Is inpage.cz Safe? Security Analysis for ZONER a.s.
Check if inpage.cz is a scam or legitimate. Free security scan and reviews.
AI Summary
inPage.cz is a Czech web service platform operated by ZONER a.s., offering an AI-powered website builder with free domain registration and email hosting. The platform targets small businesses and individuals in Czechia and Slovakia, providing an intuitive, fast, and modern solution for creating websites and e-shops. The website demonstrates a mature digital infrastructure with modern technologies such as Bootstrap, jQuery, and various analytics and marketing tools integrated with user consent mechanisms. Security posture is solid with HTTPS and cookie consent, though explicit security headers and published security policies are absent. WHOIS data is unavailable, which slightly impacts trust but is likely due to registry policies. Overall, the site is professional, privacy compliant, and safe for general audiences.
Detected Technologies
đź§ AI Business Intelligence
Technology stack, business insights, and market analysis powered by AI.
Business Intelligence
Market & Strategic Analysis
The company holds a strong position in the Czech market as a medium-sized technology provider specializing in web hosting and website creation services. Its business model revolves around SaaS offerings with AI enhancements to simplify content creation. The platform benefits from a robust partnership ecosystem including domain registrars, SSL providers, and cloud hosting services. The target customers are primarily small businesses and entrepreneurs seeking easy-to-use web solutions. The company maintains active customer support and content marketing through blogs and social media, indicating a growth-oriented strategy.
Extracted Contact Information
Marketing Intelligence Data
Email Addresses (1)
Phone Numbers (2)
Physical Addresses (1)
Security Posture Analysis
Comprehensive Security Assessment
The security maturity level is moderate to high, with enforced HTTPS, cookie consent with granular controls, and no visible sensitive data exposure. However, the absence of HTTP security headers and lack of published security or incident response policies represent gaps. No vulnerabilities or malware indicators were detected. The platform demonstrates awareness of CSRF protection as discussed in their blog. Incident response readiness and vulnerability disclosure mechanisms are not publicly documented, which could be improved to enhance trust and compliance.
Strategic Recommendations
Priority Actions for Security Improvement
Implement and publish HTTP security headers such as Content Security Policy, HSTS, and X-Frame-Options.
✨Observations
AI-powered comprehensive website and business analysis.
AI-Enhanced Website Analysis
Business Insights
ZONER a.s.
inPage is a Czech web service provided by ZONER a.s. that allows users to easily create websites and e-shops with free domains and email. It offers AI-assisted web content creation, modern templates, and intuitive management.
good
consistent
Technical Stack
fast
excellent
good
good
Security Assessment
- HTTPS enforced
- Cookie consent with granular controls
- No exposed sensitive data in HTML
- Use of security tokens in forms (implied)
- CSRF protection discussed in blog
Analytics & Tracking
Advertising & Marketing
Website Quality Assessment
Key Observations
Website is fully accessible with rich content and modern design.
🛡️Security Headers
HTTP security headers analysis and recommendations.
Security Headers
HTTP security headers analysis
Sensitive data may be cached
LOWCache-Control header should include "no-store" for sensitive pages
👤GDPR Compliance
Privacy and data protection assessment under GDPR regulations.
GDPR Compliance
Privacy and data protection assessment
No Privacy Policy found
HIGHGDPR requires a clear and accessible privacy policy
No Cookie Consent Banner found
HIGHGDPR requires explicit consent for non-essential cookies
EU business without adequate privacy measures
CRITICALEU businesses are subject to strict GDPR requirements
Third-party services without privacy policy
HIGHDetected services: Google Analytics, Facebook, Twitter, YouTube
GDPR Compliance Analysis
🛡️NIS2 Compliance
Network & Information Security Directive compliance assessment.
NIS2 Compliance
Network & Information Security Directive
No information security framework found
HIGHNIS2 requires documented cybersecurity and information security measures
No vulnerability disclosure policy
MEDIUMNIS2 encourages coordinated vulnerability disclosure
No security policy documentation found
HIGHNIS2 requires documented cybersecurity governance and risk management
No incident response procedures found
HIGHNIS2 requires documented incident response and business continuity plans
No business continuity planning found
MEDIUMNIS2 emphasizes operational resilience and business continuity
No security contact information
HIGHNIS2 requires clear incident reporting channels
No vulnerability reporting mechanism
MEDIUMClear vulnerability reporting supports coordinated disclosure
No NIS2 reference found
LOWConsider explicitly mentioning NIS2 compliance efforts
Critical sector without clear security compliance
HIGHDetected sectors: transport, digital
đź“§Email Security
SPF, DKIM, and DMARC validation and email security assessment.
Email Security
SPF, DKIM, and DMARC validation
No DKIM record found
MEDIUMDKIM adds cryptographic signatures to emails
No BIMI Record
LOWBIMI displays brand logos in email clients
No MTA-STS Policy
MEDIUMMTA-STS enforces TLS for email delivery
No TLS-RPT Record
LOWTLS-RPT provides reporting for email TLS issues
SPF Details
DMARC Details
🏆SSL/TLS Security
Certificate validity and encryption analysis.
SSL/TLS Security
Certificate validity and encryption analysis
Partial SSL/TLS Assessment
LOWCompleted 2 of 4 security checks due to time constraints
Certificate Details
OCSP Status
📊DNS Health
DNS configuration and security assessment.
DNS Health
DNS configuration and security assessment
DNSSEC Not Enabled
MEDIUMDNSSEC is not configured for this domain
CAA Records Not Configured
LOWCertificate Authority Authorization (CAA) records not found
Domain Registration Details
DNS Records
DNSSEC Status
DNS Performance
SPF Analysis
⚡Network Security
Port scanning and network exposure analysis.
Network Security
Port scanning and network exposure analysis
Good Network Security Posture
LOWNo unnecessary services detected on common risky ports
đź”§Technical Analysis
Detailed technical findings and analysis from AI assessment.
Technical Analysis
Comprehensive security assessment findings