Security Directory

E

Ebbot

ebbot.com

0

Ebbot is a technology company specializing in Agentic AI for customer service automation. Their platform offers AI agents that automate repetitive support tasks, live chat solutions with AI assistance, and an API for integrating AI into existing workflows. The company targets multiple industries including telecom, e-commerce, financial services, energy, public sector, travel, housing, and education. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Webflow, GSAP, and Lottie animations. Security posture is strong, evidenced by HTTPS enforcement and ISO 27001 certification, although explicit privacy and cookie policies are not found on the main site. WHOIS data is unavailable, which reduces domain trust but the overall business presence and security certifications support legitimacy.

Spårvägsmuseet is a well-established museum in Stockholm dedicated to the history and cultural impact of public transportation in the city. The museum offers a variety of exhibitions, guided tours, educational programs, and event hosting services, targeting a broad audience including families, schools, and tourists. The website reflects a mature digital presence with modern technologies such as Next.js and Contentful CMS, hosted on Microsoft Azure, and integrates privacy-compliant analytics via Matomo. Security posture is strong with HTTPS and standard security headers, though DNSSEC is not enabled. The site complies well with GDPR, featuring a comprehensive privacy and cookie policy with user consent mechanisms. Contact information is clearly presented, enhancing business credibility.

W

Waxholmsbolaget

waxholmsbolaget.se

0

Waxholmsbolaget is a well-established regional public transportation operator providing boat travel services throughout the Stockholm archipelago. The company operates under the auspices of Region Stockholm and offers journey planning, ticketing, and customer support services primarily targeting residents and tourists in the region. The website serves as a comprehensive portal for travel information, ticket purchases, and customer service access. Technically, the site is built on a modern React and Next.js framework, hosted on Microsoft Azure, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and no exposed sensitive data, though there is room for improvement in security headers and incident response transparency. Privacy compliance is strong, with clear cookie consent and GDPR-aligned privacy policies. Overall, the site reflects a professional and trustworthy digital presence aligned with its public transportation mission.

C

Czechsporttravel.cz

czechsporttravel.cz

0

Czechsporttravel.cz is an online travel agency specializing in organizing travel packages and ticket sales for various sports events including football, hockey, tennis, Formula 1, and horse racing. The website targets sports enthusiasts primarily in the Czech Republic, offering a wide range of services such as air and bus travel packages, VIP tickets, sports camps, and concert tickets. The business appears to hold a niche market position with a medium-sized operation and consistent branding across its digital presence. Technically, the website employs a modern JavaScript technology stack including jQuery, various UI and carousel libraries, Google reCAPTCHA v3 for bot protection, and advanced analytics tools like Exponea and Google Tag Manager. The site is mobile optimized with good SEO practices and clear navigation, although accessibility features are basic. Performance is moderate, suitable for the content-rich nature of the site. From a security perspective, the site enforces HTTPS and uses bot mitigation and cookie consent mechanisms, indicating awareness of privacy and security requirements. However, it lacks some important security headers such as Content Security Policy, X-Frame-Options, and X-XSS-Protection, which could expose it to certain web vulnerabilities. No WHOIS data is available, likely due to privacy protection, which is common for commercial websites but limits domain trust analysis. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to missing security headers and absence of an explicit privacy policy page. Strategic improvements in these areas would enhance compliance and security posture.

C

CZ.BASKETBALL

cbf.cz

0

CZ.BASKETBALL is a well-established Czech basketball portal founded in 2009, serving as a central hub for basketball news, videos, competitions, and community engagement in the Czech Republic. The website targets basketball fans, players, coaches, and officials, providing comprehensive coverage of national teams, leagues, and events. It maintains strong partnerships with official basketball organizations and sponsors, enhancing its market position as a leading basketball information source in the region. Technically, the site uses modern web technologies including Google Tag Manager and Google Analytics, with good mobile optimization and a custom CMS platform. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are lacking. Privacy compliance is basic, with no clear privacy policy or terms of service pages found. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve transparency and security documentation.

GigaBoard, s.r.o. operates a Czech Republic-based advertising service specializing in large-format outdoor advertising spaces for medium and long-term campaigns. The company has a well-established presence since 2002, supported by a domain age consistent with its business history. The website provides basic information about its services and contact details but lacks modern technical and security features. The technical infrastructure is simple, relying on basic HTML, CSS, and JavaScript without advanced frameworks or CMS. Security posture is weak due to absence of HTTPS, security headers, and cookie consent mechanisms. No evident vulnerabilities or malicious content were detected, but the site would benefit from improved security and privacy compliance. Overall, the business credibility is moderate, supported by clear contact information and domain legitimacy.

J

JDC Entwine

jdcentwine.org

0

JDC Entwine is a non-profit organization focused on building a generation of young Jews who lead with global Jewish responsibility. The website highlights travel programs, leadership fellowships, community engagement, and educational toolkits aimed at young Jewish audiences worldwide. The organization is affiliated with the American Jewish Joint Distribution Committee (JDC), which serves as its parent entity. The website is professionally designed using WordPress and the Divi theme, incorporating modern web technologies and plugins to enhance user experience and functionality. It includes integrations with Google Analytics and Hotjar for user behavior tracking and Mailchimp for newsletter management. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and cookie consent mechanisms, which are recommended for improved compliance and protection. The WHOIS data is unavailable or privacy protected, which is common for non-profits, but the website's branding and external references support its legitimacy. Overall, the site is safe, well-structured, and serves its target audience effectively, though improvements in security headers and privacy compliance would enhance trust and resilience.

B

Brunswick Bowling

brunswickbowling.com

0

Brunswick Bowling is a well-established company specializing in high-performance bowling equipment and supplies, targeting bowlers of all skill levels. The company positions itself as a leading supplier in the retail bowling industry, offering a wide range of products including bowling balls, bags, shoes, and apparel. The website reflects a professional retail business model with a focus on e-commerce and brand consistency. Technically, the site is built on Craft CMS, hosted on DigitalOcean infrastructure, and employs modern web technologies such as Google Tag Manager, Facebook Pixel, and Cookiebot for tracking and consent management. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the website uses HTTPS, implements CSRF tokens, and has a cookie consent mechanism, but lacks explicit security policies and some security headers. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy and professionally maintained but would benefit from publishing clear privacy and terms of service pages and providing explicit contact information to enhance compliance and user trust.

L

LaserMaxx74

lasermaxx74.fr

0

LaserMaxx74 is a small local entertainment business based in Annecy, France, specializing in laser game and quiz boxing activities. The company targets a broad audience including families and children aged 8 and above, offering event hosting for birthdays, corporate events, and bachelor/bachelorette parties. The website is professionally designed using modern web technologies and integrates booking services through a partner platform. The digital infrastructure includes analytics and marketing tools with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical and justified for this business type. Overall, the website presents a trustworthy and professional image suitable for its market niche.

M

Megazone France

megazone.fr

0

Megazone France is a leading French company specializing in the supply and installation of laser game equipment and arenas for professional leisure establishments. The company positions itself as the market leader in France with over 135 active centers equipped in 2025. Their offerings include hardware, software, arena design, and customizable solutions tailored to client needs. The website is professionally designed, bilingual (French and Spanish), and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and uses modern performance and tracking tools such as WP Rocket and Google Analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit privacy policies are missing. WHOIS data is unavailable, which slightly reduces trust but does not outweigh the professional presentation and business legitimacy. Overall, the site is a credible B2B platform serving the leisure and entertainment sector in France.

B

Bundesanstalt für Straßen- und Verkehrswesen

bast.de

0

The Bundesanstalt für Straßen- und Verkehrswesen (BASt) is a German federal government research institute specializing in road and traffic safety, infrastructure, vehicle technology, and traffic engineering. It operates under the Federal Ministry for Digital and Transport and provides authoritative research, publications, and quality assessments to support transportation infrastructure and safety in Germany. The website serves as a comprehensive portal for research outputs, news, and public information targeting professionals, government bodies, and the general public. Technically, the website is built on the Government Site Builder CMS, featuring modern HTML5, CSS3, and JavaScript technologies. It is well-optimized for mobile devices, accessible, and SEO-friendly. The site uses HTTPS with excellent SSL configuration, though security headers are not explicitly detected in the HTML content. Privacy and cookie policies are clearly presented with GDPR compliance, and a cookie consent mechanism is implemented. From a security perspective, the site shows good practices with no visible vulnerabilities or exposed sensitive data. However, it lacks a published security policy or incident response contact details and does not provide a security.txt file for vulnerability disclosures. The domain registration and DNS setup align with German government and research networks, reinforcing legitimacy and trustworthiness. Overall, the BASt website is a professional, trustworthy, and secure government portal with excellent content quality and user experience. Strategic improvements could include enhancing security headers and publishing explicit security policies to further strengthen its security posture.

S

Simopt, s.r.o.

simopt.cz

0

Simopt, s.r.o. is a Czech Republic based technology company specializing in virtual reality, 3D projects, e-learning, mobile applications, and web development services. With over 30 years of experience, the company targets businesses and educational institutions seeking innovative digital solutions. The website presents a professional and consistent brand image, showcasing key services and client testimonials that reinforce its market position as a trusted local provider. Technically, the site employs modern JavaScript libraries and frameworks, including jQuery, YouTube API, and cookie consent tools, indicating a moderate level of digital maturity. The site is mobile optimized and includes SEO best practices, though it lacks some advanced accessibility features. Security posture is adequate with HTTPS implied but lacks visible security headers and published security policies. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the website is trustworthy and professional, though the absence of WHOIS data reduces domain trust slightly. Strategic improvements in security headers, incident response transparency, and WHOIS data visibility would enhance credibility and security.

E

Estúdio 936 - Unipessoal, Lda

espacocriativo.pt

0

Espaço Criativo is a small, established design and production studio based in Portugal with over 12 years of experience. The company specializes in graphic design, digital and physical production, merchandise customization, and branding solutions, targeting businesses seeking to promote and grow their brand. Their website showcases a professional portfolio, contact options, and social media presence, reflecting a personalized and client-focused business model. Technically, the website uses a variety of modern JavaScript libraries to enhance user experience and interactivity, with moderate performance and good mobile optimization. Security posture is moderate; while HTTPS is used and a cookie consent banner is present, the site lacks explicit security headers, vulnerability disclosures, and privacy policy documentation, which are areas for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

D

DECO – Associação Portuguesa para a Defesa do Consumidor

deco.pt

0

DECO is a prominent Portuguese non-profit association dedicated to consumer protection, advocacy, and education. The website reflects a mature digital presence with comprehensive content targeting Portuguese consumers and stakeholders interested in consumer rights, energy, and financial protection. The organization maintains a strong market position as a trusted authority in consumer defense, supported by clear branding and consistent messaging. Technically, the site is built on WordPress with a modern plugin ecosystem, including event management and user engagement tools, and integrates Google Analytics and Site Kit for performance monitoring. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and user interaction safeguards such as reCAPTCHA and exit notifications. No critical vulnerabilities or compliance gaps were detected, indicating a well-maintained and secure platform. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and related privacy regulations.

M

Município de Cinfães

cm-cinfaes.pt

0

The website https://cm-cinfaes.pt/ serves as the official digital presence of the Município de Cinfães, a municipal government entity in Portugal. It provides comprehensive information about local governance, citizen services, events, and cultural activities, targeting residents and visitors. The site is well-structured with a focus on accessibility and transparency, including GDPR-compliant privacy and cookie policies. The business model is public sector focused, delivering municipal services and information digitally. Technically, the website is built on Joomla CMS with Yootheme Pro and UIkit frameworks, leveraging modern web technologies such as jQuery and Google Analytics for user insights. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, includes multiple security headers, and uses nonce attributes to mitigate script injection risks. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and readiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing a formal security policy, adding incident response contact details, and considering a vulnerability disclosure policy to further strengthen security posture and transparency.

M

Município do Marco de Canaveses

cm-marco-canaveses.pt

0

The Município do Marco de Canaveses website serves as the official digital presence for the municipal government of Marco de Canaveses, Portugal. It provides residents, visitors, and businesses with comprehensive information about municipal services, governance, cultural activities, urban planning, and social programs. The site is well-positioned as a trusted source for local government information and community engagement. Technically, the website is built on WordPress using a modern tech stack including Fusion Builder, Everest Forms, and various plugins for media and forms management. The site demonstrates good digital maturity with responsive design, structured navigation, and integration of social media and marketing tools such as Facebook Pixel and Sendinblue for newsletters. From a security perspective, the site employs HTTPS, security headers, and secure form handling, reflecting a solid security posture. However, it lacks a visible cookie consent mechanism and a formal vulnerability disclosure policy, which are important for full GDPR compliance and security transparency. Overall, the website is professional, trustworthy, and functional, with minor gaps in privacy compliance and security disclosure. Strategic improvements in these areas would enhance user trust and regulatory adherence.

M

Município de Resende

cm-resende.pt

0

The Município de Resende website serves as the official digital presence of the local government of Resende, Portugal. It provides residents and visitors with comprehensive information about municipal governance, public services, cultural events, social programs, and community engagement initiatives. The site targets local citizens and stakeholders, offering transparency and access to municipal resources. The business model is that of a public sector entity focused on service delivery and community interaction. Technically, the website is built on WordPress, utilizing jQuery and jsCalendar for interactive elements. The site demonstrates moderate performance and good mobile optimization, though some technologies like jQuery are outdated. The design is professional and consistent with municipal branding, providing a good user experience with clear navigation and relevant content. From a security perspective, the site enforces HTTPS and includes some basic security headers but lacks advanced protections such as Content-Security-Policy and Strict-Transport-Security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is available primarily through social media links and a contact page, but no direct emails or phone numbers were found. Overall, the website is trustworthy and suitable for its purpose, with a solid foundation in content and business credibility. Strategic improvements in security headers, privacy compliance, and technology updates would enhance its posture and user trust.

S

SYNOT TIP, a.s.

synottip.sk

0

SYNOT TIP, a.s. operates a professional online sports betting and gaming platform primarily targeting Slovak customers. The website offers a variety of betting options including live bets, virtual games, and promotions, positioning itself as a leading player in the Slovak market. The company branding is consistent and the site content is relevant and professionally presented. Technically, the site uses a modern tech stack including ASP.NET, jQuery, and integrates third-party services such as Google Analytics, Hotjar, Zendesk, and Cookiebot for analytics, customer support, and privacy compliance. Security posture is solid with HTTPS enforced, anti-CSRF protections, and bot detection mechanisms in place. However, explicit security policies and incident response contacts are not published, and no terms of service page was found. Overall, the site is trustworthy and compliant with GDPR, with a comprehensive cookie consent mechanism. The domain WHOIS data aligns well with the business claims, reinforcing legitimacy.

K

Kingsbet

kingsbet.cz

0

Kingsbet is an online gambling and sports betting platform targeting the Czech market, offering online casino games, live casino, and sports betting services with promotional bonuses. The website is professionally designed with consistent branding and good content quality tailored for adult users interested in gambling. Technically, the site uses modern JavaScript libraries and tracking tools such as Google Tag Manager, Microsoft Clarity, and Cookiebot for cookie consent management. The site is accessible without any WAF or blocking mechanisms, indicating good availability. However, the absence of WHOIS data and lack of visible privacy policy or terms of service pages reduce transparency and trustworthiness. Security posture is moderate with HTTPS enforced but missing security headers and no explicit security or incident response policies disclosed.

S

Sazka

sazkabet.cz

0

Sazka.cz is a leading Czech online gambling and lottery operator offering a wide range of sports betting and lottery products. The website provides extensive betting markets including live betting, supported by modern web technologies and integrations with analytics and telemetry services. The company targets adult sports bettors primarily in the Czech Republic, offering attractive bonuses and a mobile app to enhance user engagement. The website demonstrates a high level of digital maturity with professional design, clear navigation, and GDPR-compliant privacy and cookie policies. Security posture is strong with HTTPS, secure third-party integrations, and cookie consent mechanisms, although some HTTP security headers could be improved. The absence of public WHOIS data suggests privacy protection typical for gambling businesses, which does not detract from the site's legitimacy. Overall, Sazka.cz presents a trustworthy and professional online gambling platform with a solid technical foundation.

U

UITP Summit

uitpsummit.org

0

UITP Summit is a prominent event organizer specializing in public transport sector events, with the 2026 summit scheduled in Dubai. The website serves as a comprehensive platform for event information, including exhibition, congress, networking, sponsorship, and exhibitor opportunities. The site targets professionals and stakeholders in the public transport industry, offering a well-structured and professionally designed user experience. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Analytics, and CookieYes for consent management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates a mature digital presence aligned with its business goals.

The website www.hazardperception.cz is an educational platform focused on improving road safety awareness in the Czech Republic through interactive hazard perception video tests and related articles. It is supported by multiple Czech governmental and safety organizations, indicating a strong partnership ecosystem and trustworthiness in its niche. The platform targets drivers and driving license applicants, aiming to enhance their hazard recognition skills to reduce accidents. Technically, the site is built on a modern React and Next.js stack, with good mobile optimization and a clean user experience. However, it lacks visible privacy and cookie policies, contact information, and security headers, which are areas for improvement. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its public and governmental backing. Overall, the site presents a professional and trustworthy educational resource with moderate technical and security maturity.

The website www.noveotazky.cz serves as an educational platform focused on providing new test questions and traffic situation scenarios for driver license applicants in the Czech Republic. It is supported by reputable organizations including the Czech Insurers' Bureau and various government and road safety partners, positioning it as a niche but trusted resource in the transportation education sector. The site targets individuals preparing for driving tests and aims to enhance road safety awareness through interactive content such as hazard perception video sequences. From a technical perspective, the site employs modern JavaScript frameworks, likely Vue.js, and is built on a Laravel backend, as indicated by route and sanctum references. It integrates Google Tag Manager for analytics and uses libraries like SweetAlert2 and NProgress for UI enhancements. The site is mobile-optimized with good design quality and navigation clarity, though accessibility features are basic. Performance is moderate, with room for improvement in SEO and accessibility. Security-wise, the site enforces HTTPS and includes CSRF tokens, but lacks visible security headers and explicit privacy or cookie policies. No vulnerability disclosures or incident response contacts are provided, which could be improved to enhance trust and compliance. The absence of WHOIS data limits domain legitimacy verification, though the presence of partner logos and contact email supports credibility. Overall, the website is a well-designed, functional educational resource with a solid business foundation but could benefit from enhanced privacy compliance, security best practices, and transparency to improve trust and regulatory adherence.

S

Start Driving

startdriving.cz

0

Start Driving is a Czech Republic-based educational project focused on enhancing the knowledge, responsibility, and driving skills of novice drivers. Supported by the Association of Driving Schools of the Czech Republic and other partners including government bodies, the project offers free advanced driver training and educational activities for young drivers, driving instructors, and responsible parents. The website reflects a well-structured initiative with strong institutional backing and a clear mission to improve road safety through education. Technically, the website is built on WordPress and integrates modern tools such as Google Tag Manager, Google Analytics, and YouTube embeds. It implements a cookie consent mechanism compliant with GDPR requirements, although a dedicated privacy policy page is not clearly found. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, some security headers are missing, and the Google Maps API key is exposed in the source code, which should be reviewed for restrictions. From a security perspective, the site uses HTTPS and has no visible critical vulnerabilities or exposed sensitive data. The cookie consent mechanism and partner trust signals enhance its compliance posture. The absence of WHOIS registrant data limits domain trust assessment but does not detract significantly from the overall legitimacy given the project's nature and partnerships. Overall, Start Driving presents a credible, well-supported educational platform with moderate technical maturity and good security practices. Strategic improvements in privacy policy transparency and security header implementation are recommended to enhance compliance and trust further.

B

B interactive

binteractive.cz

0

B interactive is a Czech-based creative studio specializing in web development, graphic design, and hosting services, operating since 2013. The company targets businesses and organizations seeking professional web and graphic solutions, positioning itself as a quality-focused local service provider. Their website reflects a consistent brand and offers clear navigation and relevant content to their audience. Technically, the site uses common web technologies such as jQuery, Slick Carousel, Google Analytics, and Google Tag Manager, hosted under Czech domain registrars and name servers. Mobile optimization and SEO practices are adequately implemented, though accessibility features are basic. Security posture is moderate with cookie consent mechanisms in place, but lacks explicit security headers and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR through its privacy and cookie policies.

R

Ráj aut

rajaut.cz

0

Ráj aut is a Czech Republic based online automotive classifieds platform specializing in car advertisements, sales, and bazaar listings. The website offers a comprehensive search and filter system for vehicles, targeting car buyers and sellers primarily within the Czech market. It maintains a moderate market position with partnerships to related automotive sites and services. Technically, the site uses standard web technologies including Google Analytics, Google Tag Manager, Google Adsense, and Adform for advertising and tracking. The site is served over HTTPS, ensuring secure data transmission, but lacks some advanced security headers and has only basic mobile optimization. Privacy and cookie policies are present but could be more explicit and comprehensive. No WHOIS data was retrievable, which slightly impacts trustworthiness but the site content and business presence indicate legitimate operation. Overall, the website is functional, moderately secure, and serves its niche audience effectively.

R

Ráj veteránů

rajveteranu.cz

0

Ráj veteránů is a specialized online classifieds platform focused on vintage and classic vehicles primarily serving the Czech Republic market. The website offers a comprehensive vehicle listing service with detailed search filters, partner promotions, and community engagement through a Facebook group. The business operates as a niche marketplace catering to classic car enthusiasts and sellers, with a business model centered on advertising and listing fees. Technically, the site employs modern web technologies including Google Fonts, Google Analytics, and Adform for advertising and tracking, with HTTPS and security headers implemented to ensure secure user interactions. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though direct contact information is limited to a contact form. The absence of WHOIS data limits domain trust assessment, but the website's professional presentation and active content suggest legitimacy. Overall, the site demonstrates a good balance of content quality, technical implementation, and security posture, making it a reliable resource for its target audience.

S

Sportovní vozy

sportovnivozy.cz

0

Sportovní vozy is a Czech online platform specializing in the listing and sale of sports cars. It offers classified ads, dealer catalogs, automotive news, and advertising opportunities primarily targeting car enthusiasts and buyers in the Czech Republic and Slovakia. The website has been active since at least 2007, indicating a stable presence in its niche market. The business model revolves around providing a marketplace for sports car sales and monetizing through advertising and partnerships. Technically, the website employs common web technologies including Google Analytics, Google Tag Manager, Google Adsense, and Adform for advertising and tracking. The site uses HTTPS and Google Fonts, but lacks advanced security headers and explicit privacy or terms of service pages. Mobile optimization and accessibility are basic, with room for improvement. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR principles. However, the absence of WHOIS registrant data and missing security headers reduce trustworthiness. No critical vulnerabilities or exposed sensitive data were detected. The site uses extensive user tracking through third-party analytics and advertising services. Overall, the website is functional and professionally designed for its target audience but would benefit from enhanced security practices, clearer privacy disclosures, and improved contact transparency. The domain's WHOIS data is unavailable, which slightly impacts the trust score but does not negate the site's legitimacy based on content and longevity.

T

TECHNOLOGY - GARAGE spol. s r.o.

technology-garage.cz

0

TECHNOLOGY - GARAGE spol. s r.o. is a Czech Republic based company specializing in professional equipment and machinery for automotive service centers, tire services, industrial workshops, and the energy sector. Established since 1995, the company offers a broad catalog of products including lifts, compressors, diagnostic tools, and safety equipment, positioning itself as a trusted supplier in its niche markets. The website reflects a mature business with a clear focus on B2B customers in automotive and energy industries. The technical infrastructure of the website is built on a proprietary or custom e-commerce platform (wpj.cz), utilizing modern web technologies such as JavaScript, CSS, Google Tag Manager, Google Analytics, and Sentry for error monitoring. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be improved. Performance is moderate, and the site uses HTTPS with a good SSL configuration. From a security perspective, the website employs HTTPS and error monitoring but lacks some important security headers and explicit privacy and security policies. Cookie consent mechanisms are implemented, indicating some level of privacy compliance, but no dedicated privacy or terms of service pages were found. The absence of WHOIS data for the domain reduces trust in the domain registration legitimacy, though the website content and business presence suggest a legitimate operation. Overall, the website presents a professional and trustworthy business front with room for improvement in security best practices and privacy transparency. The risk level is moderate, primarily due to missing domain registration data and incomplete privacy documentation.

K

KRPA FORM, a.s.

krpa-form.cz

0

KRPA FORM, a.s. is a Czech manufacturer and distributor specializing in paper products such as business forms, cash register rolls, paper bags, and advertising prints. The company has over 25 years of experience and is part of the KRPA Holding CZ group, which has a 190-year tradition in paper manufacturing. The website targets wholesale customers, retail chains, and individual clients primarily in the Czech Republic and abroad. Their business model combines manufacturing with wholesale distribution and an e-commerce platform. The site is professionally designed with consistent branding and clear navigation, supporting multiple languages (Czech, English, German).

C

CLIQUO s.r.o.

cliquo.cz

0

CLIQUO s.r.o. is a Czech technology company specializing in system architecture, web development, e-commerce solutions, custom applications, and enterprise management systems. The company presents itself as passionate about technology and helping clients optimize their work processes. Their website is professionally designed, targeting businesses and organizations seeking digital transformation solutions. The company appears established with a founding year of 2006, although WHOIS data is unavailable to confirm domain registration details. Technically, the website uses modern web technologies including JavaScript, jQuery, Matomo analytics (configured to disable cookies), and popular font/icon libraries. The site is mobile-optimized and SEO-friendly with clear navigation and relevant content. However, no CMS or hosting provider information is evident. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS (implied by canonical URL), but no explicit security headers were detected in the provided data. The use of Matomo with cookies disabled is a positive privacy practice. There is no cookie consent mechanism or published security policy, which are areas for improvement. No forms were detected on the homepage, reducing immediate input-related risks. WHOIS data is missing, which lowers domain trustworthiness, but the website content and contact details suggest a legitimate business. Overall, CLIQUO's website is professional and business-focused with good content quality and technical implementation. Security posture and privacy compliance are moderate but can be enhanced by adding security headers, cookie consent, and incident response information. The lack of WHOIS data is a concern but does not negate the apparent legitimacy of the business. Strategic recommendations include improving security practices, publishing privacy and security policies, and enhancing transparency to build greater trust.

P

Platon Technologies, s.r.o.

platon.net

0

Platon Technologies, s.r.o. is a Slovak-based technology company specializing in domain registration, web hosting, server infrastructure, SSL certificates, mass mailing, and CDN services. The company emphasizes fully managed services, owning its own data center and infrastructure, and guarantees high uptime. Their website reflects a professional and customer-focused approach with clear service offerings and contact channels. Technically, the site uses modern web technologies including jQuery, Bootstrap, FontAwesome, and Google reCAPTCHA v3 to secure forms. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and reCAPTCHA integration, but lacks some HTTP security headers and published security policies. WHOIS data for the domain is missing, which raises some concerns about domain registration transparency, though the business information and contact details appear legitimate. Overall, the website is trustworthy and professionally maintained but could improve transparency and security documentation.

E

Ecoteca

ecoteca.pt

0

Ecoteca.pt is a Portuguese online directory dedicated to environmental education initiatives, providing a platform for public access to various projects developed by multiple entities. The website targets a general audience interested in environmental sustainability and education, offering categorized filtering by thematic areas, entities, content types, sustainable development goals, and geographic scope. The business operates in the non-profit sector with a focus on environmental education in Portugal. Technically, the website employs modern front-end technologies including HTML5, CSS3, JavaScript, and Swiper.js for interactive elements, along with Google Fonts for typography. The site is mobile optimized and presents a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure; however, it lacks important security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms. No contact information or incident response channels are explicitly provided, which may impact user trust and compliance. Overall, the website is functional and professional but would benefit from enhanced security and privacy practices to improve trust and compliance.

M

Mala GPS

malagps.cz

0

Mala GPS operates as a Czech-based e-commerce retailer specializing in GPS tracking devices tailored for pets, personal safety, bicycles, and property monitoring. The company emphasizes reliability, simplicity, and safety, targeting consumers who seek peace of mind through GPS technology. Their market position is strengthened by Czech manufacturing, competitive subscription pricing, and customer support in the Czech language. The website offers a comprehensive product catalog, customer testimonials, and mobile applications for iOS and Android, reflecting a mature digital presence. Technically, the website is built on the Shoptet e-commerce platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates multiple analytics and marketing tools including Google Analytics 4, Facebook Pixel, and Microsoft Clarity. The site is mobile-optimized, accessible, and employs HTTPS with CSRF protection in forms, indicating a solid technical foundation. From a security perspective, the site enforces HTTPS and cookie consent mechanisms but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, Mala GPS presents a professional and trustworthy online presence with good security hygiene and privacy compliance. The main risk lies in the opaque domain registration status, which slightly diminishes trustworthiness. Strategic improvements in security transparency and domain registration clarity are recommended.

C

CCAM

ccam.eu

0

CCAM is a European partnership focused on advancing Connected, Cooperative and Automated Mobility through coordinated research and innovation efforts. The organization acts as a platform for over 200 members from industry, research, and public sectors to collaborate on Horizon Europe projects and other initiatives. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and SEO best practices to communicate its mission and activities effectively. Technically, the site is built on WordPress with a robust tech stack including jQuery, Owl Carousel, and Google Analytics, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to enhance user trust and regulatory adherence. Overall, the domain is privacy protected as per EURid policies, consistent with legitimate EU organizations. The site is safe for general audiences and does not contain any adult or questionable content.

The website maxdrive.ovh is a recently registered domain (July 2023) owned by Gruppo Duemila snc, hosting a login portal named MaxDrive. The portal provides user authentication functionality including username/password and OTP multi-factor authentication, indicating a focus on secure access management. However, the site lacks publicly accessible privacy policies, terms of service, or contact information, which limits transparency and user trust. Technically, the site uses standard web technologies including jQuery and Font Awesome, hosted on OVH infrastructure. Security practices include OTP but lack modern security headers and DNSSEC, which are recommended for improved security posture. Overall, the site appears functional but basic, with room for improvement in compliance, security, and user trust features.

E

EasyStore

easystore.co

0

EasyStore is a technology company specializing in providing a unified customer experience platform for retailers and e-commerce merchants. Their platform integrates online stores, point of sale systems, marketplaces, live selling, payment gateways, and customer engagement tools to create seamless shopping journeys across multiple channels. The company targets retailers and brands seeking to unify their customer interactions and enhance loyalty through technology. Technically, the website is built with modern JavaScript frameworks and integrates multiple analytics and marketing tools, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS, CSRF tokens, and no visible vulnerabilities, though explicit security policies and headers could be improved. The absence of WHOIS data is due to privacy protection, which is justified for this business type. Overall, EasyStore presents a professional, trustworthy, and technologically advanced platform with a strong market presence.

Jumpseller is an established e-commerce platform founded in 2012, offering a SaaS online store builder targeted at fast-growing businesses and entrepreneurs. The platform supports multiple languages and countries, positioning itself as a versatile solution for online retail. The website presents a professional and consistent brand image with clear business descriptions and a 14-day free trial offer, indicating a customer-focused approach. Technically, the website employs modern front-end technologies including Bootstrap, FontAwesome, and Google Fonts, alongside robust analytics and marketing tools such as Google Analytics, Microsoft Clarity, Mixpanel, Facebook Pixel, and Visual Website Optimizer. Hosting appears to be on AWS infrastructure, ensuring scalability and reliability. The site is mobile-optimized and SEO-friendly, with good performance metrics. From a security perspective, the site uses HTTPS and implements reCAPTCHA v3 for bot mitigation. However, DNSSEC is not enabled, and no explicit security headers were detected in the provided data. There is no published security policy or incident response information, which could be improved to enhance trust. Privacy and cookie policies are not explicitly found, though a consent mechanism is implied. Overall, Jumpseller demonstrates a solid business and technical foundation with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

M

Mount-Apps

mount-apps.com

0

Mount Apps is a SaaS company providing white-label engagement tools and apps designed to empower agencies to expand their offerings under their own brand. The platform emphasizes ease of use, allowing agencies to launch client-facing apps without coding. With over 50,000 websites using their Smartarget apps daily, Mount Apps positions itself as a trusted solution in the SaaS white-label market. The company targets agencies and businesses seeking to enhance client engagement and marketing capabilities through branded dashboards and app management tools. Technically, the website is built with modern web technologies including Bootstrap and SVG graphics, hosted via Cloudflare, ensuring good performance and mobile optimization. However, the WHOIS data shows inconsistencies with a future domain creation date, which may indicate privacy protection or data errors. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and functional but could improve transparency and security practices.

The website prestashop3.com is currently inaccessible due to an SSL handshake failure between Cloudflare and the origin server, resulting in a Cloudflare 525 error page. This prevents access to any meaningful business content, policies, or contact information. The domain is registered since 2009 with SafeBrands SAS and has a clientTransferProhibited status, indicating some level of domain security. However, DNSSEC is not enabled, and the SSL configuration on the origin server is misconfigured or incompatible with Cloudflare, causing the site to be blocked. No metadata, forms, or social media links are present on the error page, and no privacy or cookie policies are found. Overall, the site exhibits poor content quality, minimal technical implementation, and weak security posture due to the SSL issues.

U

UC AB

uc.se

0

UC AB is Sweden's leading business and credit information company, providing comprehensive credit reports, risk assessments, and related services to both businesses and private individuals. The company operates under the parent group Enento and offers a wide range of services including corporate and personal credit information, ID protection, and credit scoring. The website reflects a mature digital presence with professional design, clear navigation, and extensive content tailored to its target audience in Sweden. Technically, the site uses modern web technologies such as Episerver CMS, Google Tag Manager, and cookie consent management tools, ensuring good performance and compliance with privacy regulations. Security posture is strong with HTTPS enforced and ISO certifications (9001 and 27701) indicating a commitment to quality and privacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, UC AB demonstrates a high level of business credibility and digital maturity, with clear trust signals and compliance adherence.

R

Region Stockholm

sl.se

0

SL (Storstockholms Lokaltrafik) operates the public transportation network in Stockholm County, Sweden, providing metro, bus, train, tram, and boat services. The website serves as a comprehensive portal for travel planning, ticketing, traffic updates, and customer support, targeting residents and visitors of Stockholm. The business is a large, government-affiliated entity with a strong market position as the primary transit provider in the region. The website content is rich, professionally presented, and accessible, supporting multiple languages and accessibility needs. Technically, the site is built on modern web technologies including React and Next.js, hosted on Microsoft Azure with good performance and mobile optimization. The use of Contentful CMS is inferred, enabling dynamic content management. Security practices include HTTPS enforcement, standard security headers, and cookie consent mechanisms, although DNSSEC is not enabled and no explicit security.txt or incident response contacts are published. The security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR adherence, and user consent mechanisms. Business credibility is high, supported by official regional government affiliation, clear contact channels, and trust signals such as social media presence and comprehensive content. Overall, SL.se is a trustworthy, well-maintained, and user-friendly website that effectively supports its public transportation mission. Minor improvements could include enabling DNSSEC, publishing a security.txt file, and providing explicit incident response contacts to further enhance security transparency and readiness.

E

European Commission - Directorate-General for Communications Networks, Content and Technology

5gobservatory.eu

0

The European 5G Observatory is an official monitoring platform managed by the European Commission's Directorate-General for Communications Networks, Content and Technology. It provides comprehensive data and insights on 5G technology deployment, market developments, spectrum allocation, and policy progress across the EU and neighboring countries. The platform targets policymakers, researchers, telecom operators, and technology enthusiasts, offering reliable and up-to-date information to support the EU's digital transformation goals. Technically, the website is built on Drupal 10 and leverages the European Commission's design system (ECL), ensuring a modern, accessible, and mobile-optimized user experience. The site integrates standard web technologies and includes social media sharing tools and Matomo analytics for user insights. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, includes cookie consent mechanisms, and links to a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policy documentation and incident response contacts could enhance transparency and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with EU privacy regulations. It serves as a key resource for tracking 5G progress in Europe, supporting the Digital Decade connectivity targets.

V

VIAVI Solutions Inc.

viavisolutions.com

0

VIAVI Solutions Inc. is a global enterprise specializing in network test, monitoring, and assurance solutions primarily for telecommunications, enterprise, government, and critical infrastructure sectors. Their extensive product and service portfolio includes lab and manufacturing test equipment, network deployment and maintenance tools, network and service assurance solutions, cloud and automation technologies, and specialized offerings for railway, mission-critical, and avionics markets. The company targets a professional B2B audience including service providers, equipment manufacturers, and government agencies. The website reflects a mature digital presence with multi-language support and a professional design built on Drupal 10 CMS. Technically, the website employs modern web standards including SVG graphics and WebP images, ensuring good mobile optimization and accessibility. SEO practices appear solid with proper meta tags and structured navigation. However, the absence of detected security headers and explicit privacy or cookie policies indicates room for improvement in security and compliance maturity. The lack of WHOIS data is a notable gap, though the website content and investor relations presence support the company's legitimacy. Security posture is moderate; HTTPS is implied but no security headers or incident response information are found. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak due to missing policies and consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy transparency. Strategically, VIAVI Solutions should prioritize publishing comprehensive privacy and cookie policies, implementing security headers, and clarifying incident response and vulnerability disclosure processes. These steps will strengthen trust and compliance, supporting their enterprise market position.

L

LPM Comunicação SA

lpmcom.pt

0

LPM Comunicação SA is a well-established Portuguese communication and public relations consultancy founded in 1986. The company holds a leading position in the Portuguese market, offering a broad range of services including communication consultancy, media relations, crisis management, public affairs, digital marketing, influencer management, and event production. The website reflects a professional and consistent brand image, targeting businesses and organizations seeking expert communication services. Technically, the website is built on Drupal CMS with modern frameworks like Bootstrap and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and vulnerability disclosure information are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Autoškolský ombudsman

autoskolsky-ombudsman.cz

0

The website 'Autoškolský ombudsman' serves as an independent advisory and mediation portal focused on driving schools and related stakeholders in the Czech Republic. It is a joint project of two professional associations representing driving schools, providing free expert advice, mediation services, and legislative input collection. The site targets driving school students, instructors, examiners, and operators, positioning itself as a niche expert resource within the transportation and education sectors. The business model is non-profit, funded initially by sponsorships and planned contributions from driving schools. Technically, the site employs a modern but basic technology stack including Bootstrap, jQuery, and Google Analytics. The design is professional and mobile-optimized with clear navigation and consistent branding. However, the site lacks advanced accessibility features and comprehensive SEO optimization. No CMS or hosting provider details were detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal privacy or cookie policies. No incident response or security contact information is provided. The absence of WHOIS data for the domain reduces trustworthiness, although the site content and partner affiliations support legitimacy. Tracking via Google Analytics is present, but privacy compliance is minimal. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance, and domain registration transparency to improve trust and compliance posture.

S

SPŠ stavební Liberec

stavlib.cz

0

SPŠ stavební Liberec is a vocational secondary school specializing in construction and geodesy education located in the Czech Republic. The website serves as an information portal for prospective students, current students, and other stakeholders, offering detailed course information, news, and resources. The institution positions itself as a reputable regional educational provider with a focus on practical training and career readiness in prestigious technical fields. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, and social media integrations, reflecting a mature digital presence. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the website content and social media presence support legitimacy. Overall, the site is professional, content-rich, and compliant with GDPR, making it a trustworthy source for its audience.

G

Gymnázium Dr. Antona Randy

randovka.cz

0

Gymnázium Dr. Antona Randy is a well-established educational institution located in Jablonec nad Nisou, Czech Republic, founded in 2010. The school offers modern gymnasium education with a focus on both general and sports-oriented programs, aiming to support student success and comprehensive development. The website reflects a professional and consistent brand image targeting prospective students, parents, and educational stakeholders. The institution maintains an active presence on major social media platforms such as YouTube, Facebook, and Instagram, enhancing its outreach and engagement. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, incorporating modern web technologies like jQuery and Slider Revolution for dynamic content. The site is mobile-optimized and performs moderately well, with good SEO practices evident. Hosting and domain registration are consistent with the Czech Republic location, and the domain age supports the institution's established presence. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and published security policies. No forms or data collection mechanisms were detected on the main page, reducing immediate data protection concerns. However, the absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to align with modern standards and regulatory requirements.

L

Lípa Musica

lipamusica.cz

0

Lípa Musica is an established international music festival based in the Czech Republic, focusing on classical and contemporary music performances. The website presents a professional and content-rich platform showcasing event programs, news, and partner collaborations. Technically, the site is built on WordPress with the Divi theme and uses modern web technologies and CDN services to deliver content efficiently. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though no explicit security or incident response policies are published. The absence of WHOIS data for the domain is a notable gap that impacts domain trustworthiness and should be investigated further. Overall, the site is well-positioned as a cultural event platform with good privacy compliance and user experience.

ISŠ Vysoké nad Jizerou is a well-established vocational secondary school in the Czech Republic specializing in automotive, logistics, and related technical education. The institution offers a variety of study programs including both vocational and maturitní (graduation) courses, complemented by practical training such as welding courses, driving licenses, and professional internships. The school maintains a strong regional presence with a history dating back to 1998 for the domain and over 100 years of educational tradition. The website reflects a medium-sized educational institution targeting students and the local community with clear navigation and relevant content. Technically, the site uses modern front-end libraries and a CMS platform (Cliquo), with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.