Security Directory

D

Drumextra, s.r.o.

anatolian.cz

0

Anatolian is a Czech-based company specializing in the manufacturing and wholesale distribution of high-end cymbals, targeting drummers and music professionals. The website presents a professional and consistent brand image with clear contact information and a focus on quality musical instruments. The company appears to have a history dating back to 2000, although domain registration details could not be verified due to missing WHOIS data. Technically, the website uses modern web technologies including Google Tag Manager and Typekit fonts, with a responsive design and moderate performance. However, there is a lack of advanced security headers and no visible privacy or cookie policies, which indicates room for improvement in compliance and security posture. From a security perspective, the site is accessible without WAF or blocking mechanisms, but the absence of WHOIS data and security policies reduces trustworthiness. No vulnerabilities or exposed sensitive data were detected, but the site would benefit from implementing security best practices such as security headers and GDPR-compliant policies. Overall, the website is functional and professional but has gaps in privacy compliance and domain transparency. Strategic improvements in security and compliance would enhance trust and reduce risk.

ABX Music, operated by FAST ČR, a.s., is a Czech Republic-based retailer specializing in musical instruments such as electric guitars, bass guitars, cymbals, and accessories. The company targets musicians ranging from beginners to advanced players, offering quality products at affordable prices. The website reflects a small retail business with a focus on product presentation and partner collaborations. Technically, the site uses legacy JavaScript libraries like jQuery 1.7.2 and Modernizr, with Google Analytics for visitor tracking. The site lacks modern CMS indicators and advanced frameworks, suggesting a basic technical infrastructure. Security posture is limited, with no visible HTTPS enforcement or security headers in the provided data, and outdated libraries that may pose risks. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. Contact information is limited to phone and physical address, with no email or social media presence detected. WHOIS data is unavailable, reducing domain legitimacy verification and trust. Overall, the site is functional but requires improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

C

CRAFTER Co., LTD.

crafterguitars.com

0

Crafter Guitars is a well-established Korean guitar manufacturer with a history dating back to 1972. The company focuses on handcrafted guitars combining traditional craftsmanship with modern design and technology. Their website reflects a medium-sized manufacturing and retail business targeting musicians and guitar enthusiasts, with a consistent brand presence and active social media engagement. Technically, the website uses modern JavaScript libraries and frameworks such as jQuery, GSAP, and Swiper.js, hosted on Cafe24 infrastructure, with good mobile optimization and SEO practices. Security posture is adequate with enforced HTTPS and no exposed sensitive data, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

V

Vajra & Delibio

delibio.be

0

Vajra & Delibio is a family-owned wholesale distributor specializing in organic (BIO) food products in Belgium, offering a catalog of over 5000 references including fresh and dry goods. The website is professionally designed, leveraging the PrestaShop e-commerce platform, and integrates modern technologies such as Google Maps API and Google Tag Manager for analytics. The site is fully accessible, mobile-optimized, and provides clear navigation through extensive product categories. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy or incident response contacts are published. WHOIS data is restricted due to registry policy, which is typical for .be domains, but the website content and social media presence support legitimacy. Overall, the site demonstrates a mature digital presence suitable for its B2B wholesale market.

L

La Vie Claire

lavieclaire.com

0

La Vie Claire is a well-established French retail company specializing in organic food and products, with a history dating back to 1948. It operates over 340 stores across France and offers a broad range of organic groceries, cosmetics, and household items. The company emphasizes sustainability, local sourcing, and environmental responsibility, positioning itself as the second largest specialized organic distribution chain in France. The website reflects a mature digital presence with comprehensive content, strong branding, and active social media engagement. Technically, the website is built on WordPress with modern libraries such as Gravity Forms, Swiper.js, and jQuery. It employs SEO best practices, accessibility features, and performance optimizations including WP Rocket. Cookie consent and privacy compliance mechanisms are implemented effectively. However, the WHOIS data for the domain is unavailable, which is unusual for a large retail brand and slightly reduces trust. Security posture is generally good with HTTPS enforced and CAPTCHA protections on forms, but lacks published security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie management are comprehensive and GDPR compliant. Overall, the website is professional, secure, and user-friendly, serving its target audience well. Strategic improvements in transparency around domain registration and security policies would enhance trust and compliance further.

A

ALECO GmbH

aleco.bio

0

ALECO GmbH is a well-established organic supermarket chain operating in the northwest region of Germany, with a history spanning over 25 years since its founding in 1989. The company focuses on providing a fully ecological product range with a strong emphasis on freshness, targeting consumers interested in organic and sustainable products. Their business model centers on retail through multiple physical store locations, supported by customer loyalty programs and active recruitment efforts. Technically, the website employs modern tracking technologies such as Google Tag Manager and Google Analytics, and uses Swiper.js for interactive content. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with no critical technical issues detected. However, no CMS or hosting provider details are explicitly identified. From a security perspective, the website enforces HTTPS and implements a cookie consent banner, indicating awareness of privacy regulations. However, it lacks advanced security headers and does not publish explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection or malformed queries, but the website's legitimacy is supported by consistent branding, multiple store locations, and active social media presence. Overall, ALECO GmbH presents a credible and professional online presence with moderate technical maturity and a good security posture. Strategic improvements could include enhancing security headers, publishing security policies, and providing clearer contact information such as phone numbers to further strengthen trust and compliance.

E

ebl-naturkost GmbH & Co. KG

ebl-naturkost.de

0

ebl-naturkost GmbH & Co. KG operates as a regional organic food retailer in Germany, emphasizing sustainable, high-quality, and natural products sourced from regional and biologically certified farms. The company maintains a strong market position within the organic retail sector, offering weekly and monthly promotional offers through both physical markets and an online presence. Their target audience includes consumers seeking organic and regional food products. Technically, the website is built on the Shopware CMS platform, hosted by Timme Hosting, and incorporates modern web technologies with responsive design and SEO best practices. The site uses Google Analytics with IP anonymization and implements a cookie consent mechanism, reflecting a good level of digital maturity and privacy awareness. Security posture is solid with HTTPS enforced, though some security headers and explicit security policies are absent. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with room for improvement in security transparency and incident response readiness.

Alnatura is a retail company operating under the Migros Group in Switzerland, likely specializing in organic or natural products. The website is currently inaccessible, displaying a temporary service unavailable message in multiple languages, indicating a downtime or maintenance state. The site links to other Migros Group companies, showing integration within a larger retail ecosystem. The technical infrastructure and digital maturity cannot be fully assessed due to the lack of accessible content. Security posture evaluation is limited; no security policies, headers, or incident response information are present in the accessible content. Overall, the site shows low content and technical quality at this time, with no privacy or cookie compliance information visible.

G

GroPulse

gropulse.com

0

GroPulse is a specialized provider of Shopify apps and custom themes aimed at simplifying and enhancing eCommerce success for Shopify store owners. The company emphasizes intuitive solutions and tailored services to streamline operations and support business growth. The website positions GroPulse as an experienced player with over 7 years in Shopify development, supported by strong customer reviews and a clear focus on Shopify platform integration. Technically, the website is built on WordPress using modern Gutenberg blocks and premium plugins, hosted with Cloudflare as registrar and DNS provider. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices including structured data and meta tags. Marketing and tracking are implemented primarily via Facebook Pixel. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. There is no visible privacy policy, cookie consent mechanism, or incident response information, indicating gaps in compliance and security transparency. No critical vulnerabilities or malicious content were detected. Overall, GroPulse presents a credible and professional eCommerce technology business with room for improvement in privacy compliance and security best practices to enhance trust and regulatory adherence.

M

maerz architekten ag

maerz.ag

0

maerz architekten ag is a Swiss architecture firm specializing in architecture, development, spatial planning, and project realization. Operating as a subsidiary of RaumUnion AG, the company serves clients primarily within Switzerland, offering professional architectural services with a focus on quality and regional projects. The website presents a professional portfolio and clear contact information, reinforcing its market presence. Technically, the website is built on WordPress with modern technologies such as Alpine.js and jQuery, optimized for performance and mobile responsiveness. Hosting is provided by Hostpoint AG, inferred from DNS records. Google Analytics is integrated via Google Tag Manager, enabling moderate user tracking. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating potential compliance gaps with GDPR requirements. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security measures to strengthen its posture and user trust.

R

raumwerk ag

raumwerkag.ch

0

raumwerk ag is a Swiss-based company specializing in comprehensive and reliable construction processes, including project development, building permit procedures, realization phases, and project handover. As a total contractor and part of the RaumUnion AG group, raumwerk ag emphasizes responsible specialists, customer security, transparency, and quality execution. The company targets clients seeking trustworthy construction project management and related services in the real estate sector. The website reflects a professional and consistent brand image with clear contact information and a focus on service offerings. Technically, the website is built on WordPress with modern JavaScript libraries such as Alpine.js and jQuery. It uses WP Rocket for performance optimization and loads resources efficiently. The site is mobile-optimized and provides a good user experience with clear navigation. However, it lacks advanced SEO and accessibility features and does not implement security headers, which could be improved. From a security perspective, the site uses HTTPS with excellent SSL configuration, but no security headers were detected. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. No analytics or tracking scripts were found, indicating minimal user tracking. The WHOIS data is consistent with the business claims, showing legitimacy and domain age appropriate for the company's stated history. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security best practices, and transparency regarding data protection and incident response to improve its security posture and regulatory adherence.

B

baumanager ag

baumanager.ag

0

baumanager ag is a Swiss-based architectural and construction project management company, operating as a small but specialized service provider. The company emphasizes holistic and innovative architectural solutions, coordinating project quality, costs, and timelines effectively. As a subsidiary of RaumUnion AG, it benefits from a reputable parent company association. The website is professionally designed using WordPress with modern frontend technologies, providing a good user experience and clear business information. However, it lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and vulnerability disclosure mechanisms. Overall, the website is trustworthy and serves its target audience well, but compliance and security enhancements are recommended.

VITON s.r.o. is a Czech manufacturer specializing in industrial coatings and surface treatment products for metals, wood, concrete, and other materials. The company holds ISO 9001 certification and has a market presence of over 20 years, targeting industrial and construction sectors. Their product portfolio includes epoxyester paints, fire-retardant coatings, and protective lacquers, supported by a proprietary toning system vitocolormix®. The website reflects a professional business with clear contact information and product details, although some business history details like founding year are not explicitly stated. Technically, the website employs legacy JavaScript libraries such as jQuery 1.11.3 and jQuery UI, alongside modern tracking tools like Google Analytics and Facebook Pixel. The site is mobile-optimized with good navigation and SEO practices but lacks advanced accessibility features. Security practices include HTTPS usage and client-side form validation, but the absence of security headers and outdated libraries present potential risks. Security posture is moderate; no critical vulnerabilities are evident from the content, but the lack of privacy and cookie policies, combined with missing WHOIS registration data, reduces overall trust. Advertising and tracking scripts are present without explicit consent mechanisms, indicating privacy compliance gaps. The domain WHOIS data is unavailable, which raises concerns about domain legitimacy and registration status. Overall, the website is functional and business-focused but would benefit from improved security practices, updated technical stack, and enhanced privacy compliance to strengthen trust and regulatory adherence.

Č

České houby a.s.

ceskehouby.cz

0

České houby a.s. operates a Czech-language website focused on the sale and promotion of Czech mushrooms and related products. The site includes an eShop, recipe content, and company information targeting consumers interested in culinary uses of mushrooms. The company appears to be a small retail business established in 2001, with a consistent domain registration history and a clear physical presence in the Czech Republic. Technically, the website is built on WordPress using the Divi theme and Slider Revolution plugin, hosted likely by WEDOS, and employs HTTPS with a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and some best practices, but lacks explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is basic, with no clear privacy policy or terms of service pages found. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

Jihočeský vědeckotechnický park, a.s. is a regional innovation hub based in the South Bohemia region of the Czech Republic, providing space and support for startups and technology companies. The company offers rental of equipped laboratories, offices, meeting rooms, and technical services such as 3D printing and consulting. It also runs acceleration programs and supports commercialization of research outputs. The website reflects a medium-sized organization with strong regional government backing and a focus on fostering innovation and technology development. Technically, the website employs modern web technologies including Bootstrap, Owl Carousel, and integrates analytics and tracking tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized, accessible, and SEO-friendly, with a CMS platform likely based on Nickysys. Performance is moderate with good user experience and clear navigation. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy and cookie management. The absence of WHOIS data limits domain trust assessment, but the website's content and affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy digital presence for a technology park supporting innovation in the Czech Republic. Strategic improvements could include publishing security policies, incident response information, and enhancing security headers to strengthen the security posture further.

C

Celax & Partners

celax.asia

0

Celax & Partners is a small technology outsourcing company specializing in web design, e-commerce, app development, and digital marketing services primarily targeting German-speaking clients. The company emphasizes cost-effective outsourcing solutions with in-house teams based in Bali, Indonesia, and has over 25 years of experience. Their market position is that of an established provider offering comprehensive digital services including SEO, booking systems, and loyalty programs. Technically, the website is built on a modern WordPress stack using Elementor and Astra theme, with privacy-conscious analytics via Matomo. The site is well-structured, mobile-optimized, and provides clear contact channels including phone and WhatsApp. Security posture is good with HTTPS and no exposed sensitive data, though security headers and formal policies are lacking. Overall, the website is professional and trustworthy with room for improvement in privacy compliance and security best practices.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) that serves as an offline error page with embedded JavaScript for the Chrome dinosaur game. There is no actual website content, business information, or external links present. The page is not a public-facing website but a browser-generated error page. The technical infrastructure is limited to Chromium internal scripts and canvas-based game rendering. Security posture is minimal due to the nature of the page, with no HTTPS or security headers applicable. Privacy and compliance policies are absent as this is not a commercial or informational website. Overall, this content does not represent a business or service and thus cannot be evaluated for typical website security, compliance, or business credibility metrics.

T

Tritia

egtctritia.eu

0

EGTC TRITIA is a government/non-profit organization focused on cross-border regional cooperation among Poland, Slovakia, and the Czech Republic. Founded in 2013, it supports projects related to social services, education for children with disabilities, demographic challenges, and regional development. The website reflects a professional and consistent brand presence with clear contact information and multilingual support. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and user experience enhancements. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and well-positioned to serve its target audience of regional authorities and social institutions.

Szukacz.pl is an archival website commemorating a Polish language search engine that operated from 2001 to 2011. The site is maintained by 24 Godziny Sp. z o.o. and provides historical information without active search functionality. The technical infrastructure is minimal, relying on basic HTML, CSS, and Google Analytics for visitor tracking. No modern CMS or frameworks are detected. Security posture is weak with no DNSSEC, no security headers, and no explicit HTTPS enforcement visible, although Google Analytics scripts load over HTTPS. Privacy and cookie policies are absent, indicating poor compliance with modern data protection standards. Contact information is limited to a single email address. Overall, the site serves as a static memorial with limited business activity or user interaction.

S

Śląskie dla rodziny |

slaskiedlarodziny.pl

0

The website 'Śląskie dla rodziny' appears to be a regional or community-oriented site focused on family-related content in the Silesian region of Poland. The domain has been registered since 2014 and is hosted by Digital Media Technology Sp. z o.o., indicating a stable and legitimate presence. The site uses WordPress with the Divi theme, a common CMS and theme combination for small to medium websites. However, the site lacks critical compliance elements such as privacy and cookie policies, which are essential for GDPR compliance in the EU. Technically, the site uses standard web technologies including JavaScript and jQuery, and loads fonts from Google Fonts. The security posture is basic with HTTPS enabled but no advanced security headers or DNSSEC. There is minimal tracking via an external script from zenbox.pl. Overall, the site is accessible and safe for general audiences but requires improvements in privacy compliance and security best practices.

F

Festiwal Górnej Odry – 27-29 czerwca 2025

festiwalgornejodry.pl

0

Festiwal Górnej Odry is a regional cultural festival in Poland scheduled for June 27-29, 2025. The website serves as the main digital platform for event information, news, partner announcements, and program details. It enjoys official patronage from the Ministry of Sport and Tourism and partnerships with notable organizations such as GAZ SYSTEM S.A. The target audience includes local communities and cultural event attendees. Technically, the site is built on WordPress with Elementor and uses modern plugins and tracking tools. Security posture is adequate with HTTPS and cookie consent but lacks some advanced security headers and formal privacy documentation. The domain registration is consistent and legitimate, supporting the festival's recent establishment. Overall, the website is professional, trustworthy, and well-positioned for its purpose, though improvements in privacy compliance and security hardening are recommended.

S

SilesiaKultura.pl

silesiakultura.pl

0

SilesiaKultura.pl is a Polish cultural media website established in 2002, focusing on a wide range of cultural topics including film, music, visual arts, theater, literature, folklore, and more. It serves a niche audience interested in regional and national cultural events and news. The website is built on WordPress and leverages popular plugins such as Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity. Google Analytics is integrated for visitor tracking, but privacy and cookie policies are not explicitly presented, which is a compliance gap. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and DNSSEC is not enabled. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

The domain www.mkapps.com is currently inaccessible, serving a CloudFront 502 error indicating that the origin domain name could not be resolved. This suggests a configuration error or that the domain is not actively hosted. The WHOIS query returned no registration data, implying the domain may be unregistered or expired. Due to the lack of accessible website content, no business information, metadata, or contact details are available for analysis. The technical infrastructure appears to rely on Amazon CloudFront as a CDN, but the origin server is unreachable, resulting in a complete service outage. From a security perspective, the absence of HTTPS and security headers, combined with the domain's unregistered status, presents critical risks and a lack of trustworthiness. No privacy, cookie, or terms of service policies are published, and no contact or incident response information is available. The website does not expose any content, so no vulnerabilities or tracking technologies could be assessed. Overall, the security posture is poor due to unavailability and lack of standard protections. Given the domain's current state, the overall risk is high. The domain is not trustworthy or credible, and the lack of registration data raises legitimacy concerns. Strategic recommendations include resolving DNS and hosting configuration issues, registering the domain properly, implementing HTTPS and security headers, and publishing compliance and contact information to establish trust and meet regulatory requirements.

The website marykaypromotion.de is a small German-language blog focused on philosophy topics. It is built on WordPress and hosted on German nameservers provided by netclusive.de. The site contains minimal content, primarily a single blog post and a contact button without a linked form or email address. There are no privacy, cookie, or terms of service policies present, and no explicit business or company information is provided. Technically, the site uses standard WordPress technologies and modern web fonts, with basic mobile optimization and accessibility features. Security posture is weak due to the absence of security headers, incident response contacts, and published security policies. No analytics or advertising tools are detected, indicating minimal user tracking. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for a general audience.

A

APG|SGA

infosnow.ch

0

infosnow.ch is a specialized portal offering interactive maps and detailed information about ski resorts and mountain tourism destinations primarily in Switzerland. The site targets tourists and outdoor enthusiasts seeking seasonal activity information and resort details. The business operates in the transportation sector with a focus on mountain tourism. Technically, the site uses OpenStreetMap tiles and custom JavaScript for map rendering, providing a good user experience with moderate performance and basic mobile optimization. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which impacts its security posture and privacy compliance. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the business claims, indicating legitimacy. Overall, the site is functional and relevant but would benefit from improved security and compliance measures.

S

SIBA Swiss Insurance Brokers Association

siba.ch

0

SIBA Swiss Insurance Brokers Association is a professional membership organization serving insurance brokers in Switzerland. The website provides information about the association, membership options, education, regulatory guidance, and contact details. The target audience is insurance brokers and related professionals within the Swiss finance sector. The business model is centered on membership services and professional development. The website is well-branded and consistent, with a professional design and clear navigation primarily in German with French language options. Technically, the site uses a modern JavaScript framework (Vue.js) and includes Typekit fonts for typography. The performance is moderate with good mobile optimization. However, SEO and accessibility features are basic, and no structured data or advanced metadata are present. The site is served over HTTPS but lacks visible security headers and cookie consent mechanisms. From a security perspective, the site has a basic security posture with HTTPS enabled but no advanced security headers or published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a privacy policy present but no cookie consent or GDPR compliance indicators. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy with room for improvement in security practices, privacy compliance, and technical SEO. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and enhancing accessibility and SEO.

R

Reformierte Kirchgemeinde Gelterkinden-Rickenbach-Tecknau

ref-gelterkinden.ch

0

The Reformierte Kirchgemeinde Gelterkinden-Rickenbach-Tecknau is a small non-profit religious community organization serving the local Swiss communities of Gelterkinden, Rickenbach, and Tecknau. The website provides comprehensive information about religious services, community events, youth and family programs, and educational offerings. It targets local community members and church attendees, emphasizing spiritual engagement and social support. The organization maintains a clear and consistent brand presence with regular content updates and accessible contact information. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Event Organiser, with a custom theme likely based on the Genesis Framework. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. SEO practices are adequate with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and uses anti-spam measures on contact forms but lacks visible security headers such as CSP or HSTS. There is no cookie consent mechanism, which may pose compliance risks under GDPR. No analytics or tracking scripts are detected, indicating minimal user tracking. WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional and trustworthy but could improve its privacy compliance and security posture. Strategic enhancements in security headers and cookie consent would strengthen user trust and regulatory adherence.

H

HEAD DRINKS | water, sport and energy drinks

head-drinks.com

0

HEAD DRINKS is a small beverage company specializing in water, sport, and energy drinks, targeting active and health-conscious consumers. The website is built on WordPress using the Divi theme, reflecting a standard CMS infrastructure with moderate digital maturity. The site design is professional and mobile-optimized, though navigation clarity and SEO could be improved. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC, indicating room for improvement in security hardening. Privacy compliance is weak due to absence of privacy and cookie policies, and no contact or incident response information is provided, which may impact user trust and regulatory compliance. Overall, the website is functional and relevant to its industry but requires enhancements in security and compliance to strengthen its risk profile.

AQUA MARIA Marienbad is a small luxury mineral water company based in the Czech Republic, specializing in low mineralization mineral water suitable for everyday drinking and spa carbonic baths. The website is built on WordPress using the Divi theme and incorporates Yoast SEO and Google Analytics, indicating a moderate level of digital maturity. The site design is professional and mobile-optimized, providing a good user experience with clear navigation and relevant content. However, the absence of explicit privacy, cookie, and terms of service policies, as well as lack of visible contact information, limits its privacy compliance and business credibility. Security posture is basic with HTTPS enabled but missing security headers and incident response information. Overall, the website is functional and trustworthy but would benefit from enhanced privacy and security practices.

E

Excelsior

excelsiorwater.cz

0

Excelsior is a small Czech-based business specializing in the production and sale of classic mineral water with a balanced ratio of magnesium and calcium. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with good SEO practices and multilingual support. The technical infrastructure includes modern JavaScript libraries and third-party services such as Google Analytics and Tawk.to for analytics and customer engagement. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies, which poses a compliance risk. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

The website rudolfuvpramen.cz represents BHMW a.s., a small hospitality business operating the Mariánskolazaňský Rudolfův pramen, a healing spring in Mariánské Lázně, Czech Republic. The site provides information about the spring's healing properties, targeting general audiences interested in wellness and spa treatments. The business appears to have a local/regional market position with a focus on health and wellness services. Technically, the website is built on WordPress using the Divi theme, incorporating common plugins such as Google Analytics for tracking and Tawk.to for live chat support. The site is moderately optimized for mobile and SEO, with good content quality and consistent branding. Security-wise, HTTPS is enabled and no sensitive data is exposed, but the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. Overall, the site is professional and trustworthy but lacks some critical compliance documentation.

Z

Zaječická hořká

zajecicka.cz

0

Zaječická hořká is a small business focused on offering a traditional natural laxative and detoxification product based on magnesium sulfate (Epsom salt), with a history dating back to 1717. The website is built on WordPress using the Divi theme and incorporates modern web technologies including jQuery, Google Analytics, and live chat via Tawk.to. The site is multilingual and optimized for SEO with structured data and meta tags. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal privacy or cookie policies. Contact information and incident response details are not explicitly provided, which may impact user trust and compliance. Overall, the website is professional and trustworthy for its niche but would benefit from enhanced privacy compliance and security best practices.

B

BHMW a.s.

bilinska.cz

0

Bílinská kyselka is a company specializing in the bottling and distribution of natural spa spring water, with a historical legacy dating back to 1664. The website presents the brand as a producer of high-quality naturally sparkling spa water, targeting a general audience interested in health and wellness products. The company appears to be a small-sized entity based in the Czech Republic, with a consistent and professional brand presence online. Technically, the website is built on WordPress using the Divi theme and several plugins including Google Analytics for tracking and Soundy Background Music for audio features. The site is mobile optimized and has good SEO practices, although some accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and formal privacy or cookie policies. No WHOIS data is available, which limits domain trust assessment. No vulnerability disclosure or incident response contacts are present, indicating room for improvement in security transparency and compliance. Overall, the website is professional and trustworthy in its content and presentation but would benefit from enhanced privacy compliance, security best practices, and domain registration transparency to improve its risk profile and user trust.

D

DIAMO, státní podnik

diamo.cz

0

DIAMO, státní podnik is a Czech state enterprise specializing in remediation and management of mining legacy sites, particularly uranium, other ores, and coal mining impacts. The organization operates multiple regional branches and focuses on environmental protection and revitalization of industrially affected regions. The website presents a professional and consistent brand image with certifications such as ISO 9001 and Zelená firma, indicating quality and environmental standards compliance. Technically, the site uses modern JavaScript libraries, a CMS platform (OctoberCMS), and integrates map APIs, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. No WHOIS data was found, which reduces domain registration trust but the website content and state enterprise status support legitimacy. Overall, the site is well-maintained, informative, and trustworthy for its intended audience.

M

Panenky Malunka

malunka.cz

0

Panenky Malunka is a small artisan retail business based in the Czech Republic specializing in handcrafted dolls made from natural materials. The website showcases various doll categories, including flower dolls, traditional dolls, and small figurines, with a focus on custom orders and personalized craftsmanship. The business targets consumers seeking unique, handcrafted gifts and collectibles. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and is hosted with Amazon Cloudfront CDN, ensuring moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced, but lacks important security headers and formal privacy or cookie policies, which impacts compliance and trust. The absence of WHOIS registration data is a significant concern for domain legitimacy and trustworthiness. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security best practices.

S

Sotovox

sotovox.cz

0

Sotovox is a small a cappella vocal group based in the Czech Republic, specializing in live vocal performances without instrumental accompaniment. Their website showcases upcoming and past concerts primarily in Prague, offers a Christmas CD, and links to their presence on Spotify and YouTube. The group engages with their audience via social media platforms including Facebook, Instagram, and YouTube. Technically, the website is built with standard HTML5, CSS, and JavaScript, using Google Fonts and embedded YouTube videos. The site is mobile optimized and provides a good user experience with clear navigation and multimedia content. However, it lacks privacy and cookie policies, security headers, and WHOIS domain registration data, which impacts trust and compliance assessments. No forms or analytics scripts are present, indicating minimal data collection and tracking.

W

Wohnout

wohnout.cz

0

Wohnout.cz is the official website of the Czech music band Wohnout, providing fans with information about upcoming concerts, albums, lyrics, and an online merchandise shop. The site targets Czech-speaking music enthusiasts and offers direct links to ticket sales and social media channels, establishing a solid presence in the Czech entertainment market. The business model revolves around live performances and merchandise sales, supported by partnerships with music instrument brands and media outlets. Technically, the website employs modern web technologies including JavaScript, jQuery, and Slick Carousel for UI elements, and uses the Pagebuilder CMS platform. The site is mobile-optimized with a responsive design and basic SEO metadata, though there is room for improvement in accessibility and SEO completeness. The site is served over HTTPS, but lacks visible advanced security headers and cookie consent mechanisms. From a security perspective, the site shows moderate maturity with HTTPS enabled and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers, explicit contact information for incident response, and cookie consent mechanisms indicate areas for enhancement. The WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and external links appear legitimate and professional. Overall, Wohnout.cz is a well-structured and content-rich site for a music band with good user experience and moderate security posture. Strategic improvements in security headers, privacy compliance, and contact transparency would enhance trust and compliance.

Sanatorium plastické a estetické chirurgie Chotoviny is a specialized healthcare provider focused on plastic and aesthetic surgery, serving a primarily Czech and international clientele. The company offers a broad range of surgical and laser procedures, rejuvenation treatments, and hand and vascular surgeries, supported by a professional team with over 30 years of experience. Their business model includes direct patient consultations, surgical services, and an e-commerce platform for gift vouchers and related products. The website is professionally designed, mobile-optimized, and includes client testimonials and external review integrations, enhancing trust and credibility. Technically, the website employs modern web technologies such as Bootstrap 5, jQuery, FontAwesome, and integrates third-party services including Google Analytics, Facebook Customer Chat, and Packeta shipping widgets. The site is hosted on a Czech hosting provider and demonstrates good performance and SEO practices. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy and terms of service pages. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent aligned with GDPR. However, no explicit security headers were detected, and no security.txt or incident response information is published, which are areas for improvement. The absence of WHOIS data for the domain is a notable concern, reducing trust from a domain registration standpoint, though the website content and external reviews support legitimacy. Overall, the website presents a professional and trustworthy front for the business, with moderate technical and security maturity. Strategic improvements in domain registration transparency and security policy publication would enhance trust and compliance.

M

Město Tábor

taborcz.eu

0

Město Tábor operates an official municipal website serving residents and visitors with comprehensive information about city administration, public services, events, and community resources. The website is positioned as the authoritative source for city-related information in Tábor, Czech Republic, targeting local citizens and tourists. Key services include online document requests, public announcements, and contact channels for municipal support. Technically, the site uses the Vismo CMS platform, integrates Google Analytics and Tag Manager for user tracking, and employs Google reCAPTCHA for form security. The site is hosted by Webglobe, s.r.o., a reputable Czech hosting provider, and uses HTTPS with an excellent SSL configuration. Security practices include cookie consent with granular controls and no visible exposed sensitive data. However, the site lacks explicit security policies and incident response information. Overall, the website is professional, trustworthy, and well-optimized for accessibility and SEO, with moderate user tracking and good privacy compliance.

The website valterscapital.com is currently inaccessible due to an invalid SSL certificate on the origin server, as indicated by the Cloudflare error 526 page. This prevents any meaningful content or business information from being accessed or analyzed. The domain is very new, registered in March 2024, and uses Cloudflare for DNS and CDN services. However, the lack of a valid SSL certificate and absence of any privacy, cookie, or contact information significantly undermine the site's credibility and security posture. No business description or services are presented, and no forms or tracking technologies are detected, indicating a minimal digital footprint at this time. From a technical perspective, the site relies on Cloudflare but suffers from critical SSL misconfiguration that blocks user access. There is no evidence of modern CMS, frameworks, or analytics tools. The site lacks SEO optimization and accessibility features, and no security headers are detected. The WHOIS data is consistent with a legitimate registrar but shows a very recent domain age, which may not align with any claims of an established business. Security-wise, the primary concern is the invalid SSL certificate causing the site to be blocked by Cloudflare, which is a critical issue. No other security policies, incident response contacts, or certifications are found. The absence of privacy and cookie policies also indicates non-compliance with GDPR and other privacy regulations. Overall, the security posture is poor, and the site is not currently trustworthy for visitors or customers. Given these findings, the overall risk assessment is high. The site should urgently address the SSL certificate issue to restore accessibility, implement standard security headers, and publish privacy and cookie policies. Adding clear business and contact information will improve trust and compliance. Until these issues are resolved, the site remains inaccessible and lacks credibility.

B

BOHEMIA HEALING MARIENBAD WATERS a.s.

bhmw.cz

0

BOHEMIA HEALING MARIENBAD WATERS a.s. is a historic company specializing in bottling and distributing spa mineral waters, with a legacy dating back to 1664. The company operates multiple well-known spa water brands, targeting a global audience interested in natural healing waters. Their website serves as a multilingual landing page to promote their brands and provide corporate information. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins for interactive content and multilingual support. It employs modern web technologies and integrates Google Analytics for visitor tracking. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. The absence of WHOIS data reduces domain trustworthiness, though the website content and branding suggest a legitimate and established business. Overall, the site is professional, content-rich, and safe for general audiences, but could benefit from enhanced security and privacy features.

B

Beneš a Lát a.s.

benesalat.cz

0

BENEŠ a LÁT a.s. is a well-established Czech manufacturing company specializing in aluminum and zinc casting as well as plastic injection molding. Founded in 1934, the company operates with approximately 450 employees and leverages modern technologies including 3D metal printing. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site is built on WordPress with a modern tech stack including SEO and social media integration. Security posture is solid with HTTPS, reCAPTCHA, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is basic with cookie policies and GDPR considerations but lacks comprehensive privacy and security policies. The absence of WHOIS data limits domain trust assessment but the business information and social presence support legitimacy. Overall, the site is professional and trustworthy with room for enhanced security and compliance documentation.

F

Federace nábytkových bank a reuse center

reusefederace.cz

0

Federace nábytkových bank a reuse center is a Czech non-profit federation uniting furniture banks and reuse centers across the Czech Republic. The organization focuses on environmental sustainability by promoting reuse as an alternative to waste disposal. Their services include networking reuse operators, providing expert consultation for new reuse centers, organizing training, and fostering partnerships with public and private sectors. The website is professionally designed, content-rich, and optimized for SEO, targeting reuse operators, NGOs, public administration, and the general public interested in sustainability. Technically, the site runs on WordPress with modern plugins and supports HTTPS with secure form handling. However, the absence of WHOIS data and cookie consent mechanisms slightly reduce trust and privacy compliance scores. Overall, the site demonstrates a strong commitment to its mission with good digital maturity and security posture.

DIFFERENT.VISION is a small Czech Republic based web development agency operated by provocation s.r.o., founded in 2018. The company specializes in creating websites and applications, targeting businesses or individuals seeking web presence and custom applications. The website is minimalistic, providing basic contact information and service description without extensive content or policies. Technically, the site uses modern web standards including HTTPS, Google Fonts, and Google Analytics for tracking. However, it lacks advanced security headers and privacy compliance mechanisms such as cookie consent or privacy policies. The domain registration data is consistent with the business location and entity, indicating legitimacy. Overall, the digital maturity is moderate with room for improvement in security and compliance.

B

Blaues Kreuz Schweiz

blaueskreuz.info

0

Blaues Kreuz Schweiz is a Swiss non-profit organization dedicated to providing comprehensive information and support related to alcohol consumption and addiction. Their website offers a variety of resources including online tests, help offers, educational content, and testimonials aimed at affected individuals, their families, and interested parties. The organization maintains a professional online presence with clear contact information and social media engagement, reinforcing its credibility in the addiction support sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and uses both Google Analytics and Matomo for analytics, balancing functionality with privacy considerations. The site is well-optimized for mobile devices, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS enforced and privacy-conscious analytics, but lacks explicit security headers and incident response contact details. The WHOIS data for the domain is malformed and unavailable, which limits domain registration trust analysis. Despite this, the website content and professional presentation suggest legitimacy. No WAF or blocking mechanisms were detected, and the site is fully accessible. The content is mature audience appropriate, focusing on alcohol and addiction education without any explicit adult content. Overall, Blaues Kreuz Schweiz presents a trustworthy and professional resource in its domain, with room for improvement in security policy transparency and WHOIS data clarity.

I

International Blue Cross

internationalbluecross.org

0

International Blue Cross is a Switzerland-based non-profit organization dedicated to protecting people from harm caused by alcohol and drugs, uniting 37 countries under its umbrella. The website reflects a professional and consistent brand presence with a focus on health and social protection services. The technical infrastructure is built on WordPress with the Divi theme, leveraging modern web fonts and a privacy-conscious analytics tool (Matomo). While the website is well-designed and mobile-optimized, it lacks explicit privacy, cookie, and security policies, which are critical for compliance and user trust. Security posture is adequate with HTTPS enabled and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Overall, the site demonstrates good business credibility but needs enhancements in privacy compliance and security transparency.

The website at f24.org currently serves as a placeholder or offline page displaying the Chrome T-Rex runner game, with no visible business-related content or contact information. The domain is registered to One-Check GmbH, a Swiss company established in 2002, indicating a legitimate and longstanding registration. However, the website itself lacks any meaningful content, policies, or security features that would support a professional business presence. From a technical perspective, the site uses basic HTML, CSS, and JavaScript to deliver the offline game experience. There is no evidence of modern frameworks, CMS, or analytics tools. The hosting is provided by hostpoint.ch, a known hosting provider. Mobile optimization and accessibility are basic, and SEO is poor due to lack of metadata and content. Security posture is weak, with no HTTPS enforcement or security headers detected in the provided content. No privacy, cookie, or terms of service policies are present, and no contact or incident response information is available. The WHOIS data is consistent and trustworthy, but the website content does not reflect an active or professional business presence. Overall, the website appears to be either inactive, under construction, or repurposed as a placeholder page. This results in a low AI score and poor trust indicators. Strategic recommendations include developing a proper business website with clear content, implementing security best practices, and publishing necessary compliance policies.

The website for gm-elektronik.swiss is currently inaccessible beyond a security challenge page powered by BitNinja.IO, which blocks direct content access. The domain is registered to g+m elektronik ag, a Swiss company established in 2015, consistent with the domain name and country. The website appears to use outdated CMS technologies (Joomla 1.5 and WordPress 2.5) which are known to have multiple security vulnerabilities. No business descriptions, contact information, or compliance policies are visible on the site. The technical infrastructure is basic, hosted on trendhosting-net.ch, with minimal SEO and accessibility features. Security posture is moderate due to the presence of a security challenge but weakened by outdated software and lack of security headers or policies. Overall, the site’s digital maturity is low, and the lack of visible content and policies limits trust and user engagement.

B

BALIK Farm (Switzerland) AG

balik-kitchen.ch

0

BALIK Farm (Switzerland) AG operates BALIK Kitchen, a hospitality and retail food service business with multiple urban kitchen bars and shops located in major Swiss cities such as Bern, St. Gallen, Luzern, and Zürich. The website serves as a digital presence to promote their culinary offerings, events, and recipes, targeting general consumers interested in urban dining experiences. The company maintains a consistent brand image and provides clear contact information and social media engagement channels. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates marketing and analytics tools such as Facebook Pixel, Google Analytics, and Mailchimp for newsletter management. The site is hosted behind Cloudflare infrastructure, utilizing Turnstile captcha for bot protection, indicating a moderate level of digital maturity. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses anti-bot measures but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a cookie consent banner and a privacy policy page in German, aligned with GDPR requirements. Business credibility is strong with verified contact details and consistent WHOIS data. Overall, the website presents a professional and trustworthy digital front for BALIK Kitchen, with room for improvement in security policy transparency and enhanced privacy compliance. The risk level is low, but strategic enhancements in security headers and incident response readiness are recommended.