Security Directory

B

Behn Getränke

behn-getraenke.de

0

Behn Getränke is a regional beverage wholesaler and retailer operating in Schleswig-Holstein, Germany, with a long-standing family business history dating back to 1892. The company offers beverage markets in multiple locations and provides gastronomy consulting and event inventory services. The website is built on WordPress with common plugins such as Yoast SEO and WPBakery Page Builder, indicating a moderate level of digital maturity. Accessibility is a strong focus, with an advanced accessibility tool integrated to support various user needs. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

K

Kommunikationswerk der Nordkirche in Kooperation mit dem Landeskirchenamt

kollekten.de

0

The website kollekten.de serves as an official platform for the Evangelisch-Lutherische Kirche in Norddeutschland (Nordkirche) to provide information about the Kollektenkatalog 2025/2026, which supports various church and social projects. It targets church communities, donors, and social organizations primarily in Northern Germany. The site offers detailed project descriptions, downloadable resources, and theological background on collections in church services. Technically, the site is built on TYPO3 CMS, enhanced with Yoast SEO for TYPO3 and uses Matomo analytics for user tracking. It is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS and standard security headers, though explicit security policies and incident response contacts are not published. Overall, the site reflects a professional, trustworthy non-profit church platform with clear contact information and consistent branding.

S

Stabsstelle Prävention - Fachstelle gegen sexualisierte Gewalt der Nordkirche

kirche-gegen-sexualisierte-gewalt.de

0

The website represents the Stabsstelle Prävention, a specialized non-profit church-affiliated organization focused on prevention, intervention, and support related to sexualized violence within the Evangelical Church in Northern Germany (Nordkirche). It provides resources, contact points, and educational materials for affected individuals and church staff. The site is positioned as a trusted regional authority with clear church ties and a focus on transparency and support. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries like jQuery and stickybits for UI enhancements. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit incident response contacts. Privacy compliance is mostly met with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its mission. The domain WHOIS data is limited but does not raise significant concerns. No blocking or WAF interference was detected, allowing full content access and analysis.

I

Investitionsbank Schleswig-Holstein (IB.SH)

ibsh-unternehmerinnenpreis.de

0

The website www.ibsh-unternehmerinnenpreis.de represents the IB.SH-Unternehmerinnenpreis, an entrepreneurship award initiative by the Investitionsbank Schleswig-Holstein (IB.SH) aimed at recognizing and promoting female entrepreneurs in Schleswig-Holstein, Germany. The site serves as an informational and promotional platform for the award, showcasing winners, jury members, and providing downloadable resources such as FAQs, press releases, and social media kits. The business model is non-profit and government-affiliated, focusing on fostering female entrepreneurship and economic diversity in the region. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and uses Matomo for analytics, reflecting a privacy-conscious approach. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured content. However, some security headers are missing, which could be improved to enhance security posture. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. Contact information is clearly provided with multiple dedicated contacts, enhancing trust and transparency. The absence of explicit security or incident response policies is noted but not uncommon for this type of site. Overall, the website is professional, trustworthy, and well-aligned with its mission. It effectively supports the IB.SH's goal of empowering female entrepreneurs in Schleswig-Holstein. Strategic improvements in security headers and publishing security policies could further strengthen its security posture and user trust.

M

Markant

voila-startups.com

0

voila-startups.com is a professional platform operated under the Markant brand, designed to connect startups and innovators with one of the largest retail networks in Germany and Europe. The website facilitates product presentation to over 200 retail partners, offering startups a streamlined and cost-free channel to access retail shelves. The business model centers on enabling innovation diffusion within the retail sector, targeting startups seeking market entry and growth. The platform is moderately sized and founded in 2019, consistent with the domain registration data. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and tracking tools such as Facebook Pixel and Jentis for analytics and marketing. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Hosting and domain registration are managed by Deutsche Telekom AG, a reputable provider, ensuring stable infrastructure. From a security perspective, the site employs HTTPS and integrates cookie consent mechanisms, reflecting basic privacy compliance. However, it lacks explicit privacy and terms of service pages, security headers, and incident response contact information, which are areas for improvement. No WAF or blocking mechanisms were detected, and no vulnerabilities or suspicious patterns were found in the WHOIS data, indicating a trustworthy domain. Overall, voila-startups.com presents a solid business and technical foundation with moderate security posture. Strategic enhancements in privacy documentation, security headers, and contact transparency would elevate its compliance and trustworthiness, supporting its role as a credible startup-to-retail platform.

T

Travelbakers

travelevo.cz

0

The website www.travelevo.cz represents TravelEVOlution, a niche event focused on sustainable and authentic travel experiences held in Brno, Czech Republic. The event is organized by Travelbakers and targets professionals and enthusiasts in the travel and tourism sector. The site provides detailed program information, workshops, and partner collaborations, reflecting a well-structured and professional business model in the hospitality industry. Technically, the site is built on Drupal 10, uses modern web technologies, and integrates Google Tag Manager for analytics. The site is mobile-optimized and accessible with good SEO practices. Security posture is solid with HTTPS enabled, but lacks some security headers and visible privacy or cookie policies, which are recommended for compliance and trust. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for small businesses. Overall, the site is professional, content-rich, and trustworthy with room for improvement in privacy compliance and security transparency.

C

Chodím beze stop

chodimbezestop.cz

0

Chodím beze stop is a Czech non-profit environmental awareness initiative focused on educating visitors about responsible behavior in nature, particularly regarding waste and hygiene practices. The website provides educational content, partner collaborations, and free programs to promote sustainable tourism and nature conservation. The target audience includes outdoor enthusiasts and environmentally conscious individuals in the Czech Republic. Technically, the website is built on WordPress with Yoast SEO and uses Facebook Pixel for tracking. It demonstrates good content quality, mobile optimization, and SEO practices but lacks advanced security headers and formal security policies. The domain is newly registered but consistent with the website's Czech focus and content. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, though it could improve security posture and transparency by adding incident response and vulnerability disclosure information.

C

CTP

ctp.cz

0

CTP is a leading European real estate company specializing in the development and management of logistics and industrial properties across 10 countries. The website reflects a mature, professional business with a strong market position and comprehensive service offerings tailored to commercial clients. The technical infrastructure leverages WordPress CMS with modern performance and multilingual enhancements, ensuring a fast and accessible user experience. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates high professionalism and trustworthiness, supporting CTP's brand as a major player in the real estate sector.

R

Reknihy s.r.o.

reknihy.cz

0

Reknihy s.r.o. operates a Czech e-commerce platform specializing in sustainable book retail, focusing on second-hand books and textbooks. The company has established a solid market presence with over 220,000 customers and 50,000 sellers, leveraging a modern WordPress-based infrastructure with WooCommerce and Elementor. The website is well-branded, mobile-optimized, and integrates multiple marketing and tracking tools with consent management via Cookiebot. Security posture is adequate with HTTPS and consent mechanisms, though explicit privacy and security policies are not found in the provided content. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the platform serves a niche market with a clear business model and good technical implementation.

D

Díky, že můžem

dikyzemuzem.cz

0

Díky, že můžem is a Czech non-profit organization dedicated to fostering respectful dialogue and civic engagement among citizens, especially targeting young people. Founded in 2014, it operates various year-round projects, educational programs, and discussions across the Czech Republic to promote societal cohesion and democratic participation. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content aligned with its mission. Technically, the site is built on WordPress with modern plugins and integrations such as Yoast SEO, Google Analytics, and OneSignal for push notifications, hosted via WEDOS and utilizing Cloudflare DNS services. Security posture is strong with HTTPS enforcement, standard security headers, and GDPR-compliant cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a solid balance of content quality, technical implementation, and privacy compliance, supporting the organization's credibility and trustworthiness.

C

casavi

mycasavi.com

0

Casavi operates a specialized service portal platform for real estate management, primarily targeting property managers and tenants in Germany. The platform offers user account management, ticketing, document handling, and communication tools tailored for the real estate sector. The company has an established market presence since its domain registration in 2015 and hosts its services on Amazon AWS infrastructure, leveraging modern web technologies including React and Sentry for error tracking. Technically, the website demonstrates a mature digital infrastructure with secure login forms incorporating CSRF protection and input validation. The use of HTTPS and AWS hosting ensures a reliable and secure environment. However, the absence of DNSSEC and explicit security headers such as Content-Security-Policy indicates areas for security enhancement. The website is mobile-optimized with good design quality and clear navigation, supporting a positive user experience. From a security perspective, the site maintains a good posture with encrypted connections and secure form handling but lacks publicly available security policies and incident response contacts, which are important for transparency and trust. Privacy compliance is partially met with comprehensive privacy and terms of service pages, though the lack of a cookie consent mechanism may pose GDPR compliance risks. Overall, Casavi presents a trustworthy and professional online presence with room for improvement in security transparency and privacy compliance. Strategic enhancements in security headers, cookie consent, and incident response disclosures would strengthen its security posture and regulatory adherence.

Immonet is a major German real estate marketplace operated by AVIV Germany GmbH, offering a comprehensive platform for buying, renting, and selling properties including houses, apartments, and commercial real estate. The website targets individuals and businesses in Germany seeking real estate services, providing additional tools such as financing calculators, relocation services, and real estate valuation. The platform is well-positioned in the German market with a professional and user-friendly interface.

A

AVIV Germany GmbH

immowelt.de

0

Immowelt.de is a leading German real estate portal operated by AVIV Germany GmbH, offering a comprehensive platform for property search, rental, purchase, and related services such as financing and moving assistance. The website targets private individuals and real estate professionals seeking residential and commercial properties across Germany. It holds a strong market position, evidenced by multiple awards and partnerships with reputable service providers like SCHUFA and Interhyp. Technically, the website employs modern web technologies including React and integrates a consent management platform (Usercentrics) for GDPR compliance. Hosting is managed via Amazon AWS, ensuring reliable performance and scalability. The site is well-optimized for mobile devices and accessibility, with a clean, professional design and clear navigation. From a security perspective, immowelt.de enforces HTTPS, implements key security headers, and avoids exposing sensitive data in its HTML content. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Privacy compliance is partially addressed through the use of a consent management platform, but the absence of a clearly accessible privacy policy and terms of service reduces overall compliance confidence. Overall, immowelt.de presents a trustworthy and professional online presence with strong business credibility and technical maturity. Strategic enhancements in privacy transparency and security documentation would further strengthen its risk posture and user trust.

C

Cykloserver.cz

cykloserver.cz

0

Cykloserver.cz is a well-established Czech cycling news and community platform founded in 2000, serving hobby cyclists and enthusiasts primarily in the Czech Republic and Slovakia. The site offers a variety of content including cycling news, event calendars, trip tips, and an online cycling atlas, supported by partnerships with relevant cycling organizations. The business model appears to be content-driven with advertising and partner promotions. Technically, the website uses standard web technologies with HTTPS and Google Analytics integration, hosted by a Czech hosting provider. While the site is functional and content-rich, it lacks formal privacy and cookie policies and does not implement advanced security headers, which are areas for improvement. The security posture is moderate with secure forms and HTTPS but missing some best practices. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

Partnerství, o.p.s. is a Czech non-profit organization specializing in sustainable tourism, cycling infrastructure, and community development. With over 20 years of experience, it coordinates national certification programs such as 'Cyklisté vítáni' and provides monitoring services for cyclists and pedestrians. The organization also promotes wine tourism and cultural heritage in the South Moravian region. Technically, the website is built on ASP.NET WebForms with modern front-end libraries like Bootstrap and FontAwesome, and it integrates Google Tag Manager for analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit policies could be improved. The absence of WHOIS data reduces domain trust but the website content and business information appear professional and legitimate.

V

VšĮ „Mėlyna ir geltona“

dronatonas.lt

0

DRONATONAS is a Lithuanian non-profit initiative organized by VšĮ „Mėlyna ir geltona“ focused on supporting Ukraine by raising funds to purchase and send drones to Ukrainian forces. The website serves as a campaign platform providing information about donation methods, events like marathons and velomarathons, and merchandise sales. It targets both private individuals and businesses interested in contributing to the cause. The organization maintains a clear and consistent brand presence with professional content and active social media channels. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and LiteSpeed Cache, ensuring good performance and SEO optimization. The site is mobile-friendly and accessible with a cookie consent mechanism compliant with GDPR regulations. Security posture is adequate with HTTPS enforced, though some security headers could be improved. No incident response or security policy information is provided. WHOIS data aligns with the website's Lithuanian identity and non-profit nature, though domain creation date appears anomalous. Overall, the site is trustworthy, professional, and well-positioned within its niche of charitable support for Ukraine.

N

Novinykraje.cz

novinykraje.cz

0

Novinykraje.cz is a Czech regional news media website operated by Regionální vydavatelství s.r.o. It provides news, interviews, and reports focused on various Czech regions, targeting the general public interested in local news. The website is built on WordPress and uses a modern tech stack including Yoast SEO, Google Analytics, and Facebook SDK, indicating a mature digital infrastructure. The site is mobile optimized with good navigation and content relevance. Security posture is solid with HTTPS enforced, but lacks some security headers and visible privacy/cookie policies. No WHOIS data is publicly available, suggesting privacy protection, which is typical for media outlets. Overall, the site is professional and trustworthy with moderate risk due to missing privacy disclosures and security headers.

F

Fyzikální ústav Akademie věd České republiky

fzu.cz

0

Fyzikální ústav Akademie věd České republiky (FZU) is a prominent Czech research institute specializing in physics, affiliated with the Czech Academy of Sciences. The website showcases extensive scientific research, publications, events, and public outreach activities, targeting researchers, students, companies, and the general public interested in physics. The institute operates under a government and grant-funded model, emphasizing education and scientific advancement. The site is professionally designed with consistent branding and a strong social media presence, reinforcing its position as a leading academic institution in the Czech Republic. Technically, the website is built on Drupal 10, integrating modern analytics tools such as Matomo, Facebook Pixel, and Microsoft Clarity, alongside a cookie consent management system (CookieHub). The site is mobile-optimized, accessible, and performs moderately well. Security practices include HTTPS enforcement, CAPTCHA on forms, and cookie consent, though explicit security headers and incident response contacts are not clearly visible. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies in Czech language, aligned with GDPR requirements. However, the absence of WHOIS data for the domain reduces trust slightly, though the institutional affiliation and content quality support legitimacy. No adult or questionable content is present, making the site safe for general audiences. Overall, the website reflects a mature digital presence for a reputable scientific institution, with room for improvement in security transparency and domain registration visibility.

F

Faster.cz

faster.cz

0

Faster.cz is a Czech-based telecommunications and technology company specializing in internet services, data center operations, voice (VoIP) services, and cybersecurity. The company operates its own optical network in Brno with continuous 24/7/365 monitoring, targeting ISP providers and businesses requiring reliable connectivity and security solutions. The website reflects a professional B2B service provider with a clear market position in the regional telecommunications sector. Technically, the site is built on WordPress with modern plugins for SEO and multilingual support, and it employs Google services for analytics and advertising with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and consent management, though explicit security headers and incident response information are lacking. WHOIS data is unavailable, which slightly reduces trust but the website content and branding are consistent and professional. Overall, Faster.cz presents a credible and mature digital presence suitable for its business domain.

M

Monte Bú Restaurant a steakhouse

monte-bu.cz

0

Monte Bú Restaurant a steakhouse is a premium dining establishment located in Brno, Czech Republic, specializing in exclusive steaks from their own dry-aging cellar, grilling, and premium American and Mexican cuisine. The restaurant also offers a unique collection of exclusive rums and rum tastings led by a rum sommelier. The business operates under the Con Gusto Restaurant Group umbrella, indicating a solid partnership and brand backing. Their market position is that of a unique steakhouse with a focus on quality and gourmet experiences, targeting local residents and visitors seeking high-end dining. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, Facebook Pixel, and other JavaScript libraries to deliver a responsive and interactive user experience. The site is mobile-optimized and uses HTTPS with good SSL configuration, though it lacks some security headers and formal privacy documentation. The cookie consent mechanism is implemented, reflecting some level of privacy compliance. From a security perspective, the site benefits from HTTPS and no visible exposed sensitive data. However, the absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trust. No privacy policy or terms of service pages were found, which is a compliance gap. The site uses tracking and advertising tools with consent defaults denying ad and analytics storage, indicating some privacy awareness. Overall, Monte Bú presents a professional and trustworthy online presence for a small hospitality business, but improvements in transparency, security headers, and domain registration verification are recommended to enhance trust and compliance.

C

CITY-TOOLS, s.r.o.

citytools.cz

0

CITY-TOOLS, s.r.o. operates a professional outdoor advertising platform in the Czech Republic, offering Citylight, billboard, and adhesive foil advertising solutions. The company targets businesses and individuals seeking effective outdoor marketing channels. The website is well-structured, visually consistent, and provides clear contact information, supporting a positive market presence in the local advertising sector. Technical infrastructure leverages common web technologies such as jQuery, Bootstrap, and Google reCAPTCHA, indicating a moderate level of digital maturity. The site is mobile-optimized and includes cookie consent mechanisms, reflecting awareness of privacy compliance requirements. Security posture is generally good with HTTPS enforced and reCAPTCHA integration; however, the absence of security headers and incident response information suggests room for improvement. The lack of WHOIS data limits domain legitimacy verification, which could impact trust from a security perspective. Overall, the website is professional and functional, with moderate risk due to incomplete domain registration transparency.

M

Městská část Brno-jih

brno-jih.cz

0

Městská část Brno-jih is the official municipal district government website serving the Brno-jih area in the Czech Republic. It provides comprehensive information about local government administration, public services, news, events, and contact details for residents and visitors. The website is well-structured, professionally designed, and offers multilingual support, targeting local citizens and stakeholders. The business model is governmental public service with a focus on transparency and community engagement. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript libraries such as jQuery and GLightbox, and features a responsive design optimized for mobile devices. Analytics are handled via Matomo with privacy-conscious configurations, including Do Not Track and cookie disabling. The site demonstrates good accessibility and SEO practices, although some improvements in security headers and explicit privacy policies are recommended. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, the absence of security headers and explicit privacy and cookie policies indicates room for enhancement. The WHOIS data is unavailable, which limits domain registration trust analysis, but the official branding and contact information strongly support legitimacy. Overall, the site maintains a good security posture with moderate risk. Strategically, the website should focus on publishing clear privacy and cookie policies, implementing security headers, and improving transparency around incident response and data protection officers. These steps will enhance user trust and compliance with GDPR and other regulations. The domain registration information should be clarified to improve trustworthiness from a domain perspective.

The website www.tsb.cz is currently inaccessible due to an HTTP 429 Too Many Requests error, indicating that the site is either rate limited or protected by a generic web application firewall (WAF). This blockage prevents access to any meaningful content, metadata, or business information, severely limiting the ability to analyze the company's digital presence or security posture. The WHOIS lookup returned no registration data, suggesting the domain may be privacy protected or unregistered, which further complicates legitimacy assessment. Without access to the website's content or registrant details, no definitive conclusions about the business or its operations can be drawn. From a technical perspective, the lack of accessible content means no information about the technology stack, hosting provider, or security headers can be determined. The absence of privacy, cookie, or security policies also indicates a lack of transparency and compliance readiness. The security posture is unknown but likely weak given the lack of accessible data and absence of visible security best practices. Overall, the site presents a high risk due to inaccessibility and lack of verifiable information. It is recommended to resolve the rate limiting or WAF issues to allow proper access and analysis. Additionally, publishing clear WHOIS data, security policies, and contact information would improve trust and compliance. Until these issues are addressed, the website should be treated with caution.

S

Outlook

starezsport.cz

0

The website is a login portal for Microsoft Outlook Web Access (OWA) customized for the domain starezsport.cz. It provides a user interface for email access but lacks any business descriptive content, contact information, or privacy and cookie policies. The domain is registered since 2006 and hosted on Czech servers, indicating a stable presence. The technical infrastructure relies on legacy Microsoft technologies including ActiveX controls, which may pose security risks in modern environments. The page is minimalistic with basic design and limited mobile optimization. Security posture is moderate with HTTPS implied but lacking modern security headers and privacy compliance disclosures. No analytics or advertising scripts are present, reducing tracking concerns but also limiting marketing insights. Overall, the site serves a functional purpose but lacks comprehensive business and compliance information.

A

Aqualand Moravia

aqualand-moravia.cz

0

Aqualand Moravia operates the largest aquapark in the Czech Republic, offering a wide range of water attractions, wellness services, and accommodation options. The website presents a professional and user-friendly interface with multilingual support and comprehensive information about services, events, and ticketing. The business targets families, tourists, and wellness seekers, positioning itself as a leading leisure destination in the region. Technically, the site uses a custom CMS platform with modern JavaScript frameworks and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The lack of WHOIS data reduces domain trustworthiness but does not detract from the overall professional presentation. Strategic recommendations include enhancing security headers, publishing security policies, and verifying domain registration details.

M

Miroslav Matyska

puzzle-puzzle.cz

0

Puzzle-puzzle.cz is a Czech Republic-based specialized e-commerce retailer focused on selling a wide variety of puzzles and related accessories for both children and adults. The website offers a broad assortment including 3D and 4D puzzles, baby puzzles, foam puzzle mats, and puzzle accessories. The business appears to have been established around 2011, as indicated by copyright metadata, and targets puzzle enthusiasts and families. The site is professionally designed with clear navigation and mobile optimization, providing a good user experience. However, the WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and trustworthiness. The website uses HTTPS and standard tracking technologies such as Google Analytics and Google Tag Manager, and it implements a cookie consent mechanism with granular user controls, indicating some level of privacy compliance. No explicit privacy policy or terms of service pages were found, and no direct contact information such as emails or phone numbers are provided on the main page, which limits transparency and user trust. Security headers are not detected, suggesting room for improvement in security posture. Overall, the website is safe, family-friendly, and functional but would benefit from enhanced transparency and security practices.

W

Wastex, spol s r.o.

wastex.cz

0

Wastex, spol s r.o. is a Czech Republic-based company founded in 1990 specializing in the wholesale and retail distribution of fresh fruit, vegetables, and food products. The company serves a broad range of clients including corporate dining facilities, schools, hotels, restaurants, social care institutions, and retail customers primarily in the Zlín region and surrounding districts. Their business model combines daily deliveries, brick-and-mortar retail, and specialized services such as replacement fulfillment and supplier partnerships. The website reflects a medium-sized regional wholesaler with a professional online presence and clear contact information.

S

StaniOn

stanion.cz

0

StaniOn s.r.o. is a Czech Republic based medium-sized construction company specializing as a general contractor for various building projects including residential, industrial, and infrastructure developments. The company emphasizes quality, innovation, and environmental responsibility, holding ISO certifications and operating since 2009. Their website demonstrates a professional digital presence with clear service offerings, client testimonials, and partner affiliations. Technically, the site is built on WordPress with modern tracking and analytics tools, optimized for mobile and SEO. Security posture is good with HTTPS and no obvious vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data limits domain legitimacy verification but the business content and branding suggest a trustworthy entity. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving security headers to strengthen trust and compliance.

W

wflow.com

wflow.cz

0

wflow.com is a technology company specializing in digital accounting automation and corporate expense management. The platform leverages AI to extract data from invoices and receipts, automates approval workflows, and integrates with popular ERP and banking systems. It targets a broad audience including startups, SMEs, large enterprises, and accounting firms primarily in the Czech Republic and Slovakia. The company positions itself as a modern alternative to traditional accounting software, emphasizing time and cost savings for its clients. The website is professionally designed, multilingual, and rich in content including case studies and client testimonials, reflecting a mature digital presence. Technically, the website is built on Webflow CMS with modern JavaScript libraries for UI components and sliders. It uses Google Fonts and CDN hosting for performance optimization. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured data. Security posture is strong with HTTPS enforced, ISO 27001 certification, and mention of penetration testing and two-factor authentication. However, explicit security headers are not detected, and no public incident response or vulnerability disclosure policies are found. Overall, the security and privacy compliance are well addressed with GDPR adherence and clear privacy and cookie policies. Contact information is transparent, including emails, phone numbers, and social media channels. The absence of WHOIS data is a concern for domain legitimacy but does not detract from the professional appearance and trust signals on the website. Strategically, wflow.com is well positioned in the accounting technology market with a comprehensive SaaS offering. The company should enhance transparency around security incident response and vulnerability disclosure to further build trust. Adding explicit security headers and publishing data retention policies would improve security posture and compliance visibility.

A

Asociace soukromého zemědělství ČR

asz.cz

0

The website www.asz.cz represents the Asociace soukromého zemědělství ČR, a Czech association dedicated to private farming and family farms. It serves as an information hub providing news, events, advocacy, and educational resources for farmers and agricultural stakeholders in the Czech Republic. The site is professionally designed with a clear navigation structure and regularly updated content, targeting a medium-sized audience within the agricultural sector. Technically, the website employs modern web technologies including Google Tag Manager for analytics, Leaflet.js for mapping, and a consent management platform to comply with cookie regulations. The site is mobile-optimized and performs moderately well, though some accessibility features could be enhanced. Security posture is good with HTTPS enforced, but lacks advanced security headers and explicit security policies. From a security and compliance perspective, the site does not expose sensitive data and uses a consent mechanism for cookies, but lacks visible privacy policy and terms of service pages, which could be improved for better GDPR compliance. No WHOIS data is available, likely due to privacy protection, but the website content and structure indicate a legitimate and established organization. Overall, the website is a trustworthy and professional platform for its target audience, with recommendations to enhance security headers, publish clear privacy and security policies, and provide incident response contacts to strengthen its security posture and compliance.

Svaz měst a obcí České republiky (SMO ČR) is a Czech non-profit association representing cities and municipalities, providing advocacy, education, legal support, and organizing events for local governments. The website serves as a portal for members and the public, offering news, event calendars, training, and member services. The organization holds a strong market position as a leading municipal association in the Czech Republic. Technically, the website uses a modern tech stack including jQuery, Bootstrap, Font Awesome, Swiper.js, and Google reCAPTCHA v3 for security. The site is mobile-optimized with good navigation and content quality. Cookie consent mechanisms are implemented, reflecting awareness of privacy compliance, although no explicit privacy policy page was found. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, but lacks some recommended security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is missing, which lowers domain trustworthiness, but the website content and contact information indicate a legitimate organization. Overall, the site is professional and trustworthy with room for improvement in privacy transparency and security header implementation. The absence of WHOIS data is a notable gap that should be addressed to enhance domain legitimacy and trust.

S

Sdružení místních samospráv České republiky, z. s.

smscr.cz

0

Sdružení místních samospráv České republiky, z. s. is a Czech non-profit association representing local self-governments. The website serves as an official portal providing legislative information, working groups, member benefits, media relations, and conference organization. The target audience includes local government officials and municipalities within the Czech Republic. Technically, the website uses modern JavaScript libraries such as jQuery, Bootstrap, and Swiper.js, with a cookie consent mechanism and Google Analytics integration. Security posture is moderate with HTTPS usage and reCAPTCHA, but lacks visible security headers and explicit privacy policies. WHOIS data is unavailable, limiting domain trust verification. Overall, the site is professional, content-rich, and trustworthy for its intended audience.

S

Státní pozemkový úřad

spucr.cz

0

Státní pozemkový úřad is a Czech government agency responsible for land management, land adjustments, and rural development initiatives. The website serves as an official portal providing information on land restitution, public tenders, geoportal services, and various government programs. It targets Czech citizens, landowners, agricultural professionals, and government entities, positioning itself as a key national authority in land administration. Technically, the website employs standard web technologies including jQuery and SVG graphics, with a moderate performance profile and good mobile optimization. The site includes accessibility features and SEO best practices, contributing to a positive user experience. Cookie consent and GDPR compliance mechanisms are implemented, reflecting attention to privacy regulations. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible advanced security headers. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data is notable but does not detract significantly from the site's legitimacy given its government affiliation and comprehensive contact information. Overall, the website presents a professional and trustworthy front for the agency, with strong content quality and compliance posture. Strategic recommendations include enhancing security headers, auditing third-party libraries, and ensuring robust form protections to further strengthen security and trust.

S

Spolek pro obnovu venkova ČR

spov.org

0

Spolek pro obnovu venkova ČR is a Czech non-profit association dedicated to rural renewal and community development across the Czech Republic. The website serves as the official portal providing information about the association's activities, regional organizations, projects, conferences, and publications. It targets municipalities, local communities, and stakeholders interested in rural development. The site is well-structured with clear navigation and content relevant to its audience. Technically, the website employs modern frontend technologies including jQuery, Bootstrap 4.4.1, Swiper.js for slideshows, and mmenu.js for mobile menus. The site is mobile responsive and includes cookie consent mechanisms indicating GDPR awareness. However, no explicit privacy policy or terms of service pages were found in the provided content. From a security perspective, HTTPS is used, and cookie consent is implemented, but security headers and advanced security policies are not evident. No vulnerability disclosure or incident response information is provided. The WHOIS data for the domain is unavailable, which reduces trustworthiness from a domain registration perspective, though the website content and structure suggest a legitimate organization. Overall, the website is professional, content-rich, and serves its purpose well. Strategic improvements include adding explicit privacy and security policies, enhancing security headers, and verifying domain registration details to improve trust and compliance.

V

Vesnice roku v Programu obnovy venkova

vesniceroku.cz

0

Vesnice roku is a Czech Republic based government-supported non-profit competition focused on rural village development and community engagement. Established in 1995, it encourages rural inhabitants and municipalities to actively participate in local development and preserve traditions. The website serves as an information portal for the competition, results, news, and application processes. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and CodeRed CMS, hosted on DigitalOcean infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is basic with no dedicated privacy or terms of service pages. Contact information is limited but includes a phone number and physical address in Prague. Social media presence is active on Facebook and Instagram. Overall, the website is trustworthy and professionally maintained, supporting a well-established government program.

W

Weblium

weblium.com

0

Weblium is a technology company providing an intuitive website builder platform that enables users to create professional websites effortlessly. Founded in 2016, it targets individuals and businesses seeking easy-to-use web development tools. The platform offers professional templates and advanced features, positioning itself as a competitive SaaS solution in the website building market. Technically, the website employs modern JavaScript frameworks such as React and utilizes service workers to enhance performance and user experience. The domain is well-registered and consistent with the company's age and business claims, indicating legitimacy. However, the website lacks visible privacy and cookie policies, consent mechanisms, and security headers, which are important for compliance and security best practices. The presence of marketing and tracking scripts without explicit consent mechanisms suggests moderate user tracking. Overall, the website is professional and functional but would benefit from enhanced privacy compliance and security hardening.

I

International Year of Glaciers’ Preservation

un-glaciers.org

0

The website www.un-glaciers.org is an official United Nations initiative co-chaired by UNESCO and WMO, dedicated to the International Year of Glaciers' Preservation in 2025. It serves as an authoritative platform to raise global awareness about the critical role of glaciers in climate regulation and freshwater supply, targeting policymakers, researchers, and the general public. The site offers rich multimedia content, event information, and partner collaboration opportunities, reflecting a strong commitment to environmental education and international cooperation. Technically, the website is built on Drupal CMS with modern web technologies including responsive design, Google Tag Manager, and structured data for SEO. It demonstrates good mobile optimization and accessibility, although some security headers are not visibly implemented. HTTPS is enforced, and privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information, which are recommended for further strengthening trust and compliance. Overall, the domain appears legitimate and trustworthy despite the absence of WHOIS data, likely due to privacy protection. The website's professional design, authoritative content, and UN affiliation position it as a credible source for glacier preservation information. Strategic recommendations include enhancing security headers, publishing security policies, and providing clearer contact information for incident response.

D

Decade of Action for Cryospheric Sciences

un-cryosphere.org

0

The website www.un-cryosphere.org represents the Decade of Action for Cryospheric Sciences (2025-2034), a United Nations-endorsed global initiative led by UNESCO to address the rapid melting of Earth's cryosphere. The initiative aims to coordinate scientific research, raise awareness, support vulnerable communities, and build global partnerships to protect glaciers, ice caps, snow, and permafrost. The site targets scientists, policymakers, Indigenous peoples, and the global public concerned with climate change and freshwater resources. Technically, the website is built on Drupal CMS, uses modern web technologies including Google Tag Manager and Google Analytics, and is optimized for mobile and accessibility. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. WHOIS data is unavailable, likely due to privacy protection, but the domain's content and branding strongly indicate legitimacy as a UN initiative. Overall, the site is professional, trustworthy, and content-rich, supporting its mission to drive urgent climate action.

Cryosoft.cz is a Czech-based internet advertising agency specializing in custom web development and multimedia projects. The company offers comprehensive internet projects including web presentations, CRM systems, e-shops, and online catalogs, supported by their proprietary CryoADMIN administration interface. Additionally, they provide multimedia services such as corporate identity creation, promotional videos, and original music production. The business targets clients seeking tailored digital solutions primarily within the Czech market. The website content is professional and well-structured, reflecting a small but specialized agency with a focus on quality and client references. Technically, the website employs standard web technologies including jQuery, CSS, and JavaScript, with a responsive design and good SEO practices. HTTPS is enforced, and cookie consent mechanisms are implemented to comply with GDPR requirements. However, no explicit privacy policy page was found, and no contact emails or phone numbers are directly visible on the homepage, which could impact user trust and compliance. From a security perspective, the site benefits from HTTPS and basic security best practices but lacks advanced security headers and published security policies or incident response contacts. The absence of WHOIS data reduces domain trustworthiness, although the website content and business information appear legitimate and consistent with a long-standing operation since 2006. Overall, the security posture is moderate with room for improvement in transparency and policy publication. The overall risk assessment is low to moderate, with recommendations to enhance security headers, publish privacy and security policies, and provide clear contact information to improve trust and compliance. The website is accessible without WAF or blocking mechanisms, enabling full content analysis.

The website www.mocnak.cz represents a personal portfolio for Jan Mocňák, a media professional specializing in graphic design, video production, and photography with 20 years of experience. The site is minimalistic, providing basic contact information and a brief description of services. There is no evidence of advanced business infrastructure or multiple service offerings beyond the individual professional's portfolio. The market position is that of a small-scale individual service provider targeting clients seeking media production services in the Czech Republic. Technically, the website uses basic HTML and CSS without any detected CMS or advanced frameworks. The site appears moderately optimized for mobile devices but lacks modern SEO and accessibility features. No analytics or tracking technologies are detected, indicating minimal digital marketing infrastructure. The absence of privacy, cookie, or terms of service policies suggests low digital maturity in compliance and user data protection. From a security perspective, the site does not show evidence of HTTPS enforcement or security headers, which lowers its security posture. The lack of WHOIS data raises concerns about domain registration transparency, although the site content itself does not indicate malicious intent. No forms or user input fields are present, reducing attack surface but also limiting user engagement capabilities. Overall, the website is a straightforward personal portfolio with limited technical sophistication and security measures. Strategic improvements in security headers, HTTPS enforcement, privacy compliance, and domain registration transparency would enhance trust and professionalism.

S

sitour Česká republika

sitour.cz

0

sitour Česká republika is a specialized company integrating advertising, information, and communication systems in mountain and tourist regions for over 20 years. They provide innovative multimedia and digital signage solutions tailored for ski resorts and outdoor tourism, positioning themselves as a leading network in the digital out-of-home advertising sector within the mountain resort industry. The website demonstrates a mature digital infrastructure using modern frameworks like Astro and integrates Google Analytics with a strong privacy consent mechanism. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and vulnerability disclosure mechanisms are absent. The absence of WHOIS data is a notable risk factor, but the professional presentation, international partnerships, and clear contact information support the legitimacy of the business. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements.

K

K2

k2snow.com

0

K2 is a well-established American ski and snowboard brand with a strong market presence since 1962. The website serves as an e-commerce platform targeting winter sports enthusiasts, offering skis, snowboards, and related equipment. The technical infrastructure leverages modern JavaScript frameworks, third-party payment and review integrations, and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protections, but lacks some advanced security headers and explicit security policies. Privacy compliance is partially addressed with cookie consent but lacks a visible privacy policy and terms of service. Overall, the website is professional and trustworthy but could improve transparency and security practices.

A

ALPINE PRO

alpinepro.cz

0

ALPINE PRO operates an e-commerce platform specializing in outdoor clothing and accessories, primarily targeting customers in the Czech Republic. The website presents a professional and consistent brand image with a clear focus on retail sales of outdoor apparel. The technical infrastructure leverages modern web technologies including JavaScript modules, Google Tag Manager, Facebook Pixel, and Cookiebot for consent management, indicating a mature digital presence. The site is mobile optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and includes standard security headers, contributing to a solid security posture. The presence of a comprehensive cookie consent mechanism aligns with GDPR compliance efforts, although explicit privacy policy and terms of service pages were not detected in the provided content. No critical vulnerabilities or exposed sensitive data were found, but the absence of a security.txt or vulnerability disclosure page suggests room for improvement in incident response transparency. Overall, the website is safe, trustworthy, and professionally maintained, with extensive user tracking and marketing integrations. The lack of WHOIS data limits domain ownership verification, but the website content and technical indicators support legitimacy. Strategic recommendations include publishing clear privacy and terms policies, providing direct company contact information, and establishing a formal vulnerability disclosure process to enhance trust and compliance.

L

Louda Holding a. s.

louda.cz

0

Louda Holding a. s. is a well-established Czech family-owned holding group founded in 1992, operating across six diverse sectors including automotive sales and service, mobility and financing, real estate development, manufacturing, glass production, and education. The company employs over 1,500 people and holds a strong market position as the largest ŠKODA and Hyundai car dealer in the Czech Republic and the largest carsharing provider. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting a general Czech audience. Technically, the site uses modern web technologies such as Bootstrap, jQuery, Google Tag Manager, and Cookiebot, hosted via REG-ZONER, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA integration, and cookie consent management, though it lacks some advanced security headers and explicit security policies. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious content or blocking mechanisms.

I

innogy Česká republika a.s.

innogy.cz

0

Innogy Česká republika a.s. is a prominent energy supplier in the Czech Republic, offering natural gas and electricity services to households, businesses, and large firms. The company provides a comprehensive digital experience including online price calculators, a customer portal named 'innosvět' for energy consumption monitoring, and additional services such as home assistance and insurance. The website is well-branded, professionally designed, and targets a broad audience of energy consumers in the region. Technically, the site employs modern JavaScript frameworks, Google Tag Manager for analytics, and Cookiebot for privacy compliance, ensuring a good level of digital maturity. Security posture is strong with HTTPS enforced and CAPTCHA protections on forms, though explicit security headers and a public security policy are absent. Overall, the site is trustworthy and compliant with GDPR, with clear contact information and social media presence. The lack of WHOIS data is likely due to privacy protection, which is justified for this business type.

S

SKI Bižu s.r.o.

skibizu.cz

0

SKI Bižu s.r.o. operates the SkiJizerky.cz website, providing winter sports services in the Jizera Mountains region of the Czech Republic, including ski areas Tanvaldský Špičák, Severák, and Bedřichov. The company offers ski passes, ski schools, equipment rentals, and transportation services such as skibus. The website targets winter sports enthusiasts and tourists seeking family-friendly ski resort experiences. The business appears to be a small regional operator with a focus on hospitality and tourism services. Technically, the website uses modern web technologies including jQuery and Adform tracking scripts, with a responsive design and good SEO practices. The site is served over HTTPS, includes cookie consent mechanisms, and provides multilingual support. However, no CMS or hosting provider details were identified, and some security headers appear to be missing. From a security perspective, the site enforces HTTPS and cookie consent but lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data raises concerns about domain registration legitimacy, which should be further investigated. Overall, the website is professional and trustworthy in appearance, with good content quality and user experience. The main risk lies in the unknown domain registration status and limited publicly available contact information. Strategic improvements in security headers, incident response transparency, and WHOIS registration clarity are recommended.

Holidayinfo.cz is a Czech-focused online portal providing comprehensive information about holiday resorts, including ski areas, accommodation, webcams, weather forecasts, and related tourist services. The website targets tourists and visitors interested in Czech recreational destinations, offering seasonal content for both summer and winter activities. The business operates as an information service platform with a niche regional focus, leveraging partnerships with related service providers such as accommodation platforms and ski pass services. The domain's long registration history since 2000 supports its established presence in the market. Technically, the website employs a custom JavaScript-based platform with libraries such as jQuery and Modernizr, integrated with Google Tag Manager and Google Analytics for tracking. The site uses HTTPS and implements a cookie consent banner, indicating basic privacy compliance. However, it lacks visible privacy policy and terms of service pages, and no direct contact information is provided on the homepage. The design is professional and consistent, though mobile optimization and accessibility are basic. From a security perspective, the site benefits from HTTPS and cookie consent mechanisms but lacks published security policies, incident response contacts, and advanced security headers in the HTML content. No vulnerabilities or suspicious patterns were detected. The WHOIS data confirms domain legitimacy and consistency with the website's content and business focus. Overall, Holidayinfo.cz presents a trustworthy and functional information portal with room for improvement in privacy disclosures, security transparency, and contact availability. Strategic enhancements in these areas would strengthen user trust and compliance posture.

C

CARTO

carto.com

0

CARTO is a well-established enterprise technology company specializing in advanced GIS and spatial analytics platforms that integrate seamlessly with cloud ecosystems. Founded in 1995, CARTO positions itself as a leader in scalable spatial data visualization and analysis, targeting businesses across multiple sectors including telecommunications, transportation, real estate, financial services, and healthcare. Their platform supports AI agents and data enrichment, catering to data analysts, scientists, and developers. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content describing their products and solutions. Technically, the website is built on modern web technologies including Webflow CMS, HubSpot forms, and integrates with major cloud providers such as AWS, Google Cloud, Azure, Snowflake, and Databricks. The site is hosted on AWS infrastructure with DNS managed by Amazon's DNS services. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. From a security perspective, CARTO employs HTTPS with strong SSL configuration and implements key security headers. Domain registration is consistent and long-standing, enhancing trustworthiness. However, DNSSEC is not enabled, and there is no publicly available security policy or incident response information. No vulnerability disclosure or security.txt file is present, which could be improved to enhance transparency and security posture. Overall, CARTO demonstrates a high level of professionalism, security, and compliance with privacy regulations such as GDPR. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enabling DNSSEC, publishing explicit security and incident response policies, and adding a vulnerability disclosure program to further strengthen trust and security maturity.

E

ENVItech Bohemia s.r.o.

envitech-bohemia.cz

0

ENVItech Bohemia s.r.o. is a Czech-based company specializing in environmental monitoring services and products, particularly air quality monitoring. Established in 1992, the company offers a comprehensive portfolio including monitoring systems, meteorological equipment, emission measurement, calibration, detection systems, and related software solutions. The company holds multiple certifications such as ISO 9001 and ISO 14001, reinforcing its credibility and compliance with industry standards. Their market position is solid within the environmental technology sector in the Czech Republic and broader EU region, supported by a network of subsidiaries and partner institutions. Technically, the website is built on the ByznysWeb.cz CMS platform, utilizing modern web technologies including Google Analytics for user tracking and consent management compliant with GDPR. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content. However, there is room for improvement in security headers and explicit incident response information. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable concern, potentially impacting trustworthiness and domain legitimacy verification. Overall, the website presents a professional and trustworthy front for ENVItech Bohemia s.r.o., with strong compliance and business credibility indicators. Strategic improvements in domain registration transparency and enhanced security headers would further strengthen their security posture and trust signals.

S

Sdružení Český ráj

zapovestmiceskehoraje.cz

0

The website 'Za pověstmi Českého ráje' is a regional tourism initiative focused on promoting family-friendly interactive hiking games and storytelling in the Czech Paradise region. It targets families with children and tourists interested in cultural and natural heritage. The site is supported by regional partners and associations, enhancing its credibility and market position. The business model revolves around engaging visitors through gamified experiences and providing practical travel tips and event information. Technically, the website is built on Drupal 10 with modern web technologies including Bootstrap 5 and Google Analytics for tracking. It demonstrates good mobile optimization, accessibility, and SEO practices, providing a positive user experience. However, the hosting provider is not explicitly identified, and performance is moderate. From a security perspective, the site enforces HTTPS and uses best practices for external links but lacks visible security headers and formal privacy or cookie policies, which are compliance gaps. No vulnerability disclosure or incident response information is provided. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, although the website content and partner links suggest a legitimate operation. Overall, the site is professionally designed and trustworthy for its audience but would benefit from improved privacy compliance and enhanced security transparency to strengthen its risk posture and user trust.