Security Directory

I

Infotech

infotechinc.com

0

Infotech is a well-established technology company specializing in software solutions for the construction industry, including construction administration, inspection, secure online bidding, and paperless contracting. The company targets construction professionals and government agencies, positioning itself as a trusted provider with a domain history dating back to 1995. Their website reflects a professional B2B business model with a focus on engineering connections from bid to build. Technically, the website is built on WordPress using the Divi theme framework, hosted on Amazon AWS infrastructure. It employs modern web technologies including jQuery, Google Analytics, Microsoft Clarity, LinkedIn Insight, and HubSpot forms, indicating a mature digital marketing and analytics setup. The site is mobile optimized with good SEO practices and basic accessibility features. From a security perspective, the site enforces HTTPS with a good SSL configuration and uses clientTransferProhibited domain status to prevent unauthorized transfers. However, DNSSEC is not enabled, and there is a lack of visible security policies or incident response contacts. Cookie consent is implemented, but no explicit privacy policy or terms of service were found on the homepage, which is a compliance gap. Overall, the website presents a low-risk profile with high business credibility and good technical implementation. Strategic improvements include enabling DNSSEC, publishing comprehensive privacy and security policies, and adding incident response information to enhance trust and compliance.

I

InEight

ineight.com

0

InEight is an established enterprise software company specializing in construction project management solutions. The company positions itself as a leader in the construction software market, providing data-driven tools to improve project decision-making. The website reflects a mature digital presence with a professional design and consistent branding. Technically, the site is built on WordPress using the Divi theme and optimized with NitroPack, hosted on Microsoft Azure DNS infrastructure. Security posture is adequate with HTTPS enabled and domain protections in place, though there is room for improvement in DNSSEC and security headers. Privacy compliance is lacking as no privacy or cookie policies are found, and no consent mechanisms are implemented. Contact information is not explicitly provided on the homepage, which may impact user trust and compliance. Overall, the site is professional and functional but would benefit from enhanced privacy and security disclosures.

C

CMiC

cmicglobal.com

0

CMiC is an established enterprise software company specializing in construction management solutions, offering integrated accounting, project, and people management tools through a streamlined platform. The website positions CMiC as an industry standard provider targeting construction businesses. Technically, the site leverages modern frameworks such as React and Next.js, and integrates multiple marketing and analytics tools including Google Analytics, Hotjar, and HubSpot, indicating a mature digital infrastructure. However, the absence of visible privacy and cookie policies, as well as lack of security headers, suggests gaps in compliance and security best practices. The domain is well-established with consistent WHOIS data, supporting the legitimacy of the business. Overall, the site is professional and functional but would benefit from enhanced privacy disclosures and security hardening.

E

EarthCam

earthcam.net

0

EarthCam is a well-established technology company specializing in construction camera solutions, including live streaming and time-lapse cameras designed to monitor, document, and promote construction projects. The company targets construction professionals and project managers, positioning itself as a leader in this niche market. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website employs modern frontend technologies such as Bootstrap 5.3.1, Font Awesome, Google Fonts, and integrates advanced marketing and analytics tools including Google Analytics, HubSpot, and Cookiebot for GDPR compliance. The site is mobile-optimized and demonstrates good SEO practices, though some accessibility features could be improved. From a security perspective, the site uses HTTPS and cookie consent mechanisms effectively but lacks explicit security headers like CSP and HSTS. No vulnerabilities or exposed sensitive data were detected. The absence of publicly available WHOIS data reduces transparency and trust somewhat, but the professional presentation and verified contact phone number mitigate this concern. Overall, EarthCam's website is secure, compliant, and professionally maintained, with minor recommendations to enhance security headers and publish security policies. The domain's WHOIS data unavailability is a notable gap but does not critically undermine the site's credibility.

Media Job Board, operated by Jobcase, Inc., is a specialized online job board platform targeting media industry professionals primarily in the United States. The website offers job listings, employer job posting services, and job alert subscriptions. The platform is positioned as a niche player in the media employment sector with partnerships with recognized media organizations. Technically, the site employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, Google Analytics, and Facebook Pixel, indicating a mature digital infrastructure with performance and tracking capabilities. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, but lacks explicit security headers and detailed security policies. The absence of public WHOIS data suggests privacy protection for the domain registration, which is common for this business type but slightly reduces transparency. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though improvements in security disclosures and contact information are recommended.

H

Hype Kit, Inc.

pico.tools

0

Hype Kit, Inc. operates the website hype.co, providing a comprehensive marketing platform tailored primarily for gyms and small to medium businesses. Their service offering includes link-in-bio websites, lead generation tools such as QR codes and NFC tags, CRM capabilities with SMS and email messaging, and subscription payment processing. Positioned as an all-in-one marketing co-pilot, Hype aims to replace multiple marketing tools with a unified SaaS solution. The company has a solid market presence with press mentions and a clear tiered subscription model.

C

CloudEngage

cloudengage.com

0

CloudEngage is a technology company specializing in no-code website personalization and AI-powered customer self-service solutions. Their offerings include the Personalize ecosystem and AnswerDash product, targeting businesses seeking to enhance customer engagement and conversion through personalized digital experiences. The company has a solid market position with global brand clients and a mature domain established in 2011. Technically, the website is built on WordPress using Divi and Elementor, leveraging modern web technologies and hosted on AWS infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

U

Userpilot

userpilot.com

0

Userpilot is a mature SaaS company founded in 2011, specializing in product growth platforms that enable product teams to deliver personalized in-app experiences. Their market position is strong with over 1,000 companies using their solutions, which include user onboarding, product analytics, user feedback, session replay, and mobile engagement. The website reflects a professional and consistent brand with excellent content quality and user experience. Technically, the site is built on WordPress with modern tools and integrations, optimized for performance and mobile use. Security posture is good with HTTPS, domain protections, and use of security plugins, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the domain registration data supports the legitimacy and longevity of the business.

Koszalin360.pl is a regional interactive multimedia portal focused on providing spherical tours, 360° videos, and multimedia content showcasing the beautiful areas of the Pomorze Zachodnie region in Poland. The website is operated by PERSKIMEDIA Szymon Perski, a small media company established in 2016. The business targets a general audience interested in immersive regional content and tourism-related multimedia experiences. The site uses a technology stack centered around HTML5, JavaScript, jQuery, and WebGL to deliver interactive content, although some libraries are outdated. From a technical perspective, the website demonstrates basic mobile optimization and accessibility features but lacks advanced SEO and performance optimizations. The absence of modern security headers and DNSSEC indicates room for improvement in security hardening. No forms or data collection mechanisms are present, reducing exposure to input-based vulnerabilities but also limiting user engagement and contact opportunities. Security posture is moderate with no visible critical vulnerabilities, but the lack of privacy and cookie policies, security headers, and contact information for incident response reduces compliance and trustworthiness. The WHOIS data aligns well with the website content, showing consistent registration details and domain age appropriate for the business history. Overall, the site is functional for its purpose but would benefit from enhanced security practices, privacy compliance, and richer business contact information to improve trust and user confidence.

K

Kocham Koszalin - Program Karta Mieszkańca Koszalina

kochamkoszalin.pl

0

Kocham Koszalin is a community social program focused on strengthening the sense of community among residents of Koszalin, Poland, and encouraging settlement in the city. The program offers an electronic resident card system providing benefits, discounts, and access to local events, targeting both residents and local business partners. The website reflects a well-structured digital presence with clear navigation, accessibility features, and active social media engagement. Technically, the site uses modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and a Content Security Policy, though additional headers and DNSSEC could enhance security further. Privacy compliance is well addressed with comprehensive cookie consent mechanisms and a detailed privacy policy. Overall, the site demonstrates a professional and trustworthy digital platform for a government/community initiative.

N

nazwa.pl sp. z o.o.

przyjazne-deklaracje.pl

0

Przyjazne Deklaracje is a Polish online platform specializing in simplifying local tax declarations and information submissions for residents and local governments. The service leverages algorithms to automate tax rate selection and calculations, enabling users to prepare and submit tax documents efficiently from home. The platform positions itself as an innovative and user-friendly solution in the niche market of local tax services in Poland. Technically, the website is built on modern frameworks such as Next.js and React, supplemented by analytics and user experience tools like Google Analytics and Hotjar. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks some advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with GDPR, though it could benefit from enhanced security policies and incident response disclosures.

P

PROMEDIO Sp. z o.o.

qcloud.pl

0

PROMEDIO Sp. z o.o., operating under the brand Qcloud, specializes in innovative queue management systems designed to optimize customer flow in various service environments such as banks, hospitals, government offices, and retail points. The company offers a range of solutions including physical and virtual ticketing systems, appointment scheduling calendars, informational displays, and API licenses. Established in 2017 and based in Poland, Qcloud has completed over 350 projects and installed thousands of devices, positioning itself as a trusted niche provider in the queue management technology sector. Technically, the website is built on WordPress with common plugins like Yoast SEO and Contact Form 7, enhanced by Google Tag Manager and Google reCAPTCHA for analytics and security. The site is mobile-optimized and uses modern web fonts and scripts, although hosting details are not explicitly disclosed. Cookie consent is managed via CookieYes, indicating a basic level of privacy compliance. From a security perspective, the site enforces HTTPS and DNSSEC, integrates reCAPTCHA on forms, and implements cookie consent mechanisms. However, it lacks explicit security headers such as CSP or HSTS and does not publish a security policy or incident response contacts. No vulnerabilities or malicious content were detected, but improvements in security headers and transparency are recommended. Overall, the website presents a professional and trustworthy image with good content quality and business credibility. The absence of a privacy policy and security disclosures slightly lowers privacy compliance scores. The domain registration is consistent and legitimate, supporting the business claims. Strategic enhancements in security posture and privacy transparency would further strengthen the company's digital trustworthiness.

Budżety JST is a Polish web portal dedicated to presenting local government unit budgets in a transparent and accessible manner. The platform targets both local governments and residents, offering a user-friendly interface with personalized graphical elements and integration with budget management systems. The service includes features such as a built-in salary calculator to help residents understand tax expenditures. The company behind the portal is EuroInnowacje Software Sp. z o.o., a small-sized entity founded in 2018, operating primarily in the government sector within Poland. Technically, the website uses standard web technologies including HTML5, CSS3 with Bootstrap grid, and Google Fonts. The site is moderately optimized for mobile devices and has a clear, professional design. However, it lacks advanced frameworks or CMS indications and does not include analytics or tracking scripts, reflecting a minimalistic approach to user data collection. From a security perspective, the site does not implement DNSSEC, security headers, or visible HTTPS enforcement in the provided data, which limits its security posture. No privacy, cookie, or terms of service policies are present, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, but no incident response or vulnerability disclosure mechanisms are found. Overall, the site is safe with no adult or questionable content detected. The overall risk is moderate with recommendations to improve security headers, enable DNSSEC, add privacy and cookie policies, and implement vulnerability disclosure practices to enhance trust and compliance.

M

MediaPark Sp. z o.o.

budzet-obywatelski.org

0

The website budzetobywatelski.pl serves as a dedicated platform for participatory budgeting in Poland, targeting both residents and local government officials. It provides educational resources, tools, and showcases successful projects to foster civic engagement. The platform is operated by MediaPark Sp. z o.o., a small company based in Olsztyn, Poland. The site is professionally designed with a modern tech stack including Bootstrap and jQuery, and is mobile optimized. Privacy and cookie policies are well implemented, reflecting GDPR compliance. However, the absence of WHOIS data from the official .pl registry introduces some uncertainty regarding domain registration legitimacy. Security posture is moderate with HTTPS enforced but lacking explicit security headers and incident response information. Overall, the platform is trustworthy and functional, serving a niche government/non-profit sector audience effectively.

ept GmbH is a well-established manufacturer specializing in precision electronic connectors with over 50 years of experience. The company operates internationally with subsidiaries and partner sites in the USA, China, Czech Republic, and Italy, serving primarily the automotive and electronics manufacturing sectors. Their website reflects a professional and comprehensive product catalog, emphasizing quality and customization capabilities backed by multiple ISO certifications. Technically, the website is built on a modern CMS with responsive design and interactive elements such as product finders and multimedia content, indicating a mature digital presence. Security-wise, the site uses HTTPS but lacks advanced security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the company's apparent legitimacy based on content and certifications. Overall, the website is a reliable resource for industry professionals seeking high-quality connector solutions.

ept GmbH is a German-based manufacturer specializing in a wide range of industrial connectors including highspeed, miniaturized, rugged, EMC/shielding, power, and automotive connectors. The company offers both standard and customized connector solutions, targeting industrial clients and electronics manufacturers globally. Their website is professionally designed, multilingual, and provides clear contact information, reflecting a mature B2B business model with a medium-sized market presence. Technically, the website is built on the bee.tools® CMS platform, uses modern web standards (HTML5, CSS3, JavaScript), and is secured with HTTPS. The site is mobile-optimized and offers a good user experience with clear navigation. However, there is room for improvement in accessibility and SEO optimization. No analytics or tracking scripts were detected, indicating a minimal user tracking approach. From a security perspective, the site benefits from HTTPS and lacks exposed sensitive data. However, it lacks important security headers and explicit privacy or cookie policies, which are critical for GDPR compliance and user trust. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration consistency, which should be addressed to enhance trust. Overall, the website presents a professional and trustworthy business front but requires improvements in privacy compliance, security headers, and domain registration transparency to strengthen its security posture and regulatory adherence.

ept GmbH is a German-based manufacturer specializing in a wide range of electronic connectors and connector solutions, serving industrial and manufacturing sectors globally. Their product portfolio includes highspeed, miniaturized, rugged, EMC/shielding, power, automotive, and customized connectors, indicating a strong focus on technical innovation and industry standards. The website supports multiple languages, reflecting an international market presence. Technically, the site is built on the bee.tools® CMS platform, uses modern web technologies including WebP and SVG images, and is mobile optimized. However, there is room for improvement in accessibility and SEO. Security posture is moderate with HTTPS enabled and use of secure image formats, but lacks visible security headers and explicit privacy or cookie policies. WHOIS data for the domain is unavailable, which raises some concerns about domain legitimacy, though the website content and branding are professional and consistent with a legitimate business. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

The website ept-connettore.it currently serves only a 404 error page indicating that the requested content is not available. There is no substantive business information, metadata, or interactive elements present. The domain is registered since 2019 with a valid expiry in 2026 and is consistent with the Italian locale. The lack of content and absence of privacy, cookie, or contact policies significantly limit the ability to assess the business or security posture. Technically, the site shows minimal infrastructure with no advanced technologies or security headers detected. The security posture is basic with HTTPS likely enabled but no additional protections. Overall, the site is low trust and low maturity with critical gaps in content and compliance.

G

General Services Administration

performance.gov

0

Performance.gov is an official U.S. government website managed by the General Services Administration (GSA) that provides data-driven updates on the progress of federal agencies in achieving strategic government goals. The platform serves as a transparency and accountability tool for government performance, targeting policymakers, government officials, researchers, and the general public interested in federal strategy execution. The site offers archival data from multiple presidential administrations, enhancing its value as a historical and analytical resource. Technically, the website employs modern web technologies including the US Web Design System (USWDS), Google Tag Manager, jQuery, and Lottie animations, ensuring a responsive, accessible, and user-friendly experience. The site is well-optimized for mobile devices and demonstrates good SEO practices. However, explicit security headers are not visibly configured, and there is no public incident response or vulnerability disclosure information, which are areas for improvement. From a security perspective, the site benefits from HTTPS enforcement and the inherent trust of a .gov domain, which is tightly regulated. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is moderate; while a comprehensive privacy policy is present, there is no visible cookie consent mechanism. Contact information is limited but includes a verified government support email. Overall, Performance.gov is a credible, authoritative government resource with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, implementing a cookie consent mechanism, and publishing incident response and vulnerability disclosure policies to further strengthen trust and compliance.

G

General Services Administration (GSA) Technology Transformation Services

forms.gov

0

Search.gov is an official U.S. government search platform managed by the General Services Administration's Technology Transformation Services. It provides search capabilities across federal government websites and related services. The site currently displays a temporary unavailability message for the search function, directing users to USA.gov for government-wide search. The platform is positioned as a trusted government service with a focus on accessibility and compliance. Technically, the website employs modern web technologies including the US Web Design System, Amazon Cloudfront CDN, and New Relic monitoring for performance and error tracking. The site is secured with HTTPS and uses official .gov domain branding, ensuring trust and security for users. However, some improvements could be made in cookie consent mechanisms and explicit security headers. From a security perspective, the site demonstrates good practices with HTTPS enforcement and official government domain usage. No vulnerabilities or malicious content were detected. Privacy policies and terms of service are clearly linked, supporting compliance. WHOIS data is unavailable as expected for .gov domains, but this does not detract from the site's legitimacy. Overall, Search.gov is a credible and secure government resource with room for minor enhancements in privacy and security transparency. It serves a critical role in providing unified search access to government information and services.

O

Office of the Comptroller of the Currency

occ.gov

0

The Office of the Comptroller of the Currency (OCC) is a U.S. federal government agency responsible for ensuring a safe, sound, and fair federal banking system. The website serves as the official digital presence of the OCC, providing regulatory information, news, publications, and tools for bankers, consumers, and other stakeholders. It holds a strong market position as a key regulator within the U.S. banking sector, operating under the Department of the Treasury. The site targets a broad audience including banking professionals, federal institutions, and the general public seeking regulatory guidance and banking information. Technically, the website is built on the Percussion Content Management System and leverages modern web technologies including jQuery, Google Analytics, Crazy Egg, and the U.S. Web Design System (USWDS) to ensure accessibility, responsiveness, and usability. The site demonstrates good performance and SEO practices, with comprehensive metadata and structured navigation. Mobile optimization and accessibility features are well implemented, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs domain transfer protections, indicating a secure baseline. However, DNSSEC is not enabled, representing a minor security gap. The presence of a vulnerability disclosure policy is a positive indicator of security awareness, though explicit incident response contacts and security headers are not evident. Privacy compliance is moderate, with a comprehensive privacy policy but lacking a cookie consent mechanism despite the use of tracking scripts. Overall, the OCC website is a professional, trustworthy, and authoritative government resource with strong content quality and business credibility. Minor improvements in security headers, DNSSEC implementation, and privacy consent mechanisms would enhance its security posture and compliance. The site is safe for general audiences and aligns well with its role as a federal regulatory agency.

H

HispaVista

hspvst.com

0

HispaVista operates the domain hspvst.com as a service to place cookies on visitors' computers for its customers, primarily for advertising and session tracking purposes. The website content clearly states that no personally identifiable information is collected and no software is installed on user devices. The domain is well-established since 2014 and registered with a reputable registrar in Spain, consistent with the company's business operations. The site provides basic privacy and cookie policies with opt-out mechanisms, reflecting a commitment to privacy compliance, particularly GDPR. Technically, the website is simple, static, and lacks advanced frameworks or CMS, indicating a lightweight infrastructure focused on informational content rather than interactive services. Security posture is moderate with no HTTPS or security headers information visible in the provided data, and DNSSEC is not enabled, suggesting room for improvement in domain and web security. Overall, the website is safe, professional, and trustworthy but basic in design and technical sophistication.

The website scriptxyz.xyz presents a basic login interface built on the Laravel framework, targeting users who need authentication services. The site is minimalistic with no visible business branding, contact information, or policies, indicating it may be an early-stage or internal application rather than a public-facing commercial service. The technical infrastructure leverages modern web technologies including Laravel, Bootstrap, and reputable CDNs for fonts and scripts, hosted behind Cloudflare DNS services. However, the absence of DNSSEC and security headers suggests room for improvement in security hardening. The WHOIS data is notably suspicious due to a domain creation date set in the future, which undermines trust and raises legitimacy concerns. No privacy or cookie policies are present, and no analytics or tracking mechanisms are detected, indicating minimal user data collection but also a lack of compliance transparency. Overall, the site is functional but lacks maturity in business presence and security posture.

J

Jan Mucska

2046.cz

0

2046.cz is a small, specialized service provider offering programming and web design services primarily for artists and non-profit organizations. Founded in 2011 and based in the Czech Republic, the company emphasizes project planning, UI and UX design, and realization of digital solutions. The website serves as a portfolio showcasing various client projects and provides clear contact information for business inquiries. Technically, the site is built on WordPress, hosted by GreenGeeks, and uses modern web fonts and Google Analytics for visitor tracking. While the site is well-designed and mobile-optimized, it lacks formal privacy and cookie policies, which impacts its compliance posture. Security-wise, HTTPS is enabled, but additional security headers and incident response information are absent, suggesting room for improvement in security maturity. Overall, the site presents a professional image with moderate risk, suitable for its niche audience.

The Centre for Foreigners JMK is a government-supported non-profit organization based in the South Moravian Region of the Czech Republic. It provides a broad range of integration services including Czech language courses, legal and social counselling, adaptation and integration courses, and multicultural activities. The organization targets foreigners, institutions, municipalities, companies, and the general public, offering free events and support to facilitate integration into Czech society. The website is professionally designed, multilingual, and well-structured, reflecting a mature digital presence. Technically, the website is built on WordPress with modern libraries such as React, Leaflet.js, and Google reCAPTCHA for security. It employs SEO best practices with Yoast SEO and includes analytics via Google Analytics and Tag Manager. The site is mobile-optimized and accessible, though accessibility could be improved further. Security posture is strong with HTTPS and form protections, but lacks some advanced security headers and published security policies. The WHOIS data is unavailable, which slightly reduces trustworthiness, but the presence of official partner logos and consistent branding supports legitimacy. Privacy and cookie policies are present and GDPR compliant, with clear consent mechanisms. No signs of malicious content or adult material were found, making the site safe for general audiences. Overall, the Centre for Foreigners JMK website demonstrates a solid business and technical foundation with good security and privacy practices. The main risk is the lack of publicly available WHOIS data and absence of explicit security incident response information. Strategic improvements in security headers, incident response transparency, and accessibility would enhance trust and compliance.

The website mas-slavkovskebojiste.cz is currently a parked domain with no active business content or services. The page primarily serves as a placeholder indicating the domain may be for sale, with heavy reliance on advertising scripts and no meaningful user engagement features. The technical infrastructure uses standard HTML and JavaScript with Google Adsense Domains CAF and AdsDeli advertising networks, hosted via Cloudfront CDN. There is no evidence of a CMS or modern web frameworks. Security posture is weak, with no HTTPS or security headers detected, and no forms or inputs to secure. Privacy compliance is minimal, with only a basic privacy policy linked via a popup and no cookie consent mechanism. WHOIS data is suspicious, showing a domain creation date in the future and parking name servers, which undermines trust and legitimacy. Overall, the site lacks business credibility and professional content, resulting in a low trust score.

N

Nový Jičín - Město Klobouků

novyjicin.cz

0

Nový Jičín's official municipal website serves as a comprehensive digital portal for residents and visitors, offering city news, public service information, event calendars, and administrative contacts. The site is well-branded and positioned as the authoritative source for city-related information in the Czech Republic. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Analytics, and various plugins enhancing user experience and content management. The site is mobile-optimized and accessible, with good SEO practices and structured data implemented. Security posture is strong with HTTPS enforced and appropriate security headers, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies, including user consent mechanisms. Overall, the website presents a trustworthy and professional digital presence for the city government, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing transparency around security policies and incident response, and considering a vulnerability disclosure program to further strengthen security culture.

M

Město Rakovník

mesto-rakovnik.cz

0

Město Rakovník operates an official municipal website serving the residents and visitors of the city of Rakovník in the Czech Republic. The site provides comprehensive information about city administration, urban planning, social services, cultural events, and citizen resources. It functions as a key communication channel for the local government, offering access to official documents, news updates, and contact information. The website targets local citizens, government employees, and visitors seeking municipal services or information. Technically, the website employs a modern technology stack including jQuery, Bootstrap 4, and jQuery.mmenu for responsive navigation. The site is mobile-optimized and uses HTTPS to secure communications. Cookie consent mechanisms are implemented, reflecting awareness of privacy regulations. However, no advanced analytics or tracking services are detected, indicating minimal user tracking. From a security perspective, the site enforces HTTPS but lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could enhance protection against common web attacks. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration legitimacy. No signs of WAF or content blocking were found, and no vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a professional and trustworthy front for the city government, with good content quality and user experience. The main risk lies in the missing WHOIS data and lack of some security best practices. Strategic improvements in security headers and domain registration transparency are recommended to strengthen trust and compliance.

M

Městys Velké Němčice

velkenemcice.cz

0

The website www.velkenemcice.cz serves as the official online portal for the municipal government of Velké Němčice, a small town in the Czech Republic. It provides residents and visitors with comprehensive information including official announcements, event calendars, public notices, and contact details for municipal offices. The site is well-structured and targets local citizens and stakeholders interested in community affairs. The business model is informational and service-oriented, typical for local government entities. Technically, the site employs a modern technology stack including Bootstrap, jQuery, and various UI libraries to deliver a responsive and user-friendly experience. The CMS appears to be a custom municipal platform (Progres). While the site is mobile-optimized and SEO-friendly, performance is moderate and accessibility features are basic. No advanced hosting or cloud infrastructure details are evident. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit incident response or security policy documentation. Forms are present and appear secure, but cookie consent mechanisms are missing despite a cookie policy page. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain is a concern and reduces trustworthiness, though the official nature of the content mitigates this somewhat. Overall, the website is a trustworthy and professional municipal portal with good content quality and usability. Strategic improvements in security headers, privacy consent, and domain registration transparency are recommended to enhance trust and compliance.

O

Okresní hospodářská komora Hodonín

ohkhodonin.cz

0

Okresní hospodářská komora Hodonín is a regional chamber of commerce in the Czech Republic focused on supporting local entrepreneurs and businesses. The organization offers a variety of services including seminars, workshops, rental of classrooms and event spaces, assistance with grants, and networking opportunities. It positions itself as a strong partner for business growth in the Hodonín region and ranks among the top 10 district chambers by membership size. The website reflects a professional and consistent brand image targeting local business owners and entrepreneurs. Technically, the website is built on WordPress and leverages modern web technologies such as Google Fonts, FontAwesome, and Google reCAPTCHA v3 for form protection. The site is mobile optimized with good navigation and content structure, although some accessibility features could be improved. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site uses HTTPS and integrates reCAPTCHA to mitigate spam. However, it lacks important security headers and does not publish privacy or security policies, which are areas for improvement. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and contact information suggest a legitimate and professional entity. Overall, the site is safe, business-focused, and trustworthy for its intended audience, but it would benefit from enhanced security practices and compliance documentation to strengthen its risk posture.

M

MAS Brána Vysočiny, z.s.

masbranavysociny.cz

0

MAS Brána Vysočiny, z.s. is a Czech non-profit local action group dedicated to regional development and community support in the Vysočina region. The organization facilitates local projects, energy initiatives, and educational workshops, targeting local communities, SMEs, and non-profits. The website reflects a professional and consistent brand presence with clear contact information and active social media channels. Technically, the site is built on Drupal 10 with Bootstrap 5, providing a responsive and accessible user experience. Security posture is adequate with HTTPS enabled, but lacks visible security headers and cookie consent mechanisms, which are recommended for GDPR compliance. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and contact details appear authentic and consistent with a registered non-profit entity. Overall, the site is trustworthy and functional but would benefit from enhanced security and privacy features.

M

MAS Český sever – Varnsdorf

masceskysever.cz

0

MAS Český sever is a regional organization focused on community and regional development in the Český sever area of the Czech Republic. The website presents information about local initiatives, regional products, and community support activities, targeting local residents, stakeholders, and possibly tourists. The business model appears to be non-profit or community-oriented, with a focus on regional promotion and development. Technically, the website is built on WordPress, utilizing common plugins such as Contact Form 7 and RevSlider, and integrates Google Analytics for visitor tracking. The site shows moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The absence of detailed WHOIS data and registrant information is a notable gap. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security policies. No vulnerability disclosures or incident response contacts are provided. Cookie consent mechanisms are implemented, indicating some level of privacy compliance, though no privacy policy page was found. Overall, the website is functional and professional but has gaps in transparency and security best practices. The missing WHOIS data and lack of privacy and security policies reduce trustworthiness. Strategic improvements in these areas would enhance the site's credibility and security posture.

MAS Podbrněnsko, spolek is a regional non-profit organization focused on supporting the development of the Pohořelicko and Židlochovicko regions in the Czech Republic. The organization provides services such as grant and subsidy information, project support, promotion of local producers, and shared office facilities. Their target audience includes local communities, small and medium enterprises, and non-profit organizations. The website reflects a professional and community-oriented business model with a clear regional focus. Technically, the website uses a modern tech stack including jQuery, Foundation framework, bxSlider, and Google Analytics. It is built on the Nette Framework CMS and shows good mobile optimization and basic accessibility. The site includes cookie consent mechanisms and privacy policies, indicating awareness of GDPR compliance. However, some security best practices such as security headers are not visibly implemented. From a security perspective, the website uses HTTPS and has implemented cookie consent banners, but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits the ability to fully verify domain legitimacy, which introduces moderate risk. Overall, the site is functional, professional, and safe for general audiences. Strategically, MAS Podbrněnsko should enhance its security posture by adding security headers, publishing incident response and vulnerability disclosure policies, and ensuring regular updates of third-party libraries. Improving accessibility and SEO would also benefit user experience and reach.

M

Město Veselí nad Moravou

veseli-nad-moravou.cz

0

The website veseli-nad-moravou.cz serves as the official online presence of the municipal government of Veselí nad Moravou, Czech Republic. It provides comprehensive information about the city, local government, services, cultural and sporting events, and contact details for citizens and visitors. The site is well-positioned as a trusted source of local information and public services, targeting residents and stakeholders in the community. The business model is that of a government information portal, focusing on transparency and citizen engagement. Technically, the website is built on the vismo® CMS platform, hosted by Wedos, a reputable Czech hosting provider. It uses modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Analytics with a consent mechanism, Google Translate, and social media widgets. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. While no explicit security policy or incident response information is published, the site shows no signs of vulnerabilities or exposed sensitive data. Security headers are partially inferred but not explicitly visible. The domain WHOIS data is consistent with the municipal nature of the site, showing a long-established registration with a known Czech registrar. Overall, the website is a professional, trustworthy, and secure municipal portal with room for improvement in explicit security disclosures and incident response transparency. It poses low risk and serves its public function effectively.

M

Městský úřad Cheb

cheb.cz

0

The website cheb.cz is the official municipal portal for the city of Cheb in the Czech Republic. It provides comprehensive information and services to residents and visitors, including access to official documents, event calendars, online reporting tools, and contact information for city administration. The site is well-positioned as a trusted government resource with a clear focus on citizen engagement and transparency. Technically, the site employs modern web technologies including HTTPS, Google Analytics with consent management, Google reCAPTCHA for form security, and a CMS platform (Vismo) tailored for municipal websites. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is solid with HTTPS enforcement and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with explicit cookie consent and a detailed privacy policy. Overall, the site demonstrates a mature digital presence appropriate for a government entity, with good trust indicators and no suspicious elements.

M

Město Králův Dvůr

kraluv-dvur.cz

0

The website kraluv-dvur.cz serves as the official digital presence for the town of Králův Dvůr in the Czech Republic. It provides residents and visitors with municipal information, including news updates, event calendars, public notices, and contact details for city offices. The site is positioned as a local government portal, focusing on transparency and community engagement. The business model is typical for a municipal government, offering public services and information without commercial intent. Technically, the website is built on the vismo CMS platform and incorporates standard web technologies such as HTML5, CSS, and JavaScript. It integrates Google Analytics and Google Tag Manager for visitor tracking, with a cookie consent mechanism that respects user privacy by default denying analytics and marketing cookies. The site is mobile-optimized and accessible, with good SEO practices and a clear navigation structure. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration is consistent with the municipal nature of the site, having been established in 2001, indicating a mature and legitimate online presence. Overall, kraluv-dvur.cz is a trustworthy and professionally maintained municipal website with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security headers would further strengthen its security posture.

A

Asociace malých a středních podniků a živnostníků České republiky (AMSP ČR)

svou-cestou.cz

0

AMSP ČR is a well-established non-profit association dedicated to supporting small and medium-sized enterprises and entrepreneurs in the Czech Republic. The organization focuses on promoting young entrepreneurship through educational workshops, networking events, and media partnerships. Their projects target various business segments including craftsmen, family businesses, women entrepreneurs, and digitalization initiatives. The website reflects a professional and consistent brand image with clear contact information and legal disclosures. Technically, the site uses modern web technologies such as Google Tag Manager, jQuery, and Bootstrap, and implements cookie consent mechanisms to comply with privacy regulations. Security posture is adequate with HTTPS enforced, though additional security headers could enhance protection. The absence of WHOIS data limits transparency but does not detract significantly from the site's legitimacy given the comprehensive business information provided.

M

Městský úřad Krnov

krnov.cz

0

The website krnov.cz serves as the official digital presence of the city of Krnov, Czech Republic. It provides comprehensive municipal information, including news, event calendars, public notices, and online services for residents and visitors. The site is well-positioned as a trusted government portal, offering clear contact details and multiple communication channels including social media. The target audience includes local citizens, tourists, and businesses seeking city-related information and services. Technically, the site uses a modern CMS (vismo), integrates Google Analytics with privacy-conscious consent defaults, and employs Google reCAPTCHA for form security. The design is professional, mobile-optimized, and accessible, supporting a positive user experience. Security posture is solid with HTTPS and spam protection, though some advanced security headers and policies are absent. Overall, the site demonstrates a mature digital infrastructure suitable for a municipal government entity.

M

Městský úřad Tišnov

tisnov.cz

0

The website www.tisnov.cz serves as the official municipal portal for the town of Tišnov in the Czech Republic. It provides residents and visitors with comprehensive information including news updates, official public notices, job vacancies, event calendars, and contact details for municipal offices. The site targets local citizens and stakeholders seeking government services and community information. The business model is that of a government service portal, focusing on transparency and public communication. Technically, the website employs a modern CMS platform (vismo), uses HTTPS for secure communication, and integrates Google services such as Analytics, reCAPTCHA, and Translate. The site demonstrates good mobile optimization, accessibility features, and SEO practices. Cookie consent mechanisms are implemented in compliance with GDPR, allowing users to manage their preferences. From a security perspective, the site benefits from HTTPS and bot protection via reCAPTCHA. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a concern, reducing trust slightly, but the official nature and content quality support legitimacy. Overall, the website is well-structured, professional, and trustworthy for its intended audience. Strategic improvements include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to strengthen trust and compliance.

P

PuzzleWebs s.r.o.

klubpodnikavcu.cz

0

Klub podnikavců is a Czech entrepreneurial community platform focused on connecting both novice and experienced entrepreneurs to foster growth, networking, and knowledge sharing. The website serves as a hub for regional business events, membership information, and partner collaborations, positioning itself as a key regional business community facilitator. Technically, the site is built on Drupal 10, leveraging modern web technologies and integrating standard tracking tools such as Facebook Pixel and Google Tag Manager, with Cloudflare DNS and REG-WEDOS registrar ensuring stable hosting infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit incident response policies. Overall, the site is professional, compliant with GDPR, and trustworthy, serving its target audience effectively.

PuzzleWebs is a small-scale web presence currently under development, as indicated by the placeholder message on the homepage. The company appears to be based in the Czech Republic with domain registration dating back to 2018, suggesting a relatively recent establishment. The website currently offers minimal information about its business model, services, or market positioning, limiting insights into its commercial operations or target audience. The only contact information available is a company email address. From a technical perspective, the website uses Cloudflare for DNS and hosting services and integrates Tawk.to for live chat functionality. However, the site lacks comprehensive metadata, SEO optimization, and accessibility features. The performance is likely moderate given the minimal content, but no explicit mobile optimization or accessibility features are evident. The absence of a CMS or frameworks suggests a simple static or minimal site setup. Security posture is weak due to the lack of visible security headers, absence of privacy and cookie policies, and no incident response or vulnerability disclosure information. While HTTPS is presumably enabled (given Cloudflare usage), no explicit SSL configuration details are provided. The site does not expose sensitive data or forms, which reduces immediate risk but also indicates limited functionality. Overall, the security maturity is low, and compliance with GDPR or other privacy regulations is not demonstrated. The overall risk assessment is moderate to low due to the minimal attack surface but is impacted by the lack of transparency and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, enhancing website content and structure, and establishing incident response contacts to improve trust and compliance.

M

Marter | Rodičovská není brzda

marter.cz

0

Marter.cz is a Czech Republic based community and educational platform focused on supporting women, particularly mothers, in returning to work after parental leave and starting their own businesses. The website offers community engagement and educational resources tailored to this niche audience. Technically, the site is built on WordPress using the Divi theme, with integrations such as WooCommerce, bbPress for forums, and LearnDash for learning management. It employs Google Adsense for advertising and Google Tag Manager for analytics and tracking. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with no visible privacy or terms of service pages. Overall, the site is professionally designed and functional, targeting a small but specific market segment.

C

Czech Founders

czechfounders.org

0

Czech Founders is a Czech non-profit organization and community dedicated to empowering startup founders and innovators in Czechia. The organization provides networking opportunities, advocacy with policymakers, research, and events to support the growth and scaling of startups. It has a strong presence in the Czech startup ecosystem with over 1000 members and partnerships with key organizations. The website is professionally designed, content-rich, and well-structured, targeting founders, investors, and ecosystem supporters. Technically, it is built on WordPress with modern UI libraries and is mobile optimized. Security posture is good with HTTPS and domain transfer protection, though DNSSEC is not enabled and security policies are not explicitly published. Privacy compliance is mostly met with a GDPR policy but lacks a cookie consent mechanism. Overall, the website is trustworthy and credible with transparent WHOIS data matching the business leadership.

M

MAVERICKS advokáti s.r.o.

mavericks.legal

0

MAVERICKS advokáti s.r.o. is a boutique law firm based in Prague specializing in legal services for the digital and technology sectors, including startups, venture capital, M&A, IP, and IT law. The firm positions itself as a premium provider with a strong reputation in the Czech and Slovak markets, serving tech companies, investors, and public sector clients. Their business model includes hourly rates, fixed prices, and subscription packages, emphasizing fast and technologically advanced service delivery. Technically, the website is built on WordPress with modern frameworks like Bootstrap and Elementor, featuring good mobile optimization and professional design. Security posture is solid with HTTPS and some security best practices, though explicit security headers and vulnerability disclosure mechanisms are absent. The WHOIS data is unavailable or malformed, limiting domain trust assessment, but the website content and business information appear legitimate and professional. Overall, the site is safe, well-structured, and trustworthy, though improvements in privacy compliance and security headers are recommended.

C

Court of Moravia

courtofmoravia.com

0

Court of Moravia is a small Czech Republic-based business specializing in organizational development and business game design services. Their offerings include culture and strategy guidance, gamification, transformation management, and related consulting services targeted at businesses seeking innovative approaches to organizational change. The website presents a professional image with clear contact information and a consistent brand presence. Technically, the site uses modern frameworks such as Bootstrap and integrates multiple analytics and advertising tools including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. Hosting is provided by a Czech hosting provider as indicated by the nameservers. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. The domain is well-established since 2005, consistent with the company's founding date, and shows no suspicious registration patterns. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

I

Impact Hub Česká Republika

impacthub.cz

0

Impact Hub Česká Republika operates as a well-established coworking and business support provider with multiple locations in Prague, Brno, and Ostrava. The company focuses on fostering a community of impact-driven entrepreneurs and teams, offering coworking spaces, office rentals, event venues, and business incubation services. Their market position is strong within the Czech Republic, targeting startups and socially conscious businesses. Technically, the website is built on WordPress with Elementor and integrates modern tools like Google Tag Manager and reCAPTCHA, ensuring a good digital maturity level. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, GDPR compliant, and trustworthy, with clear contact information and business legitimacy supported by consistent WHOIS data.

D

DEPO VENTURES s.r.o.

depoventures.com

0

DEPO Ventures is a Czech-based investment group specializing in connecting technology startups with angel investors, primarily in Central and Eastern Europe. Founded in 2017, the company manages angel funds and an international network of investors, supporting a portfolio of over 50 companies with significant invested capital. Their website reflects a professional and modern digital presence, featuring portfolio showcases, investor testimonials, and clear navigation for startups and investors alike. The business model centers on early-stage investment and community building within the tech startup ecosystem. Technically, the website employs modern JavaScript libraries such as Swiper.js for UI elements, integrates Google Analytics and HubSpot for marketing and analytics, and uses Amazon S3 for hosting media assets. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. However, some accessibility features could be improved, and no CMS or major frameworks were detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and a published security policy or incident response contacts. DNSSEC is not enabled, which is a recommended improvement. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy compliance is partial, with cookie consent present but no explicit privacy policy found on the homepage or footer. Overall, DEPO Ventures presents a trustworthy and credible online presence with a solid business foundation. Strategic improvements in security policies, privacy disclosures, and DNS security would enhance their posture. The site is safe for general audiences and free from adult or questionable content.

A

Air Ventures

airventures.eu

0

Air Ventures is an early-stage venture capital firm based in Prague, focusing on startups primarily in the CEE, Baltics, DACH, and UK regions. The company targets ambitious entrepreneurs and startups with proven market traction, offering investment tickets ranging from 200k to 2 million EUR. Backed by MiddleCap Group, Air Ventures emphasizes agility, strong entrepreneurial experience, and marketing expertise to support its portfolio companies. The website reflects a professional and consistent brand image with clear business focus and team presentation. Technically, the website is built on WordPress using Elementor and incorporates modern technologies such as Google Analytics and Smart Slider 3. The site is hosted by WebSupport s.r.o., a reputable hosting provider. Performance and mobile optimization are good, though accessibility features are basic. SEO practices are adequately implemented. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks important security headers and published security or incident response policies. Privacy and cookie policies are missing, indicating compliance gaps with GDPR and related regulations. No WAF or blocking mechanisms were detected, and the domain registration is consistent with the business claims. Overall, Air Ventures presents a credible and professional online presence suitable for its venture capital business, but it should improve privacy compliance and security best practices to enhance trust and regulatory adherence.