Security Directory

A

Ampliando Democracia

ampliandodemocracia.org

0

Ampliando Democracia is a Spanish non-profit initiative focused on enhancing democratic participation through innovative citizen engagement methods. It operates under the umbrella of the think-and-do tank Political Watch and targets citizens, public administrations, and political parties interested in democratic innovation. The website is built on WordPress with modern technologies and includes GDPR-compliant cookie consent and privacy policies. The technical infrastructure is solid with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and domain transfer protection, though some security headers and policies could be improved. Overall, the website is professional, trustworthy, and aligned with its stated mission.

P

Political Watch

qhld.es

0

Qué hacen los diputados is a Spanish non-profit transparency platform operated by Political Watch that provides citizens, journalists, and researchers with accessible data and tools to monitor the activities of the Spanish Congress of Deputies. The website offers legislative initiative tracking, political orientation insights, and government control information, supporting democratic participation and accountability. Technically, the site uses modern JavaScript frameworks (Vue.js) and build tools (Vite), delivering a responsive and well-structured user experience with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and formal policies could enhance protection. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Overall, the site is trustworthy, professionally maintained, and aligned with its civic mission.

B

Blog Digital

blogdigital.ro

0

Blog Digital is a Romanian digital marketing blog and consultancy platform founded in 2020, authored primarily by Ovidiu Selejan. It offers insights, case studies, and strategies focused on online marketing channels such as Google Ads, Facebook Ads, SEO, and e-commerce. The website targets Romanian digital marketers and business owners seeking to improve their online presence and advertising effectiveness. Technically, the site is built on WordPress with modern analytics and tracking tools integrated, including Google Analytics, Google Tag Manager, and Facebook Pixel. The site is hosted behind Cloudflare DNS, uses HTTPS, and shows moderate performance and good mobile optimization. Security posture is adequate but could be improved with additional HTTP security headers and DNSSEC. Privacy compliance is strong with clear GDPR cookie consent mechanisms and comprehensive privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. No critical security issues or suspicious content were detected, and the site is accessible without WAF blocking. Overall, Blog Digital presents as a trustworthy, professional digital marketing resource with room for technical security enhancements.

Caracal Agency is a Brussels-based digital and creative agency specializing in branding, communication strategy, digital marketing, and website and e-commerce development. The company positions itself as a partner for businesses seeking to enhance their digital presence and brand awareness. Their website demonstrates a strong market position with a portfolio of notable clients and testimonials, indicating a trusted service provider in the technology sector. Technically, the website is built on modern frameworks such as Next.js and Chakra UI, hosted on Vercel, and integrates advanced analytics and marketing tools including Google Analytics and HubSpot. Security posture is strong with HTTPS, security headers, and bot protection via Google reCAPTCHA, although explicit security policies and incident response information are not publicly disclosed. Overall, the website is professional, well-structured, and compliant with privacy regulations, reflecting a mature digital presence suitable for their business model.

A

American Heart Association

heart.org

0

The American Heart Association (AHA) is a well-established non-profit organization dedicated to improving cardiovascular health and reducing deaths from heart disease and stroke. The website serves as a comprehensive resource for the general public, healthcare professionals, and donors, offering educational content, CPR training, advocacy information, and fundraising opportunities. The AHA maintains a strong market position as a leading U.S. non-profit in cardiovascular health, supported by extensive scientific research funding and professional memberships. Technically, the website is built on the Sitecore CMS platform and leverages modern technologies such as Google Tag Manager, Optimizely for experimentation, and Coveo for search functionality. The site demonstrates good performance, excellent mobile optimization, and accessibility features, providing a professional and user-friendly experience. From a security perspective, the site enforces HTTPS, employs security headers, and secures forms with CSRF tokens. While explicit security policies and incident response information are not published, the overall security posture is strong with no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. Overall, the website is trustworthy, professionally maintained, and aligned with the organization's mission. The lack of WHOIS data is mitigated by strong content and technical indicators of legitimacy. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and data protection officer contacts to further enhance trust and compliance.

The website www.sleepnumber.com is currently inaccessible due to a CloudFront Web Application Firewall (WAF) blocking the request, resulting in a 403 error page. This prevents any meaningful content or metadata extraction, severely limiting the ability to analyze the site's business, technical, or security posture. The WHOIS query for the domain returned no registration data, indicating either the domain is unregistered, expired, or protected by privacy mechanisms that obscure registrar details. Consequently, no information about the registrant, creation or expiry dates, or DNS configuration could be obtained. From a technical perspective, the lack of accessible content means no technologies, frameworks, or hosting details can be identified. Security headers, SSL configuration, and compliance policies cannot be evaluated. The absence of privacy, cookie, or terms of service policies further reduces the site's compliance posture. No contact information or incident response channels are available, which is a significant concern for trust and user support. Overall, the site’s security posture cannot be assessed beyond the presence of a CloudFront WAF blocking access, which may indicate protective measures but also hinders transparency. The lack of WHOIS data and content raises legitimacy concerns. Until the blocking is resolved and the domain registration details are clarified, the site should be considered high risk with very low trustworthiness. Strategic recommendations include resolving the WAF blocking to allow content access, verifying domain registration status, implementing and publishing privacy and security policies, and providing clear contact and incident response information to improve trust and compliance.

T

Target

target.com

0

Target Corporation operates a large-scale retail and e-commerce platform serving millions of customers across the United States. The website offers a comprehensive shopping experience including groceries, clothing, electronics, and household essentials with options for contactless pickup and delivery. Target maintains a strong market position as a leading retail chain with a well-established brand and extensive product offerings. The website is professionally designed with excellent content quality and user experience, optimized for mobile and desktop platforms. Technically, the site leverages modern frameworks such as Next.js and integrates multiple third-party services for analytics, advertising, and customer engagement, hosted on a robust CDN infrastructure ensuring fast performance. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR considerations. Overall, the website reflects a mature digital presence aligned with enterprise retail standards.

K

Kaiser Permanente

kaiserpermanente.org

0

Kaiser Permanente is a leading integrated healthcare organization providing customized care and coverage to consumers primarily in the United States. The website serves as a portal for health plans, medical services, wellness resources, and member support, reflecting a mature and enterprise-level digital presence. The company is well positioned in the healthcare sector with a strong brand and comprehensive service offerings. Technically, the site leverages Adobe Experience Manager and integrates multiple advanced analytics and marketing tools, ensuring a modern, performant, and accessible user experience. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information could be enhanced. Privacy compliance is robust with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility.

The website nutriliving.com is currently inaccessible, returning a 403 Forbidden error page with no visible content. This prevents any meaningful analysis of the site's business offerings, technical infrastructure, or security posture. The domain is registered with GoDaddy since 2007 and uses Amazon AWS DNS servers, indicating a potentially established business with professional hosting. However, the lack of accessible content and absence of metadata, policies, or contact information severely limits the ability to assess the company's market position or compliance status. Security posture cannot be evaluated due to missing headers and SSL details. Overall, the site appears to be blocked or restricted, resulting in a low trust and quality score.

D

Del Monte

delmonte.com

0

Del Monte is a well-established brand specializing in canned fruits, vegetables, and snacks, targeting general consumers and families seeking nutritious food options. The website reflects a mature digital presence with rich content including product catalogs, recipes, and brand storytelling. Technically, the site is built on Drupal CMS with modern analytics and marketing integrations, optimized for mobile and accessibility. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. The WHOIS data is unavailable, likely due to privacy protection, which is common for large brands but should be monitored. Overall, the site is professional, trustworthy, and compliant with basic privacy standards.

T

That's it. Nutrition

thatsitfruit.com

0

That's it. Nutrition operates a professional e-commerce website specializing in healthy fruit bars and snacks made from 100% real fruit. The company targets health-conscious consumers seeking vegan, gluten-free, kosher, and non-GMO snack options. The website is built on the Shopify platform, leveraging a modern tech stack with extensive marketing and analytics integrations including Google Analytics, Facebook Pixel, TikTok Pixel, and Yotpo for customer reviews. The site demonstrates excellent design quality, mobile optimization, and user experience, supporting a strong market position in the healthy snack niche. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, although the professional presentation and consistent branding mitigate this risk.

Kohl's is a major US retail and e-commerce company specializing in clothing, home goods, and related products. The website demonstrates a mature digital infrastructure with advanced personalization, analytics, and performance monitoring technologies. The site is professionally designed, mobile-optimized, and provides comprehensive privacy and cookie policies, reflecting a strong commitment to user experience and regulatory compliance. Security posture is robust with HTTPS enforcement and security headers, though explicit security policies and vulnerability disclosures are not publicly available. The absence of WHOIS data is unusual but likely due to privacy protections; overall, the domain and website appear legitimate and trustworthy.

N

NEM Initiative

nem-initiative.org

0

NEM Initiative is a well-established European network focused on advancing media and creative industries through interactive technologies. With a history dating back to 2004, it serves as a collaborative platform for stakeholders across media, telecom, and technology sectors, organizing events such as the annual NEM Summit. The website reflects a mature digital presence built on WordPress, integrating modern web technologies and analytics tools. Security posture is adequate with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is partial, with a privacy policy present but lacking explicit cookie consent mechanisms. Overall, the site demonstrates high business credibility and professional content, suitable for its target audience of media and technology professionals.

D

Duell

duell.no

0

Duell is a Norwegian company specializing in point-of-sale (POS) systems and related software solutions tailored for various industries such as retail, hospitality, logistics, museums, restaurants, workshops, and beauty salons. The company offers extensive integrations with popular accounting and business management software, enhancing operational efficiency for its clients. The website demonstrates a professional and modern digital presence built on WordPress with Elementor, indicating a mature technical infrastructure. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though the absence of privacy and cookie policies suggests room for improvement in compliance. Overall, Duell presents as a credible and established business in its sector, with a solid market position in Norway.

T

Tomáš Baťa

tomasbata.com

0

The website tomasbata.org serves as an informational and educational portal dedicated to the life and legacy of Tomáš Baťa, a prominent Czechoslovak entrepreneur and founder of the Baťa shoe company. It provides rich content including biographies, bibliographies, galleries, and educational modules primarily targeting Czech-speaking audiences interested in historical and entrepreneurial topics. The site maintains a consistent brand presence and is affiliated with reputable institutions such as the Tomas Bata University Library. Technically, the website is built on WordPress with common plugins for enhanced user experience such as sliders and lightboxes. It employs HTTPS with a good SSL configuration, though it lacks DNSSEC and some modern security headers. Performance and mobile optimization are adequate, and the site is accessible with basic SEO and accessibility features. Google Analytics is used for tracking, but no cookie consent mechanism is implemented, which is a privacy compliance gap. From a security perspective, the site shows moderate maturity with domain transfer protections and HTTPS but could improve by enabling DNSSEC, adding security headers, and implementing privacy and cookie policies. No incident response or vulnerability disclosure information is present. The domain registration is consistent with the website's purpose and origin, indicating legitimacy. Overall, tomasbata.org is a trustworthy, well-maintained informational site with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

M

Moravský zemský archiv v Brně

mza.cz

0

Moravský zemský archiv v Brně is a Czech government archival institution providing public access to historical documents, research facilities, and archival care information. The website serves researchers, historians, and the general public interested in regional history and archival materials. It maintains a clear and consistent brand presence with official contact details and regularly updated news content. Technically, the site is built on WordPress with Elementor, uses HTTPS, and includes modern web fonts and icon libraries, indicating a moderate level of digital maturity. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic but includes a cookie policy page. Overall, the site is trustworthy and professionally maintained, though WHOIS data is unavailable, likely due to registry policies.

The website aarchitektura.cz represents a small Czech non-profit civic association named spolek aArchitektura, focused on promoting architectural culture in the Zlín region through lectures, exhibitions, and events. The content is rich and well-structured, targeting architecture enthusiasts and the local community. The technical infrastructure uses modern frontend technologies such as Bootstrap and jQuery, hosted via Active24, with Google Analytics integrated for visitor tracking. However, the site lacks visible privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enabled but missing important security headers and no visible incident response or security contact information. Overall, the site is legitimate and consistent with its domain registration data, but improvements in privacy compliance and security best practices are recommended.

Ellement architects s.r.o. is a small Czech architectural and design firm specializing in a broad range of services including public spaces, housing, interiors, reconstructions, installations, and design exhibitions. The website showcases a comprehensive portfolio of projects, indicating a professional and established presence in the local architecture market. The firm targets clients interested in architectural design and related services primarily within the Czech Republic. Technically, the website uses modern frontend technologies such as Bootstrap and jQuery, with Google Analytics and Tag Manager for user tracking. The site is accessible and well-structured but lacks privacy and cookie policies, which are important for GDPR compliance. Security headers are not detected, and no contact forms or emails are provided, limiting direct user engagement and raising minor trust concerns. WHOIS data is unavailable, which reduces domain trust verification but does not necessarily indicate illegitimacy given the professional content.

R

Robert Sedlák

robertsedlak.cz

0

The website webmaster.robertsedlak.cz represents a small personal webmaster business operated by Robert Sedlák, offering web design, hosting, domain registration, and related digital services primarily targeting individuals and small businesses. The site presents a professional and clear description of services with direct contact information, but lacks formal privacy, cookie, and terms of service policies. Technically, the website is built with basic HTML and CSS, is mobile responsive, and has good SEO fundamentals, but lacks advanced frameworks or CMS integration. Security posture is moderate due to absence of visible HTTPS confirmation and missing security headers. The WHOIS data is unavailable, which raises concerns about domain registration legitimacy and reduces overall trust. No blocking or WAF mechanisms were detected, allowing full content access.

S

Somfy

somfy.cz

0

Somfy Czech Republic operates as a prominent provider of home automation and smart home systems, specializing in motorized solutions for gates, garage doors, blinds, pergolas, and related smart devices. The company is part of the larger Somfy Group, established in 1969, and targets consumers in the Czech Republic seeking advanced home comfort and automation solutions. The website reflects a mature digital presence with comprehensive product information, support services, and multimedia content to engage customers. Technically, the website employs a custom CMS platform with modern JavaScript libraries including jQuery and TagCommander for marketing and analytics. The site is well-structured with JSON-LD schema data, SEO-optimized metadata, and responsive design elements, ensuring good user experience across devices. Hosting appears to leverage Akamai CDN services, contributing to moderate performance. From a security perspective, the site enforces HTTPS and includes some security headers, though it lacks explicit advanced headers like CSP or security.txt for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by clear privacy and cookie policies, though cookie consent mechanisms could be enhanced. Contact and support channels are available but no dedicated security incident response or data protection officer information was found. Overall, the website is professional, trustworthy, and well-aligned with business goals. The absence of WHOIS data reduces domain registration transparency but does not significantly detract from the site's legitimacy given the strong brand presence and consistent content. Strategic improvements in security headers and transparency would further strengthen the security posture.

U

Unternehmensgruppe Gretsch-Unitas

g-u.com

0

Unternehmensgruppe Gretsch-Unitas operates as a leading manufacturer and supplier of window and door technology, automatic entrance systems, and building management systems. The company serves a broad market including architects, builders, and facility managers, offering comprehensive hardware and system solutions under its GU, BKS, FERCO, and GU Automatic brands. The website reflects a mature digital presence with detailed product and service information, consistent branding, and active social media engagement. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes GDPR-compliant cookie management via Usercentrics. Security posture is solid with HTTPS and secure forms, though it lacks explicit security policies and incident response contacts. Overall, the domain appears legitimate despite missing WHOIS data, supported by professional content and branding.

SIEGENIA is a well-established manufacturing company specializing in hardware and smart systems for windows, doors, sliding doors, ventilation, and smart home integration. The website presents a professional and comprehensive digital presence with detailed product information, service offerings, and compliance disclosures. The company targets end users, business partners, and architects, positioning itself as a leader in room comfort solutions with a focus on security, energy efficiency, and smart technology. Technically, the website is built on the IMPERIA CMS platform and uses modern frontend technologies such as Bootstrap and Swiper.js. It integrates multiple analytics and marketing tools including Google Analytics, LinkedIn Insight, and Bing Ads, managed through Google Tag Manager and Usercentrics for consent compliance. The site is mobile-optimized and exhibits good SEO and accessibility practices, though some improvements in accessibility and security headers are recommended. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. It maintains a PSIRT page for vulnerability disclosures, indicating a mature security posture. However, the absence of explicit security headers and direct security contact information suggests room for enhancement. The WHOIS data is unavailable or protected, which slightly impacts trust but is not uncommon for corporate domains. Overall, the website demonstrates a strong business credibility and technical maturity with minor gaps in security and transparency. Strategic improvements in security headers, contact information, and WHOIS transparency would further enhance trust and compliance.

S

Schlotterer GmbH

schlotterer.com

0

Schlotterer GmbH is an Austrian company specializing in manufacturing and supplying exterior sun protection and insect protection products, including roller shutters, venetian blinds, insect screens, and textile sun protection. The company positions itself as the market leader in Austria for exterior sun protection, targeting professional partners such as the specialist trade and window manufacturers, as well as end customers. The website is professionally designed, multilingual, and powered by TYPO3 CMS, indicating a mature digital presence. Technical infrastructure includes modern JavaScript libraries and Matomo analytics for user tracking. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain trust assessment, but the website content and branding are consistent and professional. Overall, the site is safe, business-focused, and well-structured, though improvements in privacy compliance and security transparency are recommended.

H

heroal - Johann Henkenjohann GmbH & Co. KG

heroal.de

0

heroal - Johann Henkenjohann GmbH & Co. KG is a well-established German manufacturer specializing in high-quality aluminum building products including windows, doors, roller shutters, sun protection, roll gates, facades, and roofing systems. The company emphasizes premium 'Made in Germany' quality and holds certifications such as ISO EN 9001 and ift-Rosenheim RC 4. Their business model focuses on manufacturing and distributing products through a network of Fachpartners (specialist partners), supported by configurator tools and energy consulting partnerships. The website targets private customers, architects, and processors, reflecting a mature market position as a technological leader in aluminum processing for building products in Germany. Founded in 1874, heroal has a long heritage and a strong brand presence supported by consistent branding and trust indicators.

V

VEKA Holding

veka.cz

0

VEKA Holding operates as a leading global manufacturer specializing in high-quality plastic profile systems for windows and doors. The company targets a professional audience including window manufacturers, architects, builders, and sellers, positioning itself as a market leader in its sector. The website reflects a professional business presence with clear branding and targeted navigation. Technically, the site employs modern frontend technologies such as Nuxt.js and Vue.js, along with consent management tools like Usercentrics and Google Tag Manager for analytics and tracking. However, the absence of visible privacy and cookie policies, as well as lack of WHOIS registrant data, limits transparency and compliance visibility. Security posture is moderate with no detected security headers and unknown SSL configuration, indicating room for improvement in security best practices. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security measures.

C

Cetris s.r.o.

cetrishobby.cz

0

Cetris s.r.o. operates the website www.cetrishobby.cz, promoting and selling CETRIS® HOBBY boards designed for hobbyists and small construction projects. The company targets DIY enthusiasts and gardeners in the Czech Republic, offering a niche product with detailed pricing, project ideas, and direct factory sales. The website is well-structured, visually consistent, and provides clear contact information and social media links, supporting a professional business presence. Technically, the site uses Google Analytics and Google Maps APIs, with responsive design and moderate performance. Security posture is adequate but could be improved by adding security headers and explicit privacy policies. The absence of WHOIS data reduces domain trustworthiness, but the website content and branding suggest a legitimate business. Overall, the site is safe for general audiences and provides valuable content for its target market.

H

HP TRONIC, s.r.o.

valachy.cz

0

Resort Valachy is a well-established hospitality business operating in the Beskydy region of the Czech Republic, offering hotel accommodations, wellness and spa services, golf, and various leisure activities year-round. The website presents a professional and comprehensive digital presence with detailed information about services, events, and booking options. Technically, the site uses modern JavaScript libraries and tracking tools, with good mobile optimization and user experience. Security posture is moderate with HTTPS usage and cookie consent mechanisms, though explicit security headers are not detected in the provided data. The absence of WHOIS data limits domain trust assessment, but the business information and online presence indicate legitimacy. Overall, the site is suitable for general audiences, with no adult or questionable content detected.

A

AiVision, s.r.o.

kreativni-tvoreni.net

0

The website kreativni-tvoreni.net is a Czech language platform dedicated to creative crafting tutorials and hobby guides, covering areas such as candle making, soap making, stained glass, resin art, and jewelry crafting. It targets hobbyists and creative individuals seeking detailed instructions and supplies. The site is supported by AiVision, s.r.o., a web design company, and uses the AiPublisher CMS platform. The business model combines content provision with e-commerce through a linked crafting components shop. Technically, the site uses jQuery and jQuery UI libraries with custom CSS for responsive design, offering a moderate performance and basic accessibility. However, the site lacks visible HTTPS enforcement and security headers, which lowers its security posture. No privacy or cookie policies are present, and no contact information is provided, which impacts compliance and business credibility. The domain WHOIS data is unavailable, raising concerns about domain registration legitimacy. Overall, the site is functional and content-rich but requires improvements in security, privacy compliance, and transparency to enhance trust and reduce risk.

I

Isopan

isopan.com

0

Isopan is a well-established Italian manufacturer specializing in insulating sandwich panels for roofs and walls, operating under the Manni Group umbrella. The company offers innovative and sustainable building solutions, targeting construction professionals such as architects, engineers, and contractors. Their product portfolio includes premium systems like FORTELIA and ADDMIRA, supported by certifications such as LEED and FM APPROVED, indicating a strong commitment to quality and sustainability. The website is professionally designed, mobile-optimized, and incorporates modern technologies including WordPress CMS, Google Tag Manager, and Iubenda for cookie consent management. Security measures include HTTPS enforcement and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is supported by a cookie consent mechanism, but no explicit privacy policy or terms of service were detected in the provided content. WHOIS data confirms a long-standing domain registered in Italy with privacy protection, consistent with the business profile. Overall, the digital presence reflects a mature and credible industrial manufacturer with room for enhanced transparency and security documentation.

C

Cetris

cetris.cz

0

Cetris is a large European manufacturer specializing in cement-bonded particle boards for the construction industry. Their website presents a comprehensive product catalog, usage guides, and contact information targeting construction professionals and hobbyists. The technical infrastructure uses modern JavaScript libraries and frameworks, ensuring a responsive and user-friendly experience. Security posture is moderate with HTTPS implied but lacks explicit security headers and privacy policies. The absence of WHOIS data limits domain trust assessment, but the website content and certifications suggest a legitimate business. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing incident response information.

O

OKNOTHERM spol. s r.o.

oknotherm.cz

0

OKNOTHERM spol. s r.o. is a well-established Czech manufacturer specializing in plastic windows, euro windows, doors, shading solutions, and related accessories. With over 33 years in the market and a large customer base, the company positions itself as a trusted provider of high-quality, customized products. The website reflects a professional and consistent brand image, targeting residential and commercial customers seeking durable and tailored window and door solutions. Technically, the website employs modern frameworks such as Bootstrap and integrates Google services for analytics and marketing, ensuring a responsive and user-friendly experience. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks some advanced security headers and explicit incident response information. Overall, the site is secure, compliant with GDPR, and demonstrates good privacy practices through cookie consent mechanisms and a comprehensive privacy policy. The absence of public WHOIS data indicates privacy protection, which is justified for this business type. The website is trustworthy and professionally maintained, with room for improvement in security transparency and contact email availability.

I

IVF Zlín Czech Republic, s.r.o.

ivf-zlin.cz

0

IVF Zlín Czech Republic, s.r.o. operates a specialized reproductive medicine and gynecology clinic based in Zlín, Czech Republic. The clinic offers a comprehensive range of services including IVF treatments, egg and sperm donation, fertility preservation, and gynecological care. With a history dating back to 2000 and over 7000 children born through their assisted reproduction techniques, the clinic holds a strong regional market position. Their business model integrates medical services with hospitality offerings such as an on-site hotel and pharmacy, enhancing patient comfort and convenience. Technically, the website employs modern web technologies including jQuery, Google Analytics, and Google Tag Manager, ensuring a responsive and user-friendly experience. The site is well-structured with good SEO practices and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. From a security and compliance perspective, the site demonstrates GDPR awareness with a comprehensive privacy policy and cookie consent mechanism. However, no explicit incident response or vulnerability disclosure policies were found. WHOIS data is unavailable due to privacy protection, which is typical for healthcare providers. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing security headers, publishing clear security and incident response policies, and implementing a vulnerability disclosure program to further strengthen trust and compliance.

H

HP TRONIC, s.r.o.

hotelprior.cz

0

Hotel Prior & Energy Spa is a modern four-star hotel located in the center of Zlín, Czech Republic, offering upscale accommodation, a large spa facility with panoramic views, gastronomy, and conference services. The business targets both leisure and business travelers seeking relaxation and event spaces. The website demonstrates a professional digital presence with comprehensive content, clear navigation, and multilingual support via Google Translate. The technical infrastructure includes modern JavaScript libraries, marketing tools, and analytics services, indicating a mature digital marketing approach. Security posture is good with HTTPS enforced and cookie consent mechanisms implemented; however, explicit security headers and incident response information are absent. The lack of WHOIS data limits domain trust assessment but the overall website and business information appear legitimate and professional.

T

Tomáš Baťa

tomasbata.org

0

The website tomasbata.org serves as an informational and educational portal dedicated to the life and legacy of Tomáš Baťa, a prominent Czech entrepreneur and founder of the Baťa shoe company. It provides biographical data, bibliographies, galleries, speeches, and educational modules aimed at a general audience interested in history and entrepreneurship. The site is positioned as a niche cultural resource with a small-scale operational footprint and is affiliated with academic institutions such as the Tomas Bata University library. Technically, the site is built on WordPress 6.4.2 with common plugins for galleries and sliders, and uses Google Analytics with IP anonymization for minimal user tracking. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting details are not explicit but DNS servers suggest academic or institutional hosting. From a security perspective, the site uses HTTPS with a valid SSL certificate and domain transfer protections. However, it lacks DNSSEC, security headers, and explicit security or incident response policies. Privacy compliance is limited, with no cookie consent mechanism or comprehensive privacy policy detected. The site does not expose sensitive data or vulnerable libraries but could improve its security posture by implementing recommended best practices. Overall, the website is trustworthy, professional, and safe for general audiences, with a good balance of content quality and business credibility. Strategic improvements in privacy compliance, security headers, and accessibility would enhance its maturity and reduce potential risks.

The website batovskydomek.cz serves as an informational portal for the Baťovský domek exhibition, a cultural and architectural heritage site located in Zlín, Czech Republic. The site is managed by aArchitektura, spolek, and provides visitors with exhibition details, reservation contacts, and downloadable materials. The business operates in the cultural heritage and architecture niche, targeting general audiences interested in local history and architecture. The domain age and WHOIS data align well with the business profile, indicating legitimacy and consistency. Technically, the website employs modern frontend technologies including Bootstrap 5, jQuery, Google Fonts, and Google Analytics for tracking. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. No CMS is detected, and hosting appears to be provided by Active24. The site is accessible without WAF or blocking mechanisms. From a security perspective, the site uses HTTPS (implied) but lacks visible security headers such as CSP or HSTS. There are no privacy or cookie policies present, which is a compliance gap especially under GDPR. No forms are present, reducing data collection risks. Google Analytics is used without visible consent mechanisms, indicating moderate user tracking but poor privacy compliance. Overall, the website is functional and provides basic information with moderate trustworthiness. Key improvements include adding privacy and cookie policies, implementing security headers, and enhancing privacy compliance. These steps will improve user trust and security posture while aligning with regulatory requirements.

Z

Zlínský kreativní klastr

kreativnizlin.cz

0

Kreativní Zlín operates as a regional cluster organization dedicated to fostering creative industries within the Zlín region of the Czech Republic. Established in 2016, it brings together stakeholders from public, private, nonprofit, and educational sectors to collaborate and develop the creative economy. The website serves as an informational portal highlighting the cluster's mission, vision, projects, and coworking opportunities, supported by local government entities and European initiatives.

N

Neznámá země

neznamazeme.cz

0

Neznámá země is a well-established cultural and travel festival based in the Czech Republic, focusing on travel, cultural exchange, and photography. The website presents detailed event programs and highlights, targeting travelers and culture enthusiasts primarily in the Czech region. The festival is organized by Piranhafilm and the Statutární město Zlín with support from Otrokovice, reflecting a regional cultural initiative with a long history since 2003. Technically, the website is built on WordPress with modern plugins for SEO and social media integration, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and some security best practices, but lacks explicit security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

T

Technologické inovační centrum s.r.o.

ticzlin.cz

0

Technologické inovační centrum s.r.o. (TIC) is a regional innovation and business development center based in Zlín, Czech Republic. The company focuses on supporting entrepreneurs, schools, and regional development through various programs including education, business incubation, financing facilitation, and smart regional initiatives. TIC positions itself as a key innovation hub in the Zlín region, leveraging partnerships with local government and educational institutions. The website is professionally designed, multilingual, and provides comprehensive information about services, events, and projects. Technically, the site runs on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The absence of WHOIS data is a notable gap, reducing domain trustworthiness, but the overall digital presence and business information support legitimacy. Strategic recommendations include enhancing security policies, publishing incident response information, and verifying domain registration details.

K

Kon-Tiki museet

kon-tiki.no

0

Kon-Tiki museet is a specialized cultural museum located in Norway, dedicated to the life and expeditions of Thor Heyerdahl. The museum offers exhibitions, educational programs, and events focused on Heyerdahl's voyages and related anthropological explorations. It targets a general audience interested in history and exploration, operating primarily as a small-sized institution with a clear focus on cultural heritage. Technically, the website is built on the Squarespace platform, leveraging modern web technologies and integrating tracking tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website enforces HTTPS with HSTS and uses reCAPTCHA to protect forms, but lacks some advanced security headers and does not publish explicit security or privacy policies. The absence of WHOIS data due to privacy protection is common and does not detract from the site's legitimacy. Overall, the website is trustworthy and professionally maintained, though it would benefit from enhanced privacy and security disclosures.

Z

O projektu - ZLÍN DESIGN

zlin-design.cz

0

Zlín Design Market is a well-established cultural event platform based in the Czech Republic, focusing on promoting local artists, designers, and craftsmen with an emphasis on sustainability and community engagement. The website serves as an informational and promotional tool for the event, targeting a broad audience including families, students, and professionals interested in art and design. The business model revolves around event organization and cultural promotion, with partnerships from local institutions enhancing its credibility. Technically, the website uses a traditional tech stack including jQuery and Google Analytics, likely running on ExpressionEngine CMS. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. Security posture is basic with HTTPS enabled but missing important security headers and explicit privacy and cookie policies, indicating room for improvement in compliance and protection. From a security perspective, the site shows no signs of blocking or WAF interference, but lacks comprehensive security best practices such as CSP and HSTS headers. The absence of privacy and cookie policies also suggests GDPR compliance gaps. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy measures to improve user trust and regulatory compliance. The domain WHOIS data aligns well with the website's claims, showing consistent registration details and appropriate domain age. No suspicious patterns or privacy protections are present, supporting the legitimacy of the site.

FOLDINA.cz is a professional freelance web development service operated by Lukáš Foldina, a developer with two decades of experience. The website showcases a portfolio of custom web and online system projects, targeting businesses needing tailored digital solutions. The business model is focused on freelance development with a strong emphasis on e-commerce and enterprise system integrations. The market position is niche, serving clients requiring bespoke software and web presence. Technically, the website employs modern front-end technologies including HTML5, CSS3, JavaScript, jQuery, and Bootstrap, with additional libraries for UI effects and galleries. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features and SEO optimization. No CMS or hosting provider details are evident. From a security perspective, the site lacks visible HTTPS confirmation and security headers, which are critical for protecting user data and ensuring trust. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. The absence of WHOIS data limits domain legitimacy verification, though the website content and business information appear professional and credible. Overall, the site presents a solid business offering but requires improvements in security posture, privacy compliance, and domain transparency to enhance trust and reduce risk.

G

GTS ALIVE s.r.o.

isic.cz

0

GTS ALIVE s.r.o. operates the ISIC.cz website, providing internationally recognized student and youth discount cards in the Czech Republic. The company has a strong market position with a history dating back to 2000, offering various card types including ISIC Scholar and teacher cards. The website is well-structured, targeting students and young people, and provides comprehensive information about its services and benefits. Technically, the site employs modern JavaScript libraries and is hosted on Amazon AWS, ensuring reliable performance and scalability. Privacy compliance is robust, with clear cookie consent mechanisms managed by Cookiebot and detailed privacy policies in Czech. Security posture is good, with HTTPS enforced and no critical vulnerabilities detected, although some security headers could be improved. Overall, the site demonstrates professionalism and trustworthiness, with transparent advertising and tracking practices. No contact emails or phone numbers were explicitly found in the analyzed content, and no terms of service or explicit security policies were detected.

K

Korálkárna Rooya

rooya.cz

0

Korálkárna Rooya is a Czech Republic based e-commerce retailer specializing in materials for beadwork, wirework, and jewelry crafting. Established since 2005, it serves hobbyists and crafters with a wide range of products including beads, jewelry components, crafting tools, and instructional content. The website is professionally designed with good navigation and mobile optimization, leveraging the Shoptet e-commerce platform and integrating multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Facebook SDK. Security posture is adequate with HTTPS enforced and secure login forms, though improvements can be made by adding explicit security headers and updating legacy libraries. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS registration data reduces domain trustworthiness, warranting further investigation. Overall, the site presents a trustworthy and professional online presence in its niche market.

Q

Qítko korálky

qitko-koralky.cz

0

The website www.qitko-koralky.cz operates as a Czech e-commerce platform specializing in beads, components, and materials for jewelry making. It targets hobbyists and crafters within the Czech Republic, offering a wide range of products including wooden beads, glass beads, metal components, and tools. The site is built on the BohemiaSoft e-commerce platform and uses a variety of JavaScript libraries, some of which are outdated, indicating a need for modernization. Contact information is clearly provided, including a Czech phone number and an email address linked to a related domain, suggesting a small but legitimate business presence. Technically, the site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices appear adequate with proper meta tags and structured navigation. However, the use of outdated jQuery versions introduces potential security vulnerabilities. The site implements a cookie consent banner with detailed cookie categorization, reflecting some level of privacy compliance, though no explicit privacy policy page was found. Security posture is moderate; while HTTPS and CSRF protections are implied, the absence of security headers and outdated libraries reduce the overall security score. WHOIS data is unavailable, which raises concerns about domain registration transparency but does not necessarily indicate malicious intent. Overall, the site is functional and serves its niche market but would benefit from technical and security improvements. Strategic recommendations include updating all JavaScript libraries to current secure versions, implementing comprehensive security headers, publishing a clear privacy policy, and conducting regular security audits. These steps will enhance trust, compliance, and resilience against potential threats.