated by EuroInnowacje Software Sp. z o.o., a small-sized company founded in 2017, positioning itself as a pioneer in Poland for digital civic engagement solutions. The website reflects a professional and consistent brand image with clear business objectives and a focus on government sector clients. Technically, the website employs a straightforward tech stack including jQuery, Bootstrap grid, and Google Fonts, hosted by home.pl S.A. The site is mobile-optimized with good SEO practices but lacks advanced frameworks or CMS. Performance is moderate with basic accessibility features. No major technical debts or outdated technologies were detected, though updating jQuery and adding modern security headers would enhance the infrastructure. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. No forms or user input fields are present on the main page, reducing attack surface. WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. However, the absence of a published security policy or incident response contacts indicates room for maturity improvement. Overall, the website presents a moderate risk profile with good business credibility but some gaps in privacy compliance and security best practices. Strategic improvements in security headers, cookie consent, and incident response transparency would strengthen trust and compliance posture.

The website inwestycjejst.pl serves as a modern portal designed to present investment offers for local government units (Gminy) in Poland. It provides a simple, intuitive, and graphically customizable platform available in multiple languages and compliant with PAIH standards. The business targets municipalities and investors, positioning itself as a niche service provider in the government technology sector. The domain is registered with a reputable Polish registrar and has been active since 2018, aligning well with the business's operational timeline. Technically, the website employs standard web technologies such as HTML5, CSS3, and Google Fonts, with no detected CMS or complex frameworks. The site is moderately optimized for performance and mobile devices, with good SEO practices evident from meta tags and structured content. However, accessibility features are basic, and no advanced technical frameworks or analytics tools are detected. From a security perspective, the site lacks visible security headers and does not provide privacy, cookie, or terms of service policies, indicating compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure mechanisms are present. The domain uses HTTPS (assumed from URL), but DNSSEC is not enabled, which could improve DNS security. Overall, the security posture is moderate but requires enhancements to meet best practices. The overall risk assessment suggests a legitimate and professionally presented business with minor compliance and security shortcomings. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and establishing vulnerability disclosure and incident response protocols to enhance trust and compliance.

Euro Innowacje sp. z o.o. is a Polish company specializing in securing European Union funding and managing EU projects, primarily targeting local government units and public institutions. The company offers innovative digital solutions such as online social consultations and citizen budgeting tools, positioning itself as a trusted partner in the public sector with a solid track record since its founding in 2012. The website reflects a professional and consistent brand image, with clear contact information and active social media engagement. Technically, the site is built on WordPress with common plugins and integrates Google Analytics for user insights. While the site is secure with HTTPS and cookie consent mechanisms, it lacks advanced DNS security and explicit security headers, which are recommended for improvement. Privacy policies are comprehensive and GDPR compliant, supporting the company's credibility. Overall, the website demonstrates a good balance of business professionalism and technical maturity, with room for enhanced security practices.

Fundacja na Rzecz Wsparcia Innowacji w JST is a Polish non-profit organization dedicated to supporting local government units (JST) through innovative solutions, training, consulting, and software tools. The foundation targets municipalities, counties, and regions in Poland, aiming to modernize and improve public administration efficiency. Their key services include public relations support, social consultation platforms, legal and economic consulting, and specialized training programs. The website reflects a professional and consistent brand image with clear contact channels and client references from Polish local governments. Technically, the website is built on WordPress 6.6.2 with a modern tech stack including jQuery, Bootstrap, and various UI libraries. It uses HTTPS with Google reCAPTCHA v3 for form protection and integrates Google Analytics and Facebook SDK for tracking and marketing. The site is mobile-optimized and performs moderately well, though accessibility features are basic. No advanced security headers or DNSSEC are implemented, which presents some security improvement opportunities. From a security perspective, the site has a moderate posture with HTTPS and anti-bot measures but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business claims, showing a legitimate and stable presence since 2016. Overall, the website is a credible and professional platform for a specialized non-profit serving Polish local governments. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance trust and security posture.

Q

QCM s.r.o.

manazer-vz.cz

0

QCM s.r.o. operates the Manažer veřejných zakázek platform, a web-based tool designed to provide managers with comprehensive oversight and analytics of public procurement processes. The company is a recognized leader in the electronization of public procurement in the Czech Republic, offering both software solutions and professional training services. The website reflects a mature digital presence with a focus on usability and clear communication of services. Technically, the site is built on WordPress with modern JavaScript libraries and is mobile-optimized, though there is room for improvement in security headers and privacy compliance mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks explicit security policies and incident response contacts. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

Q

QCM s.r.o.

ezak.cz

0

QCM s.r.o. operates the E-ZAK platform, a certified electronic tool designed for the management and administration of public procurement processes in the Czech Republic. The platform complies with relevant legislation (law no. 134/2016 Sb.) and serves a broad audience including public contracting authorities, suppliers, and the professional public. With a significant user base and numerous installations, E-ZAK holds a strong market position in the government sector for procurement software solutions. The business model includes both licensing and rental options, with hosting services provided in a certified environment to ensure compliance and operational reliability. Technically, the website employs modern web technologies including Google Tag Manager, Google reCAPTCHA, and modular JavaScript and CSS. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Hosting appears to be managed by QCM's own certified hosting center, ensuring control over the operational environment. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and avoids exposing sensitive data. However, it lacks explicit security headers and a published security policy or incident response contact. Privacy compliance is well addressed with a GDPR policy and cookie consent mechanism. The WHOIS data confirms domain legitimacy with consistent registration details and an appropriate domain age. Overall, the website and business demonstrate a mature and trustworthy presence with strong compliance and security postures. Recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen trust and resilience.

The website povis.cz serves as a flood information system primarily targeting governmental and water management entities in the Czech Republic. The domain has been registered since 2007 and is hosted on Czech infrastructure, indicating a stable and legitimate presence. However, the website content is minimal, consisting mainly of a redirect page with basic metadata and no visible interactive content or detailed business information. Technically, the site uses basic HTML and CSS without modern frameworks or CMS, and lacks mobile optimization and accessibility features. Security posture is weak due to absence of HTTPS enforcement and security headers, and no privacy or cookie policies are present, which raises compliance concerns. Overall, the site appears functional but outdated and lacking in user engagement and security best practices.

R

Regionální muzeum K. A. Polánka

muzeumzatec.cz

0

Regionální muzeum K. A. Polánka Žatec is a regional cultural institution based in Žatec, Czech Republic, providing museum exhibitions, cultural events, and educational programs. The website showcases current and upcoming exhibitions such as Žatecký poklad and Krutá léta, targeting local visitors and cultural enthusiasts. The institution operates multiple physical locations including the main building, Křížova vila, and Stará papírna. The business model is non-profit, focusing on cultural preservation and public education. Technically, the website is built on the CMS Animato platform and utilizes common web technologies including jQuery, Google Tag Manager, Google Analytics, and Facebook SDK. The site is served over HTTPS with a cookie consent mechanism that complies with GDPR requirements. Performance and mobile optimization are moderate, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and provides cookie consent with granular user options. However, no explicit security headers or incident response policies are visible, and WHOIS data is unavailable, limiting domain trust verification. The site does not expose sensitive data and uses standard third-party analytics and social media integrations. Overall, the security posture is adequate but could benefit from enhanced header policies and documented incident response. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include implementing security headers, publishing incident response contacts, improving mobile and accessibility features, and maintaining regular audits of third-party scripts. The website is trustworthy and professional, serving its cultural mission effectively.

M

Muzeum T.G.M. Rakovník

muzeumtgm.cz

0

Muzeum T.G.M. Rakovník is a regional museum organization operating multiple branches and cultural programs in the Central Bohemian Region of the Czech Republic. The institution focuses on preserving and presenting historical and cultural heritage through exhibitions, educational programs, and events targeted at the general public, schools, and tourists. The website reflects a government-affiliated public cultural entity with a clear mission and regional presence. Technically, the website employs a traditional tech stack including jQuery 1.7.2, Google Fonts, FontAwesome, Google Maps API, and a proprietary CMS (nnx CMS). It features a cookie consent mechanism and integrates Google Analytics for user tracking. The site is moderately optimized for mobile devices and has a good design and navigation structure, though some technologies like jQuery are outdated, which may pose security risks. From a security perspective, the site lacks visible security headers and published security policies. The cookie consent banner indicates some privacy awareness, but no dedicated privacy policy or terms of service pages were found. WHOIS data is missing, which reduces trust in domain legitimacy, although the website content and government affiliation suggest a legitimate operation. No adult or questionable content is present, and no WAF or blocking mechanisms were detected. Overall, the website is functional, professional, and trustworthy for its intended audience but would benefit from improved security practices, updated technologies, and clearer privacy documentation to enhance compliance and user trust.

G

General Services Administration

section508.gov

0

Section508.gov is an official U.S. government website managed by the General Services Administration (GSA) that provides authoritative resources, guidance, and tools to ensure compliance with Section 508 of the Rehabilitation Act. The site targets federal agencies, vendors, and stakeholders involved in creating accessible information and communication technology (ICT) for individuals with disabilities. It holds a strong market position as the primary federal resource for digital accessibility compliance, offering comprehensive training, policy information, and accessibility tools such as the Accessibility Requirements Tool (ART). Technically, the website employs modern web technologies including jQuery, the U.S. Web Design System (USWDS), and integrates analytics via Google Tag Manager and the Digital Analytics Program. The site is mobile-optimized, accessible, and well-structured, reflecting a mature digital infrastructure consistent with government standards. Performance is moderate with good SEO and accessibility features. From a security perspective, the site enforces HTTPS with secure external script loading but lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. No vulnerabilities or sensitive data exposures were detected. WHOIS data is unavailable, likely due to privacy restrictions typical for .gov domains, but the domain's legitimacy is strongly supported by its official branding and content. Overall, Section508.gov demonstrates a high level of professionalism, trustworthiness, and compliance with accessibility standards. Strategic recommendations include implementing explicit security headers, adding cookie consent for privacy compliance, and publishing a formal security policy and incident response contact information to further strengthen its security posture and user trust.

L

Login.gov

login.gov

0

Login.gov is an official U.S. government digital identity platform managed under the General Services Administration. It provides a secure, single sign-on account for individuals to access multiple government services, enhancing user convenience and security. The platform targets individuals, government agency partners, and developers, offering authentication services and developer resources. The website is professionally designed, accessible, and consistent with U.S. government branding standards. Technically, the site leverages modern web technologies including Google Tag Manager, Google Analytics, reCAPTCHA, and the U.S. Web Design System. Hosting is provided via Amazon Web Services, inferred from DNS records. The site demonstrates excellent mobile optimization, accessibility, and SEO practices. Security is robust with HTTPS enforced, CAPTCHA protections, and domain transfer restrictions, although DNSSEC is not enabled. From a security perspective, Login.gov exhibits strong posture with no visible vulnerabilities or exposed sensitive data. However, improvements could be made by enabling DNSSEC, publishing a vulnerability disclosure policy, and providing explicit incident response contacts. Privacy compliance is good with a comprehensive privacy policy, though a visible cookie consent mechanism is absent. The domain WHOIS data is privacy protected but consistent with government domain registration norms, supporting legitimacy. Overall, Login.gov is a trustworthy, well-managed government digital identity service with strong technical and security foundations. Strategic recommendations include enhancing DNS security, improving transparency on security disclosures, and implementing cookie consent to further strengthen privacy compliance.

U

U.S. General Services Administration

digital.gov

0

Digital.gov is an official U.S. government website operated by the U.S. General Services Administration (GSA) that provides guidance, resources, and community collaboration opportunities to improve digital services in government. The site targets government employees and digital service professionals, offering a comprehensive platform for best practices, events, and news related to government digital transformation. The website is well-branded, consistent, and highly professional, reflecting its authoritative position in the government digital services space. Technically, the site is built on Drupal 10 and leverages the U.S. Web Design System (USWDS) for accessibility and design consistency. It uses modern analytics tools such as Google Analytics and Google Tag Manager, hosted on AWS DNS infrastructure. The site performs well with fast loading times, excellent mobile optimization, and strong accessibility features, making it user-friendly and compliant with government standards. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and explicit security headers, and does not publish a vulnerability disclosure or incident response contact, which are areas for improvement. The WHOIS data confirms the domain's legitimacy as a government-owned .gov domain with privacy protection typical for such entities. Overall, Digital.gov is a trustworthy, authoritative government resource with excellent content quality and technical implementation. Strategic improvements in security headers, DNSSEC, and privacy compliance mechanisms would further enhance its security posture and user trust.

G

General Services Administration (GSA) Technology Transformation Services

search.gov

0

Search.gov is an official U.S. government service operated under the General Services Administration's Technology Transformation Services. It provides a specialized search engine solution tailored for federal government websites, powering search results on over 2,000 sites. The service is designed to be secure, compliant, and highly configurable without requiring developer intervention, targeting federal agencies and their web administrators. The website reflects a strong government affiliation with consistent branding and clear communication of its mission and services. Technically, the site leverages modern web technologies including the U.S. Web Design System, Jekyll static site generation, and AWS DNS hosting. It integrates Google Tag Manager and the Digital Analytics Program for analytics, ensuring good performance, mobile optimization, and accessibility. The site is well-structured with comprehensive metadata, SEO optimization, and clear navigation, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses a .gov domain, which are strong trust indicators. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. There is no visible security policy or incident response information published, which could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is good with a clear privacy policy, though no cookie consent mechanism is present. Overall, Search.gov demonstrates a high level of professionalism, trustworthiness, and technical maturity appropriate for a government service. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and implementing a cookie consent mechanism to enhance privacy compliance and security posture.

O

Office of the Comptroller of the Currency

helpwithmybank.gov

0

HelpWithMyBank.gov is an official U.S. government website operated by the Office of the Comptroller of the Currency (OCC) providing information and assistance to customers of national banks and federal savings associations. The site offers a comprehensive range of banking help topics, complaint filing and tracking services, and customer assistance contact options. It serves as a trusted resource for banking consumers seeking guidance and support related to their financial institutions. The website is well-positioned as a government-backed authoritative source in the financial regulatory space.

B

Bprog Sp. z o.o.

cyfrowe-miasto.pl

0

Cyfrowe Miasto is a Polish company specializing in digital solutions for local governments, focusing on virtual resident cards and municipal portals. Their platform enables cities and municipalities to engage residents through loyalty programs, digital services, and integrated communication portals. The company positions itself as a key player in the smart city and e-government sector in Poland, serving municipalities such as Poznań, Ząbki, Ustrzyki Dolne, and Tarnowo Podgórne. The business model targets both government entities and residents as end users, providing digital transformation tools to improve local administration and citizen engagement. Technically, the website employs a modern tech stack including jQuery, Google Tag Manager, Microsoft Clarity, Facebook Pixel, and Salesmanago marketing automation. The site is mobile optimized with good SEO practices and basic accessibility features. The CMS appears custom or proprietary, supporting multiportal management for municipalities. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA on forms, alongside a GDPR-compliant cookie consent mechanism. However, it lacks visible security policies, incident response contacts, and advanced security headers. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent and transparent, with domain registration appropriate for the business age. Overall, Cyfrowe Miasto demonstrates a solid digital presence with good business credibility and privacy compliance. Strategic improvements in security transparency and incident response readiness would enhance trust and resilience.

P

Proměny Tišnova

promenytisnova.cz

0

The website 'Proměny Tišnova' serves as an official municipal portal for the city of Tišnov, Czech Republic, focusing on investment projects, urban development, and public news. It provides residents and stakeholders with updates on ongoing and planned city projects, including detailed news articles and interactive maps. The site leverages modern front-end technologies such as Bootstrap, Google Maps API, and various JavaScript libraries to deliver a responsive and informative user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the content and branding strongly indicate a legitimate government entity. Security posture is moderate, with no advanced security headers detected and limited privacy compliance indicators. The site uses Google Analytics and Tag Manager for user tracking but lacks visible privacy and cookie policies, which could be improved for GDPR compliance. Overall, the site is functional and informative but would benefit from enhanced security and privacy practices to strengthen trust and compliance.

T

Technické služby města Nového Jičína

tsnj.cz

0

Technické služby města Nového Jičína is a municipal service organization providing essential public services such as maintenance of local roads, public lighting, waste management, green area upkeep, and cemetery administration primarily for the city of Nový Jičín and its surroundings. Established in 2006, it operates as a contributory organization serving both citizens and local businesses. The website reflects a well-structured digital presence with clear service descriptions and multiple contact channels, targeting local residents and public entities. The company maintains a consistent brand identity and provides relevant certifications and legal documents to enhance trust.

K

Knihovna

knihovnanj.cz

0

The website www.knihovnanj.cz is the official online presence of a Czech public library, providing information and services to the general public. It is positioned as a regional government-operated library, offering library services, information access, and public events. The site uses WordPress CMS with common plugins for cookie consent and analytics, reflecting a moderate level of digital maturity. Technically, the site employs HTTPS with good security headers and integrates Google Analytics and Meta Pixel for user behavior tracking and marketing purposes. The security posture is solid with no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR, with a clear cookie consent mechanism and privacy policy hosted on a related domain. The lack of public WHOIS data is consistent with privacy protection practices and does not detract from the site's legitimacy.

M

Městské kulturní středisko Nový Jičín

mksnj.cz

0

Městské kulturní středisko Nový Jičín is a municipal cultural center serving the Nový Jičín region in the Czech Republic. The website acts as the official portal for cultural events, venue rentals, and community programs, targeting local residents and visitors interested in cultural activities. The institution holds a stable market position as a government-operated cultural entity, providing essential cultural services to the community. Technically, the website is built on WordPress with integration of modern analytics and marketing tools such as Google Analytics and Meta Pixel, ensuring good digital maturity and user engagement tracking. The site is well-optimized for mobile devices and follows standard SEO and accessibility practices, though accessibility could be improved further. Security-wise, the site enforces HTTPS, employs standard security headers, and uses a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks a publicly available security policy and incident response information, which are recommended for enhanced transparency and preparedness. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security documentation and accessibility.

N

Návštěvnické centrum Nový Jičín

icnj.cz

0

The website www.icnj.cz serves as the official Tourist Information Center for the city of Nový Jičín in the Czech Republic. It provides comprehensive visitor information including event calendars, cultural and sports activities, local services, and reservation systems for tours and exhibitions. The site targets tourists and visitors seeking information about the city and its attractions. The business model is primarily public service, supported by the city government and regional partners. The website content is well-structured, multilingual, and professionally presented, reflecting a small but essential government entity focused on tourism promotion. Technically, the site employs a custom CMS with modern JavaScript libraries such as jQuery and bxSlider for UI components. It integrates Google Analytics and Matomo for visitor tracking and uses a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Hosting details are not explicit, but HTTPS is enforced, ensuring secure communications. From a security perspective, the site demonstrates good practices including HTTPS, cookie consent, and no visible sensitive data exposure. However, no advanced security headers were detected, and no explicit security or incident response policies are published. The absence of WHOIS data for the domain is a concern, reducing trustworthiness from a domain registration standpoint, though the official city affiliation and contact details mitigate this risk. Overall, the website is a trustworthy, well-maintained public tourism portal with moderate technical sophistication and good privacy compliance. Strategic recommendations include improving security headers, publishing explicit security policies, and verifying domain registration details to enhance trust and compliance.

M

Městské informační centrum Rakovník

infocentrum-rakovnik.cz

0

Městské informační centrum Rakovník operates as the official municipal information center for the city of Rakovník, Czech Republic. The website serves residents and tourists by providing comprehensive information about local events, cultural heritage, services, and tourism opportunities. The site is well-structured with clear navigation and multilingual support, reflecting a focus on accessibility and user experience. The business model is public service-oriented, emphasizing community engagement and tourism promotion.

Odpady Chodov is a municipal waste management information portal serving the town of Chodov in the Czech Republic. The website provides residents and local businesses with schedules, news updates, and contact details for relevant municipal departments responsible for waste collection and environmental services. The site targets local citizens and companies, aiming to facilitate efficient waste sorting and disposal. Technically, the website employs a basic but functional tech stack including jQuery 1.11.1, FontAwesome icons, and Google Fonts. Hosting is provided by Websupport, a Czech hosting provider. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility and SEO features. No CMS or modern frameworks are detected. From a security perspective, the site lacks visible security headers and uses an outdated jQuery version, which may pose vulnerabilities. There is no evidence of HTTPS enforcement or advanced security configurations in the provided data. Privacy and cookie policies are absent, indicating potential compliance gaps with GDPR requirements. Contact information is clearly presented with official municipal emails and phone numbers, enhancing trust. Overall, the website is legitimate and consistent with a local government service portal. It is safe for general audiences and does not contain any adult or questionable content. Strategic improvements in security posture, privacy compliance, and technical modernization would enhance the site's reliability and user trust.

M

Město Chodov

mestochodov.cz

0

Město Chodov operates an official municipal website serving the residents and visitors of the town of Chodov in the Czech Republic. The site provides comprehensive information about local government activities, social and cultural services, practical information, and contact details. The website is clearly targeted at local citizens and stakeholders interested in municipal affairs. The business model is that of a government entity providing public services and information. The site maintains a consistent brand identity with the municipal crest and official contact information prominently displayed. Technically, the website uses a modern technology stack including jQuery, Bootstrap, Swiper.js, and Mmenu.js, likely built on the Galileo CMS platform. The site is mobile-optimized, accessible, and structured with good SEO practices. Cookie consent and GDPR compliance are implemented, reflecting awareness of privacy regulations. However, no advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms but lacks visible security headers in the HTML source. No vulnerabilities or exposed sensitive data were identified in the provided content. The absence of WHOIS data reduces trust slightly, but the official nature of the site and clear contact information support legitimacy. Overall, the security posture is moderate with room for improvement in security headers and formal security policies. The overall risk assessment is low, with the site serving as a trustworthy source of municipal information. Strategic recommendations include enhancing security headers, maintaining up-to-date libraries, and publishing explicit security and incident response policies to strengthen trust and compliance.

C

CFI Group

cfigroup.com

0

CFI Group is a well-established company specializing in customer, citizen, and employee satisfaction measurement, leveraging proprietary methodologies such as the American Customer Satisfaction Index (ACSI®). They serve both government agencies and private businesses, positioning themselves as a trusted leader with over three decades of experience. Their website reflects a professional and content-rich platform that supports their consulting and research services. Technically, the site is built on WordPress with modern plugins and uses Cloudflare DNS, providing a moderate to good performance and mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is evident with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness.

K

Kocham Koszalin - Program Karta Mieszkańca Koszalina

kochamkoszalin.pl

0

Kocham Koszalin is a community social program focused on strengthening the sense of community among residents of Koszalin, Poland, and encouraging settlement in the city. The program offers an electronic resident card system providing benefits, discounts, and access to local events, targeting both residents and local business partners. The website reflects a well-structured digital presence with clear navigation, accessibility features, and active social media engagement. Technically, the site uses modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and a Content Security Policy, though additional headers and DNSSEC could enhance security further. Privacy compliance is well addressed with comprehensive cookie consent mechanisms and a detailed privacy policy. Overall, the site demonstrates a professional and trustworthy digital platform for a government/community initiative.

N

nazwa.pl sp. z o.o.

przyjazne-deklaracje.pl

0

Przyjazne Deklaracje is a Polish online platform specializing in simplifying local tax declarations and information submissions for residents and local governments. The service leverages algorithms to automate tax rate selection and calculations, enabling users to prepare and submit tax documents efficiently from home. The platform positions itself as an innovative and user-friendly solution in the niche market of local tax services in Poland. Technically, the website is built on modern frameworks such as Next.js and React, supplemented by analytics and user experience tools like Google Analytics and Hotjar. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks some advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with GDPR, though it could benefit from enhanced security policies and incident response disclosures.

Budżety JST is a Polish web portal dedicated to presenting local government unit budgets in a transparent and accessible manner. The platform targets both local governments and residents, offering a user-friendly interface with personalized graphical elements and integration with budget management systems. The service includes features such as a built-in salary calculator to help residents understand tax expenditures. The company behind the portal is EuroInnowacje Software Sp. z o.o., a small-sized entity founded in 2018, operating primarily in the government sector within Poland. Technically, the website uses standard web technologies including HTML5, CSS3 with Bootstrap grid, and Google Fonts. The site is moderately optimized for mobile devices and has a clear, professional design. However, it lacks advanced frameworks or CMS indications and does not include analytics or tracking scripts, reflecting a minimalistic approach to user data collection. From a security perspective, the site does not implement DNSSEC, security headers, or visible HTTPS enforcement in the provided data, which limits its security posture. No privacy, cookie, or terms of service policies are present, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, but no incident response or vulnerability disclosure mechanisms are found. Overall, the site is safe with no adult or questionable content detected. The overall risk is moderate with recommendations to improve security headers, enable DNSSEC, add privacy and cookie policies, and implement vulnerability disclosure practices to enhance trust and compliance.

M

MediaPark Sp. z o.o.

budzet-obywatelski.org

0

The website budzetobywatelski.pl serves as a dedicated platform for participatory budgeting in Poland, targeting both residents and local government officials. It provides educational resources, tools, and showcases successful projects to foster civic engagement. The platform is operated by MediaPark Sp. z o.o., a small company based in Olsztyn, Poland. The site is professionally designed with a modern tech stack including Bootstrap and jQuery, and is mobile optimized. Privacy and cookie policies are well implemented, reflecting GDPR compliance. However, the absence of WHOIS data from the official .pl registry introduces some uncertainty regarding domain registration legitimacy. Security posture is moderate with HTTPS enforced but lacking explicit security headers and incident response information. Overall, the platform is trustworthy and functional, serving a niche government/non-profit sector audience effectively.

G

General Services Administration

performance.gov

0

Performance.gov is an official U.S. government website managed by the General Services Administration (GSA) that provides data-driven updates on the progress of federal agencies in achieving strategic government goals. The platform serves as a transparency and accountability tool for government performance, targeting policymakers, government officials, researchers, and the general public interested in federal strategy execution. The site offers archival data from multiple presidential administrations, enhancing its value as a historical and analytical resource. Technically, the website employs modern web technologies including the US Web Design System (USWDS), Google Tag Manager, jQuery, and Lottie animations, ensuring a responsive, accessible, and user-friendly experience. The site is well-optimized for mobile devices and demonstrates good SEO practices. However, explicit security headers are not visibly configured, and there is no public incident response or vulnerability disclosure information, which are areas for improvement. From a security perspective, the site benefits from HTTPS enforcement and the inherent trust of a .gov domain, which is tightly regulated. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is moderate; while a comprehensive privacy policy is present, there is no visible cookie consent mechanism. Contact information is limited but includes a verified government support email. Overall, Performance.gov is a credible, authoritative government resource with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, implementing a cookie consent mechanism, and publishing incident response and vulnerability disclosure policies to further strengthen trust and compliance.

G

General Services Administration (GSA) Technology Transformation Services

forms.gov

0

Search.gov is an official U.S. government search platform managed by the General Services Administration's Technology Transformation Services. It provides search capabilities across federal government websites and related services. The site currently displays a temporary unavailability message for the search function, directing users to USA.gov for government-wide search. The platform is positioned as a trusted government service with a focus on accessibility and compliance. Technically, the website employs modern web technologies including the US Web Design System, Amazon Cloudfront CDN, and New Relic monitoring for performance and error tracking. The site is secured with HTTPS and uses official .gov domain branding, ensuring trust and security for users. However, some improvements could be made in cookie consent mechanisms and explicit security headers. From a security perspective, the site demonstrates good practices with HTTPS enforcement and official government domain usage. No vulnerabilities or malicious content were detected. Privacy policies and terms of service are clearly linked, supporting compliance. WHOIS data is unavailable as expected for .gov domains, but this does not detract from the site's legitimacy. Overall, Search.gov is a credible and secure government resource with room for minor enhancements in privacy and security transparency. It serves a critical role in providing unified search access to government information and services.

O

Office of the Comptroller of the Currency

occ.gov

0

The Office of the Comptroller of the Currency (OCC) is a U.S. federal government agency responsible for ensuring a safe, sound, and fair federal banking system. The website serves as the official digital presence of the OCC, providing regulatory information, news, publications, and tools for bankers, consumers, and other stakeholders. It holds a strong market position as a key regulator within the U.S. banking sector, operating under the Department of the Treasury. The site targets a broad audience including banking professionals, federal institutions, and the general public seeking regulatory guidance and banking information. Technically, the website is built on the Percussion Content Management System and leverages modern web technologies including jQuery, Google Analytics, Crazy Egg, and the U.S. Web Design System (USWDS) to ensure accessibility, responsiveness, and usability. The site demonstrates good performance and SEO practices, with comprehensive metadata and structured navigation. Mobile optimization and accessibility features are well implemented, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs domain transfer protections, indicating a secure baseline. However, DNSSEC is not enabled, representing a minor security gap. The presence of a vulnerability disclosure policy is a positive indicator of security awareness, though explicit incident response contacts and security headers are not evident. Privacy compliance is moderate, with a comprehensive privacy policy but lacking a cookie consent mechanism despite the use of tracking scripts. Overall, the OCC website is a professional, trustworthy, and authoritative government resource with strong content quality and business credibility. Minor improvements in security headers, DNSSEC implementation, and privacy consent mechanisms would enhance its security posture and compliance. The site is safe for general audiences and aligns well with its role as a federal regulatory agency.

The Centre for Foreigners JMK is a government-supported non-profit organization based in the South Moravian Region of the Czech Republic. It provides a broad range of integration services including Czech language courses, legal and social counselling, adaptation and integration courses, and multicultural activities. The organization targets foreigners, institutions, municipalities, companies, and the general public, offering free events and support to facilitate integration into Czech society. The website is professionally designed, multilingual, and well-structured, reflecting a mature digital presence. Technically, the website is built on WordPress with modern libraries such as React, Leaflet.js, and Google reCAPTCHA for security. It employs SEO best practices with Yoast SEO and includes analytics via Google Analytics and Tag Manager. The site is mobile-optimized and accessible, though accessibility could be improved further. Security posture is strong with HTTPS and form protections, but lacks some advanced security headers and published security policies. The WHOIS data is unavailable, which slightly reduces trustworthiness, but the presence of official partner logos and consistent branding supports legitimacy. Privacy and cookie policies are present and GDPR compliant, with clear consent mechanisms. No signs of malicious content or adult material were found, making the site safe for general audiences. Overall, the Centre for Foreigners JMK website demonstrates a solid business and technical foundation with good security and privacy practices. The main risk is the lack of publicly available WHOIS data and absence of explicit security incident response information. Strategic improvements in security headers, incident response transparency, and accessibility would enhance trust and compliance.

N

Nový Jičín - Město Klobouků

novyjicin.cz

0

Nový Jičín's official municipal website serves as a comprehensive digital portal for residents and visitors, offering city news, public service information, event calendars, and administrative contacts. The site is well-branded and positioned as the authoritative source for city-related information in the Czech Republic. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and various plugins enhancing user experience and content management. The site is mobile-optimized and accessible, with good SEO practices and structured data implemented. Security posture is strong with HTTPS enforced and appropriate security headers, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies, including user consent mechanisms. Overall, the website presents a trustworthy and professional digital presence for the city government, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing transparency around security policies and incident response, and considering a vulnerability disclosure program to further strengthen security culture.

M

Město Rakovník

mesto-rakovnik.cz

0

Město Rakovník operates an official municipal website serving the residents and visitors of the city of Rakovník in the Czech Republic. The site provides comprehensive information about city administration, urban planning, social services, cultural events, and citizen resources. It functions as a key communication channel for the local government, offering access to official documents, news updates, and contact information. The website targets local citizens, government employees, and visitors seeking municipal services or information. Technically, the website employs a modern technology stack including jQuery, Bootstrap 4, and jQuery.mmenu for responsive navigation. The site is mobile-optimized and uses HTTPS to secure communications. Cookie consent mechanisms are implemented, reflecting awareness of privacy regulations. However, no advanced analytics or tracking services are detected, indicating minimal user tracking. From a security perspective, the site enforces HTTPS but lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration legitimacy. No signs of WAF or content blocking were found, and no vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for the city government, with good content quality and user experience. The main risk lies in the missing WHOIS data and lack of some security best practices. Strategic improvements in security headers and domain registration transparency are recommended to strengthen trust and compliance.

M

Městys Velké Němčice

velkenemcice.cz

0

The website www.velkenemcice.cz serves as the official online portal for the municipal government of Velké Němčice, a small town in the Czech Republic. It provides residents and visitors with comprehensive information including official announcements, event calendars, public notices, and contact details for municipal offices. The site is well-structured and targets local citizens and stakeholders interested in community affairs. The business model is informational and service-oriented, typical for local government entities. Technically, the site employs a modern technology stack including Bootstrap, jQuery, and various UI libraries to deliver a responsive and user-friendly experience. The CMS appears to be a custom municipal platform (Progres). While the site is mobile-optimized and SEO-friendly, performance is moderate and accessibility features are basic. No advanced hosting or cloud infrastructure details are evident. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit incident response or security policy documentation. Forms are present and appear secure, but cookie consent mechanisms are missing despite a cookie policy page. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain is a concern and reduces trustworthiness, though the official nature of the content mitigates this somewhat. Overall, the website is a trustworthy and professional municipal portal with good content quality and usability. Strategic improvements in security headers, privacy consent, and domain registration transparency are recommended to enhance trust and compliance.

M

MAS Brána Vysočiny, z.s.

masbranavysociny.cz

0

MAS Brána Vysočiny, z.s. is a Czech non-profit local action group dedicated to regional development and community support in the Vysočina region. The organization facilitates local projects, energy initiatives, and educational workshops, targeting local communities, SMEs, and non-profits. The website reflects a professional and consistent brand presence with clear contact information and active social media channels. Technically, the site is built on Drupal 10 with Bootstrap 5, providing a responsive and accessible user experience. Security posture is adequate with HTTPS enabled, but lacks visible security headers and cookie consent mechanisms, which are recommended for GDPR compliance. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and contact details appear authentic and consistent with a registered non-profit entity. Overall, the site is trustworthy and functional but would benefit from enhanced security and privacy features.

M

Město Veselí nad Moravou

veseli-nad-moravou.cz

0

The website veseli-nad-moravou.cz serves as the official online presence of the municipal government of Veselí nad Moravou, Czech Republic. It provides comprehensive information about the city, local government, services, cultural and sporting events, and contact details for citizens and visitors. The site is well-positioned as a trusted source of local information and public services, targeting residents and stakeholders in the community. The business model is that of a government information portal, focusing on transparency and citizen engagement. Technically, the website is built on the vismo® CMS platform, hosted by Wedos, a reputable Czech hosting provider. It uses modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Analytics with a consent mechanism, Google Translate, and social media widgets. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. While no explicit security policy or incident response information is published, the site shows no signs of vulnerabilities or exposed sensitive data. Security headers are partially inferred but not explicitly visible. The domain WHOIS data is consistent with the municipal nature of the site, showing a long-established registration with a known Czech registrar. Overall, the website is a professional, trustworthy, and secure municipal portal with room for improvement in explicit security disclosures and incident response transparency. It poses low risk and serves its public function effectively.

M

Městský úřad Cheb

cheb.cz

0

The website cheb.cz is the official municipal portal for the city of Cheb in the Czech Republic. It provides comprehensive information and services to residents and visitors, including access to official documents, event calendars, online reporting tools, and contact information for city administration. The site is well-positioned as a trusted government resource with a clear focus on citizen engagement and transparency. Technically, the site employs modern web technologies including HTTPS, Google Analytics with consent management, Google reCAPTCHA for form security, and a CMS platform (Vismo) tailored for municipal websites. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is solid with HTTPS enforcement and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with explicit cookie consent and a detailed privacy policy. Overall, the site demonstrates a mature digital presence appropriate for a government entity, with good trust indicators and no suspicious elements.

M

Město Králův Dvůr

kraluv-dvur.cz

0

The website kraluv-dvur.cz serves as the official digital presence for the town of Králův Dvůr in the Czech Republic. It provides residents and visitors with municipal information, including news updates, event calendars, public notices, and contact details for city offices. The site is positioned as a local government portal, focusing on transparency and community engagement. The business model is typical for a municipal government, offering public services and information without commercial intent. Technically, the website is built on the vismo CMS platform and incorporates standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google Analytics and Google Tag Manager for visitor tracking, with a cookie consent mechanism that respects user privacy by default denying analytics and marketing cookies. The site is mobile-optimized and accessible, with good SEO practices and a clear navigation structure. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration is consistent with the municipal nature of the site, having been established in 2001, indicating a mature and legitimate online presence. Overall, kraluv-dvur.cz is a trustworthy and professionally maintained municipal website with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security headers would further strengthen its security posture.