Is frantiskovylazne.cz Safe? Security Analysis for Františkovy Lázně
Check if frantiskovylazne.cz is a scam or legitimate. Free security scan and reviews.

AI Summary
Františkovy Lázně is a historic spa and wellness destination in the Czech Republic, boasting a tradition since 1793 and recognized by UNESCO. The website presents a professional image with a focus on health tourism and spa services targeting a broad audience including all generations. Technically, the site is built on WordPress using the Divi theme and incorporates multiple third-party tracking and advertising technologies such as Google Analytics, Hotjar, Adform, and Facebook Pixel. The site is secured with HTTPS and implements a comprehensive cookie consent mechanism, reflecting good privacy compliance practices. However, the absence of a visible privacy policy and WHOIS data limits full trust verification. Security posture is generally good but could be improved by updating libraries and adding security headers and public security policies. Overall, the site is functional, professional, and trustworthy but would benefit from enhanced transparency and security documentation.
Detected Technologies
🧠AI Business Intelligence
Technology stack, business insights, and market analysis powered by AI.
Business Intelligence
Market & Strategic Analysis
The business operates in the hospitality sector, specifically in spa and wellness services, leveraging its historic and UNESCO status as a competitive advantage. The business model focuses on health tourism with offerings tailored to various customer segments. The website integrates with multiple partners and advertising networks to enhance marketing reach. Growth indicators include the use of modern digital marketing tools and a multilingual approach. The partnership ecosystem includes related spa and hotel sites, indicating a collaborative regional network. Strategic observations suggest opportunities to strengthen direct customer engagement by publishing clearer contact and compliance information.
Extracted Contact Information
Marketing Intelligence Data
Email Addresses (1)
Security Posture Analysis
Comprehensive Security Assessment
The website demonstrates a moderate to good security maturity level with HTTPS enforced and cookie consent implemented. However, the use of an outdated jQuery version and lack of security headers present potential vulnerabilities. No evidence of exposed sensitive data or critical vulnerabilities was found. Compliance with GDPR is partially addressed through cookie consent but lacks a published privacy policy and incident response information. The absence of a security.txt file and vulnerability disclosure reduces transparency. Overall, the security posture is adequate for the business type but requires improvements to meet higher standards and regulatory expectations.
Strategic Recommendations
Priority Actions for Security Improvement
Publish a comprehensive privacy policy and terms of service accessible from the website footer or main navigation.
✨Observations
AI-powered comprehensive website and business analysis.
AI-Enhanced Website Analysis
Business Insights
Františkovy Lázně
Výjimečné lázně s tradicí již od roku 1793. Výhradně místní přírodní léčivé zdroje. Široká nabídka pobytů pro všechny generace.
good
consistent
Technical Stack
moderate
good
basic
good
Security Assessment
- HTTPS enforced
- Cookie consent banner implemented
Analytics & Tracking
Advertising & Marketing
Website Quality Assessment
Key Observations
Website uses HTTPS with valid SSL
🛡️Security Headers
HTTP security headers analysis and recommendations.
Security Headers
HTTP security headers analysis
Missing Strict-Transport-Security header
HIGHForces HTTPS connections
Missing X-Frame-Options header
HIGHPrevents clickjacking attacks
Missing X-Content-Type-Options header
MEDIUMPrevents MIME type sniffing
Missing X-XSS-Protection header
MEDIUMLegacy XSS protection (deprecated but still recommended)
Missing Referrer-Policy header
LOWControls referrer information sent with requests
Missing Permissions-Policy header
MEDIUMControls browser features and APIs
👤GDPR Compliance
Privacy and data protection assessment under GDPR regulations.
GDPR Compliance
Privacy and data protection assessment
No Data Protection Officer mentioned
LOWLarge organizations may need to designate a DPO under GDPR
GDPR Compliance Analysis
🛡️NIS2 Compliance
Network & Information Security Directive compliance assessment.
NIS2 Compliance
Network & Information Security Directive
No information security framework found
HIGHNIS2 requires documented cybersecurity and information security measures
No vulnerability disclosure policy
MEDIUMNIS2 encourages coordinated vulnerability disclosure
No security policy documentation found
HIGHNIS2 requires documented cybersecurity governance and risk management
No incident response procedures found
HIGHNIS2 requires documented incident response and business continuity plans
No business continuity planning found
MEDIUMNIS2 emphasizes operational resilience and business continuity
No security contact information
HIGHNIS2 requires clear incident reporting channels
No vulnerability reporting mechanism
MEDIUMClear vulnerability reporting supports coordinated disclosure
No NIS2 reference found
LOWConsider explicitly mentioning NIS2 compliance efforts
Critical sector without clear security compliance
HIGHDetected sectors: energy, transport, banking, health, digital
📧Email Security
SPF, DKIM, and DMARC validation and email security assessment.
Email Security
SPF, DKIM, and DMARC validation
DMARC not enforcing
MEDIUMDMARC policy is set to "none"
No DKIM record found
MEDIUMDKIM adds cryptographic signatures to emails
No BIMI Record
LOWBIMI displays brand logos in email clients
No MTA-STS Policy
MEDIUMMTA-STS enforces TLS for email delivery
No TLS-RPT Record
LOWTLS-RPT provides reporting for email TLS issues
SPF Details
DMARC Details
🏆SSL/TLS Security
Certificate validity and encryption analysis.
SSL/TLS Security
Certificate validity and encryption analysis
Weak Protocols Supported
HIGHServer supports weak protocols: TLSv1.1
OCSP Stapling Not Enabled
LOWOCSP stapling improves performance and privacy
Certificate Transparency Not Implemented
LOWCertificate is not logged in Certificate Transparency logs
SSL Certificate Expires Within 90 Days
MEDIUMSSL certificate expires in 79 days
Weak SSL Key Length
HIGHSSL certificate uses 256-bit key, which is considered weak
Mixed Content Detected
MEDIUM5 resources loaded over insecure HTTP
Partial SSL/TLS Assessment
LOWCompleted 3 of 4 security checks due to time constraints
Protocol Support
OCSP Status
📊DNS Health
DNS configuration and security assessment.
DNS Health
DNS configuration and security assessment
DNSSEC Not Enabled
MEDIUMDNSSEC is not configured for this domain
CAA Records Not Configured
LOWCertificate Authority Authorization (CAA) records not found
DMARC Policy Set to None
LOWDMARC is configured but not enforcing any policy
Domain Registration Details
DNS Records
DNSSEC Status
DNS Performance
SPF Analysis
⚡Network Security
Port scanning and network exposure analysis.
Network Security
Port scanning and network exposure analysis
High-Risk Service Exposed: FTP
HIGHPort 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer
🔧Technical Analysis
Detailed technical findings and analysis from AI assessment.
Technical Analysis
Comprehensive security assessment findings