Security Directory

J

Jizerská o.p.s.

jizerskaops.cz

0

Jizerská o.p.s. is a Czech non-profit organization dedicated to supporting and providing information about the Jizerská magistrála, a popular cross-country skiing trail network in the Jizera Mountains. The website offers comprehensive resources including trail conditions, weather updates, event announcements, and tourist information aimed at skiers, tourists, and local community members. The organization maintains active social media profiles on Facebook and Instagram to engage with its audience. Technically, the website is built on a custom CMS platform likely provided by Galileo Corporation, utilizing JavaScript libraries such as jQuery, MooTools, and Highcharts for interactive features. The site is served over HTTPS and includes cookie consent mechanisms, indicating attention to privacy compliance. The design is user-friendly, mobile-optimized, and accessible, with clear navigation and relevant content. From a security perspective, the site employs HTTPS but lacks visible advanced security headers, which could be improved. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a concern for domain legitimacy and trust, though the website content and social presence suggest a legitimate entity. Overall, the security posture is moderate with room for enhancement. Strategically, the site serves as an important regional resource for winter sports enthusiasts and tourists, fostering community engagement and support through sponsorship and public fundraising. Recommendations include improving domain registration transparency, implementing additional security headers, and enhancing incident response and security policy disclosures to strengthen trust and compliance.

C

COOLINTSOFT s.r.o.

schranka-duvery.cz

0

The website www.schranka-duvery.cz is operated by COOLINTSOFT s.r.o. and provides an online trust box service targeted at primary and secondary schools in the Czech Republic. The platform enables anonymous messaging between students, parents, and designated school staff such as prevention methodologists, facilitating secure and confidential communication. The business model is subscription-based with a free trial and yearly prepaid plans, positioning the company as a niche provider in the educational technology sector within the Czech market. Technically, the website employs a modern front-end stack including jQuery, Font Awesome, Google Fonts, and animation libraries such as Animate.css and WOW.js. The site is mobile-optimized with good navigation and SEO practices. The presence of HTTPS and CAPTCHA on forms indicates a baseline security posture, although the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and security hardening. From a security perspective, the site demonstrates good practices such as SSL encryption and secure form handling but lacks advanced HTTP security headers and explicit privacy banners. The WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and reduces overall trustworthiness. However, the website content and business information appear professional and credible. Overall, the website scores moderately high on content quality, technical implementation, and business credibility but is slightly penalized for privacy compliance gaps and missing WHOIS transparency. Strategic recommendations include implementing security headers, adding cookie and privacy consent banners, verifying domain registration details, and publishing security policies to enhance trust and compliance.

B

BAKALÁŘI software s.r.o.

bakalari.cz

0

BAKALÁŘI software s.r.o. operates the leading school management system in the Czech Republic, serving over 3,500 schools and more than a million users. Their platform simplifies school administration and communication between schools and families, offering modules such as electronic class books, student data management, timetable generation, and cloud backup. The company has a strong market position with over 60% penetration in Czech schools and a 25+ year history, supported by EU funding and Ministry of Education partnerships. Technically, the website leverages a modern tech stack including jQuery, Bootstrap, Font Awesome, Owl Carousel, and DataTables, hosted on Microsoft Azure DNS infrastructure. The site is mobile-optimized and SEO-friendly, with good content quality and clear navigation. Privacy compliance is robust, featuring a comprehensive GDPR policy and a detailed cookie consent mechanism. Security posture is moderate with no visible critical vulnerabilities, though explicit security headers and incident response information are not published. The site uses HTTPS and avoids exposing sensitive data. Analytics are implemented via Google Analytics with user consent mechanisms in place. Overall, the website is professional, trustworthy, and well-aligned with its business goals. Recommendations include enhancing security headers, publishing terms of service and security policies, and considering a vulnerability disclosure policy to further strengthen trust and compliance.

The website tvrzoziva.cz serves as an informational portal for the Čelákovice fortress and museum, highlighting the ongoing reconstruction project and cultural exhibitions. It targets general visitors and history enthusiasts, providing detailed historical context and visitor information. The business operates as a small government/non-profit cultural institution with a local/regional focus. Technically, the site is built on WordPress with modern web standards and includes GDPR-compliant cookie consent management. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. No critical vulnerabilities or suspicious elements were detected. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it could improve in security documentation and contact transparency.

B

Blue Partners s.r.o.

realitniportalpraha.cz

0

The Real estate portal of Prague is an official municipal platform providing listings for flats, houses, nonresidential spaces, lands, and projects managed by the city of Prague. It targets citizens and potential tenants interested in municipal assets, offering transparent access to property information and bidding opportunities. The portal is operated by Blue Partners s.r.o., a company specializing in such services, and is well integrated with Prague's official digital ecosystem. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, Google Analytics, Facebook Pixel, and Google reCAPTCHA to ensure usability, tracking, and security. The site is hosted via Active24, a reputable provider, and uses HTTPS with basic security measures. However, it lacks advanced security headers and a published security policy. Privacy compliance is partially addressed with a cookie consent banner and opt-out mechanism, but no explicit privacy policy or terms of service are found on the main page. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve in security and privacy transparency.

K

Kulturní centrum Zahrada

kczahrada.cz

0

Kulturní centrum Zahrada is a small, community-focused cultural and social center based in Prague 11, Czech Republic. It offers a broad range of cultural events including concerts, theater, film screenings, educational programs, workshops, and leisure activities targeting a diverse audience from children to seniors. The website reflects a well-maintained digital presence with clear navigation, multilingual support, and integration of event management and ticketing systems. Technically, the site is built on WordPress using the Avada theme and several popular plugins, with modern JavaScript libraries and tracking tools implemented. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, although no explicit security policy or incident response contacts are published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving as a reliable information hub for its community.

U

Úvod | ÚP

uradprace.cz

0

The website www.uradprace.cz is the official online portal for the Czech Republic's public employment service, providing job seekers and employers with access to employment-related information and services. The site targets citizens seeking employment assistance and labor market data. Technically, the site employs modern web technologies such as StencilJS and web components, offering a responsive and accessible user experience. However, the site lacks publicly available WHOIS registration data, which reduces transparency and trust. Security posture is moderate with no detected security headers or explicit policies, and privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is functional and professional but would benefit from enhanced security and compliance measures.

J

Jihoměstská majetková a.s.

jihomestska.cz

0

Jihoměstská majetková a.s. is a municipal property management company serving the Prague 11 district in the Czech Republic. The company provides professional services managing residential and non-residential properties, parking facilities, maintenance of greenery and roads, sports facilities, and construction projects. Their website reflects a well-established local presence with a focus on community and municipal services. The target audience includes residents, property owners, and municipal stakeholders in Prague 11. The business model centers on property and facility management with a medium-sized operational scale and a history of over a decade in the market. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Contact Form 7, and Ajax Search Lite, indicating a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS with good SSL configuration, but lacks some advanced security headers and explicit privacy and cookie policies. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS and uses nonce tokens in forms to prevent CSRF attacks. However, it lacks published security policies, incident response plans, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Overall, the website is professional and trustworthy with good business credibility but requires improvements in privacy compliance and security best practices to enhance its security posture and regulatory adherence.

J

JIHOMĚSTSKÁ SOCIÁLNÍ a.s.

jmsoc.cz

0

JIHOMĚSTSKÁ SOCIÁLNÍ a.s. is a Czech social services provider established in 2009, focusing on care for seniors and handicapped citizens in Prague 11. The organization offers a range of services including home care, senior homes, respite care centers, catering, and counseling. Their website reflects a well-structured and professional digital presence built on WordPress with modern plugins and technologies. The site includes project information co-financed by EU and national funds, demonstrating active engagement in sustainable and community-focused initiatives. Technically, the website is moderately performant, mobile-optimized, and uses HTTPS with valid certificates, though it lacks some advanced security headers and explicit privacy policies. Security posture is adequate but could be improved with better header implementation and incident response details. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

Chodovská Tvrz

chodovskatvrz.cz

0

Chodovská Tvrz is a cultural center located in a historic building in Prague, offering a wide range of cultural activities including concerts, art exhibitions, theater, cinema for children, and art workshops. The website positions itself as a unique cultural landmark on Jižní Město, targeting local residents, families, and art enthusiasts. The business model revolves around event hosting, space rentals, and ticket sales, supported by partnerships with local government and cultural organizations. Technically, the site is built on WordPress with a modern tech stack including popular plugins for SEO, event management, and user engagement. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, although there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, with no signs of blocking or malicious activity.

P

Policie České republiky

policie.cz

0

The website policie.gov.cz is the official online presence of the Police of the Czech Republic, providing comprehensive information about police services, news updates, public safety resources, and contact points for citizens and foreigners. It serves as a critical government portal for law enforcement communication and public engagement. The site is well-branded, consistent, and targets a broad audience including the general public and foreign visitors seeking police-related information. Technically, the site uses legacy jQuery alongside modern analytics tools such as Google Tag Manager and Google Analytics. It enforces HTTPS and includes a Content Security Policy header, contributing to a solid security baseline. However, the use of an outdated jQuery version and minimal additional security headers represent areas for improvement. The site includes a cookie consent mechanism, supporting privacy compliance, though no explicit privacy policy or terms of service pages were found. Security posture is generally good with no visible vulnerabilities or blocking mechanisms detected. The absence of WHOIS data limits domain registration insights, but the official .gov.cz domain and consistent government branding strongly support legitimacy. The site does not contain any adult or questionable content and is safe for general audiences. Overall, the website is a professional government portal with good content quality and security practices, though it would benefit from modernizing its technical stack, enhancing security headers, and publishing clear privacy and terms policies to improve compliance and trust.

M

Městská Policie Brno

dopravnihristebrno.cz

0

Dopravní hřiště Riviéra Brno is a municipal traffic education facility operated by the Municipal Police of Brno, Czech Republic. It provides traffic safety education primarily targeting children, schools, and the general public through interactive projects, tests, and bicycle registration services. The website reflects a well-established public service with a clear focus on traffic education and safety, supported by EU funding and local government partnerships. The content is professionally presented in Czech and targets local audiences including schools and families. Technically, the website is built on TYPO3 CMS with modern web technologies including responsive design, external fonts, and icon libraries. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. SEO practices are adequate with proper meta tags and structured navigation. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit security policies or incident response information. Cookie consent mechanisms are absent despite GDPR relevance, which is a compliance gap. The WHOIS data aligns well with the municipal police entity, confirming legitimacy and trustworthiness. Overall, the website is a credible, well-maintained public service platform with good content quality and business credibility. Security and privacy compliance can be improved by adding cookie consent, security headers, and publishing security policies. These enhancements would strengthen user trust and regulatory compliance.

H

Hvězdárna a planetárium Brno, p. o.

hvezdarna.cz

0

Hvězdárna a planetárium Brno is a public observatory and planetarium institution located in Brno, Czech Republic, providing astronomy education, public programs, and cultural events. It operates under the statutory city of Brno and targets the general public, schools, and astronomy enthusiasts. The website reflects a well-maintained digital presence with clear navigation, multilingual support, and rich content about events and educational offerings. Technically, the site is built on WordPress with modern plugins for GDPR compliance and tracking, including Facebook Pixel for marketing purposes. The site is mobile optimized and performs moderately well. From a security perspective, the website uses HTTPS with good SSL configuration and cookie consent mechanisms. However, it lacks advanced security headers and does not publish explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with clear cookie and privacy policies in Czech language. Business credibility is supported by official city affiliation and multiple partner organizations displayed on the site. Overall, the site is safe, professional, and trustworthy with no adult or questionable content. The lack of WHOIS data is due to privacy protection, which is justified for this type of public institution. Recommendations include enhancing security headers, publishing vulnerability disclosure and incident response information, and maintaining ongoing compliance with privacy regulations.

S

Statutární město Brno

brno.cz

0

The website www.brno.cz serves as the official digital presence of the statutory city of Brno, Czech Republic. It provides comprehensive municipal services, administrative information, news, and resources for residents and visitors. The site is well-branded, consistent, and targets a broad audience including citizens, businesses, and tourists. It leverages modern web technologies and a robust CMS platform (Liferay) to deliver a professional and accessible user experience. The site integrates privacy-respecting analytics (Matomo) and maintains a strong social media presence across major platforms. However, the absence of visible cookie consent mechanisms and security policy disclosures suggests areas for compliance improvement. Technically, the site uses a modern tech stack including React, jQuery, and Clay UI components within the Liferay framework. Performance and mobile optimization are good, with accessibility features implemented. Security posture is strong with HTTPS enforced and privacy-conscious analytics configuration, though additional HTTP security headers and published security policies would enhance trust. The WHOIS data is unavailable due to registry privacy, which is common for government domains, but the site content and branding strongly support legitimacy. Overall, the site is a reliable and professional government portal with minor gaps in privacy compliance and security transparency. Strategic recommendations include implementing a cookie consent banner, publishing security and incident response policies, and adding vulnerability disclosure information to strengthen user trust and regulatory adherence.

A

ArtFocus

artlogo.biz

0

ArtLogo, operated by ArtFocus, is a Slovak-based small business specializing in professional and creative logo design services. The website offers multiple tiered packages for logo creation, including express options and additional branding materials such as business cards and letterheads. The company targets businesses seeking custom and original branding solutions, emphasizing artistic and tailored designs. The site is well-structured with good mobile responsiveness and clear navigation, supporting a positive user experience. Technically, the website uses a proprietary CMS (ArtFocus Admin System) and integrates common analytics and marketing tools such as Google Analytics, Facebook Pixel, and Crazy Egg. However, it lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and user trust. No direct contact emails or phone numbers are present in the HTML, which may hinder user communication. Overall, the site demonstrates moderate digital maturity with room for improvement in security and privacy compliance.

A

ArtFocus

artlogo.sk

0

ArtLogo is a Slovak-based small business specializing in professional and creative logo design services. The company offers multiple tiered packages for logo creation, including express options and additional graphic design services such as business card and logo manual design. The website demonstrates a consistent brand presence with good content quality and user experience, targeting businesses seeking custom logo solutions. Technically, the site uses a proprietary CMS (ArtFocus Admin System) and integrates common analytics and marketing tools such as Google Analytics, Facebook Pixel, and CrazyEgg. Mobile optimization and navigation are well implemented, though accessibility features are basic. Security posture is moderate with no visible HTTPS enforcement or security headers in the HTML content, and no privacy or cookie policies are present, indicating gaps in compliance and security transparency. Overall, the site is functional and professional but would benefit from enhanced security practices and privacy compliance to improve trust and regulatory adherence.

M

Made by Büro

madebyburo.com

0

Made by Büro operates a technology platform accessible via a login portal, likely serving business clients requiring authenticated access. The website is built using AngularJS and integrates with ActiveCollab APIs, indicating a modern albeit somewhat dated technical infrastructure. The domain is stable and registered since 2014, supporting the legitimacy of the business. However, the public-facing content is minimal, focusing solely on user authentication without additional business or contact information. Security practices include HTTPS enforcement and CSRF token usage, but lack visible security headers and published policies, which limits transparency and compliance assurance. Privacy and cookie policies are absent, which may pose compliance risks under GDPR or similar regulations.

H

Health of the Ukranian people ICF

houp.org

0

Health of the Ukranian people ICF is an international charitable foundation established in 2009, focused on supporting healthcare access and innovation in Ukraine. The foundation aims to improve population health by providing quality medical care, educating doctors, and fostering systematic charity efforts. The website reflects a non-profit healthcare mission with a consistent brand and good content quality. Technically, the site is built on WordPress using the Divi theme, integrating multiple analytics and tracking services such as Google Analytics, Microsoft Clarity, TikTok, and Facebook pixels. While the site uses HTTPS and has a stable domain registration, it lacks key privacy and cookie policies, and security headers are not detected, indicating room for security and compliance improvements. No WAF or blocking mechanisms were detected, and the content is safe for general audiences.

L

Останні новини України та світу. Війни в Україні

liga.net

0

LIGA.net is a prominent Ukrainian news portal delivering up-to-date news on Ukraine and global events, with a focus on the ongoing conflict involving Russia. The website offers comprehensive news coverage, multimedia content, and live updates, targeting a broad general audience interested in current affairs. It holds a strong market position as a leading media outlet in Ukraine. Technically, the site employs modern web technologies including JavaScript, Google Analytics, Google Tag Manager, and AMP for performance and tracking. The site is mobile-optimized and SEO-friendly, with consistent branding and professional design. Security-wise, the site uses HTTPS but lacks explicit security headers and visible privacy or cookie policies, indicating room for improvement in compliance and security best practices. Overall, the site is trustworthy and professionally maintained, though it would benefit from enhanced privacy compliance and security measures.

U

Ukrainian American Coordinating Council (UACC)

uaccusa.org

0

The Ukrainian American Coordinating Council (UACC) is a non-profit organization dedicated to supporting the Ukrainian-American community in the United States through cultural promotion, business support, humanitarian aid, and political advocacy. The organization has a longstanding history dating back to the 1960s and maintains an active online presence with donation mechanisms and community engagement via social media. Technically, the website is built on WordPress using Elementor and jQuery, hosted via GoDaddy, and employs HTTPS for secure communications. However, there are gaps in privacy and cookie policies, and no explicit security headers or vulnerability disclosures are present, which could be improved to enhance trust and compliance. The domain registration is consistent with the organization's profile, showing no suspicious patterns and appropriate domain age.

H

HELP UKRAINE ROMANIA

helpukraineromania.org

0

HELP UKRAINE ROMANIA is a small non-profit humanitarian aid organization focused on providing medical and humanitarian assistance to Ukraine, primarily through a logistics hub in Chernivtsi. The organization collaborates with Ukrainian government bodies, local authorities, and volunteer business initiatives to coordinate aid transport and delivery. Their services include receiving aid requests, organizing logistics from Europe and worldwide, and partnering with major Ukrainian logistics companies for targeted aid distribution. The website is multilingual and targets donors, volunteers, and aid recipients. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript, and integrates Google Analytics and Google Tag Manager for tracking. Hosting is provided by Mirohost, and the site is mobile-optimized with good SEO practices. However, there is no detected CMS or advanced frameworks. Performance is moderate, and accessibility is basic. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. There are no visible privacy or cookie policies, which is a compliance gap. No vulnerability disclosure or security.txt file is present. The WHOIS data is consistent with the organization's founding date and shows no suspicious patterns, supporting legitimacy. Overall, the website is trustworthy and professional but would benefit from improved privacy compliance and enhanced security practices to better protect users and build trust.

The website novaukraine.org is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any substantive content. As a result, no business information, contact details, or policy documents are available for analysis. The domain is registered with Cloudflare, Inc. since 2014, indicating a stable and legitimate registration history. However, the lack of DNSSEC and absence of visible security headers or policies on the accessible page limits the ability to assess the site's security posture fully. The technical infrastructure relies on Cloudflare services, but the blocking page suggests active security measures are in place to protect the site from potential attacks. Overall, the site cannot be fully evaluated due to the WAF block, resulting in a low AI score and limited insights.

Save the Children Federation, Inc. operates a comprehensive and professionally designed website focused on child welfare, humanitarian aid, and education. The organization is positioned as a leading non-profit with a century-long history, serving children in the U.S. and globally. The website effectively targets donors, volunteers, and partners with clear messaging and secure donation mechanisms. Technically, the site uses a modern Drupal CMS infrastructure with integrations for analytics and marketing, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response details are not published. Overall, the site demonstrates high trustworthiness and compliance with privacy regulations, including GDPR. The lack of WHOIS data is mitigated by strong on-site trust signals and recognized charity certifications.

B

Blue / Yellow

blue-yellow.lt

0

Blue / Yellow is a Lithuanian non-governmental organization established in 2014 that provides critical supplies and support to Ukrainian soldiers and volunteers in their fight against Russian aggression. The organization operates multiple fundraising campaigns focused on drones, medical aid, vehicles, and training, positioning itself as a key humanitarian aid facilitator with a strong presence in Lithuania and active media coverage. The website is built on WordPress with modern web technologies and integrates analytics and tracking tools such as Google Tag Manager and Facebook Pixel. Security posture is adequate with HTTPS and Cloudflare DNS, but lacks explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms of service pages. Overall, the site is professional, trustworthy, and well-branded, serving a general audience interested in supporting Ukraine.

Б

Благодійний фонд «Схід SOS»

east-sos.org

0

Благодійний фонд «Схід SOS» є українською неприбутковою організацією, що надає всебічну допомогу постраждалим від збройного конфлікту, внутрішньо переміщеним особам, а також підтримує громади через гуманітарні, правові, психологічні та освітні проєкти. Організація має стабільну позицію на ринку благодійних фондів в Україні, активно співпрацює з міжнародними донорами та партнерами. Технічна інфраструктура сайту базується на WordPress з використанням сучасних плагінів для SEO, доступності та інтерактивності, що забезпечує добру продуктивність та мобільну оптимізацію. З точки зору безпеки, сайт використовує HTTPS, має налаштований статус домену clientTransferProhibited, але не використовує DNSSEC, а також не має видимих політик безпеки чи контактів для інцидентів. Загалом, сайт є професійним, надійним і орієнтованим на користувача, але може покращити відповідність GDPR шляхом впровадження механізму згоди на куки та публікації політики безпеки.

R

Revived Soldiers Ukraine

rsukraine.org

0

Revived Soldiers Ukraine is a small non-profit organization dedicated to providing aid to wounded Ukrainian soldiers. The organization operates primarily through donations and awareness campaigns, positioning itself as a trusted charity with a clear mission. The website reflects a professional and consistent brand image, with clear calls to action for donations and informative content about their work. The target audience is the general public interested in supporting humanitarian efforts related to the Ukraine crisis. Technically, the website is built using modern web technologies including Vue.js and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, Microsoft Clarity, and HubSpot. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. However, there is room for improvement in accessibility and privacy compliance, particularly regarding cookie consent mechanisms. From a security perspective, the site enforces HTTPS and does not expose sensitive data in its HTML content. While no explicit security policies or incident response contacts are provided, the overall security posture is solid with no visible vulnerabilities. The lack of WHOIS data limits domain registration trust verification, but the presence of trust indicators such as Guidestar certification and IRS 501(c)(3) status supports legitimacy. Overall, the website presents a low-risk profile with strong business credibility and a good technical foundation. Strategic recommendations include implementing a cookie consent banner, adding terms of service and security policy pages, and enhancing accessibility features to improve compliance and user trust.

U

United Help Ukraine

unitedhelpukraine.org

0

United Help Ukraine is a registered 501(c)(3) non-profit organization founded in 2014, dedicated to supporting the Ukrainian people through humanitarian aid, tactical medicine, and medical assistance. The organization has a strong market position as a trusted charity with multiple programs targeting defenders, medical aid, and humanitarian welfare. Their website is professionally designed, content-rich, and optimized for user engagement and donations. Technically, the site is built on WordPress with modern plugins and tracking tools, hosted by InMotion Hosting, and employs HTTPS with good security practices, although some security headers and DNSSEC are missing. Privacy compliance is well addressed with a cookie consent mechanism, but explicit privacy and security policies are not clearly found. The domain registration data aligns well with the organization's history, enhancing trustworthiness. Overall, the website demonstrates a mature digital presence suitable for its non-profit mission.

P

People’s Project.com

peoplesproject.com

0

People’s Project.com is a Ukrainian volunteer center focused on supporting the Ukrainian Army and providing treatment for severely wounded soldiers using unique technologies. The website positions itself as a national non-profit organization with a medium-sized presence in Ukraine. Technically, the site is built on WordPress with common plugins such as Elementor and photo gallery tools, and it integrates analytics and tracking services like Google Analytics, Facebook Pixel, and Hotjar. The site is accessible, uses HTTPS, and has moderate performance and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site appears legitimate in content and purpose but requires improvements in transparency and security practices.

R

Razom

razomforukraine.org

0

Razom is a well-established non-profit organization dedicated to supporting Ukraine through humanitarian aid, advocacy, cultural promotion, and community engagement. The website reflects a mature digital presence with comprehensive program descriptions and active social media integration, positioning Razom as a credible and impactful entity in its sector. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and privacy compliance are recommended. The absence of WHOIS data limits domain trust analysis but is likely justified given the organization's geopolitical context. Overall, Razom's website is professional, trustworthy, and effective in communicating its mission and services.

Т

Таблеточки

tabletochki.org

0

Tabletochki is a well-established Ukrainian non-profit charitable foundation dedicated to supporting children with cancer and their families. Founded in 2012, it operates as a leading pediatric oncology charity in Ukraine, providing direct aid, hospital support, medical education, and advocacy. The website reflects a mature digital presence with comprehensive content, clear navigation, and active engagement channels including social media and donation platforms. Technically, the site is built on WordPress, uses modern web technologies, and is hosted behind Cloudflare for performance and security. Privacy and cookie consent mechanisms are robust and GDPR compliant, reflecting a strong commitment to user data protection. Security posture is good with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and additional HTTP security headers could be implemented. Overall, the site is professional, trustworthy, and well-positioned to serve its mission and audience.

B

Агенти крові — все про донорство крові в Україні

bloodagents.com

0

Bloodagents.com is an informational website dedicated to blood donation in Ukraine, providing details about projects and initiatives related to blood donors. The site targets Ukrainian donors and organizations involved in blood donation, positioning itself as a niche platform in the non-profit sector. The website was established in 2020 and maintains a consistent branding and good content quality focused on its mission. Technically, the site is built using the Weblium website builder, employs modern web standards, and integrates Google Tag Manager for analytics. Hosting and DNS services are managed through reputable providers including NS1 and Squarespace DNS. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC, which are recommended for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is safe, professional, and serves its informational purpose well but would benefit from enhanced security and privacy practices.

K

Kyiv Independent

kyivindependent.com

0

The Kyiv Independent is an English-language independent news media outlet focused on providing comprehensive news coverage about Ukraine. Founded in 2021, it targets English-speaking audiences interested in Ukrainian political, social, and economic affairs. The website offers news articles, analysis, and subscription/donation options, positioning itself as a trusted source of independent journalism in the region. Technically, the site is built on modern frameworks such as Next.js and React, hosted with Cloudflare DNS, and integrates Google Analytics and Tag Manager for tracking. The site demonstrates good performance, mobile optimization, and SEO practices. Security-wise, the site enforces HTTPS, employs standard security headers, and has a clientTransferProhibited domain status, though DNSSEC is not enabled. No explicit security policy or incident response contacts are published, and no vulnerability disclosure program is evident. Overall, the site is professional, trustworthy, and safe for general audiences, with room for improvement in security transparency and DNS security. Strategic recommendations include enabling DNSSEC, publishing a security policy, and establishing a vulnerability disclosure channel.

H

hromadske

hromadske.ua

0

Hromadske is a well-established Ukrainian independent news media organization founded in 2013. It provides comprehensive news coverage including political, economic, social, and cultural topics, along with video content, podcasts, and special projects. The website targets a general audience interested in current events in Ukraine and worldwide. Technically, the site uses modern web technologies such as React and integrates analytics and advertising scripts from Google and Membrana Media. The site is mobile optimized and well-structured for user experience. Security posture is good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies. No contact information or incident response details are publicly available, which could be improved for transparency and compliance. Overall, the site is professional, trustworthy, and content-rich, serving as a key media outlet in Ukraine.

U

UkraineNow

ukrainenow.org

0

UkraineNow is a non-profit initiative focused on providing humanitarian aid and tech support to Ukrainians affected by the war. It operates as a decentralized platform connecting volunteers, tech talents, private companies, and non-profits to deliver immediate assistance and sustainable impact through technology and resources. The organization is backed by Radical Philanthropies, a 501c3 IRS-approved non-profit, and has established partnerships with leading tech companies and media outlets, enhancing its credibility and reach. Technically, the website is built on the Webflow platform, leveraging modern web technologies including Google Analytics for tracking, Google reCAPTCHA for form security, and Weglot for multilingual support. The site is well-optimized for mobile devices, fast loading, and accessible, with a professional design and clear navigation. However, some security best practices such as explicit security headers and cookie consent mechanisms could be improved. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. The lack of WHOIS data due to privacy protection is typical for non-profits but slightly reduces transparency. Privacy compliance is basic with a privacy policy present, but cookie policy and terms of service are missing. Overall, UkraineNow presents a trustworthy and professional online presence with a strong humanitarian mission. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing a security policy, and adding security headers to improve security posture and user trust.

L

LifeLine Ukraine

lifelineukraine.com

0

LifeLine Ukraine is a non-profit organization providing critical mental health support and suicide prevention services across Ukraine. Established in 2019, it operates a 24/7 hotline (short number 7333) and offers crisis intervention, educational courses, and resources. The organization targets individuals experiencing emotional crises, including veterans and the general population. The website reflects a professional and consistent brand presence with clear navigation and relevant content. Technically, the site uses modern frameworks such as Nuxt.js and Prismic CMS, integrating analytics and live chat tools to enhance user engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and security headers are recommended. Overall, the domain registration aligns well with the organization's history, supporting its legitimacy.

У

Українська Жіноча Варта

uavarta.org

0

Українська Жіноча Варта is a Ukrainian non-profit organization dedicated to women's resistance movement, providing training in self-defense, medical skills, and survival during combat situations, alongside daily news updates about the war in Ukraine. The organization targets civilians and the general public interested in these services. The website is built on WordPress with a modern plugin ecosystem including WooCommerce, Elementor, and event calendar tools, hosted by Hosting Ukraine LLC and utilizing Cloudflare DNS and CDN services. The site is multilingual and optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and use of Cloudflare, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is limited as no explicit privacy or cookie policies were found. Contact information includes a verified phone number and multiple social media profiles. Overall, the website is professional, trustworthy, and safe for general audiences.

П

Проект МОЛЬФАР ГО "МОЛЬФАР"

molfar.org

0

Проект МОЛЬФАР ГО "МОЛЬФАР" є неприбутковою волонтерською організацією, що підтримує Збройні Сили України та їх сім'ї через збір коштів, надання матеріальної та моральної допомоги, а також розвиток освітніх і культурних ініціатив. Організація має стабільну позицію на ринку волонтерської підтримки, з довірою серед військових та меценатів, що підтверджується 11-річним досвідом та активною діяльністю. Технічно сайт побудований на WordPress з використанням сучасних технологій, таких як jQuery та Google Fonts, а також інтеграцією платіжної системи LiqPay для збору пожертв. Сайт має добру мобільну оптимізацію та SEO, хоча є можливості для покращення доступності та впровадження додаткових безпекових заходів. З точки зору безпеки, сайт використовує HTTPS, має домен з захистом від трансферу, але не використовує DNSSEC і не має публічних політик безпеки чи контактів для інцидентів. Відсутність cookie consent та політики конфіденційності з GDPR-комплаєнсом є недоліками. Загальний ризик сайту є помірним, з високою довірою до бізнесу, але з потенціалом для покращення у сфері безпеки та приватності. Рекомендується впровадити додаткові заходи безпеки, публікувати політики безпеки та інцидентів, а також забезпечити відповідність GDPR.

M

Medical battalion "Hospitallers"

hospitallers.life

0

The Medical Battalion "Hospitallers" is a Ukrainian volunteer paramedic organization founded in 2014 by Yana Zinkevich. It operates on the front lines providing first aid, evacuation, and rehabilitation support to wounded individuals during the ongoing conflict in Ukraine. The organization relies heavily on charitable donations and volunteer efforts, with a strong presence across multiple donation platforms including bank transfers, PayPal, and cryptocurrencies. Their mission is encapsulated in the slogan "For the sake of every life." The website serves as a hub for information, fundraising, and volunteer recruitment, targeting donors and supporters globally. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as Google Fonts, Google Tag Manager, and Weglot for multilingual support. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, some accessibility features are basic, and SEO is adequately implemented. From a security perspective, the site uses HTTPS with good SSL configuration but lacks several important security headers. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. The WHOIS data for the domain is malformed and unavailable, which slightly reduces trust in domain legitimacy. No incident response or vulnerability disclosure information is provided. Overall, the website is a credible and professional platform for a small non-profit healthcare organization, with room for improvement in privacy compliance and security best practices. The lack of WHOIS transparency is a concern but is mitigated by the organization's visible operational history and social media presence.

Б

БО “БФ “КОЛО УКРАЇНА”

koloua.com

0

KOLO is a Ukrainian non-profit charitable foundation founded in 2022 by members of the tech community to provide technological support to the Ukrainian armed forces. The foundation focuses on delivering critical devices such as communication equipment, drones, electronic warfare systems, and optics to frontline defenders. It operates a donation-based business model including one-time donations and subscription-based funding, supported by a broad community and reputable partners. The website is professionally designed, mobile-optimized, and provides transparent reporting and multiple donation channels. Technically, KOLO uses modern web technologies including Django backend, Amazon S3 hosting for assets, and integrates analytics tools like Google Analytics and Hotjar for user insights. Security posture is good with HTTPS enforced and domain transfer lock enabled, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is adequate with privacy and cookie policies present, but lacks a cookie consent mechanism. Overall, KOLO presents a trustworthy and professional online presence aligned with its mission to support Ukraine's defense through technology.

The website prytulafoundation.org is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct access to content. As a result, no business information, contact details, or policies are available for analysis. The domain is registered with NameCheap since March 2022 with a long expiry date, indicating a stable registration. The site uses Cloudflare for DNS and security services. Due to the access restriction, the technical infrastructure cannot be fully assessed beyond the presence of Cloudflare security mechanisms. Security posture evaluation is limited, but the use of Cloudflare indicates some baseline protection. Overall risk assessment is constrained by lack of content access, and strategic recommendations focus on enabling access for proper evaluation and ensuring transparency of policies and contact information.

D

DeConf.com

deconf.com

0

DeConf.com is a niche technology website specializing in WordPress plugins and Joomla extensions, with a strong focus on analytics insights and SEO tutorials. The site targets website owners, developers, and digital marketers seeking tools and knowledge to improve website performance and analytics. The business operates on a content and software distribution model, supported by advertising and subscription updates. Technically, the site is built on WordPress using the Genesis Framework, integrates Google Analytics and Jetpack, and employs modern web technologies with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and domain registration consistent with the business age, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and provides valuable content to its audience.

The website www.mf.cz functions primarily as a content aggregator portal recommending a variety of Czech internet websites focused on technology, finance, health, software, and media. It does not provide direct business services but serves as a gateway to partner sites. The site is modest in size and scope, targeting Czech internet users interested in these topics. Technically, the site uses modern frameworks such as Bootstrap 5 and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile responsive and has a basic but functional design. Security posture is moderate with HTTPS likely enabled (not explicitly confirmed) but lacks visible security headers and privacy policies, which reduces compliance and trust. The absence of WHOIS data is a significant limitation in assessing domain legitimacy and ownership transparency. Overall, the site is safe for general audiences and does not contain adult or explicit content.

D

Deník.cz

denik.cz

0

Deník.cz is a prominent Czech news portal providing comprehensive regional, national, and international news coverage. It serves a broad audience in the Czech Republic with content spanning politics, culture, sports, and everyday life. The website is part of the Vltava Labe Media group, a significant player in the Czech media landscape. The site demonstrates a mature digital presence with structured data, social media integration, and a professional design tailored for desktop and mobile users. Technically, Deník.cz employs modern web technologies including Google Tag Manager, Gemius analytics, and content delivery via Cloudfront, ensuring moderate performance and good SEO practices. Security-wise, the site enforces HTTPS and includes standard security headers, though it lacks a publicly visible security policy or vulnerability disclosure program. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligning with GDPR requirements. Overall, Deník.cz presents a trustworthy and professional media outlet with a strong market position in Czech regional news.

Č

Česká unie cestovního ruchu, z.s

ceskauniecr.cz

0

Česká unie cestovního ruchu, z.s is the largest independent professional association in the Czech Republic dedicated to coordinating and representing the interests of tourism entrepreneurs. The organization plays a key role in supporting and developing the tourism sector to enhance competitiveness and sustainable growth. Their website reflects a professional and modern digital presence built on the SvelteKit framework with Firebase backend services, indicating a good level of technical maturity. The site is well-structured, mobile-optimized, and provides clear contact information and social media links, supporting effective stakeholder engagement. Security posture is adequate with HTTPS enforced, but lacks some security headers and formal privacy and cookie policies, which are important for compliance and trust. Overall, the website is trustworthy and serves its target audience effectively, though improvements in privacy compliance and security best practices are recommended.

Cyklisté vítáni is a Czech certification brand focused on promoting cycling-friendly accommodations and services such as hotels, guesthouses, cafes, campsites, museums, and wineries. The website serves as an informational portal providing an interactive map of certified facilities, certification application forms, and contact details for coordinators. The business targets cyclists and service providers aiming to enhance cycling tourism experiences in the Czech Republic. The domain has been registered since 2005, supporting the legitimacy and longevity of the brand. Technically, the website is a simple, well-structured HTML page with CSS styling and embedded Google Maps content. It is mobile-optimized and provides clear navigation and relevant content. However, it lacks advanced technical frameworks, CMS, or analytics tools. The site does not implement privacy or cookie policies, nor does it display security headers, which limits its compliance and security posture. From a security perspective, the site uses HTTPS (assumed from the URL provided), but no additional security headers or incident response information are present. There are no visible vulnerabilities or exposed sensitive data. The absence of privacy and cookie policies and security best practices reduces the overall security and privacy compliance score. Overall, the website is functional and trustworthy for its informational purpose but would benefit from enhanced privacy compliance, security headers, and transparency policies to improve user trust and regulatory adherence.

S

Digital audio guide for your visitors | SmartGuide

smart-guide.org

0

The website www.smartguide.app is a small business site built on the Wix platform, utilizing Wix Thunderbolt framework and integrating marketing and analytics tools such as HubSpot and Facebook Ads Pixel. The site content is minimal with no visible privacy, cookie, or terms of service policies, and lacks explicit contact information. Technically, the site uses HTTPS and standard Wix hosting but does not implement advanced security headers or visible compliance mechanisms. The security posture is moderate with some best practices in cookie handling and script hardening but lacks comprehensive policies or incident response information. Overall, the site presents a basic digital presence with room for improvement in privacy compliance, security transparency, and business credibility.

A

Asociace turistických informačních center České republiky

aticcr.cz

0

Asociace turistických informačních center České republiky is a well-established non-profit association founded in 2006, dedicated to supporting and certifying tourist information centers across the Czech Republic. The website serves as a comprehensive resource for certification, education, and promotional activities targeting tourist centers and regional tourism stakeholders. The association holds recognized ISO certifications and maintains a strong presence in the Czech tourism sector. Technically, the website uses a legacy CMS (Vismo) with standard web technologies including jQuery and Google Analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is moderate with room for improvement in security headers and updating legacy libraries. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

D

Destinační společnost Hradecko

hradecko.cz

0

Destinační společnost Hradecko operates as a regional destination management organization promoting tourism, cultural heritage, and events in the Hradec Králové region of the Czech Republic. The website serves as an information hub for tourists, local businesses, and families, providing event calendars, attraction details, and regional products. The organization is supported by local government entities, enhancing its credibility and market position within the hospitality and non-profit sectors. Technically, the website employs modern web technologies including Bootstrap 5, FontAwesome, Google Fonts, and Google Translate integration, ensuring a responsive and multilingual user experience. The site features a cookie consent mechanism and basic GDPR compliance, though lacks advanced security headers and detailed security policies. Performance and accessibility are moderate to good, with room for improvement in security hardening. From a security perspective, the site uses HTTPS and includes cookie consent but does not expose sensitive data or show signs of vulnerabilities in the visible content. However, the absence of WHOIS registration data reduces domain trustworthiness and suggests either privacy protection or registration issues. No incident response or vulnerability disclosure information is provided, indicating potential gaps in security transparency. Overall, the website is professionally designed and content-rich, targeting a general audience interested in regional tourism. The main risks relate to incomplete domain registration transparency and limited security policy disclosures. Strategic improvements in security headers, incident response readiness, and WHOIS data transparency would enhance trust and compliance.

The website tempus-termine.com represents a small telecommunications service provider named Berner Telecom-Dienste based in Wuppertal, Germany. The domain has been registered since 2013, indicating a stable presence, but the website content is extremely minimal, consisting only of a heading and a single word paragraph. There is no metadata, no contact information, no privacy or cookie policies, and no visible security or compliance features. The technical infrastructure is basic, with no detected CMS, frameworks, or modern technologies. Hosting is provided by Vautron Rechenzentrum AG, a reputable data center and registrar. From a security perspective, the site lacks essential security headers, HTTPS status is unknown, and DNSSEC is not enabled, which could expose the domain to certain risks. No forms or data collection mechanisms are present, reducing immediate data protection concerns but also indicating a lack of user engagement features. The absence of privacy and cookie policies suggests non-compliance with GDPR and related regulations. The domain registration data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, the website's risk profile is moderate due to minimal content and lack of security best practices. The business credibility is low due to the absence of contact details and trust indicators. Strategic improvements should focus on enhancing website content, implementing security best practices including HTTPS and security headers, and publishing privacy and cookie policies to improve compliance and user trust.

B

BippesBrandão GmbH

bippesbrandao.de

0

BippesBrandão GmbH is a small, professional digital agency based in Offenbach, Germany, specializing in tailored digital solutions including strategy, user experience, visual design, and development. The company targets national and international clients seeking high-quality digital agency services. Their market position is supported by a portfolio of notable clients and a consistent, professional web presence. Technically, the website employs modern web standards, including HTML5, CSS3, JavaScript, and integrates multimedia content via Vimeo. The use of a headless CMS (Directus) for media management indicates a modern content infrastructure. Security-wise, the site enforces HTTPS, implements cookie consent for analytics, and anonymizes IPs in Google Analytics (though GA is currently commented out). However, security headers are not explicitly detected, and no incident response or vulnerability disclosure policies are published. Overall, the site is well-designed, user-friendly, and trustworthy, with minor improvements recommended in security headers and explicit security policies.