Security Directory

OPA Group s.r.o. is a Czech-based company specializing in pharmaceutical trade with a focus on allergy-related healthcare products in the Czech and Slovak markets. The company offers comprehensive services including product registration, website creation, logistics, and distribution, and acts as the exclusive importer of notable brands such as NEILMED, NASALEZE, and OCULOCIN. Their business model combines wholesale distribution with e-commerce through a dedicated online shop. Technically, the website is built on WordPress using the Divi theme and Yoast SEO, hosted by WEDOS, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks advanced security headers and formal privacy or cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening.

HealthCare Institute o.p.s. is a Czech non-profit organization focused on improving healthcare quality and efficiency through research, surveys, and conferences. The website presents a professional and content-rich platform targeting healthcare professionals, hospital management, and health insurance companies primarily in the Czech Republic and Slovakia. The organization has a strong market position with over 20 years of experience and numerous partnerships with healthcare institutions and companies. Technically, the website uses modern technologies such as jQuery, Google Tag Manager, and reCAPTCHA, and is built on the Ibis CMS platform. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses reCAPTCHA for form protection, but lacks visible security headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent banner but lacks a clear privacy policy page. Overall, the website is trustworthy and professional but could improve in security and privacy transparency.

S

Spolek mediků českých

spolekmedikuceskych.cz

0

Spolek mediků českých is a Czech Republic-based non-profit community organization established in 1863 that supports medical students by providing networking opportunities, organizing events, and offering study support and facilities. The website serves as a digital hub for this community, featuring event calendars, membership information, and social media links. The organization holds a respected position within its niche, leveraging its long-standing tradition to maintain community engagement. Technically, the website is built on WordPress 6.8.3 with common plugins such as Jetpack and CoBlocks, and integrates Google services like Fonts and Calendar. The site is hosted on Czech providers with HTTPS enforced, ensuring secure connections. Mobile optimization and accessibility are adequate, though SEO and performance could be enhanced. The site lacks comprehensive privacy and cookie policies, which impacts compliance. From a security perspective, the site benefits from HTTPS but lacks visible security headers and incident response information. No forms or sensitive data collection points were detected on the homepage, reducing immediate risk exposure. Tracking is minimal, limited to Jetpack analytics. Overall, the security posture is moderate but could be improved by implementing best practices and transparency in privacy and incident response. The overall risk is low given the nature of the site and its content, but strategic improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and regulatory adherence.

W

Wendt & Kühn KG

wendt-kuehn.de

0

Wendt & Kühn KG is a well-established German manufacturer specializing in handcrafted wooden figures and Christmas decorations, with a history dating back to 1925. The company maintains a strong market position in the niche of collectible wooden art, serving collectors and gift buyers worldwide through its own stores, authorized dealers, and an online marketplace. The website reflects a mature digital presence built on TYPO3 CMS, featuring rich content, multilingual support, and customer engagement tools such as an official app and a customer magazine. Technically, the site is hosted by Alfahosting and employs modern web technologies with good performance and mobile optimization. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. Overall, the website projects high professionalism and trustworthiness, aligned with the company's heritage and business model.

M

Montanregion Krušné hory

montanregion.cz

0

Montanregion Krušné hory is a cultural heritage organization managing a UNESCO World Heritage mining region in the Czech Republic. The website serves as an informational and tourism portal, offering details about the mining landscape, component parts, associated objects, and tour bookings. The site targets tourists, researchers, and cultural enthusiasts interested in mining history and heritage. Technically, the website is built on Joomla CMS with modern frontend libraries such as jQuery, Bootstrap, and Owl Carousel, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and CSRF tokens in forms, but lacks published privacy and cookie policies and security headers, which are areas for improvement. Overall, the website is professional, trustworthy, and well-branded, though it could enhance compliance and security transparency.

F

Förderverein Montanregion Erzgebirge e.V.

fv-montanregion-erzgebirge.de

0

Förderverein Montanregion Erzgebirge e.V. is a small non-profit organization dedicated to promoting and supporting the mining heritage of the Erzgebirge region in Germany. The website serves as a platform to communicate their projects, sponsorship opportunities, and community engagement activities. Their market position is regional and cultural, targeting local stakeholders and heritage enthusiasts. Technically, the website is built on WordPress using the Enfold theme, with modern web technologies and a cookie consent mechanism that supports GDPR compliance. Security posture is adequate with HTTPS enforced and cookie consent blocking, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it lacks explicit incident response or vulnerability disclosure information.

The website at ptstaging.eu is currently inaccessible beyond a minimal error page indicating 'file not found'. There is no meaningful content, metadata, or business information available to analyze. The domain is registered with Safenames Ltd, a reputable registrar, but lacks detailed registrant data or visible business presence. Technically, the site shows no evidence of HTTPS, security headers, or modern web technologies. The security posture is weak due to the absence of content and configuration. Overall, the site appears to be a staging or placeholder domain without active deployment. Strategic recommendations include deploying actual website content, implementing HTTPS, adding privacy and cookie policies, and providing clear contact and business information to improve trust and compliance.

B

Bacta

bacta.org.uk

0

Bacta is a well-established UK trade association representing the amusement and land-based low-stake gambling entertainment industry. Founded in 1998, it holds a leading market position, providing advocacy, membership services, and industry events such as the EAG Expo. The website reflects a professional and consistent brand image targeting industry stakeholders and members. Technically, the site is built on WordPress with Elementor and uses modern plugins for SEO and membership management. It is hosted by GoDaddy and employs HTTPS with a cookie consent mechanism, demonstrating good privacy compliance. Security posture is solid with no critical vulnerabilities detected, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

The website at yfdnza.com presents minimal accessible content, primarily consisting of hidden tracking pixels and an embedded iframe from an external domain. There is no visible business information, contact details, or user-facing content, indicating the site may be a placeholder or used for advertising/tracking purposes rather than a legitimate business presence. The domain WHOIS data is highly suspicious, showing a creation date in the future (2025-07-22) and listing the registrar as PDR Ltd., a domain registrar, rather than an end-user or business entity. This inconsistency undermines the trustworthiness of the domain and website. Technically, the site lacks security best practices such as DNSSEC, security headers, and visible HTTPS enforcement. No privacy or cookie policies are present, and no GDPR compliance indicators are found. Overall, the site exhibits a low level of digital maturity and security posture, with significant gaps in transparency and compliance.

M

META, o.p.s.

meta-ops.eu

0

META, o.p.s. is a Czech non-profit organization dedicated to supporting the educational development of young migrants, particularly children of foreigners, to facilitate their successful integration into society. The organization operates a website primarily in Czech, offering information about its mission and encouraging volunteer involvement in tutoring and educational support. The site positions itself as a niche player in the education and migrant support sector within the Czech Republic. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and Google Fonts, hosted by a reputable provider (WEDOS Internet, a.s.). It employs standard web technologies and plugins, including Google Analytics and Facebook SDK for social media integration and analytics. Security-wise, the site uses HTTPS and some best practices but lacks explicit security policies, vulnerability disclosures, and comprehensive security headers. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service. Overall, the website is functional, professionally designed, and trustworthy but could improve in privacy and security transparency.

Etnickakuchyne.cz is a niche food blog and cooking course platform focused on ethnic cuisine, primarily targeting families with children interested in exploring traditional recipes from various countries. The website offers recipes and organizes cooking courses led by native cooks, providing an educational and cultural experience. The business operates on a small scale, with content and courses as its main offerings. Technically, the site is built on WordPress with common plugins and uses Active24 as its hosting provider. It employs cookie consent mechanisms and Google Analytics for tracking, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks published security policies and incident response information. Privacy compliance is partial, with no explicit privacy policy or terms of service pages found. Overall, the site is functional, professionally designed, and trustworthy, but could improve compliance and security transparency.

R

Refufest 2025

refufest.com

0

Refufest is a Czech Republic-based non-profit festival organization focused on social themes such as courage, resilience, and responsibility. The website promotes the 2026 edition of the festival, featuring workshops, a fair of non-profit organizations, and cultural events including music performances. The event is organized by INBÁZE, a partner organization. The website is built on WordPress using Elementor and related plugins, with a modern and responsive design that supports good user experience and SEO optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit privacy policy and terms of service pages, and could benefit from additional security headers and incident response information. Overall, the site is trustworthy and professionally maintained, targeting community members and social activists.

E

ETHNOCATERING

ethnocatering.cz

0

ETHNOCATERING is a Czech Republic based social enterprise specializing in authentic catering services with flavors from the Middle East, Europe, and the Mediterranean. With over 19 years of experience, the company serves a diverse clientele including weddings, conferences, and corporate events, emphasizing social impact by employing disadvantaged women. The website is professionally designed using WordPress and Elementor, featuring good content quality and clear navigation. Technical infrastructure includes modern web technologies and compliance with GDPR through a robust cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Overall, the site reflects a trustworthy and credible business with a strong social mission.

P

Poradna pro integraci, z. ú.

p-p-i.cz

0

Poradna pro integraci is a well-established Czech non-profit organization founded in 2001, dedicated to supporting the integration of foreigners in the Czech Republic. The organization provides free social and legal counseling, Czech language courses, and promotes multiculturalism. Their website reflects a professional and consistent brand presence, with clear navigation and relevant content targeting immigrants and foreigners seeking integration assistance. The organization maintains offices in Prague and Ústí nad Labem, with transparent contact information and active social media engagement. Technically, the website is built on WordPress using popular plugins such as Slider Revolution and Visual Composer, hosted by a reputable Czech provider (Active24). The site is mobile-optimized and performs moderately well, with standard SEO and accessibility features. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, though additional security headers and explicit security policies could enhance the posture. From a security perspective, the site shows no signs of vulnerabilities or malicious content. However, it lacks formal incident response contact channels and vulnerability disclosure mechanisms. Privacy compliance is good, with a comprehensive GDPR-related privacy policy present, though cookie consent mechanisms are not evident. Overall, the site demonstrates a solid security baseline appropriate for a non-profit organization. The domain registration data aligns well with the organization's history and location, indicating legitimacy and trustworthiness. The site links to partner organizations, reinforcing its community and sector integration. No advertising or extensive tracking is detected, supporting a privacy-conscious approach. Strategic recommendations include implementing security headers, adding explicit security and incident response policies, and introducing cookie consent mechanisms to improve compliance and trust. These steps will strengthen the organization's digital maturity and security posture while maintaining its mission focus.

M

META, o.p.s.

meta-ops.cz

0

META, o.p.s. is a Czech non-profit organization dedicated to supporting the educational development of young migrants, particularly focusing on children of foreigners in the Czech Republic. The organization aims to facilitate personal growth and integration through educational assistance, including tutoring in the Czech language. The website reflects this mission with content primarily in Czech and targets a niche audience of migrants and their families. The market position is specialized within the education and non-profit sectors in the Czech Republic. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap 4, and integrates analytics tools like Google Analytics and Facebook SDK for tracking and marketing purposes. Hosting is provided by a reputable Czech registrar, WEDOS Internet, a.s., ensuring a stable infrastructure.

The website dobrypravnik.eu is currently a parked domain page indicating that the domain is for sale. There is no substantive business content, contact information, or privacy and security policies present. The site primarily serves as a placeholder with advertising links and an iframe loading external content from a third-party domain. The technical infrastructure is minimal, with basic HTML, CSS, and JavaScript used for layout and advertising scripts. No modern CMS or frameworks are detected. Security posture is weak due to lack of HTTPS and security headers, and privacy compliance is absent. Overall, the site does not represent an active business or service and is positioned for domain resale.

F

Fyziotoncar s.r.o.

fyziotoncar.cz

0

Fyziotoncar s.r.o. is a small, regionally focused healthcare provider specializing in physiotherapy, rehabilitation, and wellness services in the Czech Republic, with physical branches in Děčín, Jílové, and Proboštov. The company emphasizes a family tradition dating back to 1994 and collaborates with sports professionals and medical experts. Their website reflects a professional and consistent brand image, providing clear contact information and service descriptions targeted at patients with musculoskeletal issues and wellness needs. Technically, the website uses modern web technologies including Google Fonts and Flickity for UI components, with custom CSS and JavaScript bundles. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, there is no explicit CMS or hosting provider identified, and performance is moderate. Accessibility features are basic but present. From a security perspective, the site uses HTTPS (implied by the URL), has a cookie consent mechanism with granular options, and does not expose sensitive data in the HTML. However, no security headers were detected in the provided data, and no incident response or security policies are published. The WHOIS data is unavailable, likely due to privacy protection, which limits domain trust verification. Overall, the security posture is moderate with room for improvement in headers and documented policies. The overall risk is low given the nature of the business and the professionalism of the website, but the lack of WHOIS transparency and security headers suggests the company should enhance its security and compliance posture to build greater trust and resilience.

Apartmány Engadin is a small hospitality business operating since 2006, offering family-friendly and sports group accommodations in Boží Dar, Czech Republic. The website provides comprehensive information about their apartments, wellness center, and additional services such as event hosting and long-term rentals. The business targets families, sports teams, and corporate groups seeking mountain lodging with wellness amenities. Technically, the website uses standard web technologies including jQuery, LayerSlider, and integrates third-party booking and social media services. The site is mobile-optimized with good navigation and content relevance. Security posture is moderate with HTTPS usage but lacks explicit security headers and privacy policies. Contact information is clearly presented with multiple channels, enhancing business credibility. WHOIS data confirms domain legitimacy and consistency with the business claims.

V

NÁŠ CHLÉB | Vaše pekárna

vasepekarna.cz

0

The website represents a small local bakery business in the Czech Republic, focusing on bread and bakery products. The business appears to have been established around 2019, consistent with the domain registration date. The website uses WordPress with the Divi theme and integrates common marketing and tracking tools such as Google Tag Manager, Facebook Pixel, and MailerLite. While the site is accessible and appears professionally designed with good mobile optimization, it lacks critical compliance documents such as a privacy policy and terms of service. Contact information is not explicitly found, which may hinder customer trust and compliance. Security posture is basic, with no detected security headers or explicit security policies, indicating room for improvement in protecting user data and enhancing trust.

O

oxygen th_4

homeofav.cz

0

Voděrádky.cz is a Czech-based event venue offering a unique multimedia hall with a summer stage under centuries-old oak trees. The business targets event organizers and cultural communities, providing venue rental, multimedia content creation, and technical support for hybrid and live events. The company positions itself as a niche provider combining natural ambiance with advanced technology. The website is built on WordPress using Oxygen Builder, integrating modern multimedia players and optimized for SEO and mobile devices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, but could improve transparency on security and incident handling.

The website premium-wordpress-themes.org is an informational resource focused on educating users about the benefits of premium WordPress themes, targeting small businesses and WordPress users. It provides content emphasizing design quality, support, customization, and affordability of premium themes compared to free alternatives. The site operates on WordPress 4.7.29, hosted by GreenGeeks, and uses older versions of jQuery and related libraries. The technical infrastructure is basic with moderate performance and limited mobile optimization. Security posture is weak due to lack of security headers, outdated software, and missing HTTPS enforcement details. No privacy, cookie, or terms of service policies are present, and no contact information or social media links are provided, limiting trust and compliance. The domain registration is consistent and legitimate, registered since 2015 with a reputable registrar and hosting provider.

COOP club is a Czech Republic-based retail customer engagement website supporting COOP stores. It offers recipes, healthy lifestyle advice, product information, contests, and newsletters aimed at COOP customers. The site is built on WordPress with modern web technologies including jQuery, Semantic UI, and Google services for analytics and spam protection. The website is well-branded, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and reCAPTCHA, but lacks some security headers and explicit privacy/cookie policies. WHOIS data is unavailable, which limits domain trust verification, but the site’s content and external references indicate legitimacy. Overall, the site is a good example of a regional retail marketing platform with room for improvement in privacy compliance and security hardening.

C

COOP MORAVA, s.r.o.

coopmorava.cz

0

COOP MORAVA, s.r.o. operates the largest retail cooperative network in the Moravia region of the Czech Republic, with over 800 stores under the COOP brand. The company focuses on providing grocery and household products to general consumers, supported by promotional campaigns, a mobile application, and recipe content to engage customers. The website reflects a mature digital presence with a professional design and consistent branding, targeting a broad consumer base in the region. Technically, the website employs a modern technology stack including Bootstrap, jQuery, Google Analytics, Google Tag Manager, and Facebook Pixel for marketing and analytics purposes. The site is mobile-optimized and uses HTTPS, ensuring secure communications. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent mechanisms. The absence of WHOIS data and privacy policy pages slightly reduces trustworthiness. No critical vulnerabilities or exposed sensitive data were found in the content. The tracking and analytics usage is extensive, which may raise privacy considerations. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced transparency in privacy and security policies, improved security headers, and WHOIS data availability to strengthen its compliance and trust posture.

J

James Hardie Europe GmbH

holzbauplaner.com

0

The website holzbauplaner.com hosts the fermacell Timberwork Planner, a specialized tool designed for professionals in timber construction to calculate and design timber frame wall panels according to recognized standards. The business is operated by James Hardie Europe GmbH, a medium-sized company based in Germany, focusing on manufacturing and construction sectors. The site provides detailed technical content, tutorials, and downloadable documentation to support its users, primarily structural engineers and architects. Technically, the website uses modern web technologies such as Vue.js and JavaScript libraries, ensuring a responsive and user-friendly experience. However, some security best practices like security headers and DNSSEC are not implemented, which could be improved. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR requirements. Overall, the site is professional, trustworthy, and well-positioned within its niche market.

G

Golf UK s.r.o.

golfuk.cz

0

Golf UK s.r.o. operates a specialized e-commerce platform focused on golf equipment and accessories, serving primarily the Czech market. Established in 2007, the company offers a wide range of products including golf clubs, balls, bags, shoes, and apparel, catering to golf enthusiasts and players. The website demonstrates a consistent brand presence with clear navigation and a professional design, supporting a positive user experience. Technically, the site leverages the 4SHOP e-commerce platform, integrates modern JavaScript libraries such as jQuery 3.6.0, and employs Google Tag Manager and Analytics for tracking and marketing purposes. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of explicit security headers and limited privacy policy details suggest room for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and stability. Strategic recommendations include enhancing security headers, expanding privacy and security policies, and conducting regular security audits to strengthen compliance and trust.

S

Sächsischer Landkreistag

lkt-sachsen.de

0

The Sächsischer Landkreistag is a governmental association representing the ten districts of Saxony, Germany. Its primary role is to consolidate and advocate for the interests of these districts before the state government and other institutions. The website provides comprehensive information about the association's tasks, services, and organizational structure, targeting government officials and local citizens. The digital infrastructure is built on GeoCMS with modern web technologies such as Bootstrap and jQuery, ensuring a responsive and user-friendly experience. The site employs Matomo for analytics and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. Overall, the website is professional, trustworthy, and well-aligned with its governmental purpose.

T

Tourismusverband Erzgebirge e.V.

erzgebirge-tourismus.de

0

The website www.erzgebirge-tourismus.de represents the Tourismusverband Erzgebirge e.V., a regional tourism association promoting the Erzgebirge region in Germany. It focuses on cultural heritage, outdoor activities, family tourism, and regional specialties, positioning itself as a key regional tourism authority. The site offers comprehensive information, booking capabilities, event promotion, and regional product marketing, targeting tourists interested in authentic cultural and natural experiences. Technically, the site is built on TYPO3 CMS, integrates Google Tag Manager for analytics, and includes accessibility tools like Eye-Able. Hosting is provided by Schlundtech, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent, though it lacks explicit security headers and a published security policy. Contact information is clearly presented, and the site maintains a professional and trustworthy appearance with certifications such as Service Qualität Deutschland. Overall, the site is well-structured, content-rich, and compliant with privacy regulations, making it a reliable resource for regional tourism.

W

Welterbe Montanregion Erzgebirge e.V.

montanregion-erzgebirge.de

0

The website www.montanregion-erzgebirge.de represents the official online presence of the Welterbe Montanregion Erzgebirge e.V., a non-profit association managing the UNESCO World Heritage site Montanregion Erzgebirge/Krušnohoří. The organization coordinates heritage management, promotes cultural tourism, and provides educational resources about the region's mining history. The site targets tourists, historians, and regional stakeholders, offering multilingual content in German, English, and Czech. The business operates in the government and non-profit sectors with a small organizational size founded in 2015. Technically, the website is built on TYPO3 CMS, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, and MixItUp. The site demonstrates moderate performance and basic mobile optimization with good accessibility and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. Overall, the site is professional, trustworthy, and content-rich, with clear contact information and active social media channels. No critical vulnerabilities or suspicious patterns were detected. Recommendations include enhancing security headers, adding incident response contacts, and considering a vulnerability disclosure policy to further strengthen security and compliance.

K

kul(T)our-Betrieb des Erzgebirgskreises

kultour-erz.de

0

The website kultour-erz.de serves as the digital presence for the kul(T)our-Betrieb des Erzgebirgskreises, a regional government-operated cultural service entity in the Erzgebirge region of Germany. It offers a variety of cultural activities including concerts, thematic hikes, craft holidays, and astronomy-related experiences such as visits to the Zeiss Planetarium and Sternwarte Schneeberg. The site targets local residents and tourists interested in cultural and leisure activities within the Erzgebirge. Technically, the site is built on WordPress using the Divi theme and employs jQuery for client-side scripting. The hosting is inferred to be provided by inet-server.net based on the nameservers. The website demonstrates moderate digital maturity with a good design and mobile optimization but lacks advanced SEO and accessibility features. Security posture is basic with no detected security headers or incident response information, and privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

K

KohleWelt - Museum Steinkohlenbergbau Sachsen

kohlewelt.de

0

KohleWelt is a regional museum dedicated to the history and culture of Saxon hard coal mining. It offers interactive exhibitions, guided tours, and educational programs targeting families, school groups, and mining enthusiasts. The museum positions itself as a cultural and educational institution with strong regional partnerships and a focus on preserving mining heritage. Technically, the website is built on the Contao CMS platform, using modern web technologies and fonts, with good mobile optimization and accessibility. The site employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach, although it lacks a cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but could be improved by adding security headers and explicit security policies. Overall, the website is professional, trustworthy, and well-structured, serving its audience effectively while maintaining compliance with GDPR privacy requirements.

P

Penzion Rossini

rossini.cz

0

Penzion Rossini is a small hospitality business located in Františkovy Lázně, Czech Republic, offering accommodation and wellness services including massages and cosmetics. The website is professionally designed with good content quality and clear navigation, targeting tourists and visitors seeking comfortable lodging near the spa colonnade. The business holds a Hotel.cz quality certificate and has positive customer reviews, indicating a strong local market position. Technically, the site uses modern web technologies such as Bootstrap, Google Analytics, and Smartlook for analytics and user experience enhancement. The cookie consent mechanism is implemented with granular user controls, reflecting basic privacy compliance. Security posture is moderate with no visible security headers and unknown SSL configuration, suggesting room for improvement. Overall, the website is trustworthy and safe with no adult or questionable content detected.

M

Městské divadlo Děčín, příspěvková organizace

divadlodecin.cz

0

Městské divadlo Děčín is a municipal theater organization based in the Czech Republic, providing a diverse program of theatrical performances, concerts, and cultural events. The website serves as a platform for event promotion and ticket sales, integrating a dedicated ticket reservation service. The institution maintains a strong local presence with multiple partnerships and sponsors, reflecting its role as a key cultural venue in the region. The website content is well-structured, visually consistent, and targets a general audience interested in culture and theater.

C

Ceramic Roadmap 2050

ceramicroadmap2050.eu

0

Ceramic Roadmap 2050 is an industry-focused website representing the European ceramic sector's leadership in production and innovation. It provides a comprehensive roadmap towards climate neutrality by 2050, emphasizing sustainability, energy efficiency, circular economy, and ecosystem preservation. The website targets industry stakeholders, policymakers, and researchers, offering educational content and downloadable resources. Technically, the site is built on WordPress with the Divi theme and uses modern web technologies including jQuery, Slider Revolution, and Google Analytics. The security posture is good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies. Overall, the site is professional and trustworthy, though it would benefit from enhanced privacy compliance and clearer contact information.

QES Cert s.r.o. is a Czech certification company specializing in accredited certification of management systems, training, and personnel certification. The company offers certifications aligned with international standards such as ISO 9001, ISO 14001, ISO 27001, and others, targeting businesses seeking recognized quality and compliance certifications. Their market position is that of a nationally recognized certification body with international accreditation, serving a broad range of industries. The website content is professional and clearly communicates their services and certifications, with a focus on practical auditing experience and flexibility. Technically, the website employs a moderate technology stack including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA for form security. The site is mobile optimized with good navigation and design quality, though accessibility and SEO optimizations are basic. The absence of a CMS or hosting provider information limits deeper infrastructure insights. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms, but lacks important security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were found, but the absence of privacy and cookie policies and contact emails for security or incident response reduces compliance and trust. The missing WHOIS data is a notable concern, limiting domain legitimacy verification. Overall, the website presents a professional and trustworthy business front with room for improvement in privacy compliance, security headers, and transparency of domain registration. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, providing clear security contact information, and addressing the missing WHOIS data to enhance trust and compliance.

S

Svaz chemického průmyslu ČR (SCHP ČR)

responsiblecare.cz

0

The website responsiblecare.cz represents the Czech Chemical Industry Association's (SCHP ČR) initiative to promote Responsible Care, a voluntary global chemical industry program focused on health, safety, and environmental performance. The site provides information about the initiative's history, participating companies, and downloadable materials supporting sustainable development in the chemical sector. The target audience includes chemical companies and industry stakeholders in the Czech Republic. The business model is that of an industry association promoting ethical standards and continuous improvement among its members. Technically, the website uses modern frontend technologies including Foundation framework, FontAwesome icons, and Google Fonts. The site is mobile responsive and has a clear navigation structure, though it lacks advanced SEO and accessibility features. No analytics or tracking scripts were detected, indicating minimal user tracking. The site is accessible without any WAF or security blocking. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for compliance and user trust. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and reduces trustworthiness. No contact emails or phone numbers are provided on the homepage, limiting direct communication channels. Overall, the security posture is moderate but could be improved by implementing HTTPS verification, security headers, and privacy compliance documentation. The overall risk is moderate with no critical vulnerabilities detected in the content or technical setup. Strategic recommendations include improving domain registration transparency, adding privacy and cookie policies, enhancing security headers, and providing clear contact information for incident response and data protection. These steps will strengthen trust and compliance for the association's digital presence.

M

mobivention GmbH

mobivention.com

0

mobivention GmbH is a well-established German IT service provider specializing in app development, web applications, and backend solutions. With over 20 years of experience and a team of approximately 30 experts, they offer comprehensive services from consulting and UI/UX design to development and maintenance. Their client portfolio includes reputable organizations, and they emphasize digital transformation with a 'Made in Germany' approach. Technically, the website is built on WordPress with modern plugins and tools, including Matomo for privacy-conscious analytics and Borlabs Cookie for cookie consent management. Security posture is solid with HTTPS and domain transfer protection, though DNSSEC is not enabled and security headers are missing. Privacy compliance is moderate due to the absence of an explicit privacy policy page. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

M

My interior service s.r.o.

myishop.cz

0

My interior service s.r.o. operates the MYi e-commerce platform specializing in design furniture sales primarily targeting consumers interested in stylish interior solutions within the Czech Republic. The website presents a professional and consistent brand image with a clear focus on retailing high-quality furniture products and curated collections. The company was founded in 2017, and the domain registration aligns well with this timeline, supporting the legitimacy of the business. The platform integrates multiple social media channels to enhance brand engagement and customer outreach. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics, Google Tag Manager, and Smartsupp chat, hosted behind Cloudflare DNS services. The site demonstrates good mobile optimization and SEO practices, although no explicit CMS or framework is detected, suggesting a custom-built solution. Performance is moderate, with room for improvement in accessibility features and security headers. From a security perspective, the site enforces HTTPS and provides a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy documentation and incident response contacts, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data confirms domain registration consistency and legitimacy. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, positioning it as a trustworthy and professional e-commerce platform. Strategic improvements in security headers and incident response transparency would further strengthen its security posture and user trust.

S

Spinelli s.r.o.

spinelli.cz

0

Spinelli s.r.o. is a Czech-based marketing consultancy specializing in creative marketing solutions, business consulting, brand building, HR marketing, and marketing communication. The company targets businesses seeking to improve their brand presence and operational success through tailored marketing strategies. The website presents a professional image with clear service offerings and notable client references, positioning Spinelli as a trusted partner in the marketing sector within the Czech Republic. Technically, the website employs modern web technologies including Google Tag Manager and Google Analytics for tracking, uses web fonts and icons for design consistency, and implements a cookie consent mechanism compliant with GDPR standards. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, while HTTPS is presumably enabled (based on URL schema), explicit security headers and policies are not visible in the provided data. The absence of WHOIS registration details limits the ability to fully verify domain legitimacy and ownership, which is a moderate risk factor. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, Spinelli's website reflects a credible and professional marketing consultancy with moderate technical maturity and privacy compliance. The main risk lies in the lack of publicly available WHOIS data, which should be addressed to enhance trust and transparency.

FBJ Corporation is a manufacturing company specializing in ball and roller bearings for automotive, industrial, and agricultural sectors. With over 50 years of industry experience, the company positions itself as a reliable OEM supplier with a global distribution network spanning Asia Pacific, Africa, and the Americas. The website reflects a professional business presence with clear product offerings and certifications such as ISO 9001 and TÜV SÜD PSB ISO Quality Certificate 2016, reinforcing its commitment to quality. Technically, the website employs modern frameworks like Bootstrap and jQuery, providing a responsive and user-friendly experience, though performance is moderate and accessibility is basic. Security posture is average, with HTTPS assumed but lacking important security headers and advanced protections. Privacy compliance is minimal, with no cookie consent mechanisms detected and only a basic privacy policy present. Overall, the website is trustworthy and professional but would benefit from enhanced security and privacy features to align with modern standards.

V

Vaše pekárna a.s.

mojesklizeno.cz

0

MojeSklizeno.cz is a Czech franchise business website offering franchising opportunities for the Sklizeno brand, which focuses on healthy lifestyle retail stores selling farm and bio foods, delicacies, and alternative diets. The company positions itself as a market leader with over ten years of experience and targets entrepreneurs interested in healthy food retail franchising in the Czech Republic. The website provides detailed business model information, franchise concepts, financial models, and contact forms for prospective franchisees. Technically, the site uses Bootstrap and Google Analytics, hosted on Czech-based servers, with moderate performance and good mobile optimization. Security posture is basic with HTTPS implied but lacks explicit security headers and privacy/cookie policies, representing compliance gaps. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

Skupina COOP is a large cooperative retail network in the Czech Republic, operated by the Svaz ceskych a moravskych spotrebnich druzstev. The organization manages the largest network of retail grocery stores under the COOP brand and also operates several educational institutions focused on hospitality, gastronomy, and services. The website provides comprehensive information about the cooperative stores, schools, and customer services, targeting Czech consumers and cooperative members. Technically, the site uses a mix of JavaScript libraries including jQuery, Select2, Google Maps API, and tracking tools such as Google Analytics and Adform. The hosting is managed via Websupport.cz, and the site is accessible with no blocking or WAF challenges detected. Security posture is moderate with HTTPS enabled but lacks DNSSEC and explicit security headers. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented with multiple official emails, phone numbers, and physical addresses. Social media presence on Facebook and YouTube adds to trust. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security practices.

S

Simona Svoboda

simonasvoboda.cz

0

Simona Svoboda operates a small, Czech Republic-based personal development and wellness business focused on yoga, therapy, business coaching, and community events such as YogaFest Říčany. The website presents a professional and consistent brand image, targeting individuals and companies interested in holistic personal and business growth. The technical infrastructure is built on WordPress with Elementor and Yoast SEO, hosted likely by Wedos, a reputable Czech provider. The site includes GDPR-compliant cookie consent mechanisms and structured data for SEO. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. Contact is primarily via social media and contact forms, with no explicit emails or phone numbers publicly listed. Overall, the site is well-maintained, compliant, and trustworthy for its business scope.

Y

Yoga festival

yogafestricany.cz

0

Yoga festival Říčany is a small-scale, regionally focused event organizer specializing in wellness, yoga, physiotherapy, and holistic medicine festivals held in the Czech Republic. The website presents a professional and well-structured digital presence built on WordPress with Elementor and Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure includes modern tracking and marketing tools such as Google Tag Manager and Facebook Pixel, alongside GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enabled and use of reCAPTCHA, though some security headers could be improved. The domain registration data is consistent with the business claims and location, enhancing trustworthiness. Overall, the website is safe, well-maintained, and compliant with privacy regulations, serving a general audience interested in health and wellness events.

I

Rezervační systém pro sporty, cvičení a aktivity

isportsystem.cz

0

The website www.isportsystem.cz represents a Czech-based reservation system focused on sports, fitness, wellness, and leisure activities. It targets operators of sports centers, fitness zones, wellness facilities, and organizers of group and individual sports lessons. The business model is SaaS, providing a customizable and continuously updated booking platform with a strong local market presence evidenced by over 20 years of operation and more than 1000 customers. The site content is professionally presented in Czech, with clear navigation and relevant business information, although explicit contact details are not prominently displayed. Technically, the website employs a traditional web stack with jQuery and jQuery UI libraries, along with popular UI components like Fancybox and Unite Gallery. Google Analytics and Google Tag Manager are used for user tracking and analytics. The site is mobile optimized and SEO friendly but uses somewhat outdated JavaScript libraries which may pose security risks. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS and does not expose sensitive data in the HTML. However, no advanced security headers were detected, and no explicit incident response or security policy information is provided. The absence of a cookie consent mechanism is a compliance gap under GDPR. WHOIS data is unavailable, which limits domain legitimacy verification and slightly reduces trustworthiness. No vulnerabilities or malware indicators were found in the content. Overall, the website is a credible and professional platform for sports reservation services with room for improvement in security practices and privacy compliance. Strategic recommendations include implementing security headers, adding cookie consent, updating JavaScript libraries, and publishing clear security and incident response policies.

S

Svaz výrobců skla a bižuterie

krehkakrasa.cz

0

The website www.krehkakrasa.cz represents the annual event 'Křehká Krása', a sales exhibition focused on Czech glass and bijouterie products held in Jablonec nad Nisou. The event is organized by the Svaz výrobců skla a bižuterie and enjoys partnerships with local government and cultural institutions, positioning it as a reputable regional event attracting over 10,000 visitors. The site provides detailed event information, schedules, exhibitor lists, and contact details, targeting a general audience including families and enthusiasts of Czech craftsmanship. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, Fancybox, and Slick Carousel, with Google Fonts for typography. The site is mobile-optimized and well-structured for SEO, though no CMS or hosting provider details are evident. Performance is moderate with good navigation and content relevance. However, no analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain is a concern, limiting the ability to verify domain legitimacy and age. Contact information is clearly provided, but no incident response or security policy information is available. Overall, the security posture is basic and could be improved with standard best practices. The overall risk assessment suggests the site is legitimate and safe for general users but would benefit from enhanced transparency and security measures. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, verifying domain registration details, and adding incident response contacts to improve trust and compliance.

Č

Česká asociace streetwork, z.s.

casodcasu.cz

0

ČAS od ČASU is a Czech non-profit organization focused on social work, particularly streetwork and low-threshold social services. The website serves as a platform for their podcast series, educational content, and campaigns aimed at raising awareness and supporting socially excluded groups. The organization is well positioned within the Czech social services sector, leveraging partnerships with related sites and campaigns. The website content is professionally presented, targeting social workers, professionals, and the general public interested in social issues. Technically, the site uses standard web technologies with Google Analytics and Facebook Pixel for tracking, hosted by Active24. While the site is mobile optimized and well structured, it lacks critical privacy and cookie policies, which impacts GDPR compliance. Security posture is basic with HTTPS enabled but missing security headers and incident response information. Overall, the domain registration data aligns well with the organization's profile, indicating legitimacy and consistency.

Č

Česká asociace streetwork

pracenaulici.cz

0

The website pracenaulici.cz represents the Česká asociace streetwork, a Czech non-profit umbrella organization focused on low-threshold social services addressing children, youth, addiction, and homelessness. The site provides campaign information and links to related social service areas. The organization appears to be small-sized and founded in 2018, with a clear mission to support vulnerable populations in the Czech Republic. The website is professionally designed with good content relevance and clear navigation, optimized for mobile devices. Technically, it uses standard web technologies including JavaScript, CSS, and Google Analytics for visitor tracking, with a cookie consent mechanism implemented to comply with privacy regulations. However, no explicit privacy policy or terms of service pages were found, which is a compliance gap. Security posture is moderate with HTTPS implied but no detailed security headers detected. No contact information or incident response details are published, limiting transparency. Overall, the website is safe, trustworthy, and serves a general audience without adult or explicit content.

Letenky.in is a small affiliate marketing website focused on providing users with tools and affiliate links to find cheap flights from Central European cities such as Prague, Brno, and Vienna. The site offers travel advice and popular destination suggestions, targeting budget-conscious travelers. Technically, the site uses modern frontend technologies including Angular and integrates Google Adsense for monetization. The website is accessible without any blocking mechanisms and presents a professional design with good content relevance and navigation. However, it lacks critical compliance elements such as privacy and cookie policies, terms of service, and contact information, which impacts trust and privacy compliance scores. Security posture is moderate with HTTPS usage but no detected security headers or incident response information. Overall, the site is functional and safe but would benefit from enhanced compliance and security practices.

Pro Map Tools is a small technology company specializing in paid geospatial and mapping APIs, offering both worldwide and country-specific services. Their business model focuses on providing RESTful APIs for developers and clients requiring geospatial data and bespoke mapping solutions. The website is professionally designed with clear content and navigation, targeting developers and businesses in need of location-based services. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Analytics for tracking. The API endpoints are secured via HTTPS and require authentication keys, indicating a basic level of security in service delivery. However, the website lacks visible security headers and published privacy or cookie policies, which are important for compliance and user trust. From a security perspective, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. No contact emails or phone numbers are provided, limiting direct communication channels. The site does not show evidence of formal security policies or incident response contacts. Overall, while the site is functional and professional, it requires improvements in transparency, security headers, and compliance documentation. The overall risk is moderate due to missing WHOIS data and lack of privacy policies, but no immediate vulnerabilities or malicious content were detected. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, providing clear contact information, and verifying domain registration details to enhance trust and compliance.

Morgan Stanley's client login portal provides a secure and professional interface for wealth management clients to access their financial accounts and manage investments. The website leverages modern web technologies including Adobe Target for personalized marketing and Glia for customer engagement, hosted likely on Akamai infrastructure to ensure performance and availability. The site demonstrates a strong security posture with HTTPS enforcement and browser compatibility checks, although explicit security headers and privacy policies are not present on the login page, indicating room for improvement in transparency and compliance. Overall, the portal aligns with enterprise standards for financial services platforms, offering a trustworthy and functional user experience.