Security Directory

M

mBank S.A.

mbank.pl

0

mBank S.A. is a major Polish retail bank offering a comprehensive range of financial products including personal accounts, loans, deposits, insurance, and investment services. The website targets individual customers in Poland and presents a professional, well-structured digital presence with strong branding and consistent messaging. The bank leverages modern web technologies such as React and Next.js to deliver a fast, mobile-optimized experience. Security is robust with HTTPS, security headers, and privacy policies in place, although WHOIS data is unavailable which is unusual but likely due to registry policies. Overall, the site reflects a mature digital infrastructure and a strong market position in the Polish banking sector.

T

Tatry mountain resorts, a.s.

skiareal.cz

0

Špindlerův Mlýn is a prominent ski resort in the Czech Republic, operated by Tatry mountain resorts, a.s., offering extensive winter and summer tourism services including skiing, accommodation, ski school, and events. The website is well-structured, professionally designed, and provides comprehensive information and online services such as skipass purchasing via GOPASS. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and integrates cookie consent and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site presents a trustworthy and professional digital presence for a large hospitality business.

M

Město Špindlerův Mlýn

mestospindleruvmlyn.cz

0

Město Špindlerův Mlýn operates an official municipal tourism website focused on promoting the mountain town in the Krkonoše region. The site provides comprehensive information about local events, activities such as skiing, hiking, and cycling, as well as accommodation and gastronomy options. It targets tourists and visitors seeking outdoor and family-friendly experiences. The business model centers on tourism promotion and community engagement, positioning itself as a regional hub for visitors. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates analytics and marketing tools such as Google Analytics 4, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized with good SEO practices and a user-friendly design. However, the CMS is custom or unknown, and performance is moderate. From a security perspective, the site enforces HTTPS, uses consent management for cookies, and includes CSRF protection on forms. While no critical vulnerabilities were detected, the absence of security headers and incident response information suggests room for improvement. Privacy compliance is strong with GDPR policies and cookie consent mechanisms in place. Overall, the website is professional, trustworthy, and well-suited for its purpose. The lack of WHOIS data is a concern for domain legitimacy verification but does not detract from the site's operational quality. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information.

M

Mekr´s

mekrsgroup.cz

0

Mekr´s Group is a Czech-based parent company overseeing several subsidiary brands specializing in various industrial and commercial sectors. The company positions itself as an innovative leader providing high-quality products and services, fostering long-term partnerships. The website is professionally designed with clear navigation and multilingual support, targeting industrial and commercial customers primarily in the Czech Republic. The business model focuses on B2B supply and service provision across manufacturing, retail, and transportation sectors. Technically, the website leverages WordPress with Elementor, Yoast SEO, and Google Analytics, reflecting a modern and mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and incident response details are absent. Overall, the site demonstrates good compliance with GDPR and privacy standards, though WHOIS data is unavailable, limiting full domain legitimacy verification.

Z

Základní škola a Mateřská škola Police nad Metují

zspolice.cz

0

Základní škola a Mateřská škola Police nad Metují is a public educational institution in the Czech Republic providing primary and preschool education. The website serves as an information hub for parents, students, and the local community, offering details on school schedules, projects, cafeteria services, and contact information. The institution appears to be a small-sized local school focused on serving its community with educational and childcare services. Technically, the website is built on OctoberCMS, utilizing modern web technologies such as Bootstrap and Bootstrap Icons. The site is mobile responsive and well-structured, with combined CSS and JavaScript assets to optimize loading. However, performance is moderate, and accessibility features are basic. The site uses HTTPS but lacks visible security headers, which could be improved to enhance security posture. From a security perspective, the website shows good basic practices such as HTTPS usage and no visible exposed sensitive data. However, it lacks a cookie consent mechanism and explicit security policies or incident response contacts. The absence of WHOIS data limits domain registration transparency, though the website content and domain usage strongly indicate legitimacy. No vulnerabilities or malicious content were detected. Overall, the website is professional, trustworthy, and serves its educational purpose well. Strategic improvements in security headers, privacy compliance (cookie consent), and domain registration transparency would enhance its security and compliance posture.

The website www.mstrutnov.cz serves as the official online presence for the municipal kindergartens in Trutnov, Czech Republic. It provides detailed information about multiple kindergarten locations, contact details, and services aimed primarily at parents and guardians. The site is positioned as a local government educational resource, offering transparency and communication channels for the community it serves. The business model is focused on public preschool education with additional support services such as special pedagogy and project management. Technically, the website employs a traditional tech stack including jQuery, Bootstrap, and Font Awesome, with a custom or local CMS platform. While functional and moderately optimized, the site uses outdated JavaScript libraries and lacks advanced mobile responsiveness and accessibility features. Security posture is basic with HTTPS usage and no visible security headers or advanced protections. Privacy compliance is partially met with a privacy policy page but lacks cookie consent mechanisms despite using Google Analytics tracking. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact information appear legitimate and consistent with a municipal institution. Overall, the site is a reliable informational resource but would benefit from technical and security modernization.

M

MMN, a.s.

nemjil.cz

0

MMN, a.s. operates as a regional hospital in Jilemnice, Czech Republic, providing a broad range of healthcare services including emergency care, radiology, blood donation, and pharmacy services. The website positions the hospital as a modern and future-oriented healthcare provider emphasizing quality, safety, specialization, and interdisciplinary cooperation. The target audience includes patients, healthcare professionals, and the general public seeking medical services in the region. The hospital maintains an active online presence with social media channels and an e-shop pharmacy partner.

Z

ZŠ a MŠ Horní Maršov

zshornimarsov.cz

0

ZŠ a MŠ Horní Maršov is a local educational institution in the Czech Republic providing elementary and kindergarten education. The website serves as an information portal for parents, students, and the local community, offering details on school activities, events, meal management, and administrative documentation. The site is well-structured with clear navigation and updated content reflecting active school life. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Vue.js, and other libraries, ensuring a responsive and user-friendly experience. However, there is room for improvement in performance optimization and accessibility features. Security posture is moderate; HTTPS is assumed but no security headers were detected, and no explicit privacy or security policies are present. The absence of WHOIS data reduces domain trustworthiness, though the website content and contact details appear legitimate. Overall, the site is suitable for its audience but would benefit from enhanced security and compliance measures.

S

STACHEMA CZ s.r.o.

stachema.cz

0

STACHEMA CZ s.r.o. is a well-established Czech company specializing in the supply of construction chemicals and technological solutions for professional builders. With a market presence since 1998 and over 650 sales points across the Czech Republic, it holds a leading position in its sector. The website reflects a professional B2B and B2C e-commerce model, supported by a modern technical infrastructure including Vue.js and React frameworks, and integrated analytics via Google Tag Manager. The company is part of the DEK group, enhancing its market credibility. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the website is trustworthy, well-branded, and compliant with GDPR requirements.

Z

Základní škola Komenského, Trutnov

zskomtu.cz

0

Základní škola Komenského, Trutnov operates as a local primary educational institution serving students and the community in the Czech Republic. The website provides comprehensive information about the school's educational offerings, extracurricular activities, and community engagement, targeting parents, students, and local residents. The site integrates with external platforms such as EduPage for school management and sports reservation systems, reflecting a moderate level of digital maturity. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and the Nette Framework, with responsive design and accessibility considerations. The presence of cookie consent mechanisms and GDPR-compliant privacy policies indicates a strong commitment to privacy and regulatory compliance. However, the absence of WHOIS data and some security headers suggests areas for improvement in transparency and security hardening. Security posture is generally good with HTTPS enforced and secure form validation, but the lack of explicit security headers and incident response contact details limits the overall security maturity. No vulnerabilities or malicious content were detected. The website is safe for general audiences and does not contain adult or questionable content. Overall, the website is professional, trustworthy, and well-maintained, though the missing WHOIS data and some security best practices should be addressed to enhance credibility and security assurance.

E

E-shop Kafe Křižka

kafekrizka.cz

0

E-shop Kafe Křižka is a small, local Czech specialty coffee roastery operating an e-commerce platform to sell coffee, teas, coffee machines, and accessories. The website is professionally designed with clear navigation and good content quality, targeting coffee enthusiasts and general consumers interested in specialty coffee. Technically, the site is built on the Shoptet e-commerce platform, uses jQuery and Facebook Pixel for marketing and analytics, and implements HTTPS with CSRF protection, indicating a solid digital infrastructure. Security posture is good but could be improved by adding security headers and explicit incident response contacts. Privacy compliance is evident with a comprehensive privacy policy and cookie consent mechanism. The absence of WHOIS data limits domain trust assessment, but the website's professional presentation and contact transparency support its legitimacy. Overall, the site is safe, trustworthy, and well-suited for its business purpose.

D

Dlabka Distillery

dlabka.cz

0

Dlabka Distillery operates a professional e-commerce website specializing in the sale of distilled spirits such as gin, whisky, and liqueurs. The business targets adult consumers primarily in the Czech Republic, offering a curated selection of products with clear pricing and stock information. The website demonstrates a mature digital presence with modern technologies including Google Analytics 4 and Facebook Pixel for marketing and analytics purposes. The platform is built on the Upgates e-commerce system and uses the Nette framework for form validation and other backend functionalities. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although HTTP security headers are not visibly configured. The absence of WHOIS data limits domain trust assessment, but the overall site professionalism and content quality suggest a legitimate and trustworthy business. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to strengthen trust and compliance.

T

Domů | Tvorim značky

tvorimznacky.cz

0

The website www.tvorimznacky.cz appears to be a small business or personal site built on the Wix platform. The lack of visible business content, contact information, and privacy policies suggests it is either under development or minimally maintained. The technical infrastructure relies on Wix's standard scripts and polyfills, indicating a basic digital maturity level. Security posture is weak due to absence of HTTPS confirmation, security headers, and no visible compliance documentation. Overall, the site presents a low trust profile with limited business credibility and minimal content quality.

Bovys s.r.o is a Czech Republic based medium-sized wholesale distributor specializing in fresh fruit and vegetables. Established in 1994, the company supplies a wide range of clients including retail stores, restaurants, hotels, school canteens, and other gastronomy operations. It holds a leading position as a supplier for school projects such as 'Ovoce a zelenina do škol' and 'Mléko do škol'. The company emphasizes quality control through HACCP systems and sustainability initiatives including a photovoltaic power installation co-financed by the EU. Technically, the website is built on WordPress with modern plugins and includes security features like HTTPS and Google reCAPTCHA. However, the absence of WHOIS registration data raises some concerns about domain legitimacy. Overall, the website is professional, well-structured, and compliant with privacy regulations, but could improve security headers and domain transparency.

GASTRO PRODUCTION s.r.o. is a Czech-based manufacturing company specializing in stainless steel catering equipment and custom project solutions for the hospitality industry. With over 35 years of experience and a strong presence in the EU market, the company offers a broad portfolio including cooling, heating, and neutral equipment. Their business model focuses on delivering tailored solutions with a commitment to quality and customer satisfaction. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting business clients in hospitality and catering sectors. Technically, the site is built on WordPress using modern libraries and frameworks such as Bootstrap and jQuery, providing a moderate performance and good mobile optimization. However, there is room for improvement in accessibility and SEO optimization. Security posture is basic with HTTPS enabled but lacking important security headers and cookie consent mechanisms, which may affect compliance with privacy regulations. No incident response or security policy information is provided, indicating potential gaps in security governance. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the company.

L

Leoš Kohoutek

sur-ron-moto.cz

0

The website www.sur-ron-moto.cz represents a small Czech business specializing in the retail and servicing of SUR-RON electric motorcycles, including models such as Light Bee, Ultra Bee, and Storm Bee. It provides product information, parts and service options, downloadable documents, dealer locations, rental services, and an integrated e-commerce shop hosted on a related subdomain. The business appears to be an authorized importer or dealer for SUR-RON motorcycles in the Czech market, targeting consumers interested in electric off-road motorcycles. The website content is professionally presented with consistent branding and good navigation, supporting a positive user experience.

L

Luděk Vašek

bike-sport-shop.cz

0

Bike Sport Shop is a Czech Republic-based retail business specializing in cycling, running, cross-country skiing, and outdoor equipment. With over 25 years of experience, the company operates both a well-stocked physical store in Chrudim and an e-commerce platform offering a wide range of bicycles, e-bikes, sportswear, and accessories. The business emphasizes customer service, professional advice, and after-sales support including servicing and repairs. Their market position is that of a trusted local specialist with a loyal customer base and positive reputation as evidenced by external review platforms like Heureka.cz. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and responsive design frameworks such as Foundation. The site is mobile-optimized and provides a good user experience with clear navigation and product presentation. Payment processing is handled securely via GoPay with multiple payment options displayed. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. From a security perspective, the site uses HTTPS and enforces cookie consent but lacks visible security headers such as CSP or HSTS, which could be improved. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain reduces the trust score somewhat, but the website content and business information appear legitimate and professional. Overall, the website is a solid e-commerce platform with good content quality, technical implementation, and privacy compliance. Strategic improvements in security headers and domain registration transparency would enhance trust and security posture further.

M

Miroslav Lörincz

snubniprstenyjinak.cz

0

The website snubniprstenyjinak.cz represents a small artisan jewelry business operated by Miroslav Lörincz, specializing in original and unconventional wedding rings handcrafted with personal inspiration from couples. The business targets couples seeking unique wedding rings with a personal touch, offering services such as personal consultations, trial silver models, and registered hallmark authenticity. The website content is primarily in Czech with an English version available, reflecting a localized market focus in the Czech Republic. Technically, the website uses basic web technologies including HTML, CSS, JavaScript, and jQuery. It is hosted by a Czech registrar and hosting provider REG-ZONER. The site shows moderate performance and basic mobile optimization but lacks modern security features such as HTTPS and security headers. There is no evidence of CMS usage or advanced frameworks, indicating a simple custom-built site. From a security perspective, the site lacks HTTPS, privacy and cookie policies, and contact information for security or incident response. No security headers or vulnerability disclosures are present. The absence of these elements indicates a low security maturity level and potential compliance gaps with GDPR and other regulations. No tracking or analytics scripts are detected, suggesting minimal user data collection. Overall, the website is functional and provides good content quality and user experience for its niche artisan business. However, it requires significant improvements in security posture, privacy compliance, and contact transparency to enhance trustworthiness and regulatory adherence. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, improving mobile responsiveness, and providing clear contact information.

B

BOMA Milevsko

bomamilevsko.cz

0

BOMA Milevsko is a well-established Czech company specializing in heating and plumbing services, including installation of boilers, heat pumps, solar systems, and ventilation with heat recovery. Founded in 1993, the company has a strong regional presence with over 30 years of experience and a customer base exceeding 1000 clients, particularly known for assisting with Kotlíkové dotace subsidies. Their business model combines service provision with retail and wholesale sales, supported by an e-shop and a bathroom studio for customer consultations. Technically, the website is built on WordPress using the Mioweb theme, hosted by websupport.cz. It employs modern web technologies such as jQuery and Google Fonts, and is mobile-optimized with good SEO practices. The site includes a cookie consent mechanism compliant with GDPR, but lacks some advanced security headers and explicit privacy/security policy pages. From a security perspective, the site uses HTTPS and has no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and incident response contact information, which are recommended for improved security posture. No WAF or blocking mechanisms were detected, and the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but could benefit from enhanced security practices and more transparent contact information to further strengthen user trust and security readiness.

J

Junák – český skaut, středisko Sedmička Milevsko

junakmilevsko.net

0

Junák – český skaut, středisko Sedmička Milevsko is a small non-profit scouting organization based in Milevsko, Czech Republic. The organization provides a variety of scouting programs for children and youth, focusing on experiential learning, character development, and community engagement. Their offerings include regular meetings, outdoor activities, camps, and social events, supported by a team of named leaders and volunteers. The website reflects a well-maintained digital presence with clear branding and comprehensive contact information, targeting families and youth interested in scouting activities. Technically, the website is built on WordPress 6.3.7 with common plugins such as Easy Facebook Likebox and uses jQuery. It integrates social media feeds and Google Calendar for event scheduling, enhancing user engagement. The site is mobile-optimized and accessible, with good SEO practices. However, it lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site uses HTTPS with good SSL configuration but lacks security headers and formal security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the content or scripts. The absence of WHOIS data for the domain is notable and warrants verification to confirm domain registration legitimacy. Overall, the website is professional and trustworthy for its intended audience but should improve privacy compliance and domain registration transparency to enhance trust and security posture.

1

1188

1188.cz

0

1188.cz is a Czech Republic-based telecommunications service provider specializing in 24/7 telephone directory assistance and information services. The company offers a nonstop hotline (1188) that helps users find phone numbers, business hours, traffic updates, and service providers. The website is built on Drupal 11 and employs modern web technologies to deliver a responsive and user-friendly experience. While the site is professionally designed and content-rich, it lacks explicit privacy and cookie policies, as well as security incident response information. The domain is well-established since 2006, indicating a stable business presence. Security posture is moderate with HTTPS usage but missing security headers and vulnerability disclosures.

S

Svazek obcí Milevska

sdruzeni-milevsko.cz

0

Svazek obcí Milevska is a regional association of municipalities in the Czech Republic providing official information, shared services, and community engagement for its member municipalities. The website serves as an official portal offering access to documents, event calendars, contact details, and news updates relevant to local governance and residents. Technically, the site employs a modern JavaScript stack including jQuery, Bootstrap, Swiper, and Leaflet for mapping, hosted likely on a CMS platform called Galileo. The site is mobile-optimized and provides a cookie consent mechanism, reflecting some privacy awareness. Security posture is generally good with HTTPS enforced, but lacks some security headers and formal privacy policy documentation. WHOIS data is missing, which reduces domain trust but the website content and contact information appear legitimate and consistent with a government association. Overall, the site is functional, professional, and trustworthy for its intended audience.

M

Městys Sepekov

sepekov.cz

0

Městys Sepekov operates an official municipal website serving the local community of Sepekov in the Czech Republic. The site provides comprehensive information about local government services, cultural events, public notices, and community resources. It targets residents and visitors seeking official municipal information and services. The website is well-structured with clear navigation and up-to-date content, reflecting a professional government entity. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Swiper.js, and Mmenu.js, built on a CMS platform likely named Lego2. The site is mobile-optimized, accessible, and uses HTTPS to secure communications. While some security headers are not explicitly detected, the site follows good practices such as cookie consent and no visible sensitive data exposure. From a security perspective, the site shows a mature posture with no evident vulnerabilities or exposed sensitive information. GDPR compliance is indicated by a privacy statement and cookie consent mechanism. The WHOIS data is unavailable due to EURid privacy policies, but the domain and website content align with a legitimate municipal government entity. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Recommendations include enhancing security headers and maintaining up-to-date third-party libraries to further improve security and compliance.

O

Obec Opařany

oparany.cz

0

The website www.ou.oparany.cz serves as the official online presence for the municipality of Opařany in the Czech Republic. It provides residents and visitors with essential information about the local government, services, cultural events, and contact details. The site is positioned as a small government entity portal focused on transparency and community engagement. Technically, the site is built on the WRS content management system and utilizes several JavaScript libraries including jQuery, Lightslider, and Bootstrap, although some libraries are outdated which may pose security risks. The site is moderately optimized for mobile devices and accessibility but lacks advanced SEO and modern performance enhancements. Security posture is basic; HTTPS is used, and CSRF tokens are present in forms, but no security headers were detected and outdated libraries increase vulnerability risk. Privacy and cookie policies are present but basic, with no explicit incident response or security policy information. Contact information is comprehensive and clearly presented, enhancing business credibility. WHOIS data is unavailable, which reduces trustworthiness from a domain registration perspective. Overall, the site is functional and safe for general audiences but would benefit from technical and security improvements to enhance trust and compliance.

O

Obecní úřad Kovářov

kovarov.cz

0

Obec Kovářov operates an official municipal website serving the local community and visitors with comprehensive information about the municipality, including news, official announcements, event calendars, and contact details. The site targets residents and stakeholders interested in local governance and community activities. The business model is public service-oriented, providing transparency and accessibility to municipal resources. The website is well-branded and consistent with government sector standards, reflecting a small-sized municipal entity in the Czech Republic with a long historical background dating back to 1220. Technically, the website employs a modern JavaScript stack including jQuery, Bootstrap, Swiper.js, and Mmenu.js, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible, with good SEO practices and a custom CMS platform likely provided by Galileo Corporation. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were found in the content. The absence of WHOIS data limits domain trust verification, but the official nature of the site and presence of contact information mitigate concerns. Overall, the security posture is adequate but could be improved with additional headers and incident response disclosures. The overall risk assessment is low, with recommendations to enhance privacy policy visibility, implement security headers, and publish vulnerability disclosure information to strengthen trust and compliance. The site is safe for general audiences and does not contain any adult or questionable content.

M

Město Jistebnice

jistebnice.cz

0

Město Jistebnice operates an official municipal website serving the local population and visitors with news, events, public notices, and contact information. The site positions itself as a trusted source for local government information in the Czech Republic. Technically, the website employs a traditional web stack including jQuery, Bootstrap, and various UI libraries, managed via the WRS content management system. While the site is accessible and mobile-optimized with good content quality, it uses an outdated jQuery version and lacks visible security headers, which could pose security risks. The site enforces HTTPS and includes a cookie consent mechanism, indicating some level of privacy compliance, though no explicit privacy policy page was found. The absence of WHOIS data for the domain reduces trustworthiness from a domain registration perspective, but the presence of official contact details and consistent branding supports legitimacy. Overall, the website is functional and professional but would benefit from technical and security updates.

O

Obec Chyšky

chysky.cz

0

Obec Chyšky operates as the official municipal government website for the Chyšky municipality in the Czech Republic. It provides residents and visitors with comprehensive information about local government activities, cultural events, public notices, and community services. The website is designed to serve as a central hub for municipal communication and transparency. Technically, the site employs modern web technologies including jQuery, Bootstrap, and Swiper, ensuring a responsive and accessible user experience. The presence of privacy and cookie policies indicates attention to regulatory compliance, particularly GDPR. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and incident response information, which could be improved. The absence of WHOIS data is a notable anomaly, potentially due to registry policies, but the website content and contact details strongly support its legitimacy as a government entity. Overall, the site is well-structured, trustworthy, and serves its intended audience effectively.

Město Milevsko operates an official municipal website serving residents and visitors with comprehensive information about local government services, events, public notices, and administrative contacts. The site features a reservation system for official documents and maintains active social media channels. The presence of ISO 50001 certification indicates a commitment to energy management standards. Technically, the website employs modern frameworks such as Foundation and jQuery, integrates Google Analytics for visitor tracking, and enforces HTTPS with a Content Security Policy header. Accessibility and mobile responsiveness are well addressed, providing a good user experience. Security posture is solid but could be enhanced with additional headers and policies. Privacy compliance is supported by a cookie consent banner and a privacy statement, though no terms of service or vulnerability disclosure policies are found. The absence of WHOIS data limits domain transparency but does not detract from the site's apparent legitimacy as a government entity. Overall, the website is professional, trustworthy, and well-suited to its public service role.

J

B2B - E-shop

jip-eshop.cz

0

The website www.jip-eshop.cz serves as a B2B e-commerce portal for the JIP group, targeting business customers primarily in the Czech Republic. It offers an online platform for business transactions and product ordering within the JIP group ecosystem. The site uses modern web technologies including Angular frameworks and integrates third-party analytics such as Luigis Box, with Google Analytics present but commented out. The design and content quality are basic but functional, focusing on business users rather than general consumers. From a technical perspective, the site employs modern fonts and UI libraries, indicating a moderate level of digital maturity. However, there is a lack of visible security headers and privacy-related policies, which suggests room for improvement in compliance and security posture. The absence of WHOIS data limits the ability to fully verify domain legitimacy and ownership details. Security-wise, the site uses HTTPS as indicated by canonical URLs, but lacks explicit security headers and documented incident response or security policies. No vulnerabilities or malicious content were detected in the accessible content. Privacy compliance is minimal, with no clear cookie or privacy policies found in the provided HTML content. Overall, the site appears to be a legitimate B2B portal with moderate technical implementation but requires enhancements in security best practices, privacy compliance, and transparency to improve trust and regulatory adherence.

Transoft Solutions is a well-established company specializing in innovative software and services for transportation professionals, including aviation, civil infrastructure, and safety operations. With over 30 years of experience and a global user base spanning 150 countries, the company targets government agencies and engineering firms. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern SEO and accessibility features, though some security headers are missing. The security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the absence of WHOIS data and explicit security policies suggests areas for improvement. Overall, the site is trustworthy and professional but would benefit from enhanced transparency and security documentation.

V

VINCI Energies

vinci-energies.com

0

VINCI Energies is a large enterprise specializing in multi-technical, customized solutions and services dedicated to energy, transport, communication infrastructures, buildings, factories, and IT systems. It operates internationally with a strong brand presence and multiple subsidiaries such as Omexom, Actemium, Axians, and VINCI Energies Building Solutions. The website reflects a mature digital infrastructure with WordPress CMS, modern JavaScript libraries, and privacy-respecting analytics via Matomo. GDPR compliance and cookie consent mechanisms are well implemented, indicating strong privacy awareness. Security posture is solid with HTTPS and a dedicated CSIRT page, though some security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but the overall corporate presence and content quality support legitimacy.

B

Bentley Systems

bentley.com

0

Bentley Systems is a leading global provider of infrastructure engineering software, serving architects, engineers, constructors, and owner-operators. The company offers comprehensive solutions to advance infrastructure projects across multiple sectors including transportation, energy, and urban development. Their website reflects a mature enterprise with a strong global presence, supported by multiple localized domains and professional branding. The digital infrastructure leverages modern web technologies such as WordPress, Elementor, and advanced marketing and analytics tools like Marketo and Visual Website Optimizer, indicating a sophisticated digital marketing and customer engagement strategy. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly detailed. The absence of WHOIS data suggests privacy protection or proxy registration, which is common for enterprises but should be monitored for consistency. Overall, the website is professional, secure, and compliant with privacy regulations, targeting a broad professional audience in the infrastructure engineering domain.

U

UNIPEX CZ s.r.o.

unipex.cz

0

UNIPEX CZ s.r.o. is a Czech Republic-based IT company established in 2000, specializing in custom software development, ERP HELIOS iNuvio implementation, e-commerce solutions, and IT infrastructure services. The company targets manufacturing, commercial, and IT firms, providing comprehensive IT services with a team of certified experts. Their market position is that of a trusted regional IT partner with long-term client relationships and recognized certifications such as Microsoft Silver Partner and Internet Effectiveness Awards. Technically, the website employs modern web technologies including .NET and JavaScript, with Google Tag Manager for analytics and marketing. The site is well-designed, mobile-optimized, and provides clear navigation and professional content. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks visible HTTP security headers and explicit security policies. WHOIS data is unavailable, which raises some trust concerns, but the website content and business information appear legitimate and professional. Overall, the site demonstrates a good level of digital maturity and business credibility with room for security improvements.

The website static-hotel.cz is currently inaccessible, serving a 403 Forbidden error page via nginx 1.28.0 with Cloudflare DNS. This indicates that access is blocked or restricted, preventing content retrieval and analysis. The domain is registered since 2011 with a reputable registrar, suggesting legitimacy, but no business or contact information is publicly available on the site. The lack of accessible content and policies severely limits the ability to assess the business model, services, or compliance posture. Technically, the site uses Cloudflare DNS and nginx web server, but no further technology or CMS details are available. Security posture cannot be evaluated due to lack of accessible content and headers. Overall, the site appears to be either under maintenance, restricted, or protected by security mechanisms that block public access.

Č

ČEVAK a.s.

vodarenskavezcb.cz

0

Vodárenská věž is a public water tower and tourist attraction located in České Budějovice, Czech Republic, operated by ČEVAK a.s., a regional water utility company. The website serves as an informational and promotional platform for visitors, offering details about tours, events, and the history of the tower. The site is well-structured, visually appealing, and provides clear contact information and social media links, enhancing visitor engagement and trust. Technically, the website uses modern web technologies including Google Maps API for location services and Google Tag Manager for analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be added for improvement. The absence of WHOIS data limits full domain trust assessment, but the website content and contact details strongly indicate legitimacy. Overall, the site is a reliable and professional digital presence for the Vodárenská věž attraction.

F

FG Forrest, a.s.

vodapodkontrolou.cz

0

The website vodapodkontrolou.cz represents a professional water consumption monitoring service operated by FG Forrest, a.s., targeting households, entrepreneurs, and large companies primarily in the Czech Republic. The service offers continuous monitoring of water usage with customizable alarms and notifications to prevent water damage and reduce costs. The business model is subscription-based with monthly tariffs and a one-time installation fee, requiring no purchase of hardware by the customer. Technically, the website employs modern web technologies including JavaScript, jQuery, Google Tag Manager, and Google Maps API. The site is mobile-optimized, accessible, and SEO-friendly with comprehensive metadata and multilingual support. Performance is moderate with good user experience and clear navigation. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. Cookie consent mechanisms and privacy policies are implemented in compliance with GDPR. However, explicit security policies and incident response contacts are not found, and security headers appear to be missing or not detected. Overall, the website is trustworthy and professionally maintained, though the absence of WHOIS data reduces transparency regarding domain registration. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing incident response information, and improving domain registration transparency.

B

BAKALÁŘI software s.r.o.

digiskolka.cz

0

Digiškolka is a Czech Republic based digital management platform tailored for kindergartens, developed by BAKALÁŘI software s.r.o., a company with over 30 years of experience in educational information systems. The platform aims to simplify kindergarten administration and enhance communication with parents, supported by a strong market presence in Czech educational institutions. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting educational organizations. Technically, the site is built on WordPress with UIkit framework, integrates Google Analytics and reCAPTCHA for analytics and security, and is hosted by Forpsi. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with comprehensive policies and user consent options. Overall, the website is trustworthy and well-positioned in its niche.

S

STS Education

sts-education.be

0

STS Education is an established education service provider based in Belgium, specializing in facilitating secondary education programs for international students seeking study opportunities in countries such as the United States, United Kingdom, and Ireland. The company positions itself as a trusted facilitator for students aiming to experience international schooling adventures. The website reflects a professional and consistent brand image, targeting international secondary students with clear program offerings and support services. Technically, the website is built on WordPress with modern frameworks like Bootstrap and employs SEO best practices through Yoast SEO. It integrates multiple analytics and advertising pixels, indicating a mature digital marketing approach. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms compliant with GDPR, and includes standard security headers, though it lacks a publicly visible security policy or incident response contact. The WHOIS data is restricted due to registry policy, but no suspicious indicators were found. Overall, the site demonstrates a good security posture and digital maturity appropriate for its business domain.

D

DER Touristik CZ a.s.

fischergroup.cz

0

DER Touristik CZ a.s. operates as a major travel and tourism company in the Czech Republic, consolidating several well-known brands such as EXIM tours, FISCHER, NEV-DAMA, and eTravel. The company offers a wide range of vacation packages including beach holidays, skiing trips, family vacations, and online travel booking services. As part of the REWE Group, a large German retail and tourism conglomerate, DER Touristik CZ holds a strong market position in the Czech travel industry. The website reflects a professional and consistent brand image targeting Czech consumers seeking diverse travel experiences. Technically, the website employs modern JavaScript libraries, Google reCAPTCHA for bot protection, and Usercentrics for GDPR-compliant consent management, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers and explicit incident response information are missing. Overall, the site is safe, well-structured, and compliant with privacy regulations, but the absence of WHOIS data and contact emails slightly reduces trustworthiness.

D

DER Touristik CZ a.s.

dertouristik.cz

0

DER Touristik CZ a.s. is a major Czech travel company operating multiple well-known brands such as FISCHER, EXIM tours, NEV-DAMA, and eTravel. It is part of the German REWE Group, a leading European retail and tourism conglomerate. The company offers a broad range of travel services including beach vacations, ski holidays, family travel, and online booking options, targeting Czech consumers seeking quality holiday experiences. The website reflects a professional and consistent brand presence with clear contact information and social media engagement. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and a consent management platform to comply with privacy regulations. Security posture is solid with HTTPS and bot protection, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, limiting domain registration trust analysis, but the business affiliation and content support legitimacy.

The website at cdn-zeptoapps.com is currently inaccessible, serving a 403 Forbidden error page indicating restricted access likely enforced by Cloudflare security mechanisms. The domain is relatively new, registered in October 2022 via GoDaddy, and uses Cloudflare DNS servers without DNSSEC enabled. There is no visible business content, contact information, or privacy and cookie policies, which limits the ability to assess the business or compliance posture. The technical infrastructure appears minimal, with basic HTML and CSS and no detected analytics or tracking scripts. Security posture is weak due to missing security headers and lack of DNSSEC, although HTTPS is presumably enabled given Cloudflare usage. Overall, the site appears to be a CDN or resource domain rather than a customer-facing business website.

Araca HQ operates a minimalistic website with a simple landing page that offers a 'Request Access' link but lacks detailed business descriptions, contact information, or policies. The domain is registered since 2016 with GoDaddy and uses DNS Made Easy for DNS services. The site employs New Relic Browser for performance monitoring and analytics but does not implement DNSSEC or security headers, which are recommended for enhanced security. The absence of privacy, cookie, and terms of service policies indicates low privacy compliance. Overall, the website's content and design quality are poor, limiting user trust and engagement.

The domain content4travel.com is registered since 2016 and uses Cloudflare DNS services. However, the website currently returns a 400 Bad Request error page served by nginx, indicating that the website content is inaccessible or misconfigured. No business information, metadata, or contact details are available on the site, preventing a full assessment of the company's operations or services. The lack of accessible content severely limits the ability to evaluate the website's technical infrastructure, security posture, or compliance status. The domain registration data appears consistent and legitimate, but the absence of active content and policies reduces trust and credibility.

The website at emet.hu is currently non-functional or a placeholder, containing no visible content, metadata, or business information. The domain was registered in 2020, which is consistent with a relatively new business, but no further registrant details or company information are available to assess legitimacy or market position. Technically, the site lacks any detectable technologies, scripts, or CMS, and no security features such as HTTPS or security headers are present. This results in a very low digital maturity and security posture. There are no privacy or cookie policies, no contact information, and no forms or interactive elements, indicating the site is either under development or abandoned. Overall, the risk is elevated due to the lack of transparency and security controls, and the site cannot be considered trustworthy or professional in its current state.

M

Mathesio

mathesio.cz

0

Mathesio is a Czech technology company specializing in creative IT solutions including web applications, technological solutions, business process optimization, and design. With a team of 15 developers, they serve government ministries, corporate clients, and startups. Their website reflects a professional and consistent brand image, with content primarily in Czech and an English alternate domain available. The company has been operating since 2013, which aligns with the domain registration date, indicating a stable business presence. Technically, the website is built on WordPress and leverages a broad technology stack including JavaScript frameworks (React, AngularJS), PHP frameworks (Nette, CodeIgniter), Java technologies (Spring, Hibernate), and others. The site is mobile optimized and uses modern web standards, though performance is moderate. Analytics and tracking are implemented via Google Analytics and Facebook Pixel, but no cookie consent mechanism is present. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and published security policies. No forms or sensitive data collection points were detected on the homepage. Privacy and cookie policies are missing, which is a compliance gap especially for GDPR. Contact information is minimal, limited to a Facebook page link, reducing direct communication channels. Overall, Mathesio presents as a credible small technology firm with a solid technical foundation but with room for improvement in privacy compliance, security best practices, and transparency of contact and policy information.

A

AnChoice CZ, s.r.o.

anchoice.cz

0

AnChoice CZ, s.r.o. operates a modern SaaS platform tailored for travel agencies and tour operators, offering millions of travel packages with real-time price and availability updates. The company has a strong market presence in the Czech Republic with over a decade of operational history and a medium-sized business footprint. Their platform includes marketing tools, business case management, and online booking capabilities, positioning them as a comprehensive solution provider in the travel technology sector. Technically, the website is built on WordPress with modern libraries and plugins, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. Overall, the business appears legitimate and professional with clear contact information and partner affiliations.

D

Darkmay s.r.o.

cestovnisystem.cz

0

Darkmay s.r.o. operates the CeSYS platform, a comprehensive SaaS solution for travel agencies primarily in the Czech Republic and neighboring countries. The platform offers multiple products including search engines, web design, sales management, and marketing tools tailored for travel agencies. With over 16 years of market presence and partnerships with major travel industry players, CeSYS holds a strong position in its niche. The website demonstrates a mature technical infrastructure leveraging modern web technologies and analytics tools with user consent mechanisms. Security posture is generally good with HTTPS and consent-based tracking, though explicit privacy and security policies are lacking. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

L

LogiNet

loginet.hu

0

LogiNet is a Hungarian technology company specializing in e-commerce systems, webshop development, mobile application creation, and custom software development. Positioned as a professional service provider, LogiNet targets businesses requiring tailored e-commerce and digital solutions. The website reflects a mature digital presence with good SEO practices, mobile optimization, and integration of modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Cookiebot for consent management. Security-wise, the site enforces HTTPS and employs reCAPTCHA to mitigate bot traffic, though explicit security headers and policies are not prominently published. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site demonstrates a solid technical and business foundation with room for enhanced security transparency and contact information clarity.

Q

Qubit

qubit.hu

0

Qubit.hu is a Hungarian online media platform focusing on economy, science, technology, and culture, targeting a general audience interested in these topics. The website uses modern web technologies such as Ember.js with Fastboot for server-side rendering, and integrates marketing and analytics tools like Google Tag Manager and Remp. The content is rich and professionally presented, with multiple articles, authors, and categories, indicating a mature media outlet founded in 2017. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal security policies. Privacy compliance is limited due to absence of explicit privacy and cookie policies. Overall, the site is legitimate and well-positioned in the Hungarian media market, but could improve transparency and security practices.

L

Linkfire A/S

linkfire.com

0

Linkfire A/S operates a sophisticated SaaS platform specializing in smart links for music marketing, podcast promotion, and artist engagement. The company holds a strong market position with major label clients and over 50,000 artists using its services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its target audience of artists, podcasters, publishers, and advertisers. Technically, the site leverages HubSpot CMS, Google Tag Manager, and OneTrust for cookie consent, ensuring modern infrastructure and compliance with privacy regulations such as GDPR. Security posture is robust with HTTPS enforcement, security headers, and anti-fraud measures like ClickCease, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high trustworthiness and business credibility with no critical vulnerabilities detected.