Security Directory

T

TeamPrevent-Santé, s.r.o.

teamprevent-sante.cz

0

TeamPrevent-Santé, s.r.o. is a Czech healthcare provider specializing in premium medical care, occupational health services, workplace hygiene, and safety. As part of the Penta Hospitals group, it benefits from a strong regional presence and expanded healthcare service offerings. The website targets both corporate clients and individual patients, providing detailed service descriptions and client zones for enhanced user engagement. Technically, the site is built on TYPO3 CMS and integrates modern analytics and marketing tools, including Google Analytics, Facebook Pixel, and CookieYes for consent management. The site is mobile-optimized with good navigation and professional design. Security posture is solid with HTTPS and reCAPTCHA usage, though it lacks explicit security headers and incident response information. The absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective. Overall, the site is professional, compliant with privacy regulations, and provides a good user experience.

T

THE CLINIC MEDICAL s.r.o.

skutecnylekar.cz

0

True Doctor is a specialized general practitioner clinic located in the center of Prague, offering comprehensive healthcare services for adults. The clinic provides a range of medical services including preventive care, examinations, vaccinations, and occupational health assessments, with coverage by public health insurance and premium membership options. The website presents a professional and user-friendly interface, targeting adult patients seeking personalized medical care in Prague. Technically, the site is built on WordPress with modern plugins and tracking tools, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and incident response details are missing. The absence of WHOIS data reduces domain transparency but does not detract significantly from the site's legitimacy based on content and business information. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

A

ALZHEIMER HOME z.ú.

alzheimerhome.cz

0

Alzheimer Home is a specialized healthcare provider focused on delivering professional care for Alzheimer patients within a family-like environment. The organization emphasizes a unique integration of health and social services with 24/7 medical availability and advanced equipment. Their market position is niche within the healthcare sector in the Czech Republic, targeting patients and families seeking specialized Alzheimer care. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for consent management, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS, but lacks some advanced security headers and explicit privacy policies. Security posture is generally good with no visible vulnerabilities, but the absence of WHOIS data and registrant information reduces trustworthiness. Overall, the website is professional and trustworthy in content and design but would benefit from enhanced transparency and security documentation.

S

STAPRO SLOVENSKO s.r.o.

stapro.sk

0

STAPRO SLOVENSKO s.r.o. is a well-established provider of healthcare information systems and IT services, primarily serving healthcare providers, hospitals, and laboratories in Slovakia and Central Europe. Founded in 2003, the company offers a comprehensive product suite under the FONS brand, including clinical, laboratory, management, and integration systems designed to improve healthcare quality and operational efficiency. The website reflects a professional and consistent brand presence with clear contact information and multilingual support, indicating a mature digital footprint. Technically, the website is built on WordPress with modern plugins and libraries such as jQuery, MasterSlider, and Complianz for GDPR compliance. Hosting appears to be managed by SWAN, a Slovak provider, consistent with the domain's WHOIS data. The site is mobile-optimized and includes SEO best practices, though some accessibility features could be enhanced. Analytics are implemented via Google Analytics and Tag Manager with user consent mechanisms in place. From a security perspective, the site enforces HTTPS and uses cookie consent banners aligned with GDPR. However, explicit security headers like CSP and X-Frame-Options are not visibly configured, and no public security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data is consistent with the business claims, showing a long-standing presence and legitimate registration. Overall, the website demonstrates a solid business and technical foundation with good privacy compliance and moderate security posture. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance trust and resilience.

L

Lékaři bez hranic - Médecins Sans Frontières in Czech Republic, o.p.s.

lekari-bez-hranic.cz

0

Lékaři bez hranic (Médecins Sans Frontières in Czech Republic) is a well-established international humanitarian and medical aid organization providing neutral, independent, and impartial medical assistance worldwide. The organization is recognized with a Nobel Peace Prize and operates primarily through public donations, avoiding reliance on government funding to maintain independence. Their website targets donors, volunteers, and healthcare professionals interested in humanitarian missions. The site offers comprehensive information about their values, missions, donation options, and volunteer opportunities. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager and Cookiebot for analytics and GDPR-compliant cookie consent. The site is mobile-optimized, accessible, and SEO-friendly, with a professional and consistent design that enhances user experience. However, some security best practices such as explicit security headers and published security policies are missing. From a security perspective, the site enforces HTTPS and uses consent-based tracking mechanisms, but lacks visible incident response or vulnerability disclosure information. The absence of WHOIS data for the domain reduces trust from a domain registration standpoint, though the website content and branding strongly support legitimacy. Overall, the site demonstrates a mature digital presence with room for improvement in security transparency and domain registration clarity. The overall risk is moderate to low, with recommendations to enhance security headers, publish security policies, and clarify domain registration details to strengthen trust and compliance.

K

KZP

kancelarzp.cz

0

Kancelář zdravotního pojištění (KZP) is a Czech governmental agency focused on health insurance administration and providing comprehensive information and services related to health insurance and healthcare both domestically and internationally. The website serves insured persons, healthcare providers, and insurance companies with portals for quality indicators, registries of innovative medicinal products, and international health insurance coordination. The organization is well-established, with a domain age since 2008, and maintains a professional online presence with clear contact information and multilingual support. Technically, the website is built on WordPress, utilizing modern web technologies such as jQuery, Google Tag Manager, Google reCAPTCHA, and Cookiebot for consent management. The site is hosted likely by Active24, consistent with the registrar information. The website demonstrates good mobile optimization, SEO practices, and basic accessibility features, though some security headers could be improved. From a security perspective, the site uses HTTPS and includes reCAPTCHA on forms, enhancing protection against automated abuse. Cookie consent mechanisms are implemented, supporting GDPR compliance. However, explicit security policies and incident response contacts are not published, and some security headers are missing, suggesting room for improvement in security posture. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It poses low risk and serves as a reliable source of health insurance information for its target audience.

Č

Česká asociace farmaceutických firem

caff.eu

0

Česká asociace farmaceutických firem (ČAFF) is a professional industry association representing pharmaceutical companies in the Czech Republic, focusing on generics, biosimilars, and value-added medicines. The organization serves as a key advocate and information hub for its members and stakeholders, maintaining strong ties with European pharmaceutical bodies such as Medicines for Europe. The website reflects a medium-sized organization with a clear focus on healthcare industry stakeholders, providing member services, certification, and public information. The content is primarily in Czech with some English support, targeting industry professionals, media, and members.

B

Boehringer Ingelheim

boehringer-ingelheim.com

0

Boehringer Ingelheim is a large global pharmaceutical company focused on improving life for people and animals through innovative healthcare products and research. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site uses Drupal CMS with modern web technologies and good performance optimizations. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The missing WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the website's quality and trust signals. Overall, the site is professional, secure, and compliant with minor areas for improvement in transparency and WHOIS data availability.

N

Novo Nordisk, s.r.o.

novonordisk.cz

0

Novo Nordisk, s.r.o. is a well-established healthcare company specializing in diabetes care, obesity, growth disorders, and hemophilia treatments. The company has a strong market position as a global leader in these therapeutic areas, supported by a comprehensive website that provides detailed information about its heritage, products, and career opportunities. The website targets healthcare professionals, patients, and potential employees, reflecting a mature business model focused on pharmaceutical manufacturing and healthcare services. The company is part of the larger Novo Nordisk A/S group, founded in 1923, indicating a long-standing presence in the industry. Technically, the website leverages modern technologies including Adobe Experience Manager CMS, Vue.js framework, and Adobe's analytics and tag management tools. It is well-optimized for mobile devices and accessibility, with good SEO practices and a moderate performance profile. The site implements a robust cookie consent mechanism via OneTrust, ensuring compliance with GDPR and other privacy regulations. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, it lacks visible security headers and a published security policy or incident response information, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the professional presentation and comprehensive contact information support the site's credibility. Overall, the website demonstrates a strong digital presence with good content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details to strengthen trust and security posture.

N

Novartis

novartis.com

0

Novartis is a global healthcare and pharmaceutical company focused on reimagining medicine to improve and extend lives. The website reflects a mature digital presence with comprehensive content, professional design, and consistent branding. It targets a broad audience including healthcare professionals, patients, and partners. The business model centers on pharmaceutical research, development, and healthcare innovation, positioning Novartis as a leader in the healthcare sector. Technically, the site is built on Drupal CMS and integrates multiple modern marketing and analytics tools such as Google Tag Manager, Crazy Egg, TikTok Pixel, and social media pixels. The site is mobile-optimized, accessible, and SEO-friendly, indicating a high level of digital maturity. Performance is moderate with room for optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place. However, explicit security headers are not fully confirmed, and no public security policy or incident response contacts are visible. The WHOIS data is unavailable, which is unusual but the website's professional presentation and trusted external links support legitimacy. Overall, the site presents low risk with strong business credibility and privacy compliance. Strategic recommendations include enhancing transparency of security policies, verifying WHOIS data, and maintaining vigilance on third-party scripts.

G

Gilead Sciences, Inc.

gilead.com

0

Gilead Sciences, Inc. is a leading biopharmaceutical company focused on innovative therapies in HIV, liver disease, cancer, and inflammation. The company operates globally with a strong pipeline and extensive clinical programs. Their website reflects a mature digital presence with comprehensive content targeting patients, healthcare professionals, investors, and researchers. The business model centers on research, development, and commercialization of transformative medicines. Technically, the website is built on modern frameworks including Bootstrap 5 and uses Sitecore CMS, supported by a variety of JavaScript libraries and APIs for video and analytics integration. The site is mobile-optimized, accessible, and SEO-friendly, demonstrating a high level of digital maturity. Security posture is solid with HTTPS enforced and privacy mechanisms in place, including cookie consent and privacy policies. However, explicit security headers and incident response information are not publicly documented, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-maintained, though the absence of WHOIS data for the domain is unusual and should be verified through official channels. Strategic recommendations include enhancing security transparency and publishing vulnerability disclosure details.

W

World Health Organization

who.int

0

The World Health Organization (WHO) is a globally recognized United Nations agency dedicated to promoting health, ensuring safety, and serving vulnerable populations worldwide. The website serves as a comprehensive portal for health topics, emergencies, data, and organizational information, targeting a general global audience. WHO holds a strong market position as a leading international health authority with an enterprise-level digital presence. The site is well-branded, consistent, and professionally maintained, reflecting WHO's authoritative status. Technically, the website employs a modern technology stack including ASP.NET, Kendo UI, Google Fonts, FontAwesome, and integrates analytics tools such as Google Analytics and Microsoft Clarity with consent management. The site is mobile-optimized, accessible, and SEO-friendly, hosted likely on WHO or UN infrastructure with CDN support. Performance is moderate with good technical implementation. From a security perspective, the site enforces HTTPS, uses consent mechanisms for tracking, and avoids exposing sensitive data. However, explicit security policies, vulnerability disclosure, and privacy documentation are not found, indicating room for improvement in compliance and transparency. No critical vulnerabilities or suspicious domains were detected. Overall, the WHO website is a trustworthy, professional, and authoritative resource with excellent content quality and business credibility. Strategic recommendations include publishing explicit privacy and cookie policies, security policies, and vulnerability disclosure information to enhance compliance and user trust.

A

Asociace inovativního farmaceutického průmyslu

aifp.cz

0

Asociace inovativního farmaceutického průmyslu (AIFP) is a Czech Republic-based industry association representing 35 innovative pharmaceutical companies focused on developing and bringing to market new, more effective, and safer medicines. The association plays a key role in advocating for innovative therapies, supporting clinical research, and educating both healthcare professionals and patients. Their website reflects a professional and consistent brand image, targeting pharmaceutical companies, healthcare experts, patients, and media stakeholders within the Czech healthcare sector. Technically, the website employs modern JavaScript libraries such as jQuery, Odometer, SimpleLightbox, and Swiper, and integrates Google Analytics and CookieHub for analytics and cookie consent management. Hosting is provided by a Czech provider (Forpsi), and the site is served over HTTPS with a good SSL configuration. Security posture is solid with no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong, with clear privacy and cookie policies and an active consent mechanism. However, no explicit security policy, incident response, or terms of service pages were found. Overall, the site is well-structured, user-friendly, and trustworthy, with a moderate to good performance and mobile optimization.

Č

Česká onkologická společnost České lékařské společnosti J. E. Purkyně

linkos.cz

0

The website www.linkos.cz represents the official portal of the Czech Oncology Society (Česká onkologická společnost České lékařské společnosti J. E. Purkyně), a reputable non-profit organization dedicated to oncology education, patient support, and professional collaboration in the Czech Republic. It serves multiple audiences including oncologists, patients, families, and the general public with comprehensive resources on cancer prevention, treatment, and research. The site is well-structured with clear navigation and rich content relevant to its mission. Technically, the website employs standard web technologies such as jQuery and Facebook SDK for social media integration. It uses HTTPS ensuring encrypted communication, and implements a cookie consent mechanism compliant with GDPR requirements. While no advanced security headers were detected in the provided data, the site demonstrates basic security hygiene. The site is mobile-optimized and provides a good user experience with professional design and clear content presentation. From a security perspective, the site shows no signs of vulnerabilities or malicious content. The lack of WHOIS data is likely due to privacy protection common for non-profit entities and does not detract from the site's legitimacy. However, improvements could be made by adding explicit security policies, incident response contacts, and enhancing security headers. Overall, the site maintains a good security posture appropriate for its informational and educational role. The overall risk assessment is low, with the site being a trustworthy source of oncology information in the Czech Republic. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and improving accessibility features to meet broader compliance standards.

E

European Wound Management Association

ewma.org

0

The European Wound Management Association (EWMA) is a well-established non-profit organization focused on advancing wound care through research, education, and clinical resources. The website serves healthcare professionals, educators, students, patients, and carers by providing a comprehensive resource library, e-learning courses, conferences, and a dedicated journal. The association has a strong European presence and a history dating back to 2001, reflected in the domain age and content maturity. Technically, the website is built on a modern WordPress platform with popular plugins such as Elementor, WooCommerce, and LearnDash, indicating a mature digital infrastructure. SEO and accessibility are adequately addressed, and the site is mobile optimized. Security posture is good with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is partially implemented with a detailed cookie consent mechanism but lacks explicit privacy policy and terms of service pages. Overall, the site is professional, trustworthy, and serves its niche audience effectively.

SYMMA spol. s r.o. is a well-established Czech company specializing in organizing national and international conferences, congresses, symposia, and related events primarily in the healthcare sector. With a history dating back to 1995 and a domain registered since 2000, the company offers comprehensive event management services including project planning, graphic design, printing, online registration, participant recruitment, venue rental, audiovisual support, catering, accommodation, and accounting. Their target audience includes institutions, professional associations, universities, companies, and individuals interested in professional healthcare events. Technically, the website uses Bootstrap 4, jQuery, FontAwesome, and Google Fonts, indicating a modern but basic tech stack. The site shows moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Hosting and domain registration are consistent with the company's long-standing presence. From a security perspective, the website lacks HTTPS enforcement and security headers, and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is available. Contact information is clearly provided, but the absence of security best practices and compliance documentation represents a risk. Overall, the website is professional and trustworthy in terms of business credibility but requires significant improvements in security posture and privacy compliance to meet modern standards. Strategic recommendations include implementing HTTPS, adding security headers, publishing privacy and cookie policies, and enhancing mobile and accessibility features.

C

Care Comm s.r.o.

terapie.digital

0

Terapie.digital is a Czech healthcare-focused professional news portal operated by Care Comm s.r.o. It provides specialized content including healthcare news, clinical medicine articles, congress coverage, and job listings targeted at healthcare professionals in the Czech Republic. The website demonstrates a solid market position within its niche, offering valuable services such as newsletters and expert content. Technically, the site employs a modern tech stack including Bootstrap, jQuery, and integrates analytics tools like Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. The site is mobile-optimized and presents good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS but lacks advanced security headers, and no critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, though explicit security and incident response policies are not publicly disclosed. Overall, the domain appears legitimate with privacy-protected WHOIS data typical for media entities. The site is safe for general audiences with no adult content. Strategic recommendations include enhancing security headers, publishing security policies, and continuous monitoring of third-party scripts to maintain security posture.

Č

Česká lékařská společnost J. E. Purkyně

perspinsurg.com

0

The website perspinsurg.com hosts 'Rozhledy v chirurgii', a professional monthly medical journal published by the Czech Medical Society J. E. Purkyně. It targets healthcare professionals, especially surgeons, providing peer-reviewed articles in Czech, Slovak, and English. The journal is well-established with a history dating back to 1921 and is indexed in major medical databases such as PubMed/MEDLINE. The business model is subscription-based, with free access for society members and paid subscriptions for others. Technically, the site runs on Open Journal Systems (OJS) version 3.4.0.7, leveraging Bootstrap for responsive design and custom JavaScript for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly. Security measures include HTTPS enforcement and CSRF protection on login forms, though some security headers are missing. No cookie consent mechanism is present, which is a compliance gap. Security posture is generally good with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the domain is unusual and reduces trust slightly. No explicit security policy or incident response contact is published, which could be improved. Overall, the site is professional, trustworthy, and safe for its target audience. Recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and clarifying domain registration information to enhance trust and compliance.

The website www.orlaf.cz serves as a specialized medical journal platform focused on otorhinolaryngology and phoniatrics, primarily targeting healthcare professionals in the Czech Republic. Operated by MeDitorial s.r.o., it provides access to journal articles, archives, and specialist content with controlled access via a specialist agreement form. The business model revolves around content provision and professional engagement within a niche healthcare segment. Technically, the site employs a modern JavaScript stack including jQuery, Google Tag Manager, and cookie consent tools, ensuring a responsive and user-friendly experience. The site is well-structured with SEO and accessibility considerations, though some improvements in security headers and explicit policy pages are recommended. Performance is moderate with good mobile optimization. Security posture is solid with HTTPS enforced and secure form handling, but lacks visible security headers and incident response information. The absence of WHOIS data is a notable concern, impacting domain trustworthiness, though the website content and structured data strongly indicate legitimacy. Cookie consent and privacy policy presence support GDPR compliance. Overall, the site is professional and trustworthy for its intended audience, with recommendations to enhance security transparency and domain registration clarity to further strengthen trust and compliance.

The website www.cs-gynekologie.cz serves as a professional medical journal platform focused on gynecology, targeting healthcare specialists primarily in the Czech Republic. Operated by MeDitorial s.r.o., it provides access to journal articles, archives, and current issues, with user authentication for professionals. The site demonstrates a solid market position within a niche healthcare media segment. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and cookie consent scripts, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement and secure login forms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a notable gap, reducing domain trustworthiness despite the professional presentation and content. Overall, the site is well-structured, compliant with GDPR basics, and trustworthy for its intended audience.

The website acta-chirurgiae-plasticae.com serves as the online presence for the academic journal Acta chirurgiae plasticae, specializing in plastic surgery, maxillofacial surgery, hand surgery, and burns. It targets medical professionals, researchers, and academics in these fields, offering peer-reviewed articles, editorial and reviewer boards, and digital media content. The journal is positioned as a specialized international medical publication with a focus on the Czech Republic and surrounding regions. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO and Google Tag Manager, hosted on Webglobe.cz. The site demonstrates good mobile optimization and SEO practices but lacks some accessibility features. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but it lacks important security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance measures.

K

Klinická onkologie

e-onkologie.cz

0

The website e-onkologie.cz serves as an educational portal dedicated to oncology professionals, providing access to the official journal 'Klinická onkologie' and related oncology educational resources. It is affiliated with recognized Czech medical societies (ČLS JEP and SLS) and features partnerships with major pharmaceutical companies, indicating a specialized niche focus in healthcare education. The business model centers on delivering oncology knowledge and journal content to medical professionals in the Czech Republic, positioning itself as a trusted resource within this sector. Technically, the site is built with basic HTML and CSS, incorporating Google Analytics for user tracking. The editorial system is hosted externally via Carecomm. The site lacks modern web frameworks and advanced technical features but maintains moderate performance and basic mobile optimization. SEO and accessibility are present at a basic level, with room for improvement. From a security perspective, the site does not display advanced security headers or policies, and no privacy or cookie policies are published, which impacts compliance with GDPR and best practices. No forms or sensitive data collection are present on the homepage, reducing immediate risk. The domain registration is consistent and legitimate, with no privacy protection, supporting trustworthiness. However, the absence of contact information and security disclosures limits transparency. Overall, the website is a functional, niche educational platform with moderate technical maturity and basic security posture. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and regulatory adherence.

The website www.csgh.info serves as a professional portal for the Czech and Slovak gastroenterology and hepatology community, providing access to journal articles, author submission guidelines, and society information. It is operated by Care Comm s.r.o., a small healthcare-focused company. The platform targets healthcare professionals specialized in gastroenterology and hepatology, offering subscription services and professional society support. The site is indexed in major medical databases, enhancing its credibility within the medical community. Technically, the website uses legacy JavaScript libraries such as jQuery 1.10.2 and jQuery UI, with tracking implemented via Google Tag Manager and Leady. The site shows basic mobile optimization and accessibility features but lacks modern security headers and cookie consent mechanisms. Performance is moderate, and SEO practices are basic. The WHOIS data is unavailable or malformed, limiting domain trust verification. From a security perspective, HTTPS is implied but not explicitly confirmed. The absence of security headers and use of outdated libraries present moderate risks. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent banner. Contact information is limited to a contact page without direct emails or phone numbers on the main page. Overall, the website is professionally designed and trustworthy for its niche audience but would benefit from improved security practices, updated technology stack, and enhanced privacy compliance to strengthen its risk posture and user trust.

Č

Česká lékařská společnost J. E. Purkyně

czechurol.cz

0

The website czechurol.cz serves as the official online presence of the Czech Urological Society's medical journal, publishing peer-reviewed articles and research in the field of urology. It targets medical professionals and experts in medicine and pharmacy, providing access to current and archival journal issues. The site is supported by the Czech Medical Society J. E. Purkyně and powered by the Actavia editorial system. The domain is well-established since 2006, reflecting a stable and credible publication history. Technically, the website employs a traditional web stack with jQuery, Modernizr, and a custom editorial platform. Hosting is provided by Aerohosting, a Czech hosting provider, ensuring regional consistency. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. No major technical flaws were detected, though some modernization could improve user experience. From a security perspective, the site uses HTTPS but lacks important security headers and explicit privacy or cookie policies, indicating room for improvement in compliance and security posture. No vulnerabilities or exposed sensitive data were found, but the use of an outdated jQuery version and absence of incident response contacts are notable gaps. Overall, the website is a trustworthy and professional resource for its niche audience but would benefit from enhanced privacy compliance, security hardening, and technical modernization to maintain and improve its standing in the healthcare publishing sector.

Česká a slovenská psychiatrie is a specialized online platform serving as the official website for a Czech and Slovak psychiatry journal. It provides access to current and archived journal issues, announcements, and multimedia content tailored for healthcare professionals in the psychiatry field. The platform leverages the Open Journal Systems CMS, indicating a focus on academic publishing and professional dissemination of medical research. The website targets psychiatrists, researchers, and healthcare professionals primarily in the Czech Republic and Slovakia, offering a niche but important service in the regional healthcare publishing sector. Technically, the website employs a modern but standard technology stack including jQuery, Bootstrap, and FontAwesome, hosted on a Czech hosting provider (cesky-hosting.eu). The site is mobile optimized and accessible, with a moderate performance profile. However, some improvements are needed in security headers and cookie consent mechanisms to enhance compliance and security posture. The domain is very recently registered, which is somewhat inconsistent with the professional and mature content, suggesting a new launch or relaunch. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent banners, which are important for GDPR compliance and security best practices. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of contact emails or phone numbers on the main page reduces direct contact transparency but a contact form is available. No WAF or blocking mechanisms were detected, and the content is safe with no adult or explicit material. Overall, the website presents a professional and trustworthy platform for its niche audience but would benefit from enhanced privacy compliance features and security hardening. The domain's recent registration date should be monitored but does not currently detract significantly from trustworthiness.

The website www.csnn.eu serves as a professional portal and medical journal for Czech and Slovak healthcare specialists, focusing on neurology and neurosurgery. Operated by MeDitorial s.r.o., it provides access to current and archived journal issues, expert articles, and specialist-only content. The site targets healthcare professionals authorized to prescribe or dispense medicinal products, as confirmed by the specialist agreement page. The business model centers on specialized content delivery and professional engagement within the healthcare sector in the Czech Republic and Slovakia. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and cookie consent frameworks, ensuring a responsive and user-friendly experience. The site is well-structured with SEO and accessibility considerations, though accessibility could be improved. HTTPS is enforced, and forms include CSRF tokens, indicating a good baseline security posture. However, explicit security headers and published security policies are absent. From a security and compliance perspective, the site demonstrates good practices such as HTTPS, cookie consent, and privacy policy presence, aligning with GDPR requirements. The WHOIS data is unavailable due to EURid privacy policies, which is typical for .eu domains and does not raise concerns. No vulnerabilities or malicious content were detected. The site lacks a vulnerability disclosure policy and incident response information, which could be improved to enhance trust. Overall, www.csnn.eu is a professionally maintained, secure, and compliant healthcare specialist portal with a clear business focus and good technical implementation. Strategic improvements in security transparency and accessibility would further strengthen its position and trustworthiness.

S

Spolek Hlas onkologických pacientů

hlaspacientu.cz

0

Hlaspacientu.cz is a Czech non-profit organization advocating for oncology patients and their families, aiming to improve quality of life despite illness. The website serves as a platform for information dissemination, patient support, and community engagement, positioning itself as a recognized voice in the Czech healthcare advocacy space. Technically, the site is built on WordPress with modern plugins and frameworks, hosted by WEDOS, and demonstrates good mobile optimization and moderate performance. Security posture is solid with HTTPS, security headers, and GDPR-compliant cookie consent, though lacks explicit published security policies or incident response contacts. Overall, the site is trustworthy, professional, and compliant with privacy regulations, with recommendations to enhance security transparency and accessibility.

P

Penta Hospitals CZ

pentahospitals.cz

0

Penta Hospitals CZ is a major healthcare operator in the Czech Republic, managing a broad network of acute and subsequent care hospitals, social care homes, ambulatory services, and home healthcare. As part of the larger Penta Hospitals International group, it holds a strong market position with multiple subsidiaries and a comprehensive service offering. The website reflects a mature digital presence with professional design, clear navigation, and extensive content about their services and history. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates advanced SEO and privacy tools such as Yoast SEO and Cookiebot. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data slightly reduces trust but does not detract from the overall legitimacy and professionalism of the organization. Privacy compliance is well addressed, with a comprehensive GDPR policy and cookie management. Overall, the site demonstrates a high level of business credibility and digital maturity.

HARTMANN is a leading healthcare company specializing in medical devices, hygiene, and wound care products. The website targets healthcare professionals and medical sector stakeholders primarily in France, offering a comprehensive catalog of medical and hygiene products. The company positions itself as a market leader with a broad portfolio of key services including incontinence management, wound care, surgical sets, and diagnostics. The website is built on IBM WebSphere Portal technology and incorporates modern web technologies such as jQuery, JWPlayer, and Cookiebot for consent management. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. WHOIS data is missing, which slightly impacts trustworthiness but the overall digital presence and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility compliance.

C

Care Comm

carecomm.cz

0

Care Comm is a small Czech healthcare service provider specializing in publishing professional medical journals, website development, and organizing medical congresses. The company targets healthcare professionals and organizations within the Czech Republic. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies such as JavaScript, CSS, and HTML5. The site demonstrates good design quality and mobile optimization but lacks advanced accessibility and SEO features. Security posture is weak due to absence of security headers and no visible privacy or cookie policies. WHOIS data is unavailable, limiting trust assessment. Overall, the website is functional and professional but requires improvements in security and compliance to enhance trustworthiness.

C

Care Comm s.r.o.

florence.cz

0

Florence.cz is a Czech professional healthcare journal focused on nursing and related medical professions. Operated by Care Comm s.r.o., it provides current news, expert articles, educational resources, and job listings for healthcare professionals. The website is well-structured, content-rich, and targets healthcare practitioners primarily in the Czech Republic. Technically, the site uses a mix of JavaScript libraries including jQuery, Google Fonts, and integrates third-party advertising and tracking services such as Facebook Pixel and Google Analytics. The site is served over HTTPS with cookie consent mechanisms in place, reflecting good privacy compliance. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency. Security headers are not visibly implemented, and no explicit security or incident response policies are published. Overall, the site presents a professional and trustworthy front for its niche audience but would benefit from enhanced security practices and clearer domain registration information.

AMCA, spol. s r. o. operates the website cslr.cz, serving as the online presence for the Czech Society for Wound Healing (ČSLR). The organization focuses on providing professional resources, organizing congresses, and offering educational courses related to wound care. The website targets healthcare professionals and members of the wound care community primarily in the Czech Republic. The business model is that of a professional society supported by memberships, events, and partnerships. The domain has been active since 2003, indicating a well-established presence in the healthcare sector. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and cookie consent mechanisms compliant with GDPR. The site is mobile optimized and uses structured data (JSON-LD) to enhance search engine understanding. Performance is moderate with good SEO and accessibility basics, though some improvements could be made in accessibility and security policy disclosures. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. Cookie consent is implemented properly, but there is no explicit security policy or incident response information published. The WHOIS data is consistent with the website content and business claims, supporting legitimacy. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website presents a professional and trustworthy image with good content quality and technical implementation. Recommendations include publishing a security policy, adding incident response contacts, and improving accessibility features to enhance compliance and user experience further.

ArgoMed.sk is a Slovak e-commerce platform specializing in the distribution and retail of medical supplies, including healthcare materials, disinfection products, diabetic supplies, and related accessories. The website serves healthcare professionals, medical institutions, and individual customers within Slovakia, positioning itself as a regional provider with a sister site in the Czech Republic. The business operates under the parent company Promedica, focusing on healthcare and retail sectors. Technically, the site is built on ASP.NET WebForms with jQuery and integrates Google Tag Manager for analytics. The site demonstrates good content quality with detailed product categorization and a consistent brand presentation. Security-wise, the site enforces HTTPS and provides cookie consent mechanisms with IP anonymization in analytics, but lacks advanced security headers and formal security policies. Privacy compliance is basic, with no explicit privacy policy or terms of service pages detected. Overall, the site is functional and professional but would benefit from enhanced security and compliance documentation.

A

ANYCARE s.r.o.

anycare.cz

0

ANYCARE s.r.o. is a Czech healthcare company specializing in telemedicine services by providing remote medical examination devices (TytoCare) and online doctor consultations. The company targets patients, healthcare professionals, organizations, and social care institutions, addressing the shortage of practical doctors in the Czech Republic. The website is professionally designed, mobile-optimized, and uses modern analytics and tracking tools such as Google Tag Manager and Hotjar. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is good with HTTPS and secure forms, but could be improved by adding security headers and publishing incident response information. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the website is trustworthy and provides clear contact information and business details, but should address compliance and transparency gaps to enhance trust and security.

Oborová zdravotní pojišťovna zaměstnanců bank, pojišťoven a stavebnictví (OZP) is the third largest employee health insurance company in the Czech Republic. The company offers a broad range of benefits including free preventive check-ups, financial contributions to preventive programs, and discount programs. OZP emphasizes convenience by enabling clients to handle basic administrative tasks online, supported by their VITAKARTA online service and mobile applications. The website reflects a mature digital presence with comprehensive content, clear navigation, and multiple client engagement channels including a chatbot and online appointment booking. Technically, the site employs modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Smartlook, all integrated with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be explicitly confirmed. The absence of WHOIS data limits domain trust analysis, but the website's professional presentation, clear business information, and social media presence strongly support legitimacy. Overall, OZP demonstrates a well-established healthcare insurance business with a solid digital infrastructure and compliance focus.

S

STAPRO s. r. o.

stapro.cz

0

STAPRO s. r. o. is a Czech-based company specializing in healthcare information technology solutions, providing a comprehensive range of clinical, laboratory, and management systems primarily for healthcare providers across Europe. Their product portfolio, notably the FONS product line, supports healthcare institutions with modern, secure, and integrated IT systems designed to improve healthcare quality and operational efficiency. The company maintains a strong market position with over 200 hospitals and 550 laboratories using their systems, supported by a sizable user base exceeding 88,000 users. Their business model focuses on software development, integration services, and consulting within the healthcare sector. Technically, the website is built on WordPress with modern plugins such as MasterSlider and Complianz for GDPR compliance. The site demonstrates good mobile optimization, SEO practices, and a moderate performance profile. Security measures include HTTPS enforcement and cookie consent management, though additional HTTP security headers could enhance protection. Analytics are implemented via Google Analytics with user consent mechanisms in place. From a security perspective, the site shows a mature posture with no evident vulnerabilities or exposed sensitive data. However, the absence of explicit incident response contacts and security.txt files suggests room for improvement in transparency and readiness. The company holds relevant certifications, including MDR Class IIb medical device certification, reinforcing trustworthiness. Overall, STAPRO presents a professional and credible online presence aligned with its healthcare IT business focus. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving accessibility features to further strengthen compliance and user trust.

S

SeneCura s.r.o.

senecura.cz

0

SeneCura s.r.o. is a leading private healthcare provider specializing in senior care homes and specialized dementia and Alzheimer's care centers across the Czech Republic. Operating 17 SeniorCenters, the company offers comprehensive 24/7 care services with a strong focus on individualized, respectful treatment. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to seniors and their families. Technically, the site is built on WordPress with modern SEO and analytics tools, including Google Analytics 4 and Facebook Pixel, integrated with a robust cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforced and use of security plugins, though some HTTP security headers could be improved. The domain registration is consistent with the business claims, showing a legitimate and established entity. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

E

EUC

euc.cz

0

EUC.cz is the largest outpatient healthcare provider in the Czech Republic, operating clinics, mamocenters, pharmacies, and laboratories serving approximately one million patients annually. The website presents a professional and consistent brand image targeting Czech healthcare consumers. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Facebook Pixel, and Cookiebot for GDPR-compliant cookie consent management. The site is mobile optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and cookie consent denying tracking by default, though security headers and explicit incident response policies are absent. No contact emails or phone numbers are directly visible, and no terms of service page was found. Overall, the site is trustworthy and well-positioned in its market segment.

M

MEDDI hub a.s.

meddi.com

0

MEDDI hub a.s. operates a telemedicine platform that enables patients and healthcare professionals to connect securely via calls, video calls, and chat. The platform supports multiple devices and languages, offering services such as online consultations, prescriptions, confirmations, and second opinions. The company holds partnerships with reputable medical institutions and maintains ISO 27001 certification, underscoring its commitment to security and compliance. The website is professionally designed, mobile-optimized, and provides comprehensive privacy and cookie policies with consent mechanisms. Technically, the site uses modern frameworks like Next.js and React, integrates Google Tag Manager for analytics, and enforces HTTPS with strong encryption practices. While WHOIS data is unavailable, the overall trust indicators and business presence suggest legitimacy. Security posture is strong, though improvements in publishing explicit security headers and incident response contacts are recommended.

M

Mölnlycke Health Care

molnlycke.com

0

Mölnlycke Health Care is a globally recognized MedTech company specializing in innovative and sustainable solutions for wound care and surgical procedures. The company positions itself as a leader in healthcare technology, targeting healthcare professionals and institutions with a strong emphasis on improving patient outcomes and operational efficiency. The website reflects a mature digital presence with comprehensive corporate information, product offerings, and sustainability initiatives. Technically, the site employs modern JavaScript frameworks, Google Tag Manager, and Microsoft Application Insights for analytics and telemetry, indicating a commitment to performance monitoring and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. The WHOIS data is unavailable, which slightly reduces trust but the website's professional presentation and consistent branding support legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility, making it a reliable and professional corporate web presence.

V

VITAPUR spol. s r.o.

vitapur.sk

0

VITAPUR spol. s r.o. is a family-owned Czech company established in 1990, specializing in manufacturing and supplying healthcare products such as anti-decubitus mattresses and bed equipment. The company serves both professional healthcare institutions and end consumers through wholesale and retail e-commerce channels. Their market position is solid within the Czech and Slovak healthcare sectors, supported by ISO 9001 certification and active participation in healthcare associations. Technically, the website is built on the Upgates e-commerce platform, utilizing modern JavaScript libraries, Google Analytics 4, and Facebook Pixel for marketing and analytics. The site is well-optimized for mobile and SEO, with good user experience and clear navigation. Security posture is strong with HTTPS, cookie consent, and form validation, though additional security headers could enhance protection. Privacy compliance is robust, with clear policies and consent mechanisms. Overall, the website reflects a professional and trustworthy business with a good digital maturity level.

H

HARTMANN – RICO a.s.

zivotsestomii.cz

0

The website www.zivotsestomii.cz represents a healthcare-focused business under the brand Dansac, operated by HARTMANN – RICO a.s. It specializes in the development, manufacturing, and distribution of ostomy care products, targeting stomy patients and their families in the Czech Republic. The site offers comprehensive educational content, product information, and customer support, positioning itself as a trusted resource in the stomy care market. Technically, the site employs modern JavaScript frameworks, cookie consent management via Cookiebot, and analytics tools including Google Analytics and Sitecore Engagement Analytics. The site is well-structured, mobile-optimized, and SEO-friendly, providing a professional user experience. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers are missing and should be implemented to enhance protection. Privacy compliance is robust with clear cookie and privacy policies and consent mechanisms in place. However, the WHOIS data for the domain is unavailable, limiting the ability to fully verify domain legitimacy and registration details. Overall, the site is a credible and professional platform with minor technical and security improvements recommended.

H

HARTMANN

hartmanndirect.com

0

HARTMANN direct is a healthcare-focused business providing wound care, incontinence, disinfection, and surgical efficiency products globally through a network of distributors and country-specific websites. The company positions itself as a professional partner with a strong international presence. Technically, the website uses Cloudflare for CDN and security, employs basic JavaScript and CSS, and has moderate performance and mobile optimization. However, the site lacks comprehensive metadata, structured data, and visible privacy or cookie policies, which limits its compliance posture. Security-wise, HTTPS is enabled and Cloudflare provides protection, but the absence of security headers and incident response contacts indicates room for improvement. Overall, the website is functional but basic, with moderate trustworthiness and a need for enhanced privacy and security features.

H

HARTMANN

linkforwoundhealing.info

0

LINK for Wound Healing is a professional educational platform operated by HARTMANN, dedicated to providing medical professionals with comprehensive wound care knowledge through e-learning, webinars, scientific content, and events. The platform is positioned as a global hub for wound care expertise, supported by partnerships such as Wounds International. The website demonstrates a high level of digital maturity with modern technologies including Sitecore CMS, Cloudflare security, and integrated analytics tools like Google Analytics and Hotjar. Security posture is strong with HTTPS enforcement, CSRF protection, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the site is well-designed, accessible, and trustworthy, serving a specialized healthcare audience effectively.

E

E-hojení | Přihlášení

ehojeni.cz

0

The website e-hojeni.cz provides a login portal for a healthcare-related service, likely focused on healing or medical care, as suggested by the domain name and login context. The site targets users who have accounts with the service, presumably patients or clients. The business appears to be a small-scale platform founded in 2018, operating primarily in the Czech Republic. The website's content is minimal on this page, focusing on user authentication without additional business descriptions or contact information. Technically, the site employs a modern front-end stack including jQuery, Bootstrap, DataTables, FontAwesome, and other popular libraries, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS with Google reCAPTCHA integration for bot protection. However, no explicit security headers were detected in the provided data, and there is no visible cookie consent or privacy policy, which are important for GDPR compliance. From a security perspective, the site shows basic best practices such as secure form inputs and HTTPS usage. The WHOIS data is transparent and consistent with the website's Czech origin, with a domain age appropriate for the business. No critical vulnerabilities or suspicious patterns were found. However, the absence of privacy and cookie policies, security headers, and contact information reduces the overall security posture and compliance level. Overall, the website is functional and professionally designed for its purpose but lacks comprehensive privacy and security disclosures. Strategic improvements in privacy compliance, security header implementation, and transparency would enhance trust and regulatory adherence.

N

Národní asociace pacientských organizací

silapacientu.cz

0

Národní asociace pacientských organizací (NAPO) is a Czech Republic-based non-profit umbrella organization representing 57 patient organizations. It advocates for patients with chronic illnesses and disabilities, focusing on collective patient interests, health policy participation, capacity building, and health literacy. The website is professionally designed using WordPress and Elementor, with a moderate performance profile and good mobile optimization. The technical infrastructure includes Cloudflare DNS and Google Tag Manager for analytics and tracking. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers are missing. No privacy or terms of service pages were found, indicating room for compliance improvement. The organization maintains partnerships with major pharmaceutical companies and health institutions, enhancing its credibility and trustworthiness.

P

Porta Medica s.r.o.

portamedica.cz

0

Porta Medica s.r.o. is a small healthcare consultancy based in Prague, Czech Republic, specializing in regulatory consulting for medical devices targeting the EU market. The company offers tailored solutions for manufacturers, distributors, hospitals, and IT startups to navigate complex regulatory environments. The website is professionally designed using the Wix platform, with good content quality and clear business focus. Technical infrastructure is modern and adequate for the business size, with Wix hosting and Thunderbolt framework. Security posture is generally good with HTTPS enforced and some security best practices observed, though lacking explicit security headers and incident response information. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the site appears trustworthy and legitimate, but could improve transparency and compliance documentation.

A

ACRO-CZ, z.s.

acro-cz.cz

0

ACRO-CZ is a professional association representing contract research organizations (CROs) in the Czech Republic, focusing on clinical research and drug development. Established in 2005, it serves as a liaison between CROs and regulatory bodies, promotes ethical and legal standards, and supports member education and collaboration. The website reflects a professional and consistent brand with clear business information and relevant content for its target audience in healthcare and clinical research sectors. Technically, the site uses modern web technologies including Bootstrap and Material Design Bootstrap, with a moderate performance profile and good mobile optimization. Security posture is moderate; while HTTPS usage is assumed, the absence of security headers and privacy policies indicates room for improvement. No blocking or WAF challenges were detected, and the domain WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening.

Č

Česká asociace výrobců a dodavatelů diagnostik in vitro (CZEDMA)

czedma.cz

0

CZEDMA is a Czech non-profit association representing manufacturers and suppliers of in vitro diagnostic products. Established in 2001, it aims to support its members in delivering high-quality healthcare diagnostics. The website provides information about the association, educational webinars, and resources related to laboratory diagnostics. The target audience includes healthcare professionals, industry members, and the general public interested in diagnostics. Technically, the site uses an older CMS (CMS PRO-WEB) and legacy JavaScript libraries such as jQuery 1.8.3, with Google Analytics and Tag Manager for tracking. The site is accessible, uses HTTPS, and has a cookie consent banner, but lacks a privacy policy page and modern security headers. Security posture is moderate but could be improved by updating libraries and adding security policies. WHOIS data is unavailable, likely due to privacy protection, but the website content and association registration details support legitimacy. Overall, the site is professional and trustworthy but would benefit from technical and compliance enhancements.

Č

Česká asociace dodavatelů zdravotnických prostředků ("CZECHMED")

czechmed.cz

0

CzechMed is a professional association representing manufacturers and distributors of medical devices in Czechia. The organization focuses on fostering dialogue and cooperation within the healthcare industry, supporting innovation, telemedicine, public procurement, and quality assurance. The website is built on the Wix platform, featuring a professional design and structured data that clearly identifies the organization and its physical address. Technical infrastructure leverages Wix's Thunderbolt platform with modern JavaScript polyfills and security hardening scripts. Security posture is generally good with HTTPS enabled and some client-side security measures, but lacks explicit security headers and incident response contact information. Privacy and cookie policies are not found, indicating a gap in compliance. WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and presentation suggest a legitimate business presence. Overall, the site is suitable for its target audience but would benefit from enhanced privacy compliance and security transparency.