Security Directory

K

Královéhradecký krajský institut pro vzdělávání a inovace

malyamos.cz

0

The website malyamos.cz serves as an educational portal supported by the Královéhradecký krajský institut pro vzdělávání a inovace, a regional educational institute in the Czech Republic. It offers freely accessible online courses targeting children, parents, and educators, focusing on various educational categories such as mathematics, informatics, natural sciences, and social studies. The portal is positioned as a regional resource with government backing, enhancing its credibility and trustworthiness. Technically, the site is built on WordPress using Elementor as the page builder, supplemented by plugins like Yoast SEO and Complianz GDPR for SEO and privacy compliance. It employs Google Analytics 4 with consent-based tracking and demonstrates moderate performance and good mobile optimization. The technical infrastructure is modern but could benefit from enhanced security headers and accessibility improvements. From a security perspective, the site enforces HTTPS and uses a GDPR-compliant cookie consent mechanism with Google Consent Mode. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies or incident response information suggests room for improvement in transparency and preparedness. Overall, malyamos.cz presents a professional, trustworthy educational platform with solid privacy compliance and a clear business purpose. Strategic enhancements in security policies, accessibility, and technical optimizations would further strengthen its posture and user trust.

Hejkal is a small local business based in Havlíčkův Brod, Czech Republic, operating a café, grocery store, publishing house, and organizing an annual autumn book fair. The website serves as an informational portal for these services, targeting local customers and visitors interested in cultural events and retail offerings. The business model combines hospitality, retail, and media/publishing sectors, positioning itself as a community hub for food, books, and events. Technically, the website is built on WordPress 4.9.28 using the Twenty Seventeen theme, with jQuery 1.12.4 and Google Fonts integration. The site is accessible over HTTPS, but lacks modern security headers and uses outdated libraries, indicating moderate digital maturity. Mobile optimization and accessibility are basic, with room for improvement in SEO and user experience. Security posture is moderate with HTTPS enabled but missing key security headers and no visible vulnerability disclosures or incident response contacts. Privacy compliance is weak due to absence of privacy and cookie policies, which is a compliance risk under GDPR. Contact information is clearly presented, enhancing business credibility despite the lack of WHOIS transparency. Overall, the website is functional and serves its purpose for a small local business but requires updates in security, privacy compliance, and technical modernization to improve trust and resilience.

Fond Vysočiny operates an official regional government website providing comprehensive information about grant programs available in the Vysočina region of the Czech Republic. The site targets applicants, grant committee members, and local government entities, offering resources such as application portals, program details, and technical support. The business model centers on facilitating public funding distribution and transparency for regional development projects. The domain is well-established since 2003, reinforcing its legitimacy and trustworthiness. Technically, the website employs a combination of jQuery, Bootstrap, and the Nette PHP framework, with additional libraries for numeric input formatting and UI components. While the site is functional and moderately optimized, it loads multiple versions of jQuery, which may introduce conflicts and security risks. The site uses HTTPS and integrates analytics tools like Google Analytics and Smartlook for user behavior tracking, though it lacks visible security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance. From a security perspective, the site demonstrates basic best practices such as HTTPS and form validation but lacks advanced protections like Content Security Policy headers and explicit privacy policies. The absence of cookie consent and privacy documentation poses compliance risks under GDPR. No critical vulnerabilities or blocking mechanisms were detected, but the use of multiple jQuery versions and missing security headers are notable concerns. Overall, Fond Vysočiny's website is a credible and professionally maintained government portal with good content quality and user experience. However, enhancements in privacy compliance, security header implementation, and technical modernization are recommended to strengthen its security posture and regulatory adherence.

K

Krkonoše - svazek měst a obcí

krkonose.eu

0

The website www.krkonose.eu serves as the official tourism portal for the Krkonoše mountain region in the Czech Republic. It provides comprehensive information about the region's natural beauty, activities, events, accommodations, and practical visitor information. The site targets tourists and visitors interested in exploring the Krkonoše area, offering multilingual content and rich media to enhance user engagement. The business model is focused on destination marketing and regional tourism promotion, supported by partnerships with local and national organizations. Technically, the website is built on Drupal 8, leveraging modern web technologies including Google Analytics, Google Tag Manager, and CookieHub for consent management. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security or incident response policies are published. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR. The domain WHOIS data is privacy-protected by EURid, which is typical for .eu domains, and no suspicious patterns were detected. The site links to multiple trusted partner domains and maintains an active social media presence. Strategically, the site is well-positioned to serve its audience effectively but could improve security transparency and incident response readiness to enhance trust further.

D

Destinační společnost Hradecko

hradecko.eu

0

Destinační společnost Hradecko operates as a regional destination management organization focused on promoting tourism, cultural heritage, and events in the Hradec Králové region of the Czech Republic. The website serves as a comprehensive portal for tourists, families, schools, and local businesses, offering event calendars, attraction information, and regional product promotion. The organization is supported by local government entities, enhancing its credibility and regional influence. Technically, the website employs modern web technologies including Bootstrap, FontAwesome, and Google services, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks advanced security headers and explicit incident response policies. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's legitimacy given the professional content and external references. Overall, the site is well-positioned as a trusted regional tourism resource with room for security and compliance enhancements.

The website kofila.com serves as a personal portfolio and branding platform for Bohdan Heblík, a graphic designer and streamer. It showcases a wide range of projects primarily in media and graphic design, targeting a general audience interested in creative works. The site is relatively small-scale and niche, with a history dating back to 2003, consistent with the domain registration data. Technically, the site uses older technologies such as jQuery and the Indexhibit CMS, hosted on Wedos servers, but lacks modern web standards including HTTPS encryption and mobile responsiveness. Security posture is weak, with no HTTPS, no security headers, and no privacy or cookie policies, exposing visitors to potential risks and non-compliance with GDPR. The site uses Google Analytics for tracking without any consent mechanism, further impacting privacy compliance. Overall, the site is functional but outdated and insecure, with low trustworthiness and professionalism.

T

TV HASICI – audio vizuální tvorba

tvhasici.online

0

TV HASICI is a Czech audiovisual media production platform specializing in video creation, virtual reality experiences, and educational series focused on safety topics. The website serves a general audience interested in safety education and media content. The business appears to be a small-scale content producer with a niche focus, founded in 2011, and operating primarily in the Czech Republic. Technically, the site is built on WordPress with Elementor and uses embedded YouTube videos for content delivery. The site is moderately optimized for mobile and has a good design quality but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and no visible privacy or cookie policies. No contact information or incident response channels are provided, which limits trust and compliance. The domain WHOIS data is consistent and indicates a legitimate, stable registration since 2011. Overall, the site is functional and professional but would benefit from enhanced security, privacy compliance, and contact transparency.

HsOptika is a Czech Republic-based company providing a specialized web-based GIS system for documenting and managing passive optical networks (PON). Their platform supports unlimited users without additional license fees and offers comprehensive features for tracking optical cables, fibers, nodes, and fiber splicing. The company has been recognized with the 'Visionary of the Year 2022' award for its technological and social contributions in telecommunications. The website is professionally designed using WordPress and Elementor, optimized for desktop and mobile users, and provides clear information about its services and benefits. However, the absence of WHOIS registration data and lack of explicit privacy and cookie policies limit the overall trust and compliance posture. The site uses HTTPS but lacks visible security headers and contact information for incident response or data protection officers.

D

Droptop GmbH

linevast.de

0

Linevast Hosting, operated by Droptop GmbH since 2013, is a German-based web hosting provider offering a range of services including web hosting, managed servers, domain registration, and various add-ons such as Redis and Elasticsearch. The company emphasizes quality, reliability, and personalized customer service, supported by an ISO 27001 certified data center. Their market position is that of a trusted, small-sized technology provider focused on the German market. Technically, the website uses modern web technologies including Bootstrap, jQuery, and FontAwesome, with Cloudflare DNS services. The site is mobile-optimized and well-structured, though it lacks a CMS and advanced analytics tools. Security posture is strong with ISO certification and HTTPS, but could be improved by adding security headers and a vulnerability disclosure policy. Privacy compliance is good, with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

K

Královéhradecký kraj (implied)

skolstvikhk.cz

0

The website skolstvikhk.cz serves as a comprehensive regional educational portal for the Královéhradecký kraj in the Czech Republic. It provides a wide range of educational news, resources, event information, and support services targeted at students, teachers, school management, parents, and the general public. The portal also links to various educational projects and initiatives, including Erasmus programs and AI in education communities, positioning itself as a key information hub in the region's education sector. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The presence of Google Analytics 4 and Google Consent Mode shows a commitment to data-driven insights while respecting privacy regulations. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and implements a granular cookie consent mechanism, reflecting good privacy compliance. However, explicit security headers and incident response policies are not publicly documented, suggesting areas for improvement. No critical vulnerabilities or suspicious patterns were detected in the analysis. Overall, skolstvikhk.cz presents a trustworthy, professional, and well-maintained educational portal with strong regional relevance. Strategic enhancements in security policy transparency and contact information availability could further strengthen its credibility and user trust.

M

Macron Software, spol. s.r.o.

macronsoftware.cz

0

Macron Software, spol. s.r.o. is an established Czech software company specializing in the development of web presentations, applications, and publishing systems with over twenty years of experience. Their clientele includes both commercial entities and government institutions, reflecting a strong market position in the technology sector within the Czech Republic. The company offers a broad range of services including web and mobile applications, cloud services, IoT solutions, and proprietary publishing platforms such as WebToDate. Their partnerships with Acquia and Google further enhance their technological capabilities and market credibility. Technically, the website is built on Drupal 10, leveraging modern web technologies including jQuery and Google Analytics for tracking. The site is mobile-optimized, accessible, and demonstrates good SEO practices. While the SSL configuration is excellent, the absence of explicit HTTP security headers suggests room for improvement in security hardening. The cookie consent mechanism is implemented with GDPR compliance in mind, ensuring user privacy is respected. From a security perspective, the site enforces HTTPS and anonymizes IP addresses in analytics, but lacks visible security policies or incident response information. The WHOIS data is unavailable, which slightly diminishes domain trustworthiness; however, the professional presentation, client testimonials, and government references support the legitimacy of the business. Overall, the website scores well in content quality, technical implementation, and privacy compliance, with moderate scores in business credibility due to missing WHOIS data. Strategically, Macron Software should enhance their security posture by implementing comprehensive HTTP security headers and publishing clear security policies. Additionally, verifying and publishing domain registration details would improve trust and credibility. These steps will strengthen their market position and reassure clients about their commitment to security and transparency.

M

Městská policie hl. m. Prahy

mppraha.cz

0

The website mppraha.cz is the official online presence of the Municipal Police of Prague, providing comprehensive information about their organizational structure, police units, public services, news, recruitment, and contact details. It serves residents and visitors of Prague with authoritative content related to public safety and law enforcement. The site is well-branded, consistent, and maintained with regular updates and official communications. Technically, it is built on Joomla CMS with modern web technologies including Leaflet for maps and integrates social media and analytics tools. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The domain is longstanding and consistent with the official entity, enhancing trustworthiness. Overall, the site is professional, secure, and compliant with privacy regulations.

V

Vlad Gerasimov

vlad.studio

0

Vlad.studio is a digital art project by Vlad Gerasimov, offering a wide range of digital artworks including wallpapers, e-cards, puzzles, and Facebook covers since 1998. The website serves a niche audience interested in digital art and creative content, with a business model combining free access and premium paid content via Paddle payment integration. The site also promotes UX/UI design services through a related domain. Technically, the website uses modern web technologies such as HTML5, CSS3, JavaScript, and jQuery, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and secure form handling, but lacks some security headers and explicit privacy/cookie policies, which are compliance gaps. The WHOIS data is unavailable due to unsupported TLD or privacy protection, but the site's content and social media presence support its legitimacy. Overall, the site is professional, trustworthy, and safe for general audiences.

C

CzechCrunch

cc.cz

0

CzechCrunch is a well-established Czech media website founded in 2002, serving as a primary source of inspiration and information for modern individuals in the Czech Republic. It focuses on business, startups, lifestyle, travel, and technology news. The site offers a variety of content formats including articles, podcasts, newsletters, and events, supported by advertising revenue. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Alpine.js, and multiple analytics and advertising integrations. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and security headers, but lacks published security policies and incident response information. Privacy compliance is weak due to missing visible privacy and cookie policies and consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security transparency.

Č

Česká školní inspekce ČR

kvalitniskola.cz

0

The website kvalitniskola.cz serves as a methodological portal developed by the Czech School Inspectorate (Česká školní inspekce ČR) to support schools and educational institutions in the Czech Republic. It provides tools, guidelines, and resources aimed at school directors and teachers to facilitate continuous quality improvement and self-evaluation processes. The portal is positioned as a national educational support platform with government affiliation, enhancing its credibility and trustworthiness. Technically, the site is built on ASP.NET WebForms with Kentico CMS, utilizing Bootstrap and jQuery for responsive design and interactivity. Google Analytics is integrated for visitor tracking, and cookie consent mechanisms are implemented to comply with privacy regulations. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site enforces HTTPS and includes CSRF tokens in forms, indicating attention to secure data handling. However, it lacks advanced security headers and published security policies or incident response information. No vulnerabilities or suspicious elements were detected. The absence of WHOIS data is consistent with CZ NIC's privacy policies and does not detract from the site's legitimacy. Overall, the portal is a professionally maintained government resource with a solid security posture and compliance with privacy norms. Strategic improvements could include enhanced security headers, published security policies, and improved accessibility compliance to further strengthen trust and resilience.

VICTORIA Vysokoškolské sportovní centrum MŠMT is a Czech government-affiliated organization focused on elite sports training and support for university-level athletes and coaches. The website serves as an informational portal showcasing sports disciplines, athlete profiles, news, and social media integration. The organization operates under the Ministry of Education, Youth and Sports of the Czech Republic, positioning itself as a national center for sports excellence and education. Technically, the website uses modern web standards including HTML5, CSS3, and JavaScript with Google Fonts and embedded Vimeo videos. The site is mobile-optimized with good navigation and content structure, though some SEO and accessibility features could be enhanced. No CMS or hosting provider details are evident from the source. Security posture is moderate with HTTPS usage implied but no explicit security headers detected. No forms or sensitive data collection points are visible on the homepage, reducing immediate risk. Privacy compliance is basic with a privacy policy linked but no cookie consent mechanism present. WHOIS data is unavailable, typical for government domains in the Czech Republic, but this limits domain trust verification. Overall, the website is professional and trustworthy for its intended audience, but improvements in security headers, privacy compliance, and WHOIS transparency would strengthen its posture and user trust.

The domain csicr.cz is registered since 2000 with Czech-based registrar REG-INTERNET-CZ and uses Czech name servers, indicating a legitimate Czech entity. However, the website currently serves only a 404 error page with no accessible content, metadata, or business information. There are no privacy, cookie, or terms of service policies present, and no contact information or social media links are available. The technical infrastructure appears minimal with no detected CMS, frameworks, or analytics tools. Security posture is weak due to lack of HTTPS and security headers information. Overall, the site is non-functional and lacks essential compliance and security features, resulting in a low trust and credibility score.

The analyzed webpage is a minimal media player page hosted on the domain player.bcast.fm, serving a podcast episode. The page contains mostly scripts related to advertising and tracking, with no visible business or contact information, privacy or cookie policies, or security disclosures. The technical infrastructure includes usage of Amazon Cloudfront CDN and JavaScript XMLHttpRequest for dynamic content loading. The site lacks SEO metadata, structured data, and accessibility features, indicating a low level of digital maturity. Security posture is weak due to absence of visible security headers and no confirmation of HTTPS usage in the provided content. Overall, the site presents a low trust profile with minimal content and poor compliance with privacy and security best practices.

HS-RS operates the website www.bnhelp.cz, providing specialized GIS and remote sensing solutions primarily for public administration and companies managing engineering networks in the Czech Republic. Their offerings include software applications for optical network management, metadata cataloging, and various GIS tools tailored to local government and infrastructure needs. The website is built on WordPress and integrates Google Analytics and Tag Manager for tracking. Contact information is clearly provided, including a Czech phone number, email, and physical address, supporting business credibility. However, no privacy or cookie policies are present, and WHOIS data for the domain is unavailable, which limits trust assessment from a domain registration perspective. The website content is professional and relevant to its niche audience.

A

Antica Terra

lillianwinery.com

0

Lillian Winery operates as a premium wine brand associated with Antica Terra, focusing on direct-to-consumer wine sales and exclusive membership experiences. The website serves as a digital storefront and membership portal, targeting wine enthusiasts and hospitality clientele. The brand positions itself in the niche hospitality sector with a focus on quality and customer engagement through wine club memberships and curated experiences. Technically, the website is built on WordPress with integration of Commerce7 for e-commerce, Klaviyo for marketing automation, and Google Analytics for visitor tracking. The site demonstrates moderate performance and good mobile optimization, though accessibility features could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks some security headers and formal policies such as privacy and cookie notices. The absence of WHOIS registration data raises concerns about domain legitimacy, though the professional branding and linkage to Antica Terra mitigate some risk. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

The website softformance.com is currently inaccessible, returning a 403 Forbidden error page indicating restricted access. Due to the lack of accessible content, no business descriptions, contact information, or policies are available for analysis. The domain is registered since 2013 with GoDaddy.com, LLC and uses Cloudflare DNS, but DNSSEC is not enabled. No security headers or scripts are detected in the HTML content. The site does not provide privacy, cookie, or terms of service policies, nor any contact or incident response information. Overall, the website's digital presence is minimal and blocked, limiting the ability to assess its business operations or security posture comprehensively.

cloud19 web solutions & services is a small Austrian company specializing in professional, customized websites for small and medium-sized enterprises, startups, and sole proprietors. With over 20 years of experience, the company offers fixed-price business websites, CMS development primarily using Plone CMS, and hosting services. Their market position is strengthened by personalized customer service, award-winning expertise, and a focus on transparency and no binding contracts. Technically, the website is built on a modern stack including Python, Plone CMS, PostgreSQL, Docker, and Bootstrap, with privacy-conscious analytics via Matomo. The site is mobile-optimized, accessible, and performs moderately well. Hosting appears to be managed within their own infrastructure, ensuring control and reliability. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected and could be improved. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism in place, aligning with GDPR requirements. Overall, the website and business present a trustworthy, professional image with clear contact information and transparent service offerings. The lack of WHOIS data due to privacy protection limits domain trust analysis but is justified for this business type. Strategic recommendations include enhancing security headers and continuous monitoring of third-party components.

Rohberg is a small Swiss technology company specializing in web solutions using Plone CMS, Python, React, and Svelte. The company offers comprehensive services including website creation, backend and frontend development, app integration, and customized search functionalities. The business targets creative professionals and organizations primarily in Zurich, emphasizing collaborative and modern web development approaches. The website reflects a professional and consistent brand image with active community involvement in the Plone ecosystem. Technically, the website is built on a modern stack with Plone as the CMS, leveraging Python and popular frontend frameworks. It uses privacy-conscious analytics (Matomo) alongside Google Tag Manager. The site is mobile-optimized and well-structured, though some accessibility features could be improved. Performance is moderate, with good SEO and meta tag usage. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies and no consent mechanisms. Contact information is available via a contact page but lacks direct email or phone contacts on the main site. Overall, Rohberg's website demonstrates a solid technical foundation and credible business presence with room for improvement in privacy compliance and security best practices. The risk level is low, with no critical issues detected.

Q

Quaive

quaivecloud.com

0

Quaive is a specialized technology company offering a secure social collaboration platform designed to integrate document sharing and communication into a unified digital workplace. The company targets businesses and organizations seeking modern intranet and collaboration solutions, positioning itself as a niche provider with a focus on EU-hosted services and compliance. Quaive's offerings include social intranet, digital workplace, knowledge management, and community platform solutions, supported by a tiered SaaS subscription model. The website reflects a mature business established in 2015, with professional branding and clear market positioning. Technically, the website is built on WordPress with multilingual support via WPML and performance optimizations through NitroPack. It employs modern web technologies and demonstrates excellent mobile optimization, accessibility, and SEO practices. Hosting and domain registration are consistent with the company's European focus, using a reputable registrar and EU hosting implied by content. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, it lacks DNSSEC and some recommended security headers such as Content-Security-Policy and X-Content-Type-Options. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a visible cookie consent mechanism. Contact information is provided primarily via physical addresses and a demo request form, with no explicit security or incident response policies published. Overall, Quaive presents a professional and trustworthy online presence with a solid technical foundation and good security posture. Strategic improvements in cookie consent, security headers, and visible security policies would enhance compliance and trust further.

M

MONOGRAM PARIS

monogram-paris.com

0

MONOGRAM PARIS appears to be an artistic or portfolio website hosted on the Cargo Collective platform, showcasing visual content likely related to art or design. The website is professionally designed with a modern aesthetic and good mobile optimization, but lacks substantive business information, contact details, and privacy or cookie policies. The technical infrastructure is based on Cargo3 framework with standard HTML, CSS, and JavaScript, hosted by Cargo Collective. Security posture is basic with HTTPS enabled but no advanced security headers or DNSSEC. The WHOIS data is suspicious due to a future domain creation date, which raises concerns about domain legitimacy. Overall, the website is functional and visually appealing but lacks critical compliance and security features.

D

Deutsches Institut für Urbane Transformation

diut.de

0

The Deutsches Institut für Urbane Transformation (DIUT) is an independent research and think tank affiliated with the EBZ Business School, focusing on urban transformation and innovative neighborhood development primarily in the Ruhr region and North Rhine-Westphalia, Germany. The institute serves as a collaborative platform connecting academia, municipalities, businesses, and policymakers to address social, economic, and ecological challenges in urban areas. The website presents professional content with a clear focus on its mission and services but lacks explicit privacy and security policies. Technically, the site is built on WordPress with modern plugins and analytics tools, offering good performance and mobile optimization. Security posture is adequate with HTTPS and cookie consent but could be improved by publishing formal security and incident response policies.

N

netzfactor GmbH

by.nf

0

netzfactor GmbH is a German technology company specializing in customized hardware and software solutions, including web development, mobile applications, media design, network services, consulting, and research projects. The company positions itself as a partner for businesses seeking innovative and tailored IT solutions, leveraging experience and creativity to deliver efficient results. Their market presence is regional with active engagement in research collaborations and community events. Technically, the website is built on TYPO3 CMS with additional JavaScript libraries such as MooTools and uses Matomo for privacy-conscious analytics. The site is mobile optimized, well-structured, and includes a comprehensive cookie consent mechanism. Hosting details are not explicitly stated but the domain uses custom nameservers. Performance is moderate with good SEO and basic accessibility features. From a security perspective, the site enforces HTTPS and employs privacy-friendly analytics with cookie disabling. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a detailed privacy policy and cookie consent banner. Business credibility is supported by clear company information, social media presence, and professional content. Overall, the website is trustworthy, professional, and compliant with GDPR. Strategic improvements include adding security headers, publishing security policies, and enhancing accessibility. The risk level is low with no critical issues detected.

W

WirtschaftsEntwicklungsGesellschaft Bochum mbH

parken-in-bochum.de

0

The website 'Parken in Bochum' is operated by the WirtschaftsEntwicklungsGesellschaft Bochum mbH and serves as an informational portal for parking facilities and services in the city of Bochum, Germany. It provides real-time parking availability, details on parking lots, parking ticket machines, and smart parking registration. The site targets residents and visitors seeking convenient parking solutions in Bochum. The business model is focused on public service and parking management, positioning itself as a key local resource for transportation-related information. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery, Swiper, Popper.js, and Tippy.js, along with Google Maps API integration for interactive maps. The site is mobile-optimized, accessible, and includes SEO best practices. It employs Matomo analytics with a cookie consent mechanism, reflecting a commitment to privacy compliance. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent. However, it lacks explicit security headers and does not publish a security policy or incident response contact details. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and legitimate, supporting trustworthiness. Overall, the website is professional, trustworthy, and provides valuable services to its audience. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen security posture and user trust.

W

Wirtschaftsförderung Bochum WiFö GmbH

bochum-startup.de

0

Bochum Startup is a regional economic development initiative operated by Wirtschaftsförderung Bochum WiFö GmbH, focused on supporting startup founders and entrepreneurs in Bochum, Germany. The website offers comprehensive services including consulting, workshops, community events, and growth programs such as the WERK X incubator. The organization positions itself as a trusted partner throughout the startup journey, emphasizing competence, community, and regional focus. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery, Swiper, and Featherlight for interactive features. It employs Matomo analytics for privacy-conscious user tracking and integrates Google reCAPTCHA for form security. The site is mobile-optimized, accessible, and performs moderately well, with a consistent and professional design. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements cookie consent mechanisms. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's business claims, indicating a legitimate and trustworthy domain. Overall, Bochum Startup presents a professional, secure, and privacy-conscious online presence suitable for its public sector economic development role. Strategic improvements could include adding formal security policies and enhancing security headers to further strengthen its security posture.

B

B im Beckmannshof

b-im-beckmannshof.de

0

B im Beckmannshof is a small hospitality business operating a restaurant and event venue in Germany, specializing in regional and reinterpreted German cuisine. The website is professionally designed using WordPress and Elementor, featuring a modern and responsive layout with clear navigation. The business targets local and regional customers seeking dining and event rental services. Technically, the site uses a standard WordPress stack with popular plugins and libraries such as JetEngine, Swiper.js, and Matomo for analytics, reflecting a moderate level of digital maturity. Security-wise, the site enforces HTTPS and uses Cookiebot for GDPR-compliant cookie consent management, but lacks explicit security headers and published security policies. No contact emails or phone numbers were found in the provided content, which may impact user trust and business credibility. Overall, the website is functional and professional but could improve in privacy transparency and security best practices.

A

Akademisches Förderungswerk, A. ö. R.

q-we.st

0

Q-West Bochum is a campus gastronomy service operated by the Akademisches Förderungswerk, serving students and staff at Ruhr-Universität Bochum. The website presents a clear business model focused on providing lunch, dinner, coffee, and snacks with special pricing for students and apprentices. The business is positioned as a medium-sized hospitality service embedded within an educational environment, emphasizing quality, variety, and convenience. Technically, the site uses WordPress CMS with jQuery and Matomo analytics, providing a moderate performance and good mobile optimization. The presence of an OpenTable reservation widget enhances user experience. Security posture is adequate with HTTPS and privacy-conscious analytics, but lacks advanced security headers and formal security policies. Privacy compliance is good with a GDPR-compliant privacy policy but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its target audience and business goals.

T

TV HASICI – audio vizuální tvorba

tvhasici.cz

0

TV HASICI is a Czech audiovisual media production website specializing in video creation, virtual reality content, and educational series. The site showcases various projects and partnerships with Czech Television and related platforms, positioning itself as a niche media content provider. The technical infrastructure is based on WordPress with Elementor, leveraging modern web technologies and YouTube integration for video content delivery. The website demonstrates good design quality and mobile optimization but lacks comprehensive privacy and cookie policies, as well as contact information, which impacts compliance and trust. Security posture is moderate with HTTPS enabled but missing security headers and formal policies. Overall, the site is safe for general audiences and presents a professional media presence with room for improvement in privacy and security practices.

Xemel, operated by Trayto a.s., is a specialized SaaS platform focused on feed management for e-commerce businesses. It offers a comprehensive suite of tools including online XML/CSV feed editing, custom feed creation, AI-generated product descriptions, and integration with marketplaces and suppliers. The company targets e-shops, agencies, and firms seeking to optimize their product data feeds and online advertising. With a medium-sized presence and partnerships with notable e-commerce platforms, Xemel holds a strong market position in the Czech Republic and surrounding regions. Technically, the website is well-built with modern HTML5 and CSS3 standards, optimized for mobile devices, and provides a fast user experience. The presence of a security.txt file and HTTPS enforcement indicates a baseline security posture, though there is room for improvement in security headers and cookie consent mechanisms. The absence of WHOIS data is a concern but does not detract significantly from the overall trustworthiness given the rich content and client references. Security-wise, Xemel demonstrates good practices such as hashed feed URLs and backup strategies, but lacks explicit incident response contacts and some security headers. Privacy compliance is supported by a comprehensive GDPR policy and clear contact information. Overall, the platform appears reliable and professional, with a high level of business credibility and user trust. The main risks relate to the missing WHOIS data and minor security header gaps, which should be addressed to enhance trust and compliance. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response details, and pursuing formal security certifications to strengthen market confidence.

E

EVici webdesign s.r.o.

upgates.cz

0

Upgates is a Czech-based SaaS e-commerce platform provider offering customizable online shops tailored to business needs without requiring additional module purchases. With over 15 years of market presence and more than 4200 customers, it holds a leading position in the Czech and Slovak e-commerce market. The platform supports multistore, multilingual capabilities, integrated payment gateways, and advanced marketing tools, catering to businesses aiming for local and international expansion. Technically, the website employs modern web technologies including Bootstrap Icons, jQuery, Google Tag Manager, and Facebook Pixel, alongside a proprietary CMS built on the Nette Framework. The site is well-optimized for mobile devices, fast loading, and includes comprehensive SEO and accessibility features. Security measures include HTTPS enforcement, reCAPTCHA v3 integration, and a detailed cookie consent mechanism. While the website demonstrates strong security practices and privacy compliance, the absence of WHOIS registration data reduces transparency regarding domain ownership and age. No critical vulnerabilities or security issues were detected in the visible content. The site integrates multiple advertising and analytics services with user consent mechanisms, reflecting a mature digital marketing strategy. Overall, Upgates presents a professional, trustworthy, and technically sound e-commerce platform with room for improvement in domain registration transparency and advanced security headers. Strategic recommendations include enhancing HTTP security headers, publishing a security policy, and establishing a vulnerability disclosure program.

K

krajská správa a údržba silnic středočeského kraje

ksus.cz

0

The website ksus.cz represents the Krajská správa a údržba silnic Středočeského kraje, a governmental entity responsible for road safety and maintenance in the Central Bohemia region of the Czech Republic. Established in 2011, it manages over 8,600 kilometers of secondary and tertiary roads, serving as a critical infrastructure authority. The site targets local residents, road users, and stakeholders requiring information about road conditions, reporting issues, and organizational transparency. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by plugins such as Rank Math SEO and Complianz GDPR for privacy compliance. The site demonstrates moderate performance and good mobile optimization, with structured data enhancing search engine visibility. Security-wise, HTTPS is enforced, and cookie consent mechanisms are implemented, though some security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found in the analyzed content. While privacy and cookie policies are comprehensive and GDPR compliant, the site lacks explicit terms of service, security policies, and incident response contact information. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security posture. The domain registration data aligns well with the entity's public nature and founding date, supporting legitimacy. Overall, ksus.cz is a professionally maintained governmental website with good content quality and privacy compliance. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information to improve trust and security culture.

P

prettysocial media GmbH

prettysocialmedia.com

0

Prettysocial media GmbH is a European branded content distribution company founded in 2013, operating across multiple countries including Germany, Netherlands, Denmark, and the UK. The company leverages a large network of over 1500 premium publishers to optimize and distribute branded content across social media channels, aiming to boost social media reach and social commerce success for its clients. Their business model focuses on combining creative storytelling with global media distribution to connect brands with consumers effectively. Technically, the website is built on WordPress using modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as HubSpot, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized and provides a professional user experience with clear navigation and multi-language support. Security-wise, the site enforces HTTPS, uses captcha on forms, and employs cookie consent mechanisms, but lacks some advanced security headers and explicit security policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

The website 'Gib Antikommunismus keine Chance' is a German-language political initiative advocating for a factual discussion about socialism and communism, opposing modern anti-communism. It operates as a non-profit campaign platform providing informational content, public calls to action, and a signature collection mechanism. The site targets politically engaged individuals interested in leftist political discourse. Technically, the site is built on WordPress 5.5.17 with standard plugins and libraries such as jQuery and Font Awesome, hosted on German nameservers consistent with the domain's origin. The website is mobile-optimized with moderate performance and basic SEO and accessibility features. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and explicit privacy compliance mechanisms. No advertising or tracking technologies are present, indicating a privacy-conscious approach. WHOIS data is transparent and consistent with the website's claims, enhancing legitimacy. Overall, the site is functional and trustworthy but would benefit from improved privacy compliance and security hardening.

I

Internationalistische Liste / MLPD

inter-liste.de

0

The Internationalistische Liste / MLPD website serves as the official online presence for a German political alliance and party focused on socialist and environmentalist policies. It provides information about their candidacy in the 2025 Bundestagswahl, their political platform, key figures, and campaign materials. The site targets politically engaged voters and supporters of leftist movements in Germany. Technically, the website is built on WordPress, uses modern web technologies, and is hosted by a reputable German hosting provider. The site is mobile-optimized and presents content in a clear, professional manner. Security-wise, the site uses HTTPS but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

A

Anamnesia

anamnesia.com

0

Anamnesia is a specialized French company providing innovative interactive, multimedia, and audiovisual solutions for museums and exhibitions. With over 15 years of experience and a portfolio of more than 100 projects, the company positions itself as a trusted partner in the cultural sector, offering end-to-end services from feasibility studies to content adaptation and technology integration. The website reflects a professional and consistent brand image, targeting museum professionals and cultural institutions. Technically, the site is built on WordPress with modern plugins such as Gravity Forms and Yoast SEO, ensuring good SEO and user experience. Security measures include HTTPS, reCAPTCHA on forms, and GDPR-compliant cookie consent mechanisms. However, there is room for improvement in security headers and explicit security policies. Overall, the domain registration data aligns well with the business claims, reinforcing trust and legitimacy.

The Havanna-Initiative website serves as a non-profit advocacy platform focused on ending the blockade against Cuba. It provides news, calls to action, press information, and contact options primarily through a contact form. The organization appears to be small and Germany-based, founded in 2020, with a clear mission targeting activists and supporters of Cuba. The website uses WordPress CMS with common web technologies such as jQuery and Font Awesome, hosted by Cronon GmbH. The technical infrastructure is moderate in performance and basic in mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the website is functional but basic in design and content quality, with moderate trustworthiness and no detected adult or explicit content.

The website pomahejukrajine.cz is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents any meaningful content or business information from being retrieved or analyzed. The page presented is a standard Cloudflare block page requesting cookie enablement and indicating that the visitor has been blocked due to triggering security rules. The domain WHOIS data is suspicious, showing a creation date in the future (May 20, 2025), which undermines the legitimacy and trustworthiness of the domain. No business, contact, or policy information is available, and no technical or security headers can be assessed from the blocked content.

AlwaysInDemand.com is a specialized educational and career awareness platform focused on promoting HVAC industry careers and providing scholarship opportunities through the HVAC HERO Scholarship program. The website is operated by the EGIA Foundation, a non-profit entity, and targets students and individuals interested in entering the HVAC trade. The platform offers resources, a trade school directory, and scholarship application information, positioning itself as a niche resource in the energy and education sectors. Technically, the website is built on WordPress and leverages common web technologies such as jQuery, Google Analytics, and Facebook Pixel for tracking and analytics. Hosting appears to be on Amazon AWS infrastructure, indicated by the DNS servers. The site is mobile optimized with good SEO practices and structured data implementation, although accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections such as clientDeleteProhibited status. However, it lacks DNSSEC and security headers like CSP or HSTS, which are recommended for enhanced security. No privacy or cookie policies are explicitly presented, and no consent mechanisms are detected, which may pose compliance risks. Contact information is limited to a contact form with no direct emails or phone numbers visible. Overall, the website is professionally designed and trustworthy with moderate security posture and some compliance gaps. Strategic improvements in privacy policy publication, cookie consent, and security header implementation would enhance the site's security and compliance standing.

HVAC Distributor University is a specialized educational platform launched in late 2024, focused on providing training and development resources for HVAC distributors and their sales teams. The platform offers a variety of services including online courses, live training sessions, resource libraries, and membership packages. It is affiliated with EGIA, a recognized industry association, which enhances its credibility and market positioning. The website is professionally designed with clear navigation and relevant content tailored to its niche audience. Technically, the site is built on WordPress, hosted by Nexcess, and uses modern web technologies such as jQuery and FontAwesome. While performance and mobile optimization are good, there is room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced, but the absence of DNSSEC and security headers slightly reduces the overall security score. Privacy compliance is partial; a comprehensive privacy policy is linked but no cookie consent mechanism is present. Contact information is clearly provided, including phone, email, and physical address, supporting business credibility. Overall, the website presents a trustworthy and professional front for its business model, with minor technical and compliance enhancements recommended.

S

Swiss Design Association

swiss-design-association.ch

0

The Swiss Design Association is a professional membership organization based in Switzerland that supports design professionals through legal advice, insurance consulting, and advocacy. It is recognized by the Swiss Federal Office of Culture, indicating a reputable position within the cultural and design sector. The website provides information about awards, events, membership benefits, and a directory of designers, targeting primarily design professionals and organizations within Switzerland. Technically, the website uses a mature technology stack including jQuery, Backbone.js, Google Analytics, and reCAPTCHA v3, running on Craft CMS. The site is mobile optimized with good navigation and consistent branding. Security posture is solid with HTTPS and anti-bot protections, but lacks visible security headers and published privacy or cookie policies, which are areas for improvement. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

D

Duotones LLC

duotones.ch

0

Duotones LLC is a specialized UX and interaction design agency based in Bern, Switzerland, founded in 2016. The company focuses on delivering user experience design, interaction, and interface design services for digital media and products such as web and app design. Their client portfolio includes reputable Swiss organizations like Swisscom, PostFinance, and Universität Zürich, positioning them as a trusted player in the Swiss UX market. The website reflects a professional and consistent brand image with comprehensive service offerings including innovation workshops, digital transformation consulting, and prototyping. Technically, the website is built on WordPress 5.8.12 with modern JavaScript libraries such as Three.js and GSAP, and uses Yoast SEO for optimization. The site is mobile-optimized and includes a cookie consent mechanism compliant with GDPR. Google Analytics and Google Tag Manager are used for analytics with IP anonymization enabled. Performance is moderate with good SEO and basic accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected, and no formal security or incident response policies are published. Privacy compliance is strong with clear privacy and cookie policies. Contact is primarily via a contact form, with no direct email or phone numbers publicly listed. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, suitable for its business domain. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen the security and user experience posture.

D

DESIGN FESTIVAL BERN

designfestival.ch

0

Design Festival Bern is a well-established cultural event organizer focused on design exhibitions, conferences, workshops, and open studios in Bern, Switzerland. Celebrating its 10-year anniversary in 2025, it targets creatives, design professionals, and cultural enthusiasts. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, it is built on WordPress with Elementor and integrates modern tools such as Google Analytics, reCAPTCHA, and MailerLite for marketing and security. The site is secured with HTTPS and includes GDPR-compliant privacy and cookie policies, although explicit security policies and incident response information are absent. Overall, the website demonstrates a mature digital presence with moderate to good performance and security posture.

Atelier Richner Visuelle Gestaltung is a small Swiss visual design atelier specializing in the development and production of advertising materials. The company emphasizes a creative and competent approach, targeting businesses and clients seeking professional visual communication services. The website reflects a modest but professional digital presence with clear contact information and a social media link to Instagram. Technically, the site uses legacy JavaScript libraries such as jQuery 1.11.2, which introduces potential security risks. The site is mobile responsive and well structured but lacks modern security headers and privacy compliance documentation. Security posture is moderate due to HTTPS usage but diminished by outdated libraries and missing security headers. Overall, the website is functional and trustworthy but would benefit from updates to security practices and privacy policies to enhance compliance and user trust.

The website egako.eu represents the professional monthly publication 'Geodetický a Kartografický Obzor' (GaKO), a peer-reviewed journal focused on geodesy, cartography, and cadastral matters primarily serving professionals in the Czech Republic and Slovakia. The publication has a long historical legacy dating back to 1913 and is recognized in official research registries. The website provides access to current and archived issues, primarily in Czech, with an English alternate page available. The business model centers on specialized scientific publishing with electronic distribution since 2013. Technically, the site is built on WordPress 5.3.20, utilizing jQuery and several JavaScript plugins such as Nivo Slider. The site shows moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. The site uses HTTPS, but no advanced security headers were detected, and some JavaScript libraries are outdated, posing potential security risks. From a security perspective, the site lacks explicit privacy and cookie policies, incident response contacts, and vulnerability disclosure mechanisms. Tracking is limited to Histats.com, indicating minimal user tracking. No adult or questionable content is present, and the site is accessible without WAF or security challenges. WHOIS data shows the domain is registered to Gransy s.r.o., a Czech company, consistent with the website's content and audience. Overall, the site is a credible and professional resource within its niche but would benefit from improved security practices, updated technical components, and enhanced privacy compliance to strengthen trust and regulatory adherence.

C

cleverdigital.

cleverdigital.de

0

cleverdigital is a small, full-service online agency based in Essen, Germany, founded in 2021. The company offers a range of digital marketing services including web design, SEO, SEA, and social media marketing, targeting businesses seeking to improve their online presence and increase revenue. The website is professionally designed using WordPress with the Avada theme and incorporates modern technologies such as Yoast SEO and WPRocket for optimization. The technical infrastructure is solid with good mobile optimization and SEO practices. Security posture is good with HTTPS enforced and standard security headers present, though no explicit security or incident response policies are published. Overall, the website and domain registration are consistent and legitimate, reflecting a trustworthy small digital agency.